$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa File: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (raw, json) Hash identifier: udEqLCtgKXaI1YwmV1HyckUBiaH+LidusYCEz2iqc3c= Subject key identifier: 9E:42:F6:D7:EC:9E:C7:AE:D6:B2:96:EE:F0:59:D4:61:04:3B:10:F3 Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0759 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa Signing time: Thu 18 Apr 2024 10:21:02 +0000 ROA not before: Thu 18 Apr 2024 10:21:02 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 14618 IP address blocks: 203.27.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Apr 18 10:21:02 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6620f40d-5a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cb:7e:9d:39:cf:0e:42:50:4a:c8:2d:80:f9: 62:24:00:4c:70:0a:e2:1a:a2:ea:8f:3b:df:98:13: b6:01:e4:a2:f8:bd:ae:b6:92:e8:88:e3:fd:d4:56: c3:d2:31:e9:a4:37:8f:1c:ab:c3:cc:93:b7:e1:c4: 6c:cb:cf:93:8e:99:fa:bf:5c:b3:a0:83:a4:26:98: ac:e3:fe:2a:55:da:74:3b:66:ce:ed:55:f5:34:b3: 8d:66:b2:87:0e:ee:84:d6:ce:d1:ec:46:8f:1d:e1: ee:eb:31:0d:08:06:12:07:7f:0b:ac:a9:62:00:0b: 42:2e:e1:71:4d:cc:62:a3:ab:3f:60:ff:07:66:04: d9:68:a9:6e:65:49:f9:8e:32:d7:68:2b:5f:48:f5: 63:34:22:f6:8e:51:aa:51:26:12:2e:ac:3e:aa:58: 82:1c:6e:25:e6:43:c8:48:45:03:63:cd:3b:e8:d0: ed:e4:fe:27:7a:ff:81:15:79:e2:43:90:a0:c1:76: df:5e:c5:fc:b0:3e:3d:a3:03:01:b4:fe:ce:15:0b: e8:44:32:e1:b4:c7:60:9b:20:22:3d:23:71:70:0d: fb:48:0f:8a:05:e5:05:6c:5b:4e:09:94:f9:99:73: 57:a3:85:73:9a:d6:bf:3c:17:24:d1:ae:39:f0:84: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:42:F6:D7:EC:9E:C7:AE:D6:B2:96:EE:F0:59:D4:61:04:3B:10:F3 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 Signature Algorithm: sha256WithRSAEncryption a4:cb:33:38:4c:b5:f4:34:92:da:82:56:e7:77:78:d8:b2:98: 1f:ff:8c:e7:5a:c7:7a:7a:21:90:cc:fd:6a:c5:06:f7:f9:e1: bf:7e:99:15:1f:64:70:76:0b:67:53:12:28:ee:32:ea:71:c8: e6:62:e2:25:98:53:95:de:ea:8a:23:ef:d0:fc:d8:4b:b8:3b: b8:4e:ff:48:d1:46:61:b3:53:23:d8:47:38:26:85:54:e4:7f: 62:4a:88:4c:68:00:e2:40:a3:9c:89:a9:2b:b4:a0:9f:d2:6e: 0c:98:69:cb:b9:84:95:d4:23:2e:28:89:6f:34:f1:7c:aa:2b: fd:a5:e3:bf:7c:8c:11:1b:4f:75:9e:3a:1b:78:57:e2:28:61: ba:70:b1:2a:66:32:ad:72:3b:aa:c9:fa:e9:09:16:0f:3a:98: 2f:0f:f6:1d:cc:7c:1f:5b:ed:cd:bf:e8:e4:7b:a1:75:5c:de: 2b:38:06:dc:ad:79:1f:59:1f:77:4d:ce:e3:6c:96:e7:99:4d: 24:fd:28:c9:d1:09:8f:9b:9e:86:b7:80:d6:b9:85:ba:4c:00: 23:65:08:c4:b6:32:27:cf:78:78:87:c6:94:a8:b3:b0:30:37: d1:f3:11:01:57:d6:eb:88:52:2a:db:c9:f2:bb:f8:76:c3:d8: c9:22:80:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjQwNDE4MTAyMTAyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIwZjQwZC01YTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2st+nTnPDkJQSsgtgPliJABMcAriGqLqjzvfmBO2AeSi+L2utpLoiOP91FbD 0jHppDePHKvDzJO34cRsy8+Tjpn6v1yzoIOkJpis4/4qVdp0O2bO7VX1NLONZrKH Du6E1s7R7EaPHeHu6zENCAYSB38LrKliAAtCLuFxTcxio6s/YP8HZgTZaKluZUn5 jjLXaCtfSPVjNCL2jlGqUSYSLqw+qliCHG4l5kPISEUDY8076NDt5P4nev+BFXni Q5CgwXbfXsX8sD49owMBtP7OFQvoRDLhtMdgmyAiPSNxcA37SA+KBeUFbFtOCZT5 mXNXo4Vzmta/PBck0a458ISehQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ5C9tfs nseu1rKW7vBZ1GEEOxDzMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvNUIyMjM2RTZG RDZEMTFFRTk1MURFNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLG+IwDQYJKoZIhvcNAQELBQADggEBAKTLMzhMtfQ0ktqC Vud3eNiymB//jOdax3p6IZDM/WrFBvf54b9+mRUfZHB2C2dTEijuMupxyOZi4iWY U5Xe6ooj79D82Eu4O7hO/0jRRmGzUyPYRzgmhVTkf2JKiExoAOJAo5yJqSu0oJ/S bgyYacu5hJXUIy4oiW808XyqK/2l4798jBEbT3WeOht4V+IoYbpwsSpmMq1yO6rJ +ukJFg86mC8P9h3MfB9b7c2/6OR7oXVc3is4BtyteR9ZH3dNzuNslueZTST9KMnR CY+bnoa3gNa5hbpMACNlCMS2MifPeHiHxpSos7AwN9HzEQFX1uuIUirbyfK7+HbD 2MkigBo= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:58 2024 by rpki-client on console-ams.rpki-client.org