$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa File: 70F3668238F711EFB4132D26C4F9AE02.roa (raw, json) Hash identifier: 6q2HJGghYczmtOW7uCV2DY5B1dnxfLxnRSXR0JIpe1c= Subject key identifier: CC:7C:0D:8C:AD:18:EE:AF:E2:7E:B4:4B:B1:98:D8:CC:B3:D1:F0:48 Certificate issuer: /CN=A91C6FD6/serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Certificate serial: 43 Authority key identifier: E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa Signing time: Sun 03 Nov 2024 05:28:27 +0000 ROA not before: Sun 03 Nov 2024 05:28:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151953 IP address blocks: 203.19.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6FD6/serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Validity Not Before: Nov 3 05:28:27 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672709fb-f67e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:12:06:db:79:5b:ff:24:42:cb:1e:2b:e1:72: 7c:90:6e:92:ee:2f:f6:a6:b2:11:df:48:ad:40:1c: 8d:08:32:b6:fa:bb:c4:b9:ac:99:68:6f:bc:20:e8: 7a:56:d1:78:80:99:0b:70:46:87:a1:fb:01:09:66: bf:f5:bf:2e:59:fb:5b:cd:8d:6d:82:26:af:7b:ac: 2a:66:50:d7:2e:e0:9d:52:0f:3e:96:ac:32:d6:7c: 78:3d:85:b9:39:bd:41:d9:90:bb:75:01:ca:be:d7: ab:ae:7a:4d:7b:73:f8:29:02:18:9c:f1:db:34:84: 2f:de:e1:38:87:ae:ee:8c:de:59:af:58:f3:dc:92: e0:f9:ea:6d:0d:ec:82:33:7c:7a:89:f8:4c:ed:36: b5:93:df:af:4f:f2:78:d6:68:d9:d2:7e:bc:ab:f1: 3a:2b:83:ef:46:24:5e:54:48:87:92:cf:10:fd:96: c9:2e:b5:c5:61:01:0d:2a:60:75:a8:4f:4f:62:70: 6a:3c:6f:ab:38:b4:c4:89:fc:bf:33:35:e4:f0:32: d4:82:32:2f:6f:f0:fe:e8:c8:7a:88:ae:af:6c:96: c9:97:f3:7c:60:5b:a5:52:f8:22:fd:5e:63:49:35: 2b:fc:77:45:88:cf:7e:c5:0c:29:42:2e:bd:9c:ce: 49:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7C:0D:8C:AD:18:EE:AF:E2:7E:B4:4B:B1:98:D8:CC:B3:D1:F0:48 X509v3 Authority Key Identifier: keyid:E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.5.0/24 Signature Algorithm: sha256WithRSAEncryption 36:a4:06:ad:fa:7a:2a:4a:d3:bc:41:68:26:96:ac:03:12:d6: 51:e4:7e:fd:e3:92:3e:53:26:23:2d:fc:ae:73:bb:cf:47:de: 5c:c7:1b:ab:7c:9b:35:20:2c:ff:47:a6:33:7a:cd:ce:96:a7: c2:e5:0d:fd:96:23:7a:31:ba:62:de:43:eb:2c:af:f1:57:44: e5:97:77:74:f1:77:d5:90:ab:71:2d:7e:a0:6f:07:63:6c:06: af:46:8d:c5:43:70:06:a5:df:33:06:94:f2:41:b9:03:07:b7: e8:49:92:02:66:d1:13:f4:a1:f5:27:36:37:c9:c8:27:c6:c6: 8e:53:3c:08:64:74:fb:4e:f6:23:ff:2d:60:cc:60:64:eb:3f: 64:eb:b6:1a:95:f1:44:4b:09:7b:b2:74:d0:cd:fa:a2:69:74: 96:cb:c1:56:98:fd:ac:a0:d7:5f:ac:7b:ae:d8:bd:58:ed:5c: 55:f9:0c:b9:8e:64:df:e0:81:3b:fd:ff:31:cc:c6:46:37:c9: 28:e0:09:7e:c0:71:e2:c9:53:1b:84:3c:5a:f9:d3:c2:99:d2: e5:a2:3d:8a:e5:13:9f:3e:2a:a5:56:ea:bf:47:49:98:a4:52: 29:cb:b2:25:83:f4:71:5e:70:f8:52:f6:4d:8d:0f:55:7f:c1: c9:49:05:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkZENjExMC8GA1UEBRMoRTg2ODIxRTlGMjNENDJGMzYyRTQyQUUyQUZCNUJEOThF MEIxMTE5MzAeFw0yNDExMDMwNTI4MjdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjcwOWZiLWY2N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnEgbbeVv/JELLHivhcnyQbpLuL/amshHfSK1AHI0IMrb6u8S5rJlob7wg6HpW 0XiAmQtwRoeh+wEJZr/1vy5Z+1vNjW2CJq97rCpmUNcu4J1SDz6WrDLWfHg9hbk5 vUHZkLt1Acq+16uuek17c/gpAhic8ds0hC/e4TiHru6M3lmvWPPckuD56m0N7IIz fHqJ+EztNrWT369P8njWaNnSfryr8Torg+9GJF5USIeSzxD9lskutcVhAQ0qYHWo T09icGo8b6s4tMSJ/L8zNeTwMtSCMi9v8P7oyHqIrq9slsmX83xgW6VS+CL9XmNJ NSv8d0WIz37FDClCLr2czkkZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzHwNjK0Y 7q/ifrRLsZjYzLPR8EgwHwYDVR0jBBgwFoAU6Ggh6fI9QvNi5Crir7W9mOCxEZMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2RkQ2LzY4REE0QjZBMzhG NjExRUZCMTMxODQyM0M0RjlBRTAyLzZHZ2g2Zkk5UXZOaTVDcmlyN1c5bU9DeEVa TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNkdnaDZmSTlRdk5pNUNyaXI3VzltT0N4RVpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkZENi82OERBNEI2QTM4RjYxMUVGQjEzMTg0MjNDNEY5QUUwMi83MEYzNjY4MjM4 RjcxMUVGQjQxMzJEMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsTBTANBgkqhkiG9w0BAQsFAAOCAQEANqQGrfp6KkrTvEFo JpasAxLWUeR+/eOSPlMmIy38rnO7z0feXMcbq3ybNSAs/0emM3rNzpanwuUN/ZYj ejG6Yt5D6yyv8VdE5Zd3dPF31ZCrcS1+oG8HY2wGr0aNxUNwBqXfMwaU8kG5Awe3 6EmSAmbRE/Sh9Sc2N8nIJ8bGjlM8CGR0+072I/8tYMxgZOs/ZOu2GpXxREsJe7J0 0M36oml0lsvBVpj9rKDXX6x7rti9WO1cVfkMuY5k3+CBO/3/MczGRjfJKOAJfsBx 4slTG4Q8WvnTwpnS5aI9iuUTnz4qpVbqv0dJmKRSKcuyJYP0cV5w+FL2TY0PVX/B yUkFnw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org