$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa File: 1FE69168F9CB11EDAF704E7FC4F9AE02.roa (raw, json) Hash identifier: ecoU/18dnE70yGBufRntMgWEavYiNwHveeZ+SS7xzWQ= Subject key identifier: AA:59:B4:2A:D3:FE:9C:B1:32:C2:7E:8E:49:2D:82:4D:6D:8F:1C:CF Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: F5 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa Signing time: Tue 03 Sep 2024 05:18:35 +0000 ROA not before: Tue 03 Sep 2024 05:18:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 8075 IP address blocks: 202.12.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Sep 3 05:18:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d69c2b-b5c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ec:25:ad:2d:a5:65:3a:ff:bd:72:a1:c9:e1: 19:73:5a:dd:78:5e:1b:39:bc:79:61:6c:cb:aa:e0: 7f:8b:07:91:9d:94:dd:5c:f9:84:6b:be:2d:d0:a4: 5c:12:87:67:e1:1b:ab:c5:3c:8c:fe:ca:67:81:b9: 8c:28:f6:41:43:d3:f1:7e:87:c5:0a:f0:33:2d:74: 04:84:63:25:71:18:dd:45:d2:8a:3d:76:3f:8f:ca: 6f:a7:8b:17:b6:3c:e3:f1:ac:f5:af:0f:74:01:f1: 31:73:99:b6:7a:6b:5b:d8:8c:4d:d0:03:46:60:0c: 96:0d:e9:c0:7f:35:95:bd:8c:cb:03:9a:dc:0e:ee: f7:14:15:cb:d3:a2:8b:48:3c:bd:5b:2f:7e:a0:64: 0f:b6:08:b6:0a:bd:16:79:a0:37:6f:60:27:66:f6: 8e:81:24:ae:31:b3:09:bb:13:7c:94:c0:fc:5b:3b: 68:d1:a7:7d:37:f0:af:2f:d1:35:ed:e4:59:a3:ae: 11:33:69:89:aa:31:5e:71:b4:32:70:3b:f8:84:36: d2:73:a6:f7:ef:f6:ea:ff:70:15:ce:5a:eb:c1:f6: 79:1a:c1:4f:40:fd:07:68:0a:4b:e0:f5:a4:63:4b: 15:b5:87:e9:ce:9a:c7:0a:6e:6a:b1:be:31:a7:e8: 58:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:59:B4:2A:D3:FE:9C:B1:32:C2:7E:8E:49:2D:82:4D:6D:8F:1C:CF X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.70.0/24 Signature Algorithm: sha256WithRSAEncryption c5:36:4b:b0:74:17:93:4e:98:bf:d6:74:84:52:22:e3:b2:99: f9:9c:21:26:00:4d:4c:7a:1f:5f:2f:cf:dc:a1:88:04:ad:10: 3e:c1:dd:cd:de:4b:af:63:e2:31:65:3f:2a:4b:24:73:98:61: ec:f8:71:20:11:20:9f:86:3a:bf:e7:8b:af:c7:3e:11:75:f9: 79:95:8c:81:6a:3d:8a:67:ce:52:b6:20:e4:9c:c6:05:af:20: a7:2b:ff:13:ab:fb:ff:bc:4b:97:f4:91:ef:dc:15:b8:94:98: 84:01:79:38:1c:99:4b:70:df:2b:b4:d3:39:5d:fc:bc:06:fa: 69:1e:31:9c:2b:3c:a2:f0:a5:c2:f8:ab:50:9e:d6:52:d3:42: 3f:e5:6d:ab:3a:80:7a:e0:bf:76:b1:87:bb:07:cf:d8:7e:32: d6:4e:4d:15:65:6a:f3:ca:3c:c9:ad:03:76:29:77:13:3e:d8: 4f:b2:26:b1:ad:34:7f:33:1c:3b:1f:2e:13:1d:4b:62:14:94: f5:93:40:74:25:9e:0d:16:9c:98:50:d3:7d:da:ec:38:4f:a0: 08:95:de:fd:a7:6e:ed:9d:78:2c:3c:e0:d3:62:89:83:28:6a: 11:f2:10:ac:d4:bc:28:71:de:fe:5e:fa:e6:56:de:ef:52:fa: f5:d4:31:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjQwOTAzMDUxODM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2OWMyYi1iNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOwlrS2lZTr/vXKhyeEZc1rdeF4bObx5YWzLquB/iweRnZTdXPmEa74t0KRc Eodn4RurxTyM/spngbmMKPZBQ9PxfofFCvAzLXQEhGMlcRjdRdKKPXY/j8pvp4sX tjzj8az1rw90AfExc5m2emtb2IxN0ANGYAyWDenAfzWVvYzLA5rcDu73FBXL06KL SDy9Wy9+oGQPtgi2Cr0WeaA3b2AnZvaOgSSuMbMJuxN8lMD8Wzto0ad9N/CvL9E1 7eRZo64RM2mJqjFecbQycDv4hDbSc6b37/bq/3AVzlrrwfZ5GsFPQP0HaApL4PWk Y0sVtYfpzprHCm5qsb4xp+hY+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKpZtCrT /pyxMsJ+jkktgk1tjxzPMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcyOEEvNTM3RTQ2QzZGOUM0MTFFRDg5NjgyNDgxQzRGOUFFMDIvMUZFNjkxNjhG OUNCMTFFREFGNzA0RTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKDEYwDQYJKoZIhvcNAQELBQADggEBAMU2S7B0F5NOmL/W dIRSIuOymfmcISYATUx6H18vz9yhiAStED7B3c3eS69j4jFlPypLJHOYYez4cSAR IJ+GOr/ni6/HPhF1+XmVjIFqPYpnzlK2IOScxgWvIKcr/xOr+/+8S5f0ke/cFbiU mIQBeTgcmUtw3yu00zld/LwG+mkeMZwrPKLwpcL4q1Ce1lLTQj/lbas6gHrgv3ax h7sHz9h+MtZOTRVlavPKPMmtA3YpdxM+2E+yJrGtNH8zHDsfLhMdS2IUlPWTQHQl ng0WnJhQ033a7DhPoAiV3v2nbu2deCw84NNiiYMoahHyEKzUvChx3v5e+uZW3u9S +vXUMR0= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org