$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa File: 40DFD5AC650711EFB94FD44FC4F9AE02.roa (raw, json) Hash identifier: 7lbO8FJw1G5XebxqgjyAycbRZnwkoSKxE4lbb1qM6S8= Subject key identifier: 75:BC:9A:B9:A5:FD:30:3C:A2:0C:7A:98:8C:68:D4:F4:A3:4E:7E:4A Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 3488 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa Signing time: Wed 04 Sep 2024 14:50:29 +0000 ROA not before: Wed 04 Sep 2024 14:50:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131293 IP address blocks: 203.113.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13448 (0x3488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 4 14:50:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d873b4-6680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b4:81:59:1c:3b:cb:34:77:07:f6:28:8b:65: 43:de:d0:d9:d3:ea:be:d9:5c:0b:71:dd:cc:fc:f4: 1b:91:2c:2d:33:6c:ba:b6:75:76:d9:90:15:b8:e5: 07:d2:21:6e:e9:5a:98:86:b0:8b:b4:ee:97:8e:14: 38:20:71:c5:60:6f:b5:cc:be:90:ca:f8:e7:29:7e: e1:da:1a:89:97:d1:15:24:31:83:28:50:95:03:26: c1:1b:57:37:e8:51:bb:c9:dc:7e:fc:7b:0f:28:bc: 0e:a3:27:43:d0:83:7d:f8:4d:51:ab:54:d4:64:d2: ca:31:e4:a8:fe:b5:f2:bf:27:93:ad:a8:d5:3b:b3: 87:71:4e:68:15:e4:88:a4:e2:c1:f5:45:30:80:48: c8:d8:05:46:34:c3:ff:19:35:19:9d:44:45:38:5b: 23:a5:82:3c:91:1c:cd:85:d7:b6:35:07:ef:8d:66: 00:7c:19:d1:38:c9:44:e2:06:1a:42:60:cf:8b:cd: e6:64:6d:fe:a5:85:d2:ff:79:91:79:90:b1:c4:8c: a1:26:f1:a2:e5:eb:a4:bc:2b:c5:46:63:07:51:7c: a5:f1:ff:76:a0:2b:83:8e:8e:b1:91:fb:2a:c9:3e: 85:a1:60:8c:67:ae:c4:e1:05:eb:3f:b3:07:88:fb: d8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BC:9A:B9:A5:FD:30:3C:A2:0C:7A:98:8C:68:D4:F4:A3:4E:7E:4A X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.113.124.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:c5:3c:9a:8f:e6:fc:47:e3:a9:40:14:61:f1:1d:7d:3c:b5: 3a:18:fb:43:5e:bc:7a:4c:27:50:ad:65:b9:23:a6:22:3f:a5: 2e:55:1f:70:74:c3:1e:29:00:01:53:7c:8b:e9:0e:48:7e:5a: 11:1c:da:67:de:d5:c2:5e:6a:3e:b9:ed:54:18:02:46:66:54: 60:86:80:e8:a8:30:02:67:1b:f3:51:a8:1e:a5:0a:1f:4e:e8: 91:b8:92:6e:13:e4:5e:eb:c0:31:d0:78:38:76:1a:2f:ab:3d: 6d:b7:b9:3f:82:0b:5d:55:8a:f2:cd:a5:5f:01:7b:29:61:ac: 7f:45:22:90:8b:52:8d:99:52:0f:18:30:86:ef:61:c6:b6:cf: cd:63:2d:57:f1:e8:89:f5:44:87:2c:07:10:66:a3:98:55:02: e8:fd:2d:2d:07:47:6b:d7:db:03:ef:5a:47:72:a2:8b:ba:94: 83:b9:1d:2a:73:aa:5c:df:43:e8:ec:6e:8d:e9:c7:d3:17:c8: 58:6b:d1:72:10:83:96:22:fd:d8:51:4d:7a:87:07:52:96:1b: c8:ba:a2:27:86:21:5d:26:51:c8:2c:cf:49:c9:b0:06:9b:13: 9e:31:6a:91:6d:59:18:df:9f:19:4e:26:d4:41:a8:97:f0:8a: 2e:57:fa:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjQwOTA0MTQ1MDI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4NzNiNC02NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbSBWRw7yzR3B/Yoi2VD3tDZ0+q+2VwLcd3M/PQbkSwtM2y6tnV22ZAVuOUH 0iFu6VqYhrCLtO6XjhQ4IHHFYG+1zL6QyvjnKX7h2hqJl9EVJDGDKFCVAybBG1c3 6FG7ydx+/HsPKLwOoydD0IN9+E1Rq1TUZNLKMeSo/rXyvyeTrajVO7OHcU5oFeSI pOLB9UUwgEjI2AVGNMP/GTUZnURFOFsjpYI8kRzNhde2NQfvjWYAfBnROMlE4gYa QmDPi83mZG3+pYXS/3mReZCxxIyhJvGi5eukvCvFRmMHUXyl8f92oCuDjo6xkfsq yT6FoWCMZ67E4QXrP7MHiPvYZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHW8mrml /TA8ogx6mIxo1PSjTn5KMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvNDBERkQ1QUM2 NTA3MTFFRkI5NEZENDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLcXwwDQYJKoZIhvcNAQELBQADggEBAJ7FPJqP5vxH46lA FGHxHX08tToY+0NevHpMJ1CtZbkjpiI/pS5VH3B0wx4pAAFTfIvpDkh+WhEc2mfe 1cJeaj657VQYAkZmVGCGgOioMAJnG/NRqB6lCh9O6JG4km4T5F7rwDHQeDh2Gi+r PW23uT+CC11VivLNpV8BeylhrH9FIpCLUo2ZUg8YMIbvYca2z81jLVfx6In1RIcs BxBmo5hVAuj9LS0HR2vX2wPvWkdyoou6lIO5HSpzqlzfQ+jsbo3px9MXyFhr0XIQ g5Yi/dhRTXqHB1KWG8i6oieGIV0mUcgsz0nJsAabE54xapFtWRjfnxlOJtRBqJfw ii5X+lY= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org