$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa File: AE9742429B5711EB8E3BEB19C4F9AE02.roa (raw, json) Hash identifier: L3UG8gL8J7aKAeycb8PsA3dBmQsih+G0FiTvQ7phQ3U= Subject key identifier: 9B:51:7E:26:C7:54:E2:C8:96:6C:39:8C:9E:BF:5D:98:F9:CC:F8:A4 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DBE Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:47 +0000 ROA not before: Thu 28 Dec 2023 18:56:47 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 2706 IP address blocks: 202.64.63.0/24 maxlen: 24 202.64.111.0/24 maxlen: 24 202.64.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3518 (0xdbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:47 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4ee-1a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d4:2c:e9:9c:38:72:53:95:27:1d:c9:ec:ac: 22:23:36:8d:08:4a:66:36:5e:0a:f3:30:59:26:d8: 16:3e:31:44:ac:74:ad:2d:0f:5b:4e:54:a6:a7:f9: 36:b4:ff:c7:23:ce:39:4b:3c:87:72:af:bd:69:67: ed:f7:8e:a3:9b:fb:d7:9f:82:81:c0:fa:a1:2f:f7: dd:e1:68:e1:11:ba:1e:d5:b4:75:0d:6e:99:d0:f2: 62:c4:da:dd:ae:ee:0d:d5:9f:6f:63:d3:f8:80:ef: 30:4b:a9:04:de:d9:53:b6:b9:16:70:ce:18:27:fc: 38:96:bc:e4:9b:42:0f:c1:ec:cf:eb:fc:17:62:23: 2e:a6:48:21:b4:cc:0f:37:c5:e0:ec:2c:52:90:85: 40:18:54:f9:8b:9d:d1:86:5f:9e:6d:71:b3:0d:bc: 42:52:71:24:49:0f:c7:1e:a5:70:52:7b:3f:b6:ab: 28:0b:94:90:0b:05:29:c5:cf:e5:e8:ab:ab:54:aa: 00:e3:fc:00:a4:db:35:9c:e4:48:03:53:fa:79:15: 64:94:69:9c:8c:8e:79:12:ae:9f:69:0c:10:9a:a6: 1e:dd:36:26:1d:0e:1d:2f:42:4f:16:82:d8:1c:4c: 6c:76:02:0e:bb:38:d5:ab:2f:6a:b2:2b:b5:e2:8f: de:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:51:7E:26:C7:54:E2:C8:96:6C:39:8C:9E:BF:5D:98:F9:CC:F8:A4 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/AE9742429B5711EB8E3BEB19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.64.63.0/24 202.64.111.0/24 202.64.131.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:b2:be:13:89:34:26:e1:5d:9c:ad:06:b7:a2:87:c2:f1:4b: 43:fc:02:04:a0:36:07:ff:07:bc:bc:23:6a:ff:ee:f2:66:1e: 76:7d:30:44:2d:4a:cd:be:77:ca:75:36:c9:b1:cf:cc:f9:69: d8:bd:58:05:b3:37:b0:55:59:5e:50:25:8d:65:9b:6e:fa:ae: 88:91:4e:fa:79:1d:1c:fc:52:87:d0:58:62:02:cf:e6:86:70: 90:b0:6e:98:29:b5:5c:f9:73:a2:bf:08:09:2f:12:c0:6f:54: 53:4e:65:ad:3c:5b:b1:cd:5b:ae:2d:96:1a:63:6c:f1:34:d4: 07:39:db:81:79:83:b8:d4:cf:38:6b:8f:48:c3:7f:00:77:5a: f3:dd:a1:d5:65:78:7d:f6:99:63:4d:68:b5:03:3e:83:d8:f3: fb:03:21:7d:a1:8d:ab:79:96:ba:9d:ec:87:26:74:fd:a7:7e: 66:18:b4:e0:40:6a:0a:fd:ea:e6:90:4d:78:07:39:0c:9c:30: dc:c8:a7:cf:d2:fd:8b:c9:f4:32:bc:26:3b:c0:9b:09:80:59: ad:aa:10:78:b3:d8:29:4c:52:b6:69:03:67:e3:78:c9:40:88: c2:e1:d3:50:2d:b4:21:2a:a0:82:1c:7a:1e:8f:10:4e:f9:f9: 00:46:c9:7d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjQ3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlZS0xYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tQs6Zw4clOVJx3J7KwiIzaNCEpmNl4K8zBZJtgWPjFErHStLQ9bTlSmp/k2 tP/HI845SzyHcq+9aWft946jm/vXn4KBwPqhL/fd4WjhEboe1bR1DW6Z0PJixNrd ru4N1Z9vY9P4gO8wS6kE3tlTtrkWcM4YJ/w4lrzkm0IPwezP6/wXYiMupkghtMwP N8Xg7CxSkIVAGFT5i53Rhl+ebXGzDbxCUnEkSQ/HHqVwUns/tqsoC5SQCwUpxc/l 6KurVKoA4/wApNs1nORIA1P6eRVklGmcjI55Eq6faQwQmqYe3TYmHQ4dL0JPFoLY HExsdgIOuzjVqy9qsiu14o/enwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJtRfibH VOLIlmw5jJ6/XZj5zPikMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvQUU5NzQyNDI5 QjU3MTFFQjhFM0JFQjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKQD8DBADKQG8DBADKQIMwDQYJKoZIhvcNAQELBQADggEB AIyyvhOJNCbhXZytBreih8LxS0P8AgSgNgf/B7y8I2r/7vJmHnZ9MEQtSs2+d8p1 Nsmxz8z5adi9WAWzN7BVWV5QJY1lm276roiRTvp5HRz8UofQWGICz+aGcJCwbpgp tVz5c6K/CAkvEsBvVFNOZa08W7HNW64tlhpjbPE01Ac524F5g7jUzzhrj0jDfwB3 WvPdodVleH32mWNNaLUDPoPY8/sDIX2hjat5lrqd7IcmdP2nfmYYtOBAagr96uaQ TXgHOQycMNzIp8/S/YvJ9DK8JjvAmwmAWa2qEHiz2ClMUrZpA2fjeMlAiMLh01At tCEqoIIceh6PEE75+QBGyX0= -----END CERTIFICATE-----Generated at Thu May 16 19:50:00 2024 by rpki-client on console-fra.rpki-client.org