$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa File: 281775F671A711EE85493C7BC4F9AE02.roa (raw, json) Hash identifier: zHKgMoik7BsfyV4Pof+oTHOsuzjEshOIehRYVUfIO6I= Subject key identifier: E9:FB:91:94:F1:05:06:D3:F5:40:5E:01:F5:6F:64:87:BB:F1:0F:44 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: BD Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa Signing time: Tue 07 Nov 2023 22:18:14 +0000 ROA not before: Tue 07 Nov 2023 22:18:14 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 200017 IP address blocks: 202.134.235.0/24 maxlen: 24 202.134.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Nov 7 22:18:14 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=654ab7a6-dac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:38:fd:45:1f:0d:c1:0b:12:6d:1d:d9:11:71: ce:b4:e1:54:c5:8c:5a:86:67:40:6e:4d:ec:35:da: b4:56:26:57:ff:35:e4:36:f5:5e:6c:2f:ce:45:c6: 59:b5:cd:7a:d5:3b:8d:44:21:dd:3b:bf:57:ad:55: 5c:67:0e:03:e1:5f:5a:40:ca:68:02:86:f7:c7:4b: 76:35:58:0b:7b:46:d7:85:56:2a:e9:ee:66:5f:28: ff:ca:d1:32:5b:72:af:12:ae:7f:1e:85:df:86:cc: f0:0c:d6:34:43:80:bd:d8:d2:6d:9d:cd:92:f2:6e: d7:4a:ca:ea:33:39:5e:11:6e:b9:97:f7:08:1c:8f: 25:6c:84:49:1d:63:a0:67:2a:2b:8e:41:f7:0d:c6: 09:46:aa:55:a9:d3:bd:e9:84:81:5d:4c:7b:9f:e4: 59:7e:2f:43:d1:f4:ad:68:94:43:1a:2c:0c:19:4f: c5:32:39:eb:0c:13:e8:17:91:b9:2d:2d:6f:3a:9d: 4f:c8:4d:33:0b:25:3a:21:7b:5c:11:4e:5a:9a:cc: a4:e7:c2:ef:12:00:79:47:0c:6c:f4:dc:b9:d0:f1: ba:a4:5d:41:26:2a:5a:0f:67:e7:2f:f3:65:f8:5b: 04:24:c3:cc:8a:19:c3:13:17:bc:70:f4:24:11:38: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FB:91:94:F1:05:06:D3:F5:40:5E:01:F5:6F:64:87:BB:F1:0F:44 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.235.0/24 202.134.238.0/24 Signature Algorithm: sha256WithRSAEncryption 64:af:f6:17:34:35:84:5a:90:ed:9e:05:c9:7a:4f:88:fc:ba: 01:71:17:86:4b:27:da:56:66:f0:95:8d:95:2f:16:cf:b8:35: e8:82:6b:6e:99:9c:ed:54:4e:5c:4e:39:a8:1b:15:2c:e6:77: c3:34:9c:d4:8e:f4:32:15:bb:81:f2:4b:13:f3:84:0d:46:f4: db:b5:2c:1e:5b:dd:14:8e:19:6e:b1:3c:8b:78:30:42:d0:6a: 67:32:40:ed:5d:7a:a4:1a:01:09:d3:22:36:0d:57:30:3e:1a: 16:1a:9c:09:a8:56:d2:c4:2e:c7:df:71:4a:24:70:28:a6:46: c3:f1:e0:c5:81:e8:2e:4e:a6:cc:d5:7f:40:40:66:5b:9b:cf: 6e:1f:80:a6:2d:6a:1f:3d:fd:83:2a:f3:14:fe:d6:15:1b:50: c1:1c:27:76:1e:a1:19:12:69:52:34:0e:55:5c:d7:c0:51:a8: 7b:9e:41:a3:ec:0c:39:e7:ae:69:81:51:85:9a:f6:d7:21:dd: 35:e6:c1:e9:e7:f1:d4:81:d0:2c:69:32:51:15:43:ef:11:d5: db:1e:fe:f1:ad:4e:43:e1:e8:a5:bf:ac:54:51:d5:cd:7c:af: 91:6a:38:f0:6c:3d:16:48:de:3c:bd:b1:ad:c5:ae:f5:80:16: bf:31:7f:61 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjMxMTA3MjIxODE0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRhYjdhNi1kYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDj9RR8NwQsSbR3ZEXHOtOFUxYxahmdAbk3sNdq0ViZX/zXkNvVebC/ORcZZ tc161TuNRCHdO79XrVVcZw4D4V9aQMpoAob3x0t2NVgLe0bXhVYq6e5mXyj/ytEy W3KvEq5/HoXfhszwDNY0Q4C92NJtnc2S8m7XSsrqMzleEW65l/cIHI8lbIRJHWOg ZyorjkH3DcYJRqpVqdO96YSBXUx7n+RZfi9D0fStaJRDGiwMGU/FMjnrDBPoF5G5 LS1vOp1PyE0zCyU6IXtcEU5amsyk58LvEgB5Rwxs9Ny50PG6pF1BJipaD2fnL/Nl +FsEJMPMihnDExe8cPQkETjfDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOn7kZTx BQbT9UBeAfVvZIe78Q9EMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvMjgxNzc1RjY3 MUE3MTFFRTg1NDkzQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKhusDBADKhu4wDQYJKoZIhvcNAQELBQADggEBAGSv9hc0 NYRakO2eBcl6T4j8ugFxF4ZLJ9pWZvCVjZUvFs+4NeiCa26ZnO1UTlxOOagbFSzm d8M0nNSO9DIVu4HySxPzhA1G9Nu1LB5b3RSOGW6xPIt4MELQamcyQO1deqQaAQnT IjYNVzA+GhYanAmoVtLELsffcUokcCimRsPx4MWB6C5OpszVf0BAZlubz24fgKYt ah89/YMq8xT+1hUbUMEcJ3YeoRkSaVI0DlVc18BRqHueQaPsDDnnrmmBUYWa9tch 3TXmwenn8dSB0CxpMlEVQ+8R1dse/vGtTkPh6KW/rFRR1c18r5FqOPBsPRZI3jy9 sa3FrvWAFr8xf2E= -----END CERTIFICATE-----Generated at Fri May 17 08:13:54 2024 by rpki-client on console-fra.rpki-client.org