$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa File: 2BF1D5F07E3511EE8CB63458C4F9AE02.roa (raw, json) Hash identifier: FkQAfdMiMVRkFmDG7OCPPtDI1TM4+1FS9ZFrS9JgM34= Subject key identifier: 65:1C:3A:3A:95:85:AD:D7:23:A3:5D:2B:1C:DD:19:89:2D:4C:70:66 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 02D8 Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa Signing time: Fri 15 Mar 2024 03:05:22 +0000 ROA not before: Fri 15 Mar 2024 03:05:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136251 IP address blocks: 210.79.61.0/24 maxlen: 24 210.79.62.0/24 maxlen: 24 210.79.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Mar 15 03:05:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3baf1-cd88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d6:14:a5:3a:51:79:7f:2a:db:dd:18:0d:e9: d8:8d:98:1d:5a:86:5a:39:40:2c:e8:5f:a1:30:9f: 5a:1b:cc:0d:78:11:c5:c0:60:c0:f8:5b:34:40:09: ff:ba:d1:27:1f:cc:5e:25:64:b7:93:3c:b9:4c:7e: d6:7b:ea:ec:1e:eb:05:fc:53:1f:5b:c3:ff:b1:a6: 8e:cd:43:0d:70:b5:db:cb:5c:6e:7d:39:33:ab:ce: a2:2c:56:14:8f:f5:47:08:26:78:cf:54:93:fb:5a: 63:fa:ea:cf:d7:19:dc:49:34:5d:68:52:7a:dd:5d: 1d:11:b3:7a:8c:0f:30:f2:f2:97:e7:b8:d3:5a:3a: 3c:25:45:18:60:29:d7:ad:8d:e7:16:7a:68:6f:9f: 8b:a4:76:65:49:6e:14:62:20:4b:ad:56:f0:d2:97: 2a:bf:05:3c:bd:e1:c5:55:bd:1e:c0:f9:80:8e:72: a4:19:ec:7e:85:05:0d:3d:30:b3:7b:a9:60:1a:af: cf:92:bc:d0:4d:ec:3f:73:bd:3e:60:db:1f:1b:65: f7:d6:e2:de:b5:c9:72:bc:45:c7:6a:a2:97:81:82: 5e:cd:ea:1a:f0:57:c3:59:2f:da:bc:6f:3b:ce:d8: 3c:35:dd:60:2b:36:fd:db:3e:ef:9b:ca:97:d8:ba: 6f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1C:3A:3A:95:85:AD:D7:23:A3:5D:2B:1C:DD:19:89:2D:4C:70:66 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.61.0-210.79.63.255 Signature Algorithm: sha256WithRSAEncryption 1d:21:38:9e:76:a5:fa:6c:47:8d:67:52:5d:62:e2:15:26:19: 33:ee:19:a9:0d:8a:93:8e:ca:f3:85:43:84:f8:3b:2a:b6:d9: 34:0c:16:0c:45:78:a0:0a:84:86:96:fc:e6:dd:3c:d2:18:f8: c6:8b:9c:94:f8:5a:40:10:52:6d:f7:41:47:03:f3:ba:76:ee: 5d:98:fb:05:3c:ff:e4:5a:3f:d1:2b:97:77:c5:62:b4:ad:dc: 30:1d:72:da:23:6c:e9:1c:13:3c:94:6b:62:1b:51:1f:4d:12: 3e:b5:de:d1:29:cf:cf:a4:87:d2:d8:0c:63:53:90:0e:80:49: ed:23:83:ff:6c:f9:e2:34:ad:19:33:02:20:4b:71:bf:3f:c1: 04:ac:bf:30:bb:66:bb:94:aa:a2:fe:71:a7:4c:60:d5:54:b8: 4c:e1:60:ad:94:88:54:77:60:a7:b5:28:9a:24:ad:f2:44:a2: bc:16:3b:94:20:24:38:e3:91:e4:7e:1c:49:20:18:62:d9:50: 81:f1:63:e2:96:88:62:98:43:d9:5f:54:ea:fc:dc:80:47:c4: 31:38:15:8f:d8:ee:de:44:b8:f1:df:b9:c6:d4:c1:8b:51:ce: 8d:ea:77:6b:09:a1:67:b3:55:cf:92:8d:b9:40:1b:41:4f:45: 7d:91:7f:ce -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjQwMzE1MDMwNTIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzYmFmMS1jZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNYUpTpReX8q290YDenYjZgdWoZaOUAs6F+hMJ9aG8wNeBHFwGDA+Fs0QAn/ utEnH8xeJWS3kzy5TH7We+rsHusF/FMfW8P/saaOzUMNcLXby1xufTkzq86iLFYU j/VHCCZ4z1ST+1pj+urP1xncSTRdaFJ63V0dEbN6jA8w8vKX57jTWjo8JUUYYCnX rY3nFnpob5+LpHZlSW4UYiBLrVbw0pcqvwU8veHFVb0ewPmAjnKkGex+hQUNPTCz e6lgGq/PkrzQTew/c70+YNsfG2X31uLetclyvEXHaqKXgYJezeoa8FfDWS/avG87 ztg8Nd1gKzb92z7vm8qX2LpvYwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGUcOjqV ha3XI6NdKxzdGYktTHBmMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvMkJGMUQ1RjA3 RTM1MTFFRThDQjYzNDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEANJPPQMEBtJPADANBgkqhkiG9w0BAQsFAAOCAQEAHSE4 nnal+mxHjWdSXWLiFSYZM+4ZqQ2Kk47K84VDhPg7KrbZNAwWDEV4oAqEhpb85t08 0hj4xouclPhaQBBSbfdBRwPzunbuXZj7BTz/5Fo/0SuXd8VitK3cMB1y2iNs6RwT PJRrYhtRH00SPrXe0SnPz6SH0tgMY1OQDoBJ7SOD/2z54jStGTMCIEtxvz/BBKy/ MLtmu5Sqov5xp0xg1VS4TOFgrZSIVHdgp7UomiSt8kSivBY7lCAkOOOR5H4cSSAY YtlQgfFj4paIYphD2V9U6vzcgEfEMTgVj9ju3kS48d+5xtTBi1HOjep3awmhZ7NV z5KNuUAbQU9FfZF/zg== -----END CERTIFICATE-----Generated at Fri May 17 04:26:40 2024 by rpki-client on console-fra.rpki-client.org