$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/767655BE561A11E79F98831DC4F9AE02.roa File: 767655BE561A11E79F98831DC4F9AE02.roa (raw, json) Hash identifier: LdoIT0wZJ+74LacPG030WBXR/g4yrD4qxzi4ZrGHRkM= Subject key identifier: 0D:6A:53:0B:AC:77:8A:2C:54:25:29:F0:DD:2A:F5:6E:ED:75:3F:60 Certificate issuer: /CN=A91C3A74/serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Certificate serial: 2510 Authority key identifier: CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/767655BE561A11E79F98831DC4F9AE02.roa Signing time: Mon 22 Jan 2024 16:12:39 +0000 ROA not before: Mon 22 Jan 2024 16:12:39 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24389 IP address blocks: 119.30.32.0/20 maxlen: 24 123.108.240.0/21 maxlen: 24 202.56.4.0/22 maxlen: 24 2400:c600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9488 (0x2510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74/serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Validity Not Before: Jan 22 16:12:39 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ae93f7-d896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:2f:6d:ac:aa:f6:e3:88:4c:46:d6:e3:5f: 69:2f:4e:05:9f:56:33:b1:95:ca:54:28:34:c1:6c: e1:ef:e5:da:b8:de:66:ff:90:05:74:77:b4:42:70: 78:14:b5:29:e9:4b:d0:88:6a:78:a9:b5:9c:c4:76: 17:3c:e6:49:b0:d1:18:75:61:88:10:66:8b:28:03: 61:e5:fe:da:82:12:6f:56:51:ce:4c:09:35:dc:3c: d3:78:90:04:3b:ad:b9:6e:c5:55:e1:1d:02:68:92: dd:5d:54:5b:e2:ac:77:52:a1:d6:7a:aa:c5:6f:1e: e8:75:a0:ff:e2:4c:a2:86:55:ff:3c:4a:d2:eb:d7: 09:84:cd:8b:d4:43:68:51:5c:85:4b:cd:d6:47:e3: 8c:66:2e:ff:61:a0:8a:fb:4a:22:48:72:f8:c4:ea: 2a:1a:62:63:3e:ab:b7:1d:15:f0:9f:d6:63:d1:b2: e0:e4:11:9f:6e:4a:d6:ba:09:a1:e3:bb:4f:88:8b: e9:cc:70:60:15:b8:0e:03:46:f1:cc:0e:a9:c0:b8: 7e:9e:0e:06:c7:8e:9c:8e:9c:32:38:3c:38:85:93: 65:4a:8a:f0:79:dd:e8:a7:9d:0b:dd:e5:5d:38:13: 50:7c:43:c8:ec:e2:40:0e:bf:3f:54:84:43:96:1b: c0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6A:53:0B:AC:77:8A:2C:54:25:29:F0:DD:2A:F5:6E:ED:75:3F:60 X509v3 Authority Key Identifier: keyid:CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/767655BE561A11E79F98831DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.32.0/20 123.108.240.0/21 202.56.4.0/22 IPv6: 2400:c600::/32 Signature Algorithm: sha256WithRSAEncryption 88:e4:37:c6:5a:0a:1e:3f:1a:f4:26:c5:f2:b1:54:d9:65:35: ed:2f:0c:c3:21:59:79:65:ea:56:0a:9c:6a:ed:5e:83:3c:3c: 31:74:cf:62:88:4a:e0:1c:c0:e1:cb:91:94:2a:75:1a:7c:e8: 2d:25:58:d7:7d:19:0a:f6:4e:58:6e:85:a7:64:da:e6:47:4a: 1e:f3:c5:7d:3b:e4:80:79:87:98:95:67:a0:9b:1d:de:3c:52: 9c:3b:f9:1f:0f:b8:66:9e:e6:c1:4b:7e:84:27:70:80:f9:8b: 8c:d4:5d:33:e7:c3:37:48:f8:a4:3e:6e:ea:85:21:0e:85:53: a7:5f:af:5f:3e:ac:fb:bf:66:40:0a:75:ce:16:33:ea:bb:49: a0:c3:4a:bd:66:3a:81:5d:90:cf:78:21:ab:63:76:21:4c:07: ae:c0:50:71:69:4c:87:6b:7b:c4:04:d4:b8:03:ed:fc:b8:67: 58:dc:ea:5b:55:97:40:a5:61:bc:e1:0d:d3:26:d8:22:54:ca: 81:49:e6:eb:bb:7c:38:14:f0:ea:4b:92:c4:1c:84:25:23:ec: 91:58:ed:eb:44:fc:c0:e4:41:15:ad:d1:0f:2d:a4:76:46:75: 46:62:0e:93:6c:0b:ce:61:1b:59:94:1d:27:52:bc:37:78:c7: b8:de:46:1f -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICJRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKENCN0I4REI0MjQ4MjRDNzFBODcwM0JCRkI5NDJBMzE1 MjkxNTQzNjMwHhcNMjQwMTIyMTYxMjM5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlOTNmNy1kODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUsvbayq9uOITEbW419pL04Fn1YzsZXKVCg0wWzh7+XauN5m/5AFdHe0QnB4 FLUp6UvQiGp4qbWcxHYXPOZJsNEYdWGIEGaLKANh5f7aghJvVlHOTAk13DzTeJAE O625bsVV4R0CaJLdXVRb4qx3UqHWeqrFbx7odaD/4kyihlX/PErS69cJhM2L1ENo UVyFS83WR+OMZi7/YaCK+0oiSHL4xOoqGmJjPqu3HRXwn9Zj0bLg5BGfbkrWugmh 47tPiIvpzHBgFbgOA0bxzA6pwLh+ng4Gx46cjpwyODw4hZNlSorwed3op50L3eVd OBNQfEPI7OJADr8/VIRDlhvAlQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFA1qUwus d4osVCUp8N0q9W7tdT9gMB8GA1UdIwQYMBaAFMt7jbQkgkxxqHA7v7lCoxUpFUNj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83Q0I0QTA1NkZE M0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RIR29jRHVfdVVLakZTa1ZR Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzdU50Q1NDVEhHb2NEdV91VUtqRlNrVlEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNBNzQvN0NCNEEwNTZGRDNBMTFFNDg2Rjg2NzVGQzRGOUFFMDIvNzY3NjU1QkU1 NjFBMTFFNzlGOTg4MzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAR3HiADBAN7bPADBALKOAQwDQQCAAIwBwMFACQAxgAwDQYJ KoZIhvcNAQELBQADggEBAIjkN8ZaCh4/GvQmxfKxVNllNe0vDMMhWXll6lYKnGrt XoM8PDF0z2KISuAcwOHLkZQqdRp86C0lWNd9GQr2Tlhuhadk2uZHSh7zxX075IB5 h5iVZ6CbHd48Upw7+R8PuGae5sFLfoQncID5i4zUXTPnwzdI+KQ+buqFIQ6FU6df r18+rPu/ZkAKdc4WM+q7SaDDSr1mOoFdkM94IatjdiFMB67AUHFpTIdre8QE1LgD 7fy4Z1jc6ltVl0ClYbzhDdMm2CJUyoFJ5uu7fDgU8OpLksQchCUj7JFY7etE/MDk QRWt0Q8tpHZGdUZiDpNsC85hG1mUHSdSvDd4x7jeRh8= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org