$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa File: 7B8BE75E8FBE11EA9797847DC4F9AE02.roa (raw, json) Hash identifier: ccG1BUs0i4CV7gjyI57tTXWxoo2ZO3TQ4gdTjDhcm5U= Subject key identifier: 7B:09:F5:FD:6A:80:92:00:F0:DC:9E:F9:CA:15:A9:51:AF:0A:0F:AF Certificate issuer: /CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Certificate serial: 088F Authority key identifier: 59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa Signing time: Fri 02 Feb 2024 21:19:16 +0000 ROA not before: Fri 02 Feb 2024 21:19:16 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136030 IP address blocks: 43.225.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2191 (0x88f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Validity Not Before: Feb 2 21:19:16 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd5c54-1994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f7:cb:ac:a2:5b:76:3b:f5:74:0a:9a:e0:03: 36:0b:19:4e:6f:13:a9:65:ba:71:c1:e7:4f:6b:e1: 4f:ad:31:21:18:5c:39:55:ca:d9:b9:7c:23:87:35: b8:9b:c4:0c:14:f0:0a:49:46:94:14:8d:10:38:9a: f5:1c:2d:a0:f3:ea:cf:18:fc:2d:ba:c0:7b:64:81: 83:d7:71:88:04:c6:9d:57:8a:43:ad:5d:8d:f9:b4: 4b:f7:99:50:32:0c:06:60:98:f8:07:42:16:b4:2f: 55:61:64:7b:d5:f3:30:72:1c:a1:4b:c4:2a:e0:4e: 26:c6:c4:20:fb:55:d3:66:be:03:87:77:03:43:15: 75:d9:54:ae:a9:d8:52:1d:f3:6b:1e:78:d6:ad:ec: d0:5b:6d:48:ce:a8:df:d3:de:db:3c:09:e4:bb:81: 1d:91:fd:a6:e7:53:04:e5:31:24:a6:73:a1:d5:8b: 54:c0:3a:0a:86:27:a8:68:34:fe:d7:c3:76:41:60: b1:1d:2f:94:63:b8:cb:c8:50:00:fd:96:82:75:29: 58:f9:b6:eb:d2:dc:1d:77:75:20:c1:48:e1:7b:17: d9:f4:c3:20:f7:2a:82:c5:97:58:97:68:b8:4a:45: b8:18:94:51:b2:4c:35:8f:d9:51:5e:d5:41:bb:12: 62:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:09:F5:FD:6A:80:92:00:F0:DC:9E:F9:CA:15:A9:51:AF:0A:0F:AF X509v3 Authority Key Identifier: keyid:59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7B8BE75E8FBE11EA9797847DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.98.0/24 Signature Algorithm: sha256WithRSAEncryption 84:29:01:21:6c:1b:3e:3c:c1:2b:fe:74:dd:75:34:6e:6e:19: 84:26:b6:bb:28:91:b0:7b:f4:66:ce:3d:e3:d5:61:7e:05:30: 77:c6:92:b1:9e:3a:60:59:71:55:d8:90:60:69:72:1b:7c:c0: 0f:f1:ed:40:32:bd:00:c2:c8:d9:d2:0a:f7:6c:a5:4a:cd:98: af:e7:07:c7:7d:9c:b5:ad:f0:6d:aa:ea:49:cf:de:99:37:d9: 35:16:de:e2:74:82:a8:cc:a5:04:73:a0:20:fa:ab:a5:b1:f3: 20:d8:6b:33:c3:45:79:a9:0d:f9:23:6e:4d:8f:9b:04:84:2a: 56:68:a6:a4:df:9a:7d:06:3a:28:1a:81:f7:7e:66:a2:e9:c2: 7e:74:3d:3d:c4:75:bd:ff:5a:21:38:08:80:1e:52:c9:9f:d2: 3a:02:ca:1a:8a:df:ab:b8:e3:32:23:0f:ca:08:6a:b9:2e:64: be:60:47:63:fe:ba:16:79:27:4b:04:e9:56:ed:4c:31:04:46: b7:44:80:b4:f2:21:2e:78:7e:86:53:89:85:65:e8:1e:ee:86: 81:8c:94:ce:23:bb:84:ee:6d:95:05:8f:df:d9:f1:e6:40:ad: 57:30:c3:1d:fe:22:83:24:53:53:cf:4e:fc:ae:40:d5:8e:f6: f3:79:aa:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMTQxMTAvBgNVBAUTKDU5OERENUEzOUFFNDc3NjU4QUQ1QkNCRkUzNjI2NEEx QTYxRDY3MDgwHhcNMjQwMjAyMjExOTE2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNWM1NC0xOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ffLrKJbdjv1dAqa4AM2CxlObxOpZbpxwedPa+FPrTEhGFw5VcrZuXwjhzW4 m8QMFPAKSUaUFI0QOJr1HC2g8+rPGPwtusB7ZIGD13GIBMadV4pDrV2N+bRL95lQ MgwGYJj4B0IWtC9VYWR71fMwchyhS8Qq4E4mxsQg+1XTZr4Dh3cDQxV12VSuqdhS HfNrHnjWrezQW21Izqjf097bPAnku4Edkf2m51ME5TEkpnOh1YtUwDoKhieoaDT+ 18N2QWCxHS+UY7jLyFAA/ZaCdSlY+bbr0twdd3UgwUjhexfZ9MMg9yqCxZdYl2i4 SkW4GJRRskw1j9lRXtVBuxJitQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHsJ9f1q gJIA8Nye+coVqVGvCg+vMB8GA1UdIwQYMBaAFFmN1aOa5HdlitW8v+NiZKGmHWcI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUExNC9GN0U4NjQ0NjhG QkMxMUVBQThDMzEyN0JDNEY5QUUwMi9XWTNWbzVya2QyV0sxYnlfNDJKa29hWWRa d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZM1ZvNXJrZDJXSzFieV80Mkprb2FZZFp3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMTQvRjdFODY0NDY4RkJDMTFFQUE4QzMxMjdCQzRGOUFFMDIvN0I4QkU3NUU4 RkJFMTFFQTk3OTc4NDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr4WIwDQYJKoZIhvcNAQELBQADggEBAIQpASFsGz48wSv+ dN11NG5uGYQmtrsokbB79GbOPePVYX4FMHfGkrGeOmBZcVXYkGBpcht8wA/x7UAy vQDCyNnSCvdspUrNmK/nB8d9nLWt8G2q6knP3pk32TUW3uJ0gqjMpQRzoCD6q6Wx 8yDYazPDRXmpDfkjbk2PmwSEKlZopqTfmn0GOigagfd+ZqLpwn50PT3Edb3/WiE4 CIAeUsmf0joCyhqK36u44zIjD8oIarkuZL5gR2P+uhZ5J0sE6VbtTDEERrdEgLTy IS54foZTiYVl6B7uhoGMlM4ju4TubZUFj9/Z8eZArVcwwx3+IoMkU1PPTvyuQNWO 9vN5qjc= -----END CERTIFICATE-----Generated at Sat May 18 22:14:04 2024 by rpki-client on console-fra.rpki-client.org