$ rpki-client -vvf rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa File: D1315D7C0FDD11EEB007DA41C4F9AE02.roa (raw, json) Hash identifier: 1DTHOwSIeyOlP/85nvDSKsIu+CBj2ErQg5LShUWz4KA= Subject key identifier: AF:E1:B1:41:F3:3C:3C:EE:FC:B6:80:02:FF:E8:8D:E6:A9:0E:43:44 Certificate issuer: /CN=A91C35C9/serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2 Certificate serial: C1 Authority key identifier: 7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa Signing time: Tue 25 Jun 2024 05:39:18 +0000 ROA not before: Tue 25 Jun 2024 05:39:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 12076 IP address blocks: 202.36.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.crl rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C35C9/serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2 Validity Not Before: Jun 25 05:39:18 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a5806-aa4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:85:b9:c7:da:27:84:6f:ea:cb:93:03:09:fb: e2:4d:cf:96:1a:fb:3e:48:7d:7b:c6:50:1d:96:72: 98:46:79:af:e4:85:a1:9e:8e:25:b1:7d:fa:de:45: 57:d1:c4:8d:a4:df:b2:7f:06:ac:66:3f:ba:0c:92: 38:55:05:69:a8:ab:37:10:67:76:a5:91:13:7a:8a: 8a:8d:91:62:7d:15:0d:32:00:73:85:3c:bb:bd:0b: 18:cf:ed:00:7b:cb:de:28:77:9c:3e:73:06:8a:bf: 1f:7b:32:1a:64:b7:7d:76:b1:6c:c2:9e:e5:d5:ea: 43:ab:46:6a:0a:d0:51:ce:95:c9:1a:34:02:5c:4b: 98:b3:5a:c7:de:e6:1e:af:9f:e9:a6:1f:87:19:75: 45:4a:4a:d9:6c:48:64:35:d9:90:ff:78:ac:c0:9b: 8d:75:ed:4f:5e:04:5d:95:e2:02:28:f7:84:14:6a: fa:68:38:06:87:ad:2b:f9:e7:7c:23:99:ba:ea:1a: 35:19:9b:56:7d:ea:47:05:41:f6:2b:a5:70:9e:97: fd:f7:0a:9b:27:70:79:f1:4f:fa:93:9c:71:c0:84: cd:1c:97:94:c6:69:2d:cf:1a:fa:b5:0e:f4:ca:ec: 97:49:6d:21:a2:0e:c8:ff:e4:bc:ac:98:cc:22:98: 76:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E1:B1:41:F3:3C:3C:EE:FC:B6:80:02:FF:E8:8D:E6:A9:0E:43:44 X509v3 Authority Key Identifier: keyid:7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/D1315D7C0FDD11EEB007DA41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.34.0/24 Signature Algorithm: sha256WithRSAEncryption 89:17:ed:e5:5c:60:9c:17:d4:b0:f4:61:37:09:6f:2d:70:aa: cb:7b:6b:3c:84:05:60:50:01:b6:4b:7c:07:a6:bc:61:c0:11: f5:a5:71:21:d9:ad:d8:48:99:f2:b7:49:66:8b:de:9b:16:2d: f0:2e:75:b1:a3:c3:de:b1:31:bc:2b:86:a8:39:12:58:11:c1: 0e:a0:ec:4b:5b:df:ae:86:90:2d:6f:8f:29:89:44:f3:a3:2c: 0b:5f:9e:13:fd:26:d3:19:b4:9a:9b:fd:e0:df:76:08:10:a6: e3:e0:13:76:16:44:2a:20:c4:44:57:10:92:53:8e:cc:89:0c: 54:fc:68:5d:01:ae:83:96:59:06:eb:87:bc:30:fb:95:1b:c0: 75:65:68:ea:a2:5b:63:21:48:50:6b:c1:85:ba:91:b0:8c:40: 7d:03:75:81:65:69:bd:28:3d:20:66:26:86:1d:17:98:e1:76: a5:6f:53:99:8a:a1:d1:a6:64:bf:93:93:0d:31:57:ba:53:24: be:f2:48:4a:9c:ff:6c:55:a5:8e:8b:77:83:87:2a:46:67:d7: bf:8c:a7:fc:67:c7:c6:ab:c9:65:25:19:2f:2a:17:79:a8:fa: d1:48:33:70:66:2f:9c:c0:eb:7f:df:f8:25:2d:10:c8:61:61: 91:1a:d8:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM1QzkxMTAvBgNVBAUTKDdCRTg3MDMxNTMzRDJGRjQzMUMxMUE1ODc5QTlFMkQ5 REM4NTI3RjIwHhcNMjQwNjI1MDUzOTE4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNTgwNi1hYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYW5x9onhG/qy5MDCfviTc+WGvs+SH17xlAdlnKYRnmv5IWhno4lsX363kVX 0cSNpN+yfwasZj+6DJI4VQVpqKs3EGd2pZETeoqKjZFifRUNMgBzhTy7vQsYz+0A e8veKHecPnMGir8fezIaZLd9drFswp7l1epDq0ZqCtBRzpXJGjQCXEuYs1rH3uYe r5/pph+HGXVFSkrZbEhkNdmQ/3iswJuNde1PXgRdleICKPeEFGr6aDgGh60r+ed8 I5m66ho1GZtWfepHBUH2K6Vwnpf99wqbJ3B58U/6k5xxwITNHJeUxmktzxr6tQ70 yuyXSW0hog7I/+S8rJjMIph2BQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK/hsUHz PDzu/LaAAv/ojeapDkNEMB8GA1UdIwQYMBaAFHvocDFTPS/0McEaWHmp4tnchSfy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzVDOS83MEY4NEM2MjBG MjUxMUVFOEQyOUUyNkNDNEY5QUUwMi9lLWh3TVZNOUxfUXh3UnBZZWFuaTJkeUZK X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtaHdNVk05TF9ReHdScFllYW5pMmR5RkpfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzM1QzkvNzBGODRDNjIwRjI1MTFFRThEMjlFMjZDQzRGOUFFMDIvRDEzMTVEN0Mw RkREMTFFRUIwMDdEQTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJCIwDQYJKoZIhvcNAQELBQADggEBAIkX7eVcYJwX1LD0 YTcJby1wqst7azyEBWBQAbZLfAemvGHAEfWlcSHZrdhImfK3SWaL3psWLfAudbGj w96xMbwrhqg5ElgRwQ6g7Etb366GkC1vjymJRPOjLAtfnhP9JtMZtJqb/eDfdggQ puPgE3YWRCogxERXEJJTjsyJDFT8aF0BroOWWQbrh7ww+5UbwHVlaOqiW2MhSFBr wYW6kbCMQH0DdYFlab0oPSBmJoYdF5jhdqVvU5mKodGmZL+Tkw0xV7pTJL7ySEqc /2xVpY6Ld4OHKkZn17+Mp/xnx8aryWUlGS8qF3mo+tFIM3BmL5zA63/f+CUtEMhh YZEa2CU= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:37 2024 by rpki-client on console-fra.rpki-client.org