$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa File: 0F56E156828C11EDA6BCA176C4F9AE02.roa (raw, json) Hash identifier: mITwbrvKWowclf5I2rXkkctzGiZWQzeZoNrUMuqiu/E= Subject key identifier: BF:FC:7D:D9:75:2D:B3:CA:25:62:BF:78:E6:67:A5:8E:BE:0B:EE:6D Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0D0D Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa Signing time: Thu 22 Feb 2024 18:56:38 +0000 ROA not before: Thu 22 Feb 2024 18:56:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56179 IP address blocks: 122.144.32.0/19 maxlen: 24 202.154.192.0/19 maxlen: 24 203.135.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3341 (0xd0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: Feb 22 18:56:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65d798e6-2348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f7:e3:8c:3d:b3:5a:db:81:56:c5:49:ff:13: 36:3d:10:8c:b6:c8:d6:46:42:1d:1b:6c:3d:e3:18: 67:d1:49:28:6f:a7:ae:d1:81:59:fa:4f:94:68:e8: 15:f0:b0:2f:8d:38:d2:9c:6c:37:d6:d5:fb:e1:de: e4:d1:96:80:ee:bf:fa:b9:35:3b:6f:e5:5c:1f:ca: d5:99:da:c6:d9:bf:24:1f:44:c3:3d:b3:d6:e5:2d: 0d:65:92:a8:f0:40:40:74:99:3b:ed:c8:4f:f8:cb: ab:ed:fa:5e:2e:95:9a:35:5e:40:e7:ec:83:3c:14: 21:dd:44:2a:ef:5e:8b:60:d2:4b:ae:6c:5b:5f:e2: 2e:ef:ca:99:b5:bd:7b:0b:c8:54:63:ea:64:08:73: b1:3e:da:56:f0:36:0a:6a:ce:fb:4b:2e:f2:40:44: 9b:95:d5:1f:5b:5a:83:1c:e5:93:65:51:67:cb:b5: 2f:c3:ad:56:d2:1f:55:61:74:84:ef:9b:76:2b:78: 45:09:b9:38:e0:e5:00:f2:12:75:3d:23:3b:2a:d2: 4b:a5:44:aa:eb:81:2e:da:68:56:8a:0f:89:1e:32: c2:61:b8:7e:4a:d0:cc:92:bb:54:ad:b4:b5:54:8b: 28:30:1d:0c:ee:28:17:6f:42:44:d4:d1:44:28:73: 67:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FC:7D:D9:75:2D:B3:CA:25:62:BF:78:E6:67:A5:8E:BE:0B:EE:6D X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.144.32.0/19 202.154.192.0/19 203.135.64.0/19 Signature Algorithm: sha256WithRSAEncryption 11:0e:b9:4c:4e:3d:de:ab:43:63:b7:14:85:7d:89:d4:84:08: 1d:b8:1b:21:4e:99:76:42:88:22:de:bd:9b:3a:22:4d:95:fc: 2c:a9:44:f8:46:af:02:8b:bd:63:22:7c:58:a7:55:13:27:0d: f6:39:63:8a:56:49:48:d8:55:7e:9f:50:76:de:6a:a8:68:aa: 88:29:25:aa:3a:d9:2f:b1:a8:80:7a:94:fc:01:ea:d1:89:f6: 75:20:38:88:4d:a9:d9:4f:03:79:53:2e:20:e2:f2:48:13:f0: 1a:eb:68:bd:68:50:4c:6e:52:1c:3b:61:c9:89:c8:42:0a:43: 71:d9:bd:d8:89:6f:2d:e6:78:ae:3e:e7:79:06:41:4a:7b:78: 3c:8b:9f:35:52:b6:d7:f3:19:b0:bc:c9:35:aa:f2:3e:64:e3: 92:7b:a8:b2:5a:6b:8d:4b:89:c1:33:57:72:da:91:13:5e:08: a0:f1:01:43:28:55:e4:5b:69:a5:4e:f0:e0:73:bb:0d:c7:7d: 55:f2:eb:43:46:d0:3d:f0:0d:ec:d2:0e:91:39:5b:1a:24:36: 19:db:66:34:6d:db:27:e8:2f:d3:bf:61:c3:c9:55:a8:2e:08: 93:bf:e3:28:8b:11:e9:cf:ca:25:20:be:98:00:74:3a:4b:af: cb:63:ed:48 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjQwMjIyMTg1NjM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3OThlNi0yMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vfjjD2zWtuBVsVJ/xM2PRCMtsjWRkIdG2w94xhn0Ukob6eu0YFZ+k+UaOgV 8LAvjTjSnGw31tX74d7k0ZaA7r/6uTU7b+VcH8rVmdrG2b8kH0TDPbPW5S0NZZKo 8EBAdJk77chP+Mur7fpeLpWaNV5A5+yDPBQh3UQq716LYNJLrmxbX+Iu78qZtb17 C8hUY+pkCHOxPtpW8DYKas77Sy7yQESbldUfW1qDHOWTZVFny7Uvw61W0h9VYXSE 75t2K3hFCbk44OUA8hJ1PSM7KtJLpUSq64Eu2mhWig+JHjLCYbh+StDMkrtUrbS1 VIsoMB0M7igXb0JE1NFEKHNnKwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL/8fdl1 LbPKJWK/eOZnpY6+C+5tMB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZBMzkvNzMwRjAwQjJCMUM0MTFFOUJFQ0IxODI1QzRGOUFFMDIvMEY1NkUxNTY4 MjhDMTFFREE2QkNBMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAV6kCADBAXKmsADBAXLh0AwDQYJKoZIhvcNAQELBQADggEB ABEOuUxOPd6rQ2O3FIV9idSECB24GyFOmXZCiCLevZs6Ik2V/CypRPhGrwKLvWMi fFinVRMnDfY5Y4pWSUjYVX6fUHbeaqhoqogpJao62S+xqIB6lPwB6tGJ9nUgOIhN qdlPA3lTLiDi8kgT8BrraL1oUExuUhw7YcmJyEIKQ3HZvdiJby3meK4+53kGQUp7 eDyLnzVSttfzGbC8yTWq8j5k45J7qLJaa41LicEzV3LakRNeCKDxAUMoVeRbaaVO 8OBzuw3HfVXy60NG0D3wDezSDpE5WxokNhnbZjRt2yfoL9O/YcPJVaguCJO/4yiL EenPyiUgvpgAdDpLr8tj7Ug= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org