$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa File: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (raw, json) Hash identifier: SLmZFGSKKHSNTbp90Eqx5t4RQARpRICmuu6YOwjpeZs= Subject key identifier: C7:54:AF:5F:95:08:79:A5:15:9D:55:2E:EE:EE:5B:C7:8B:2A:E2:22 Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 075A Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa Signing time: Thu 18 Apr 2024 10:21:05 +0000 ROA not before: Thu 18 Apr 2024 10:21:05 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.27.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Apr 18 10:21:05 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6620f410-ce41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e4:99:cc:fd:e6:57:f9:5d:18:66:35:21:53: 54:70:de:36:fd:51:49:99:5e:af:9d:96:90:bc:ee: e0:4d:fb:c5:47:39:3e:eb:4b:4e:7c:23:f6:a2:2a: 5f:86:d8:03:5b:89:49:a5:f6:7d:74:39:98:0f:6d: dd:dd:bf:58:bf:56:83:07:5d:84:85:16:cc:40:d1: b2:33:c8:5d:67:18:eb:2b:3b:d8:4f:b6:54:89:d0: 92:fe:a4:fd:20:92:32:95:96:a2:df:e8:d2:fa:de: aa:95:a0:e0:2b:08:b2:4d:7e:a5:b1:6d:ef:57:7d: b8:b1:99:5e:46:da:a0:94:ee:0a:1b:68:15:c1:05: 80:77:c3:55:bc:29:c7:99:1f:60:65:30:3e:fe:32: 58:d0:be:56:67:32:96:ef:a5:7a:9d:16:d2:f0:20: a7:ba:e6:ee:6f:6e:af:12:81:8d:b2:e2:f7:f1:3d: 35:6a:d7:af:f0:11:0a:d7:e5:f4:a8:0d:8b:bf:be: 33:92:b4:6a:f2:67:40:19:be:7f:98:6f:28:f5:de: 32:fd:4b:f7:2d:25:e5:3d:20:a9:b6:72:be:b8:c0: e3:aa:e4:e9:da:b2:7f:ee:00:a1:0c:e3:29:d7:78: d5:1e:6f:5a:8b:67:f7:d9:0b:0b:ee:51:8f:a5:ee: 2b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:AF:5F:95:08:79:A5:15:9D:55:2E:EE:EE:5B:C7:8B:2A:E2:22 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 Signature Algorithm: sha256WithRSAEncryption b3:ae:6a:1f:8e:c7:d2:55:5a:8a:14:84:32:4b:20:ad:c7:e3: 5e:d5:18:27:51:1c:58:41:3a:95:7b:8a:ad:f9:33:32:6f:1f: cd:4a:e3:7f:21:52:2d:11:90:1c:62:7d:0f:fd:e2:d6:f6:2c: 7e:a9:a0:7c:d6:d9:75:7a:94:03:0b:0f:cd:eb:97:fc:b9:56: 20:e3:39:ce:fb:88:86:a7:ac:53:22:cd:b2:72:37:43:37:07: a2:0c:ed:92:10:27:29:66:72:0c:df:4f:8d:cc:77:ef:7d:bf: e9:50:d6:8c:a5:85:f0:ce:9c:37:35:39:06:2c:56:36:af:52: 5c:12:83:a0:d8:27:b4:52:46:ed:75:9e:af:d3:79:17:47:9e: 78:b1:d7:cb:49:88:37:c7:bf:db:02:94:e6:fb:cc:22:ba:f6: 2f:fd:a7:e0:dd:d0:1f:62:fa:d5:08:2e:47:ef:43:0e:d1:35: 29:36:31:12:18:99:67:3f:f7:43:59:3c:fd:52:e3:4a:10:f4: cb:ed:9b:21:cd:58:90:49:6d:91:43:a7:5b:37:31:90:3e:cc: d8:02:9a:df:55:c5:e5:40:b4:d2:af:ea:7d:bf:d5:74:94:29: a9:a0:2f:54:e2:5c:55:bc:25:3c:41:4b:67:f8:87:ba:a7:63: f1:96:00:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjQwNDE4MTAyMTA1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIwZjQxMC1jZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOSZzP3mV/ldGGY1IVNUcN42/VFJmV6vnZaQvO7gTfvFRzk+60tOfCP2oipf htgDW4lJpfZ9dDmYD23d3b9Yv1aDB12EhRbMQNGyM8hdZxjrKzvYT7ZUidCS/qT9 IJIylZai3+jS+t6qlaDgKwiyTX6lsW3vV324sZleRtqglO4KG2gVwQWAd8NVvCnH mR9gZTA+/jJY0L5WZzKW76V6nRbS8CCnuubub26vEoGNsuL38T01atev8BEK1+X0 qA2Lv74zkrRq8mdAGb5/mG8o9d4y/Uv3LSXlPSCptnK+uMDjquTp2rJ/7gChDOMp 13jVHm9ai2f32QsL7lGPpe4rMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMdUr1+V CHmlFZ1VLu7uW8eLKuIiMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvNUNEQjI0MDJG RDZEMTFFRTk1MURFNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLG+IwDQYJKoZIhvcNAQELBQADggEBALOuah+Ox9JVWooU hDJLIK3H417VGCdRHFhBOpV7iq35MzJvH81K438hUi0RkBxifQ/94tb2LH6poHzW 2XV6lAMLD83rl/y5ViDjOc77iIanrFMizbJyN0M3B6IM7ZIQJylmcgzfT43Md+99 v+lQ1oylhfDOnDc1OQYsVjavUlwSg6DYJ7RSRu11nq/TeRdHnnix18tJiDfHv9sC lOb7zCK69i/9p+Dd0B9i+tUILkfvQw7RNSk2MRIYmWc/90NZPP1S40oQ9MvtmyHN WJBJbZFDp1s3MZA+zNgCmt9VxeVAtNKv6n2/1XSUKamgL1TiXFW8JTxBS2f4h7qn Y/GWAAk= -----END CERTIFICATE-----Generated at Wed May 1 00:35:51 2024 by rpki-client on console-ams.rpki-client.org