$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/63D1B4C0929E11EBABC48F60C4F9AE02.roa File: 63D1B4C0929E11EBABC48F60C4F9AE02.roa (raw, json) Hash identifier: 38nRb/WDemBM+JKiOEO1URF8mFtgMeqWktX6x2EKHbE= Subject key identifier: D3:E3:78:6C:71:3B:DD:DA:C0:2E:63:F5:C9:41:A2:28:F1:F8:36:18 Certificate issuer: /CN=A91D3A26/serialNumber=BEAFC7BABCB7D78D9E190820F6EB2C7F28BB5D88 Certificate serial: 0535 Authority key identifier: BE:AF:C7:BA:BC:B7:D7:8D:9E:19:08:20:F6:EB:2C:7F:28:BB:5D:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vq_Hury3142eGQgg9ussfyi7XYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/63D1B4C0929E11EBABC48F60C4F9AE02.roa Signing time: Fri 05 Jan 2024 00:22:33 +0000 ROA not before: Fri 05 Jan 2024 00:22:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133116 IP address blocks: 203.28.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/vq_Hury3142eGQgg9ussfyi7XYg.crl rsync://rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/vq_Hury3142eGQgg9ussfyi7XYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vq_Hury3142eGQgg9ussfyi7XYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3A26/serialNumber=BEAFC7BABCB7D78D9E190820F6EB2C7F28BB5D88 Validity Not Before: Jan 5 00:22:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65974bc8-f46a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f5:86:bb:88:b1:ac:94:4c:27:5a:e7:81:df: 78:87:6f:83:f8:78:5b:7c:c7:1e:1f:ee:2b:70:c0: af:05:78:67:06:23:d1:04:31:18:38:13:7b:ac:c4: 21:f5:7f:05:c7:dc:f6:3e:b3:68:3e:44:75:9d:f1: 4a:64:67:44:7a:1e:b8:b5:8c:6c:ed:9b:8b:57:4d: e4:66:f9:66:02:92:60:10:70:6e:1d:24:94:11:07: a0:15:12:84:fe:b3:d2:d5:d5:99:07:22:27:eb:8e: 04:be:69:05:5e:c5:04:7a:39:f9:84:6f:fa:7d:8e: b5:fc:29:8c:c8:81:b4:3d:85:e7:fc:43:45:cc:9c: 32:f8:06:c7:5a:f1:55:48:06:06:37:f7:c4:51:0f: 8f:4a:47:1b:65:02:e1:df:f1:34:15:5b:3b:9a:6c: 99:67:cb:cb:44:8a:99:22:6b:8f:42:8a:7e:5e:01: 9b:99:5f:52:5d:86:69:3f:f7:c2:4a:75:a0:c7:0a: 33:50:a9:1a:10:f5:9c:c8:c4:77:18:1e:ac:69:4b: 18:08:84:3a:fc:8d:f1:9d:1b:70:ee:a9:34:c5:45: 1c:fa:62:c4:b1:1e:5d:ab:49:b0:ac:2c:7d:4c:d7: 96:fd:da:be:1d:39:5f:bc:77:21:98:14:5a:df:b7: df:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E3:78:6C:71:3B:DD:DA:C0:2E:63:F5:C9:41:A2:28:F1:F8:36:18 X509v3 Authority Key Identifier: keyid:BE:AF:C7:BA:BC:B7:D7:8D:9E:19:08:20:F6:EB:2C:7F:28:BB:5D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/vq_Hury3142eGQgg9ussfyi7XYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vq_Hury3142eGQgg9ussfyi7XYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3A26/561D9224929C11EB957A5D5DC4F9AE02/63D1B4C0929E11EBABC48F60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.115.0/24 Signature Algorithm: sha256WithRSAEncryption 87:a9:01:6e:78:82:29:ed:38:93:02:26:3f:ce:de:7e:c4:ae: 92:1a:aa:b1:d6:22:e9:c1:ba:14:3a:57:8c:f8:8c:87:d8:4c: ab:48:48:1f:0e:2c:4a:b4:d3:d1:12:11:23:64:bd:e6:fb:fb: 1a:1b:6d:9e:2e:91:76:42:86:0d:61:36:5c:d9:e5:b4:c6:10: 04:8c:e1:26:c2:ee:17:46:19:46:73:37:87:67:d2:ca:ea:84: 86:16:e9:f8:49:7e:b2:0e:a4:a9:f3:da:9a:52:64:4c:3f:6b: 20:f4:66:91:99:6f:5c:97:1d:f3:ea:9e:5a:4c:a8:d5:15:5f: b2:54:c3:35:2f:c9:bd:be:95:62:46:32:9f:0a:37:dc:dc:7c: 1c:fe:9e:49:b4:ed:6f:83:71:97:b2:6a:dc:e1:5c:cd:20:e4: 2d:13:ae:f4:99:64:0c:a1:e6:7d:df:58:f3:e0:3a:9c:0c:3b: c0:8d:27:3f:77:ca:dc:4f:f8:86:a4:fa:01:77:45:14:c0:f5: 84:4e:9d:3f:5c:d2:4c:22:c2:95:5b:4c:00:34:e5:46:be:e4: 07:0c:05:ee:cc:60:5b:98:c1:a3:d3:f9:cc:be:1c:f9:df:de: 9e:7a:c6:02:6e:13:8a:46:40:10:9e:98:f6:49:07:e2:cf:6b: fc:20:d6:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNBMjYxMTAvBgNVBAUTKEJFQUZDN0JBQkNCN0Q3OEQ5RTE5MDgyMEY2RUIyQzdG MjhCQjVEODgwHhcNMjQwMTA1MDAyMjMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3NGJjOC1mNDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fWGu4ixrJRMJ1rngd94h2+D+HhbfMceH+4rcMCvBXhnBiPRBDEYOBN7rMQh 9X8Fx9z2PrNoPkR1nfFKZGdEeh64tYxs7ZuLV03kZvlmApJgEHBuHSSUEQegFRKE /rPS1dWZByIn644EvmkFXsUEejn5hG/6fY61/CmMyIG0PYXn/ENFzJwy+AbHWvFV SAYGN/fEUQ+PSkcbZQLh3/E0FVs7mmyZZ8vLRIqZImuPQop+XgGbmV9SXYZpP/fC SnWgxwozUKkaEPWcyMR3GB6saUsYCIQ6/I3xnRtw7qk0xUUc+mLEsR5dq0mwrCx9 TNeW/dq+HTlfvHchmBRa37ffBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNPjeGxx O93awC5j9clBoijx+DYYMB8GA1UdIwQYMBaAFL6vx7q8t9eNnhkIIPbrLH8ou12I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0EyNi81NjFEOTIyNDky OUMxMUVCOTU3QTVENURDNEY5QUUwMi92cV9IdXJ5MzE0MmVHUWdnOXVzc2Z5aTdY WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZxX0h1cnkzMTQyZUdRZ2c5dXNzZnlpN1hZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNBMjYvNTYxRDkyMjQ5MjlDMTFFQjk1N0E1RDVEQzRGOUFFMDIvNjNEMUI0QzA5 MjlFMTFFQkFCQzQ4RjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHHMwDQYJKoZIhvcNAQELBQADggEBAIepAW54gintOJMC Jj/O3n7ErpIaqrHWIunBuhQ6V4z4jIfYTKtISB8OLEq009ESESNkveb7+xobbZ4u kXZChg1hNlzZ5bTGEASM4SbC7hdGGUZzN4dn0srqhIYW6fhJfrIOpKnz2ppSZEw/ ayD0ZpGZb1yXHfPqnlpMqNUVX7JUwzUvyb2+lWJGMp8KN9zcfBz+nkm07W+DcZey atzhXM0g5C0TrvSZZAyh5n3fWPPgOpwMO8CNJz93ytxP+Iak+gF3RRTA9YROnT9c 0kwiwpVbTAA05Ua+5AcMBe7MYFuYwaPT+cy+HPnf3p56xgJuE4pGQBCemPZJB+LP a/wg1os= -----END CERTIFICATE-----Generated at Tue May 21 01:47:05 2024 by rpki-client on console-fra.rpki-client.org