$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/D31AE166C92011EDB456FB72C4F9AE02.roa File: D31AE166C92011EDB456FB72C4F9AE02.roa (raw, json) Hash identifier: GAnumIiRmCLh007aW5B9KGyssfw0NgLo3NksPvf73Us= Subject key identifier: 56:5B:CE:B8:2F:AB:50:65:86:58:DD:B9:33:46:F3:AF:9E:5E:A8:FB Certificate issuer: /CN=A91CE28E/serialNumber=2F6138FE2DB94EF7E33EC083C6825B2A3197ACE6 Certificate serial: DB Authority key identifier: 2F:61:38:FE:2D:B9:4E:F7:E3:3E:C0:83:C6:82:5B:2A:31:97:AC:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2E4_i25TvfjPsCDxoJbKjGXrOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/D31AE166C92011EDB456FB72C4F9AE02.roa Signing time: Wed 03 Apr 2024 06:38:48 +0000 ROA not before: Wed 03 Apr 2024 06:38:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.37.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/L2E4_i25TvfjPsCDxoJbKjGXrOY.crl rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/L2E4_i25TvfjPsCDxoJbKjGXrOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2E4_i25TvfjPsCDxoJbKjGXrOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE28E/serialNumber=2F6138FE2DB94EF7E33EC083C6825B2A3197ACE6 Validity Not Before: Apr 3 06:38:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660cf978-363c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:91:bb:88:c2:f8:a3:2f:04:d6:b3:63:af:c8: 2b:a1:74:16:07:1b:42:d3:a5:6b:74:c6:66:5f:0c: 32:e5:dc:a6:15:3a:74:ae:fa:fd:89:44:d2:0c:a6: 40:14:15:51:87:65:f5:8d:d3:20:a1:1e:eb:5d:aa: 8e:27:af:9a:18:bf:ca:32:af:08:9f:08:4b:cd:14: e6:5f:6a:d8:9a:16:4b:ae:2e:ec:eb:7d:c1:58:8d: df:9c:71:ec:e8:7a:81:7c:ed:60:7a:4f:b4:05:93: b8:23:f9:99:fb:a9:0a:7f:1d:46:fa:81:f8:d3:ff: c1:d6:93:da:a5:25:0c:33:ad:61:23:86:3b:3d:99: a6:48:cb:79:df:79:2a:09:a2:ca:60:bc:31:aa:1b: e2:f7:6c:72:e3:c8:5d:46:17:f2:79:c2:df:d1:6e: ba:42:fe:9f:ab:e9:d9:b8:63:8f:fd:91:4a:ff:e9: b3:c6:21:8d:65:9e:7c:fd:ba:30:9b:a6:0d:6e:3d: 59:45:61:93:f9:a6:e8:3b:14:a6:dd:96:2d:31:87: 81:95:99:56:b2:d6:f8:a9:f5:09:0f:77:ac:e3:eb: cd:51:21:1f:04:6a:b4:45:46:64:df:41:e3:dc:c2: 0b:7e:d2:46:e4:b3:50:b9:2e:8e:d1:3a:46:8c:68: e5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5B:CE:B8:2F:AB:50:65:86:58:DD:B9:33:46:F3:AF:9E:5E:A8:FB X509v3 Authority Key Identifier: keyid:2F:61:38:FE:2D:B9:4E:F7:E3:3E:C0:83:C6:82:5B:2A:31:97:AC:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/L2E4_i25TvfjPsCDxoJbKjGXrOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2E4_i25TvfjPsCDxoJbKjGXrOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/D31AE166C92011EDB456FB72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.72.0/24 Signature Algorithm: sha256WithRSAEncryption 38:f9:18:d0:46:1f:0f:5b:58:03:f3:13:0c:6d:de:35:00:ab: 3c:81:79:70:d0:7f:d0:de:a6:7d:52:92:a6:8c:30:b0:f8:9f: 69:69:5c:1d:08:b9:6d:ee:36:55:8c:11:6d:60:e5:14:d1:2d: 1f:6a:87:8d:6b:d8:82:73:3c:f5:5e:c5:fe:ee:e1:75:7e:ef: c1:39:f5:94:20:0b:ee:d9:81:0c:6d:9e:41:5a:2c:e7:cb:c4: e0:ef:38:9e:57:1e:f6:c3:4c:13:00:cc:40:3b:ed:92:1c:d3: fb:69:9d:5c:89:69:ae:8b:ea:11:1d:de:66:4f:07:b3:d7:2d: 64:09:52:8d:68:8a:89:a2:2b:8a:66:9f:ff:9a:97:c3:0e:65: 99:74:f2:82:43:2e:73:e1:7c:bd:76:40:c0:13:41:f7:b0:2a: d0:ee:0f:bb:ce:64:30:62:9c:9f:b8:68:1f:4e:41:4e:96:6f: 47:78:f0:5b:e8:c1:84:a7:d6:39:07:47:9a:b0:21:e2:a7:dc: dc:76:55:2e:ef:aa:e5:c3:04:8d:bd:83:17:d7:e8:7b:6e:d9: f9:80:eb:a6:a9:fa:90:01:e5:be:02:16:8a:21:11:da:ed:e5: f6:d8:4f:ad:70:e5:f5:9f:23:fe:6b:84:88:f5:00:f3:bf:eb: ee:c4:62:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyOEUxMTAvBgNVBAUTKDJGNjEzOEZFMkRCOTRFRjdFMzNFQzA4M0M2ODI1QjJB MzE5N0FDRTYwHhcNMjQwNDAzMDYzODQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZjk3OC0zNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZG7iML4oy8E1rNjr8groXQWBxtC06VrdMZmXwwy5dymFTp0rvr9iUTSDKZA FBVRh2X1jdMgoR7rXaqOJ6+aGL/KMq8InwhLzRTmX2rYmhZLri7s633BWI3fnHHs 6HqBfO1gek+0BZO4I/mZ+6kKfx1G+oH40//B1pPapSUMM61hI4Y7PZmmSMt533kq CaLKYLwxqhvi92xy48hdRhfyecLf0W66Qv6fq+nZuGOP/ZFK/+mzxiGNZZ58/bow m6YNbj1ZRWGT+aboOxSm3ZYtMYeBlZlWstb4qfUJD3es4+vNUSEfBGq0RUZk30Hj 3MILftJG5LNQuS6O0TpGjGjlGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZbzrgv q1BlhljduTNG86+eXqj7MB8GA1UdIwQYMBaAFC9hOP4tuU734z7Ag8aCWyoxl6zm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4RS9EREVBNzI3NEI3 M0IxMUVEOTE2Mzk0ODNDNEY5QUUwMi9MMkU0X2kyNVR2ZmpQc0NEeG9KYktqR1hy T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wyRTRfaTI1VHZmalBzQ0R4b0piS2pHWHJPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UyOEUvRERFQTcyNzRCNzNCMTFFRDkxNjM5NDgzQzRGOUFFMDIvRDMxQUUxNjZD OTIwMTFFREI0NTZGQjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJUgwDQYJKoZIhvcNAQELBQADggEBADj5GNBGHw9bWAPz Ewxt3jUAqzyBeXDQf9Depn1SkqaMMLD4n2lpXB0IuW3uNlWMEW1g5RTRLR9qh41r 2IJzPPVexf7u4XV+78E59ZQgC+7ZgQxtnkFaLOfLxODvOJ5XHvbDTBMAzEA77ZIc 0/tpnVyJaa6L6hEd3mZPB7PXLWQJUo1oiomiK4pmn/+al8MOZZl08oJDLnPhfL12 QMATQfewKtDuD7vOZDBinJ+4aB9OQU6Wb0d48FvowYSn1jkHR5qwIeKn3Nx2VS7v quXDBI29gxfX6Htu2fmA66ap+pAB5b4CFoohEdrt5fbYT61w5fWfI/5rhIj1APO/ 6+7EYoY= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org