$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa File: B390F78E5CB611EE97D70B78C4F9AE02.roa (raw, json) Hash identifier: zorl3bhT2t8kjQkDKO0Jc1GFbzSjIhooaYDJGOfO/go= Subject key identifier: C5:E5:6A:A6:81:17:1C:18:28:DB:23:47:1C:CF:52:A4:0E:53:91:F9 Certificate issuer: /CN=A91CFC1C/serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Certificate serial: 07 Authority key identifier: 36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa Signing time: Tue 26 Sep 2023 21:50:26 +0000 ROA not before: Tue 26 Sep 2023 21:50:26 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58421 IP address blocks: 202.49.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 06:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFC1C/serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Validity Not Before: Sep 26 21:50:26 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65135222-de39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:80:a0:da:d9:a6:ba:59:19:5c:af:71:c7:88: 00:b9:fd:4f:59:45:9b:a3:fa:ef:b7:02:9e:7a:b3: 1c:12:c1:65:6a:54:0c:d7:d4:84:90:90:cc:59:99: 30:4e:17:66:e5:94:e9:85:a0:18:ff:41:6a:12:3e: 3b:b6:82:53:7f:db:1b:34:41:66:31:ac:87:5c:2d: f0:f6:19:c2:6d:e9:4e:5f:e9:b9:d5:de:37:f8:d9: 9b:ad:c5:67:6c:e3:6b:63:08:70:74:3c:14:95:1b: 1f:eb:86:52:ae:1a:ee:0f:e9:a7:bd:fb:ad:cc:b6: 38:35:d9:27:d1:42:24:26:3c:7f:a6:31:32:4e:89: e7:d0:42:f1:f4:45:97:6e:2e:2e:14:66:44:83:35: 4e:2a:a5:5f:d3:ac:ce:ad:9f:e0:35:af:a9:d3:9d: 0d:e6:34:b8:b3:28:36:65:8a:fe:53:c5:95:dc:88: c8:ce:8c:62:43:28:7c:7c:f4:ad:bb:00:76:2b:43: 1f:b0:80:2a:3d:b8:02:81:4b:a0:cb:29:f5:19:9d: 62:60:f3:d9:8d:b2:c0:46:6d:fa:cc:b2:4d:58:2e: 4e:99:c7:61:55:1d:4e:93:e8:19:d8:75:13:e2:e9: 39:be:28:4b:74:fc:c7:68:01:02:7c:96:fe:2b:97: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E5:6A:A6:81:17:1C:18:28:DB:23:47:1C:CF:52:A4:0E:53:91:F9 X509v3 Authority Key Identifier: keyid:36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.208.0/21 Signature Algorithm: sha256WithRSAEncryption 09:29:9b:d7:e2:fa:68:54:b0:c1:40:1e:88:a4:4c:00:c8:ad: 1f:b3:f2:3d:46:bf:37:95:a8:d9:e8:5c:d9:90:9c:7e:75:8a: 88:9b:65:b8:70:1b:a1:25:4a:fe:86:f2:af:44:35:e6:00:27: bf:a2:77:79:34:db:30:04:d1:54:6a:87:a2:15:42:0f:6f:43: f2:8b:0e:ec:ef:07:ea:b5:eb:fa:c2:04:8b:7c:f0:d7:b7:ed: 28:99:6f:e9:3c:20:1c:ad:d2:2f:90:a2:c7:b0:15:ef:78:84: 61:5d:e4:3a:6e:0c:d8:77:00:d7:0e:a8:63:5d:6f:88:4c:59: 08:58:24:31:e6:c8:75:56:38:ba:5c:e3:c2:3b:4e:67:66:3e: d4:32:98:8e:0d:4d:01:83:db:53:47:f8:be:c3:18:59:b6:2e: 9c:2e:84:2b:90:0a:d9:14:4d:47:07:2a:21:d1:3e:a6:60:9e: 17:dc:cb:e3:5d:b8:6f:b8:52:f5:0d:2b:fc:f1:f7:61:f7:a3: ab:12:08:f4:0f:6f:fd:da:17:45:5f:fb:bc:98:d9:11:f2:11: ab:9c:51:71:e4:6c:ed:7f:41:92:23:ad:03:c7:b6:b4:4e:45: b2:d4:a4:c0:55:f0:67:cb:90:66:56:16:ff:fd:a2:74:f1:36: a3:3e:ba:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkMxQzExMC8GA1UEBRMoMzY0NUNEOTBFM0Y0M0MwMTJEQUIzQkYzOTcyRTg2QkM5 NERERDQ1NDAeFw0yMzA5MjYyMTUwMjZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTM1MjIyLWRlMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGgKDa2aa6WRlcr3HHiAC5/U9ZRZuj+u+3Ap56sxwSwWVqVAzX1ISQkMxZmTBO F2bllOmFoBj/QWoSPju2glN/2xs0QWYxrIdcLfD2GcJt6U5f6bnV3jf42ZutxWds 42tjCHB0PBSVGx/rhlKuGu4P6ae9+63Mtjg12SfRQiQmPH+mMTJOiefQQvH0RZdu Li4UZkSDNU4qpV/TrM6tn+A1r6nTnQ3mNLizKDZliv5TxZXciMjOjGJDKHx89K27 AHYrQx+wgCo9uAKBS6DLKfUZnWJg89mNssBGbfrMsk1YLk6Zx2FVHU6T6BnYdRPi 6Tm+KEt0/MdoAQJ8lv4rl7pVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxeVqpoEX HBgo2yNHHM9SpA5TkfkwHwYDVR0jBBgwFoAUNkXNkOP0PAEtqzvzly6GvJTd1FQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQzFDLzNDMTQyQjE2NTdG RTExRUVBQTU1MzA2MEM0RjlBRTAyL05rWE5rT1AwUEFFdHF6dnpseTZHdkpUZDFG US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmtYTmtPUDBQQUV0cXp2emx5Nkd2SlRkMUZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkMxQy8zQzE0MkIxNjU3RkUxMUVFQUE1NTMwNjBDNEY5QUUwMi9CMzkwRjc4RTVD QjYxMUVFOTdENzBCNzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8ox0DANBgkqhkiG9w0BAQsFAAOCAQEACSmb1+L6aFSwwUAe iKRMAMitH7PyPUa/N5Wo2ehc2ZCcfnWKiJtluHAboSVK/obyr0Q15gAnv6J3eTTb MATRVGqHohVCD29D8osO7O8H6rXr+sIEi3zw17ftKJlv6TwgHK3SL5Cix7AV73iE YV3kOm4M2HcA1w6oY11viExZCFgkMebIdVY4ulzjwjtOZ2Y+1DKYjg1NAYPbU0f4 vsMYWbYunC6EK5AK2RRNRwcqIdE+pmCeF9zL4124b7hS9Q0r/PH3YfejqxII9A9v /doXRV/7vJjZEfIRq5xRceRs7X9BkiOtA8e2tE5FstSkwFXwZ8uQZlYW//2idPE2 oz66nw== -----END CERTIFICATE-----Generated at Tue Jun 25 07:06:33 2024 by rpki-client on console-fra.rpki-client.org