$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa File: BE48D4AA927D11EF9651FC4AC4F9AE02.roa (raw, json) Hash identifier: izRhlY7DGrfvs8MmjLdXrrQgAeYYKtyct/uQzFPAxkk= Subject key identifier: 8E:6A:9B:D8:DB:9D:BE:DC:46:DD:A8:16:4C:94:BD:82:C5:0F:D1:B4 Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: 02 Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa Signing time: Fri 25 Oct 2024 03:03:43 +0000 ROA not before: Fri 25 Oct 2024 03:03:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.0.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Oct 25 03:03:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b0a8f-9404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:77:a2:7b:e4:b8:cf:da:90:21:10:65:88:15: be:bc:d3:ab:81:64:b0:ce:56:d8:4a:00:5e:03:33: 6d:ab:76:d2:48:5a:53:5a:0e:bc:e3:69:19:df:97: 54:e2:27:08:3b:bc:c0:69:18:2a:aa:31:d4:16:37: 83:10:d6:5b:ac:17:c7:0e:c1:d8:f4:c0:fc:37:cd: bd:1c:09:14:68:92:36:9f:d9:dc:04:15:67:0a:ec: 4e:36:09:ae:9f:5f:52:7a:58:fe:1a:cc:3c:1b:9f: 96:68:9d:27:14:34:d1:8f:9c:9e:25:51:e5:44:0a: c1:54:51:fe:dd:32:6a:a2:88:69:6f:60:61:ad:33: 71:7b:ee:ff:2d:b1:bd:ce:f4:64:c1:aa:9d:57:99: 1c:f7:e6:db:25:5a:87:26:ce:5a:fb:54:97:5b:87: a9:9f:b3:95:a3:a7:d3:57:b5:97:35:d3:56:36:3b: e9:a1:f7:7c:e1:4f:7d:cc:8a:73:c3:1f:0f:5e:52: b8:b9:71:b7:78:13:c7:1a:f9:b4:25:42:39:a9:27: 51:1a:b5:1a:e6:08:fc:59:08:07:e5:14:a6:aa:6f: 68:ef:7b:61:48:f2:18:b8:35:c6:eb:11:61:dc:de: 2e:09:be:81:e7:ac:92:e0:0b:cc:d7:88:47:28:f9: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6A:9B:D8:DB:9D:BE:DC:46:DD:A8:16:4C:94:BD:82:C5:0F:D1:B4 X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.70.0/24 Signature Algorithm: sha256WithRSAEncryption 69:12:3a:91:76:b2:d3:c5:6b:af:c5:50:dc:cc:9a:c2:09:e7: af:d0:f0:ff:ba:8d:fa:9b:1e:4a:2d:c7:d3:34:54:64:82:f7: a3:2e:27:79:ef:5f:7b:4f:32:4e:9c:b2:51:f1:38:97:98:41: e2:e3:5e:a0:34:27:0c:c8:1d:df:07:d4:2e:1c:e9:71:97:26: d8:d1:c3:14:ed:62:85:85:4e:f2:a3:a1:66:ed:5f:65:21:06: 84:26:0e:6d:2e:55:7b:05:35:9b:99:07:61:d6:91:12:3e:31: ff:34:8a:2a:1d:23:ee:0b:43:a9:51:46:bb:8a:2d:eb:57:a0: 3e:80:0b:e7:1e:7f:58:2f:b5:b0:27:5b:c0:76:8a:b4:7e:8b: 14:2b:13:bc:af:90:19:bc:3d:05:fe:38:84:9e:39:d5:59:2e: 0a:e8:ce:b2:b1:0f:ef:74:2e:aa:e0:2a:c8:52:50:8d:d3:b4: 26:70:fc:90:76:8f:1e:39:97:0e:ad:fb:43:9e:69:4c:2e:d7: 8e:c8:74:5c:0d:23:f1:99:2a:8f:df:c0:a4:b8:a9:fd:94:4a: ce:bf:14:9b:d1:94:68:ab:5d:68:ea:52:1a:fe:06:af:c4:8b: fe:73:28:9e:c3:8a:9e:97:d5:87:2e:e5:af:6d:51:07:c2:36: 77:c9:1d:55 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODIwMzExMC8GA1UEBRMoMzFEMjFENUNFRTVGQUNERUYzQzhDMUM4N0QwRDczOTFG OUY3M0FGRjAeFw0yNDEwMjUwMzAzNDNaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWIwYThmLTk0MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqd6J75LjP2pAhEGWIFb6806uBZLDOVthKAF4DM22rdtJIWlNaDrzjaRnfl1Ti Jwg7vMBpGCqqMdQWN4MQ1lusF8cOwdj0wPw3zb0cCRRokjaf2dwEFWcK7E42Ca6f X1J6WP4azDwbn5ZonScUNNGPnJ4lUeVECsFUUf7dMmqiiGlvYGGtM3F77v8tsb3O 9GTBqp1XmRz35tslWocmzlr7VJdbh6mfs5Wjp9NXtZc101Y2O+mh93zhT33MinPD Hw9eUri5cbd4E8ca+bQlQjmpJ1EatRrmCPxZCAflFKaqb2jve2FI8hi4NcbrEWHc 3i4JvoHnrJLgC8zXiEco+ZGBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjmqb2Nud vtxG3agWTJS9gsUP0bQwHwYDVR0jBBgwFoAUMdIdXO5frN7zyMHIfQ1zkfn3Ov8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MjAzL0JDNTE1REFBOTI3 QTExRUZCNTY0M0M0RUM0RjlBRTAyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWRJZFhPNWZyTjd6eU1ISWZRMXprZm4zT3Y4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODIwMy9CQzUxNURBQTkyN0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9CRTQ4RDRBQTky N0QxMUVGOTY1MUZDNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoARjANBgkqhkiG9w0BAQsFAAOCAQEAaRI6kXay08Vrr8VQ 3Myawgnnr9Dw/7qN+pseSi3H0zRUZIL3oy4nee9fe08yTpyyUfE4l5hB4uNeoDQn DMgd3wfULhzpcZcm2NHDFO1ihYVO8qOhZu1fZSEGhCYObS5VewU1m5kHYdaREj4x /zSKKh0j7gtDqVFGu4ot61egPoAL5x5/WC+1sCdbwHaKtH6LFCsTvK+QGbw9Bf44 hJ451VkuCujOsrEP73QuquAqyFJQjdO0JnD8kHaPHjmXDq37Q55pTC7Xjsh0XA0j 8Zkqj9/ApLip/ZRKzr8Um9GUaKtdaOpSGv4Gr8SL/nMonsOKnpfVhy7lr21RB8I2 d8kdVQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org