$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa File: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (raw, json) Hash identifier: xDNVgmjN9DxZxjXVEWTQzbIsIGQRcVSh7mJ/JhS9bSU= Subject key identifier: 8F:A0:7D:BC:1B:97:60:1C:3F:68:F8:E4:83:9C:42:FD:D2:E1:76:2C Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0E69 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa Signing time: Sat 20 Apr 2024 18:36:51 +0000 ROA not before: Sat 20 Apr 2024 18:36:51 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4237 IP address blocks: 203.12.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Apr 20 18:36:51 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66240b43-9609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dc:e5:e8:bb:11:f5:dd:70:50:5c:1d:53:56: 9e:86:63:d2:8c:42:a4:a8:ff:2c:fd:96:a4:69:92: da:84:60:e5:68:39:c4:81:e3:4a:4e:e3:b4:4f:31: b0:dc:b5:0b:e1:b4:44:54:d6:c9:b9:77:21:6d:3d: 32:1f:e8:e1:85:ce:0f:ce:5b:63:df:bc:62:07:0e: 2f:c7:86:65:53:cc:56:7f:db:3f:38:2f:a0:18:32: 09:09:5e:9c:cd:ef:bd:5a:11:af:7e:04:0e:81:3d: 84:6c:1d:36:fa:75:04:13:ac:e9:c2:a0:84:82:76: 9b:2d:19:f5:78:17:0c:85:12:94:34:c5:d5:77:58: be:3e:e3:04:2b:2b:77:f0:30:e5:cb:e5:c7:36:99: 4b:cc:fa:6c:3c:95:fd:b2:96:65:7e:a2:f8:13:3f: 9f:97:11:04:8b:44:71:2a:b9:52:9c:ad:b2:c6:47: db:a1:74:5a:04:d3:8f:0e:06:32:8f:8a:18:33:af: f1:35:d9:2b:cb:71:89:ea:bc:e1:b6:79:74:9d:a9: 19:28:16:b6:86:74:e0:d0:1b:96:c7:42:3b:22:5c: 45:58:17:2b:f6:c3:32:f4:4d:15:49:c1:3c:e1:c7: 37:3a:70:f2:d0:5f:dd:47:dc:2d:f7:8b:76:79:ea: 24:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A0:7D:BC:1B:97:60:1C:3F:68:F8:E4:83:9C:42:FD:D2:E1:76:2C X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.77.0/24 Signature Algorithm: sha256WithRSAEncryption c7:30:22:d7:2e:37:e7:b2:20:bb:06:07:10:34:70:82:31:6d: 5f:82:6f:43:3d:af:ea:7c:5e:fc:a9:52:03:2e:6d:e2:b7:76: a1:9a:a4:16:0f:93:9d:1e:93:d0:a9:d0:92:9b:78:6b:61:4b: d5:8b:8d:b0:aa:e2:09:40:44:95:34:e3:47:c0:36:4a:54:07: 76:20:50:dd:c0:02:96:d5:96:43:06:3f:8b:3b:e1:b9:f0:b0: 17:45:7b:d0:cf:51:94:57:04:30:71:52:eb:d8:3b:5c:fb:41: 62:0e:8b:b1:73:5d:0c:10:a0:a6:0d:1e:80:89:2c:41:10:b8: 4e:8e:28:e1:2e:ba:ec:c0:85:c0:db:52:13:23:cd:e7:85:0c: 9a:12:3f:7e:16:e5:ec:68:f3:5a:c4:64:eb:5d:c0:26:44:1a: 16:eb:f2:03:82:46:fb:59:0d:09:5d:15:69:42:ed:8f:37:d6: 84:e5:f9:7a:ff:02:b1:d5:0b:9a:ec:68:1b:51:78:8b:9a:4a: 89:3b:d9:7b:36:a0:40:7a:1c:eb:9c:a0:8b:70:b2:16:02:3e: 3e:18:84:78:90:23:15:5e:6d:a4:cb:a8:a6:49:fe:db:8a:7c: 5d:9d:52:fc:bf:f7:3a:1d:69:ae:e6:ab:6c:52:c8:a8:17:55: c7:4b:32:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjQwNDIwMTgzNjUxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI0MGI0My05NjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNzl6LsR9d1wUFwdU1aehmPSjEKkqP8s/ZakaZLahGDlaDnEgeNKTuO0TzGw 3LUL4bREVNbJuXchbT0yH+jhhc4Pzltj37xiBw4vx4ZlU8xWf9s/OC+gGDIJCV6c ze+9WhGvfgQOgT2EbB02+nUEE6zpwqCEgnabLRn1eBcMhRKUNMXVd1i+PuMEKyt3 8DDly+XHNplLzPpsPJX9spZlfqL4Ez+flxEEi0RxKrlSnK2yxkfboXRaBNOPDgYy j4oYM6/xNdkry3GJ6rzhtnl0nakZKBa2hnTg0BuWx0I7IlxFWBcr9sMy9E0VScE8 4cc3OnDy0F/dR9wt94t2eeokmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI+gfbwb l2AcP2j45IOcQv3S4XYsMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvN0JEMTJFM0E0 ODA4MTFFRThDNTEyQjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDE0wDQYJKoZIhvcNAQELBQADggEBAMcwItcuN+eyILsG BxA0cIIxbV+Cb0M9r+p8XvypUgMubeK3dqGapBYPk50ek9Cp0JKbeGthS9WLjbCq 4glARJU040fANkpUB3YgUN3AApbVlkMGP4s74bnwsBdFe9DPUZRXBDBxUuvYO1z7 QWIOi7FzXQwQoKYNHoCJLEEQuE6OKOEuuuzAhcDbUhMjzeeFDJoSP34W5exo81rE ZOtdwCZEGhbr8gOCRvtZDQldFWlC7Y831oTl+Xr/ArHVC5rsaBtReIuaSok72Xs2 oEB6HOucoItwshYCPj4YhHiQIxVebaTLqKZJ/tuKfF2dUvy/9zodaa7mq2xSyKgX VcdLMgY= -----END CERTIFICATE-----Generated at Fri May 10 20:05:35 2024 by rpki-client on console-fra.rpki-client.org