$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/678C24C0663F11EEBD955D43C4F9AE02.roa File: 678C24C0663F11EEBD955D43C4F9AE02.roa (raw, json) Hash identifier: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s= Subject key identifier: 8F:CB:79:2E:DB:8D:D0:5D:C8:25:7A:0D:1D:DF:72:49:0E:7E:56:3C Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: C8 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/678C24C0663F11EEBD955D43C4F9AE02.roa Signing time: Wed 07 Aug 2024 06:07:28 +0000 ROA not before: Wed 07 Aug 2024 06:07:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7575 IP address blocks: 203.6.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82 Validity Not Before: Aug 7 06:07:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b30f20-bf73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ad:74:62:6f:26:c5:3f:66:87:e2:08:4d:c9: 3e:88:66:13:dd:d4:23:64:0c:96:f6:e0:40:c1:8e: e1:bb:dd:3f:fe:40:72:8a:f0:d9:b2:c0:ec:d0:70: 3a:86:93:e6:c4:01:12:9e:d5:f0:7f:24:72:02:d5: e7:2c:9b:aa:dd:3e:16:02:f2:89:ae:3b:f3:c5:10: 62:81:b5:2b:41:e3:c3:94:93:9f:24:43:3d:09:0d: da:f0:0c:7b:0f:e1:73:eb:44:c5:22:0f:ea:c3:c7: cc:0b:28:2e:b3:ed:a7:46:e1:8a:18:b1:45:5d:da: e7:35:61:cb:21:85:19:4a:24:90:6d:e7:79:74:f0: 43:5d:96:76:47:be:a3:77:d4:b5:09:d0:b0:8c:40: 80:02:cb:19:65:e6:39:83:c8:c9:17:89:23:78:e4: 68:0a:c7:be:db:f0:86:07:de:64:de:98:01:31:f8: 09:b1:8a:a5:97:38:8b:af:96:74:d9:99:5a:b0:55: 94:44:b3:28:e1:82:7d:e1:6a:a8:93:d6:64:f1:74: ff:11:3d:3b:02:d9:d0:b8:8d:d1:5c:3b:eb:d7:32: 54:e7:03:5e:e7:b4:7a:50:7e:ea:22:71:2f:6d:a6: ba:d3:9f:9b:73:45:ec:4f:4f:12:ef:13:16:69:f0: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CB:79:2E:DB:8D:D0:5D:C8:25:7A:0D:1D:DF:72:49:0E:7E:56:3C X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/678C24C0663F11EEBD955D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.8.0/22 Signature Algorithm: sha256WithRSAEncryption 02:12:4c:15:c6:09:41:46:44:0f:d2:07:1e:76:3a:1a:58:54: c8:4b:2e:ba:f5:70:77:b0:32:47:5d:68:a9:54:ae:b4:6d:8b: 21:28:54:9e:20:02:ff:f6:96:b2:98:ac:22:ad:08:01:68:70: 50:7e:7f:a5:c8:11:bd:a7:d2:fe:95:b5:1b:87:ea:20:80:f1: 3a:df:40:2d:b4:bc:6f:ad:f9:19:a8:e0:b3:50:e6:c1:76:6d: 90:be:bc:60:be:4c:70:84:38:0a:ed:f7:c1:58:86:f5:03:04: b0:fb:07:fe:27:c7:99:8a:b8:04:2f:90:10:5b:5d:cf:21:ca: 25:75:f5:00:78:84:f2:cc:5a:93:3f:42:2b:62:38:59:89:8a: 1f:f8:9f:d7:9c:05:94:f7:45:96:c5:36:3f:d5:f9:47:36:84: 99:f8:41:4e:3a:a4:4d:5f:67:3d:82:e4:f7:06:fe:73:13:13: 52:84:45:59:84:7c:88:20:71:ed:be:65:f7:ec:9f:3c:76:5e: e6:3b:ea:cb:30:99:52:e4:59:2e:03:15:94:d5:89:69:e2:e1: 7d:c5:7a:eb:12:93:9e:4d:35:78:0a:4a:59:24:bd:4e:81:18: c7:88:54:bd:b3:41:8f:af:66:ef:34:69:4b:4e:ed:4d:7b:26: 26:7d:c3:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjQwODA3MDYwNzI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMGYyMC1iZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsK10Ym8mxT9mh+IITck+iGYT3dQjZAyW9uBAwY7hu90//kByivDZssDs0HA6 hpPmxAESntXwfyRyAtXnLJuq3T4WAvKJrjvzxRBigbUrQePDlJOfJEM9CQ3a8Ax7 D+Fz60TFIg/qw8fMCygus+2nRuGKGLFFXdrnNWHLIYUZSiSQbed5dPBDXZZ2R76j d9S1CdCwjECAAssZZeY5g8jJF4kjeORoCse+2/CGB95k3pgBMfgJsYqllziLr5Z0 2ZlasFWURLMo4YJ94Wqok9Zk8XT/ET07AtnQuI3RXDvr1zJU5wNe57R6UH7qInEv baa605+bc0XsT08S7xMWafBSpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI/LeS7b jdBdyCV6DR3fckkOflY8MB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvNjc4QzI0QzA2 NjNGMTFFRUJEOTU1RDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLBggwDQYJKoZIhvcNAQELBQADggEBAAISTBXGCUFGRA/S Bx52OhpYVMhLLrr1cHewMkddaKlUrrRtiyEoVJ4gAv/2lrKYrCKtCAFocFB+f6XI Eb2n0v6VtRuH6iCA8TrfQC20vG+t+Rmo4LNQ5sF2bZC+vGC+THCEOArt98FYhvUD BLD7B/4nx5mKuAQvkBBbXc8hyiV19QB4hPLMWpM/QitiOFmJih/4n9ecBZT3RZbF Nj/V+Uc2hJn4QU46pE1fZz2C5PcG/nMTE1KERVmEfIggce2+Zffsnzx2XuY76ssw mVLkWS4DFZTViWni4X3FeusSk55NNXgKSlkkvU6BGMeIVL2zQY+vZu80aUtO7U17 JiZ9wzs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:05:34 2025 by rpki-client