$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/25ED44B41EE411EFA62B1335C4F9AE02.roa File: 25ED44B41EE411EFA62B1335C4F9AE02.roa (raw, json) Hash identifier: yYgtDAeJ69GvfRCqyHXz48nXP8uRHB56oa+sMfYurxw= Subject key identifier: EE:06:B2:DD:C9:D4:33:E2:6B:ED:F9:E7:FB:02:92:DF:8F:1F:1B:3B Certificate issuer: /CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Certificate serial: 02 Authority key identifier: E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/25ED44B41EE411EFA62B1335C4F9AE02.roa Signing time: Fri 31 May 2024 00:24:31 +0000 ROA not before: Fri 31 May 2024 00:24:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 202013 IP address blocks: 203.56.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Validity Not Before: May 31 00:24:31 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=665918bf-d60f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:15:57:28:29:48:91:94:db:80:00:ec:6c:d7: 91:0a:b6:9c:92:f6:ba:0b:5a:8a:0e:39:9f:4d:fc: 97:62:dc:3e:64:1a:12:07:cf:84:67:fc:57:10:c0: 67:49:01:19:6c:a1:f0:4f:4f:60:43:5e:fd:21:a7: a0:52:c4:b6:ad:aa:65:fa:56:5d:22:46:f9:3e:99: d5:cc:e2:4b:c3:ea:50:a0:bd:92:26:2a:ef:da:a1: 65:7a:3f:c5:8b:ea:3e:d5:61:7a:b1:0e:cd:ad:34: 1a:97:13:cd:69:d6:2d:03:c0:47:ef:b8:06:10:32: 88:e5:55:fc:03:64:87:8d:ac:5b:b9:99:8b:58:f8: 71:cb:f8:34:aa:5c:69:3a:d8:64:04:c1:fb:1f:e4: 05:ee:11:ba:24:d4:2c:4f:b1:66:b1:e0:1c:b4:46: 74:4b:4a:99:77:fc:3c:89:6b:e7:37:c3:43:bd:e7: 5f:10:1d:f8:bd:b8:7a:0a:1e:08:4c:5c:0e:52:4c: 51:c5:50:19:37:49:e0:11:9c:21:4e:94:4d:20:b6: 88:e5:12:52:e0:73:15:80:ef:03:dd:85:20:ed:63: c1:c0:b3:82:a8:c5:13:5c:87:5c:bb:3a:ed:36:8d: a2:7a:21:89:90:d3:d4:b6:c1:c8:3d:8a:b6:0d:50: fb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:06:B2:DD:C9:D4:33:E2:6B:ED:F9:E7:FB:02:92:DF:8F:1F:1B:3B X509v3 Authority Key Identifier: keyid:E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/25ED44B41EE411EFA62B1335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.81.0/24 Signature Algorithm: sha256WithRSAEncryption 61:8c:4d:51:17:c5:02:cd:ae:21:31:04:f4:68:2f:ff:30:c2: 85:04:fb:f6:df:b2:19:c4:f0:fa:05:6d:c5:a1:5b:fe:3e:9f: 85:de:f0:f0:6d:69:e8:2d:f2:63:29:39:27:53:84:11:60:f5: 4c:e3:81:aa:f2:79:1d:2e:c3:29:9c:ec:6c:bb:31:dd:46:cb: 71:71:2f:4f:fd:20:25:e8:16:43:5c:71:51:2a:1f:55:fb:fb: 5e:44:c3:82:a7:da:39:f4:40:3c:26:89:b0:c6:96:fb:23:ff: 54:bb:a5:4a:6a:f9:37:22:42:95:3e:85:3d:d0:49:2b:44:5f: 0f:8a:fc:6a:f0:bf:cf:09:c8:07:fe:2a:34:7a:c8:8a:1f:98: 92:bb:14:9c:78:99:1b:2a:e6:ca:29:16:03:0a:ac:9c:17:42: 2c:ba:64:f2:f2:ef:d7:fe:c1:db:45:a2:e4:a1:29:74:b4:92: 8e:74:96:9c:a8:39:96:11:51:f3:2c:56:95:14:b5:92:27:a1: ee:20:36:41:bb:a7:d5:62:08:6e:2d:85:24:6f:53:e2:db:c9: c2:38:48:ad:3a:9b:88:94:10:71:26:5b:17:fa:d6:21:2b:b6: cb:85:a4:64:3e:d4:4c:fd:8d:0e:27:f0:d4:74:eb:97:c8:9a: 39:77:8f:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QzcxMTExMC8GA1UEBRMoRTQyOUQ0MjlFNjZCNzk3QjNEOEExQ0JFMjQ5MTU3N0FE QzM4QTQ4RTAeFw0yNDA1MzEwMDI0MzFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTkxOGJmLWQ2MGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYFVcoKUiRlNuAAOxs15EKtpyS9roLWooOOZ9N/Jdi3D5kGhIHz4Rn/FcQwGdJ ARlsofBPT2BDXv0hp6BSxLatqmX6Vl0iRvk+mdXM4kvD6lCgvZImKu/aoWV6P8WL 6j7VYXqxDs2tNBqXE81p1i0DwEfvuAYQMojlVfwDZIeNrFu5mYtY+HHL+DSqXGk6 2GQEwfsf5AXuEbok1CxPsWax4By0RnRLSpl3/DyJa+c3w0O9518QHfi9uHoKHghM XA5STFHFUBk3SeARnCFOlE0gtojlElLgcxWA7wPdhSDtY8HAs4KoxRNch1y7Ou02 jaJ6IYmQ09S2wcg9irYNUPu5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7gay3cnU M+Jr7fnn+wKS348fGzswHwYDVR0jBBgwFoAU5CnUKeZreXs9ihy+JJFXetw4pI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDNzExL0M3RDFCMDU0MUVF MzExRUY5MEQyMTIzNEM0RjlBRTAyLzVDblVLZVpyZVhzOWloeS1KSkZYZXR3NHBJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUNuVUtlWnJlWHM5aWh5LUpKRlhldHc0cEk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzcxMS9DN0QxQjA1NDFFRTMxMUVGOTBEMjEyMzRDNEY5QUUwMi8yNUVENDRCNDFF RTQxMUVGQTYyQjEzMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMs4UTANBgkqhkiG9w0BAQsFAAOCAQEAYYxNURfFAs2uITEE 9Ggv/zDChQT79t+yGcTw+gVtxaFb/j6fhd7w8G1p6C3yYyk5J1OEEWD1TOOBqvJ5 HS7DKZzsbLsx3UbLcXEvT/0gJegWQ1xxUSofVfv7XkTDgqfaOfRAPCaJsMaW+yP/ VLulSmr5NyJClT6FPdBJK0RfD4r8avC/zwnIB/4qNHrIih+YkrsUnHiZGyrmyikW AwqsnBdCLLpk8vLv1/7B20Wi5KEpdLSSjnSWnKg5lhFR8yxWlRS1kieh7iA2Qbun 1WIIbi2FJG9T4tvJwjhIrTqbiJQQcSZbF/rWISu2y4WkZD7UTP2NDifw1HTrl8ia OXePmQ== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:32 2024 by rpki-client on console-fra.rpki-client.org