$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa File: 70F3668238F711EFB4132D26C4F9AE02.roa (raw, json) Hash identifier: vongUTG4LdHp9PYMxoycbPSRCZzG1LrGyifLsnKYY/8= Subject key identifier: 51:55:E5:30:6E:40:49:7C:55:9E:83:C3:F7:17:19:9C:E1:17:FC:A2 Certificate issuer: /CN=A91C6FD6/serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Certificate serial: 02 Authority key identifier: E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa Signing time: Wed 03 Jul 2024 04:48:08 +0000 ROA not before: Wed 03 Jul 2024 04:48:08 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151953 IP address blocks: 203.19.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6FD6/serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Validity Not Before: Jul 3 04:48:08 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6684d807-ff87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e1:f3:5e:6b:60:9f:c8:c2:13:27:36:81:be: 85:51:08:1f:ff:62:2c:ba:27:30:f9:69:c8:55:d0: 4c:56:0a:0e:e3:af:4e:86:92:c3:6a:d9:ed:0a:99: 5b:90:23:a0:df:79:2c:cf:9b:f4:2b:6b:d8:30:44: d2:d6:fb:93:de:b8:6b:ba:64:2f:3b:2c:8a:9a:43: ad:8e:8c:de:3d:1f:02:19:05:6e:64:14:4a:8c:68: 4b:83:bc:bc:d2:3e:84:9f:a9:2b:19:38:1d:b9:c8: 34:14:0f:1c:06:e6:76:7f:4e:46:a1:0f:60:57:e1: 0a:ef:22:e8:ca:a8:37:f5:af:81:c6:18:c1:7b:a3: 22:72:d2:37:8a:66:43:4f:1e:c7:8e:5a:6b:e6:63: 0c:da:b4:ea:65:a3:49:06:4e:15:42:0e:c8:41:c9: 7b:9d:24:b2:24:52:92:ff:b8:68:9c:ae:30:bb:79: ff:a7:43:d8:db:37:4e:c9:66:aa:2f:6c:da:72:bb: 32:9e:be:86:a5:ea:16:20:14:4e:53:a3:87:29:e0: fa:eb:51:05:06:e9:a4:23:7c:bf:e4:4d:23:bc:07: e3:de:e1:00:63:b8:0b:b9:6b:48:90:34:58:d0:41: 33:05:2e:14:12:a0:c8:04:03:ec:f8:49:54:59:04: 9e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:55:E5:30:6E:40:49:7C:55:9E:83:C3:F7:17:19:9C:E1:17:FC:A2 X509v3 Authority Key Identifier: keyid:E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.5.0/24 Signature Algorithm: sha256WithRSAEncryption bc:37:5c:cc:a5:73:a0:60:7b:1d:9c:13:61:c4:f4:2b:71:48: 26:e0:42:0f:3b:d7:3b:81:8f:b0:07:cc:31:f1:94:f1:2a:0f: 2f:cb:9c:98:05:f3:5c:23:c0:c1:54:bd:22:1d:ff:a5:b4:39: fe:db:2c:ab:da:ed:73:cf:54:b0:17:2f:61:28:34:cf:10:92: fb:45:5a:61:17:55:2e:27:13:b8:5a:04:79:51:b2:5c:68:52: 2d:e4:bf:69:ad:ae:18:4d:65:7f:d9:91:ff:28:cc:3e:11:e5: 8d:ba:04:6a:8a:2a:eb:70:f8:94:e7:3c:49:25:b3:6c:e1:80: 14:9c:f8:5b:91:0e:90:ad:a2:9d:33:42:0d:04:97:33:f0:7f: ea:f2:37:73:76:d1:23:31:27:9c:01:ab:f6:01:20:e7:0f:ec: a6:af:ab:2d:f1:3e:81:9d:99:ae:5e:f0:8e:1f:ce:77:98:9c: 0f:90:c2:0d:5a:55:83:92:36:7b:fb:04:ea:85:35:6a:2f:c5: d9:d1:eb:42:5e:af:ad:3e:05:16:56:7d:e4:69:28:7d:53:b5: f9:62:0f:30:4c:1c:1d:b6:bd:a0:d0:3e:90:7d:40:6c:69:0b: fa:a9:27:0b:1e:63:e1:0e:09:09:95:d1:91:2d:e0:f5:a1:78: 0d:a2:53:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkZENjExMC8GA1UEBRMoRTg2ODIxRTlGMjNENDJGMzYyRTQyQUUyQUZCNUJEOThF MEIxMTE5MzAeFw0yNDA3MDMwNDQ4MDhaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODRkODA3LWZmODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ4fNea2CfyMITJzaBvoVRCB//Yiy6JzD5achV0ExWCg7jr06GksNq2e0KmVuQ I6DfeSzPm/Qra9gwRNLW+5PeuGu6ZC87LIqaQ62OjN49HwIZBW5kFEqMaEuDvLzS PoSfqSsZOB25yDQUDxwG5nZ/TkahD2BX4QrvIujKqDf1r4HGGMF7oyJy0jeKZkNP HseOWmvmYwzatOplo0kGThVCDshByXudJLIkUpL/uGicrjC7ef+nQ9jbN07JZqov bNpyuzKevoal6hYgFE5To4cp4PrrUQUG6aQjfL/kTSO8B+Pe4QBjuAu5a0iQNFjQ QTMFLhQSoMgEA+z4SVRZBJ4RAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUVXlMG5A SXxVnoPD9xcZnOEX/KIwHwYDVR0jBBgwFoAU6Ggh6fI9QvNi5Crir7W9mOCxEZMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2RkQ2LzY4REE0QjZBMzhG NjExRUZCMTMxODQyM0M0RjlBRTAyLzZHZ2g2Zkk5UXZOaTVDcmlyN1c5bU9DeEVa TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNkdnaDZmSTlRdk5pNUNyaXI3VzltT0N4RVpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkZENi82OERBNEI2QTM4RjYxMUVGQjEzMTg0MjNDNEY5QUUwMi83MEYzNjY4MjM4 RjcxMUVGQjQxMzJEMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsTBTANBgkqhkiG9w0BAQsFAAOCAQEAvDdczKVzoGB7HZwT YcT0K3FIJuBCDzvXO4GPsAfMMfGU8SoPL8ucmAXzXCPAwVS9Ih3/pbQ5/tssq9rt c89UsBcvYSg0zxCS+0VaYRdVLicTuFoEeVGyXGhSLeS/aa2uGE1lf9mR/yjMPhHl jboEaooq63D4lOc8SSWzbOGAFJz4W5EOkK2inTNCDQSXM/B/6vI3c3bRIzEnnAGr 9gEg5w/spq+rLfE+gZ2Zrl7wjh/Od5icD5DCDVpVg5I2e/sE6oU1ai/F2dHrQl6v rT4FFlZ95GkofVO1+WIPMEwcHba9oNA+kH1AbGkL+qknCx5j4Q4JCZXRkS3g9aF4 DaJTDQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:29 2024 by rpki-client on console-ams.rpki-client.org