$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/F0E906D6046C11EFBDB55E14C4F9AE02.roa File: F0E906D6046C11EFBDB55E14C4F9AE02.roa (raw, json) Hash identifier: +EvIAKSVcLLKRH7JM7c6If3efy9mrsYAMLXqlQEuIUY= Subject key identifier: 58:27:05:07:42:F8:7A:0C:A3:B4:3B:3A:19:DA:EE:6B:DD:81:55:3E Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 026A Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/F0E906D6046C11EFBDB55E14C4F9AE02.roa Signing time: Sat 27 Apr 2024 08:05:42 +0000 ROA not before: Sat 27 Apr 2024 08:05:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138415 IP address blocks: 203.114.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Apr 27 08:05:42 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=662cb1d5-7dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:fe:95:13:73:e5:53:f7:70:b7:4e:46:70: 5e:d0:11:ac:5f:0e:d6:66:16:86:e7:fa:cb:b4:00: e5:54:68:ea:de:9b:dd:18:85:44:26:7b:ef:b7:cd: 9f:cf:9c:f3:3c:cd:1c:11:3f:04:d8:48:c0:a6:62: 8f:7c:d1:1a:30:11:03:58:9a:52:44:f0:70:c7:97: 9a:7b:81:b8:14:19:f0:b6:2d:a3:2f:f4:f5:91:44: 1e:a4:fb:58:d0:60:7d:e7:9c:a5:31:b2:b3:10:45: ef:11:a3:40:f7:37:96:cb:59:4d:76:0e:17:fd:cd: 84:d7:f9:d3:12:d6:35:01:86:6c:d8:54:03:b0:f0: f9:ed:4b:5b:31:fe:d3:c9:b8:55:ec:40:6f:68:ca: f3:27:b7:ef:f3:6a:71:d5:74:3e:31:f8:29:7e:49: 74:e2:30:cc:1a:52:83:94:d5:16:08:c6:43:ae:b7: 0e:87:df:c9:ce:2c:3f:b7:78:69:2e:61:2c:9b:a3: 70:1b:98:20:ac:42:1a:89:5f:2d:29:d9:af:55:92: 85:87:b6:15:71:50:13:c0:bd:c4:44:29:38:27:b2: 53:28:9c:d1:7c:3d:77:55:ee:51:6d:f6:76:15:20: ca:2a:b6:ef:28:73:99:b5:d4:76:e3:c1:7f:50:f0: a1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:27:05:07:42:F8:7A:0C:A3:B4:3B:3A:19:DA:EE:6B:DD:81:55:3E X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/F0E906D6046C11EFBDB55E14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.114.252.0/22 Signature Algorithm: sha256WithRSAEncryption 28:70:8a:b5:e7:60:b2:60:32:76:b3:2e:60:d9:e1:42:e7:82: b3:48:60:dd:4d:c2:48:60:dc:88:06:f1:e3:e3:e2:a7:27:54: 40:fa:f6:36:ed:93:be:3a:e9:65:5d:a0:16:3f:e2:29:32:46: e7:34:73:1d:1b:6e:f9:81:7e:10:62:cb:80:be:a2:db:5d:45: 40:a9:61:73:9d:97:1e:1f:11:a9:3a:88:78:79:9a:c1:65:81: c2:0f:01:38:6b:31:58:b9:5f:16:40:4c:1c:86:ea:69:15:09: 2e:f2:b3:b5:67:9d:7a:48:d5:e0:ae:40:e9:9d:e4:23:72:60: 1c:63:1c:4d:6a:78:df:d3:91:23:ab:ee:da:4e:f8:b0:a7:b9: e0:68:1c:c8:14:2a:82:c7:d7:47:7f:37:c5:dd:2e:8b:01:29: 2a:28:3e:3b:63:d6:1e:af:92:fd:4e:d2:a2:96:ca:0d:0a:c0: 61:4c:e2:16:d6:0b:fe:b0:2e:44:4f:45:ca:d1:a3:fb:90:3d: 54:f5:3e:a9:cf:32:e4:6d:59:6d:bf:e9:8c:a9:9b:40:52:96: fb:d0:45:4d:20:0f:8b:15:e3:93:dc:3e:14:00:e1:41:5a:b1: 4f:c5:e4:98:cf:bc:d5:17:2e:dc:e4:b0:9a:51:34:94:e9:1a: 67:02:6a:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjQwNDI3MDgwNTQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjYjFkNS03ZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrn+lRNz5VP3cLdORnBe0BGsXw7WZhaG5/rLtADlVGjq3pvdGIVEJnvvt82f z5zzPM0cET8E2EjApmKPfNEaMBEDWJpSRPBwx5eae4G4FBnwti2jL/T1kUQepPtY 0GB955ylMbKzEEXvEaNA9zeWy1lNdg4X/c2E1/nTEtY1AYZs2FQDsPD57UtbMf7T ybhV7EBvaMrzJ7fv82px1XQ+Mfgpfkl04jDMGlKDlNUWCMZDrrcOh9/Jziw/t3hp LmEsm6NwG5ggrEIaiV8tKdmvVZKFh7YVcVATwL3ERCk4J7JTKJzRfD13Ve5RbfZ2 FSDKKrbvKHOZtdR248F/UPChAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgnBQdC +HoMo7Q7Ohna7mvdgVU+MB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2QzUvRTgyNjYwMjBDNkMwMTFFQzhBQjc1NTNGQzRGOUFFMDIvRjBFOTA2RDYw NDZDMTFFRkJEQjU1RTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLcvwwDQYJKoZIhvcNAQELBQADggEBAChwirXnYLJgMnaz LmDZ4ULngrNIYN1Nwkhg3IgG8ePj4qcnVED69jbtk7466WVdoBY/4ikyRuc0cx0b bvmBfhBiy4C+ottdRUCpYXOdlx4fEak6iHh5msFlgcIPAThrMVi5XxZATByG6mkV CS7ys7VnnXpI1eCuQOmd5CNyYBxjHE1qeN/TkSOr7tpO+LCnueBoHMgUKoLH10d/ N8XdLosBKSooPjtj1h6vkv1O0qKWyg0KwGFM4hbWC/6wLkRPRcrRo/uQPVT1PqnP MuRtWW2/6Yypm0BSlvvQRU0gD4sV45PcPhQA4UFasU/F5JjPvNUXLtzksJpRNJTp GmcCak8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:05 2024 by rpki-client on console-fra.rpki-client.org