$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa File: 19EF4D1ABE5A11EDAA537748C4F9AE02.roa (raw, json) Hash identifier: a2EPeLHdFjtrPqywCW9FnHZ9hQ6h1a/us9daozIFsxM= Subject key identifier: 98:C0:7C:95:7D:3B:B0:27:9F:95:61:58:41:30:D4:72:AA:E0:AD:93 Certificate issuer: /CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Certificate serial: 07A6 Authority key identifier: 57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa Signing time: Fri 02 Feb 2024 21:59:37 +0000 ROA not before: Fri 02 Feb 2024 21:59:37 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17408 IP address blocks: 103.224.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Validity Not Before: Feb 2 21:59:37 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd65c9-8239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:82:fc:4d:f6:40:f5:e2:69:db:16:c1:30:aa: 6a:d8:b2:9e:18:dc:32:64:9e:77:6c:05:9f:9c:18: 89:57:bb:a6:df:b3:f7:30:75:52:d0:ca:1f:19:aa: ba:ed:80:ce:71:4e:d3:59:0d:30:a2:d8:e2:15:eb: f7:4e:e3:3d:c8:11:4f:60:60:b6:8d:9d:49:d7:5a: 7b:0a:cd:3b:b2:9f:a9:d9:d1:12:bd:74:88:d0:06: ca:04:57:a8:57:cd:0f:a6:24:6f:1b:8a:01:90:2d: ce:47:09:7a:f2:87:dc:e7:c2:48:86:be:6a:5c:af: e5:62:80:ff:48:c6:4c:6b:72:52:7a:d9:00:89:50: e9:02:ba:43:db:6b:f3:bb:64:d1:bf:bb:61:54:83: ce:69:75:bf:63:63:34:a9:a3:85:8f:74:53:66:2b: 44:34:6d:bd:e5:da:03:eb:90:c5:a0:6e:d5:10:c7: a7:16:d5:65:9b:b3:f8:f3:ce:43:11:ad:c1:5c:35: 60:82:92:80:44:97:97:e9:64:72:8d:52:db:d4:34: b8:1a:1b:e5:a6:c6:17:4e:03:07:48:83:e2:09:9b: 0c:af:e4:c9:61:42:93:bd:1a:a6:7d:3c:05:04:9b: 27:e3:13:11:3c:81:01:b3:14:d1:c1:8f:a2:60:ab: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C0:7C:95:7D:3B:B0:27:9F:95:61:58:41:30:D4:72:AA:E0:AD:93 X509v3 Authority Key Identifier: keyid:57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.252.0/22 Signature Algorithm: sha256WithRSAEncryption 64:08:84:53:f0:f9:55:af:72:6c:8b:17:d9:63:78:5b:79:c6: ff:7e:7d:d5:d4:e4:c4:7f:a8:cb:5b:32:ea:b1:20:b1:fc:eb: 9d:ec:02:4c:5c:d7:fe:07:6a:79:3f:5a:fe:e1:76:21:4b:0d: c7:ee:6a:2c:36:8f:98:aa:10:a1:00:7a:6b:0e:0f:c4:53:92: ec:15:8b:aa:f6:05:dc:4a:a0:5e:5f:31:2a:90:b2:2f:53:3d: 09:83:ab:e5:ee:1d:00:47:94:3c:64:11:f8:a9:dd:df:e5:cc: 7c:c3:9e:0c:b0:56:03:02:7f:de:05:b7:39:0f:d9:3c:9e:8a: a1:6a:1c:f7:8f:81:fe:e7:e1:8f:17:ea:da:e3:2b:73:c6:6c: 99:89:89:90:05:b5:81:1f:09:8d:56:48:e1:cb:77:95:d8:8d: f9:00:2e:25:fa:a7:f3:fd:e9:ec:b3:c5:18:c6:2a:85:14:19: a6:94:2a:0c:c5:c2:6c:86:40:00:52:b1:c6:28:11:05:2b:76: 11:bf:ae:ee:33:c7:b5:a0:3b:5d:19:73:c0:1c:ef:e0:59:c9: 58:17:7b:9a:cf:53:ba:85:50:9b:2f:7a:80:99:83:b8:31:c8: 4a:3d:50:01:5e:fb:4b:4c:d8:51:5b:1c:23:c6:de:9f:20:4f: e5:b5:b4:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EyOTcxMTAvBgNVBAUTKDU3REI0MkFCOUVCQkVGQkZFMjEwNzNGNTAwN0ZDMzc2 MkM1RkJCMDgwHhcNMjQwMjAyMjE1OTM3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNjVjOS04MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IL8TfZA9eJp2xbBMKpq2LKeGNwyZJ53bAWfnBiJV7um37P3MHVS0MofGaq6 7YDOcU7TWQ0wotjiFev3TuM9yBFPYGC2jZ1J11p7Cs07sp+p2dESvXSI0AbKBFeo V80PpiRvG4oBkC3ORwl68ofc58JIhr5qXK/lYoD/SMZMa3JSetkAiVDpArpD22vz u2TRv7thVIPOaXW/Y2M0qaOFj3RTZitENG295doD65DFoG7VEMenFtVlm7P4885D Ea3BXDVggpKARJeX6WRyjVLb1DS4GhvlpsYXTgMHSIPiCZsMr+TJYUKTvRqmfTwF BJsn4xMRPIEBsxTRwY+iYKvJDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJjAfJV9 O7Ann5VhWEEw1HKq4K2TMB8GA1UdIwQYMBaAFFfbQqueu++/4hBz9QB/w3YsX7sI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTI5Ny8yNEVEMjE1NkJD MjgxMUVBOTdGOTZENDFDNEY5QUUwMi9WOXRDcTU2Nzc3X2lFSFAxQUhfRGRpeGZ1 d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y5dENxNTY3NzdfaUVIUDFBSF9EZGl4ZnV3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0EyOTcvMjRFRDIxNTZCQzI4MTFFQTk3Rjk2RDQxQzRGOUFFMDIvMTlFRjREMUFC RTVBMTFFREFBNTM3NzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4PwwDQYJKoZIhvcNAQELBQADggEBAGQIhFPw+VWvcmyL F9ljeFt5xv9+fdXU5MR/qMtbMuqxILH8653sAkxc1/4Hank/Wv7hdiFLDcfuaiw2 j5iqEKEAemsOD8RTkuwVi6r2BdxKoF5fMSqQsi9TPQmDq+XuHQBHlDxkEfip3d/l zHzDngywVgMCf94FtzkP2TyeiqFqHPePgf7n4Y8X6trjK3PGbJmJiZAFtYEfCY1W SOHLd5XYjfkALiX6p/P96eyzxRjGKoUUGaaUKgzFwmyGQABSscYoEQUrdhG/ru4z x7WgO10Zc8Ac7+BZyVgXe5rPU7qFUJsveoCZg7gxyEo9UAFe+0tM2FFbHCPG3p8g T+W1tI8= -----END CERTIFICATE-----Generated at Mon May 6 23:05:49 2024 by rpki-client on console-fra.rpki-client.org