$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa File: FF1FE402898011EEB3403779C4F9AE02.roa (raw, json) Hash identifier: mgOPaRRwFXzAst0ljMiYc+D8an6Y3Tl3mAV8plK7S+Y= Subject key identifier: 92:C0:84:F0:71:C5:EB:65:EF:10:8A:0B:0D:B4:2D:6A:84:3F:D6:3F Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 03 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa Signing time: Wed 22 Nov 2023 21:49:23 +0000 ROA not before: Wed 22 Nov 2023 21:49:23 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 152106 IP address blocks: 202.36.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Nov 22 21:49:23 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=655e7762-4d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2c:2f:7a:5c:0e:c8:20:29:63:99:0e:90:36: 72:7b:ec:53:ac:e4:8d:b7:26:ab:4e:bb:64:64:a2: bf:e8:6e:a8:da:75:5a:17:07:06:34:d1:85:e7:61: 16:56:bc:76:44:81:07:1f:81:48:27:72:1f:49:e4: dd:3b:d9:cf:1e:e5:72:4e:48:e3:9a:77:d3:3e:05: 4b:56:83:79:2c:9a:cb:7b:44:bd:cc:e5:f0:ae:34: 4f:e1:92:46:8f:99:34:63:18:b4:2a:f7:68:04:a8: 14:e3:9d:38:ea:26:86:c2:8f:38:62:07:7d:f3:c0: 28:a7:e9:e5:72:35:8d:7d:71:e7:b8:73:d0:63:21: fd:e2:ec:9f:f1:0b:66:89:67:dc:2e:ec:2e:e8:31: 65:7b:ab:7b:f0:99:d9:b8:53:b7:9f:f6:88:5b:7a: 22:f1:17:c9:51:0e:73:a6:d6:e6:c3:81:fb:3c:cb: e7:23:6c:40:4b:22:92:b7:d8:20:b6:a8:00:a3:d7: c4:71:e6:9b:76:89:b0:5c:e2:19:13:2d:80:07:4f: 5b:c9:f5:f2:e9:8d:96:6a:de:48:29:41:31:1b:a9: 5d:2d:15:75:c6:20:9f:c6:66:41:d5:c4:51:84:24: 5e:fe:0d:48:fd:42:51:bb:f7:fe:f8:a0:b2:fe:c5: fc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C0:84:F0:71:C5:EB:65:EF:10:8A:0B:0D:B4:2D:6A:84:3F:D6:3F X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.228.0/24 Signature Algorithm: sha256WithRSAEncryption 40:55:24:40:c4:e6:58:a9:82:77:83:74:58:1b:47:8e:17:10: 6d:11:0b:b7:e8:70:6f:6f:6e:a1:b7:44:a0:ed:3e:ac:7d:70: 6e:eb:bd:ed:da:7c:67:06:81:b1:ed:e3:48:96:ef:7f:a3:1f: 56:d9:a2:ae:b8:fe:7c:5c:5b:49:65:60:cd:92:97:75:cb:ca: 10:04:09:7e:df:7a:af:07:91:17:2c:66:ab:39:2f:b3:d3:01: df:d5:09:9c:5b:28:4f:96:f5:4b:59:97:d2:be:c6:50:64:8d: ec:d7:41:6c:74:79:6e:b1:a4:12:8c:37:79:63:66:04:dc:86: 54:5e:03:0d:49:7b:55:4b:d3:08:94:13:5d:6d:e8:77:0f:75: 0e:40:b3:2f:42:de:c5:43:2a:07:21:09:4b:75:3e:c6:8a:70: d7:c2:19:c9:16:87:50:5c:ce:eb:00:0f:a4:c2:63:71:77:6c: f8:3e:73:bd:ad:ea:05:57:d0:5f:d2:45:69:79:21:1d:20:66: dd:e6:7e:86:d0:e6:40:e2:35:80:50:d0:12:f0:6f:d8:97:76: a4:b4:58:68:90:9a:56:67:f9:73:a6:12:18:d4:b5:be:52:d4: c5:82:7a:0a:8e:94:35:96:ae:ba:e1:90:de:c4:93:f7:5a:95: 96:27:bb:59 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTUyNDExMC8GA1UEBRMoNjM3OTAyRTFCQTk2ODgxRDQ3MkVFQ0FERkE0NUI1NTc3 RTNDMUMzMTAeFw0yMzExMjIyMTQ5MjNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWU3NzYyLTRkMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjLC96XA7IICljmQ6QNnJ77FOs5I23JqtOu2Rkor/obqjadVoXBwY00YXnYRZW vHZEgQcfgUgnch9J5N072c8e5XJOSOOad9M+BUtWg3ksmst7RL3M5fCuNE/hkkaP mTRjGLQq92gEqBTjnTjqJobCjzhiB33zwCin6eVyNY19cee4c9BjIf3i7J/xC2aJ Z9wu7C7oMWV7q3vwmdm4U7ef9ohbeiLxF8lRDnOm1ubDgfs8y+cjbEBLIpK32CC2 qACj18Rx5pt2ibBc4hkTLYAHT1vJ9fLpjZZq3kgpQTEbqV0tFXXGIJ/GZkHVxFGE JF7+DUj9QlG79/74oLL+xfzbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUksCE8HHF 62XvEIoLDbQtaoQ/1j8wHwYDVR0jBBgwFoAUY3kC4bqWiB1HLuyt+kW1V348HDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNTI0LzBDMkMyQkQ2ODhD NTExRUVBODMxMUM3MUM0RjlBRTAyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTNrQzRicVdpQjFITHV5dC1rVzFWMzQ4SERFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9GRjFGRTQwMjg5 ODAxMUVFQjM0MDM3NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMok5DANBgkqhkiG9w0BAQsFAAOCAQEAQFUkQMTmWKmCd4N0 WBtHjhcQbRELt+hwb29uobdEoO0+rH1wbuu97dp8ZwaBse3jSJbvf6MfVtmirrj+ fFxbSWVgzZKXdcvKEAQJft96rweRFyxmqzkvs9MB39UJnFsoT5b1S1mX0r7GUGSN 7NdBbHR5brGkEow3eWNmBNyGVF4DDUl7VUvTCJQTXW3odw91DkCzL0LexUMqByEJ S3U+xopw18IZyRaHUFzO6wAPpMJjcXds+D5zva3qBVfQX9JFaXkhHSBm3eZ+htDm QOI1gFDQEvBv2Jd2pLRYaJCaVmf5c6YSGNS1vlLUxYJ6Co6UNZauuuGQ3sST91qV lie7WQ== -----END CERTIFICATE-----Generated at Sun Jun 9 08:55:08 2024 by rpki-client on console-ams.rpki-client.org