$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa File: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: 1Z3EtWYcZVV+ytIydGHG1ZcaZnMTdTNNZ1jf1qeQT6U= Subject key identifier: 86:64:DC:D1:91:85:8E:FA:B2:E9:A1:90:C0:36:17:B7:14:78:9D:22 Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3379 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa Signing time: Tue 12 Dec 2023 15:00:42 +0000 ROA not before: Tue 12 Dec 2023 15:00:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24299 IP address blocks: 202.43.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13177 (0x3379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Dec 12 15:00:42 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65787599-8a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b1:9b:33:9a:6f:8e:c4:01:2d:67:fa:71:9e: 3c:13:a5:15:44:ab:60:9c:8f:ea:dc:3e:40:ae:f3: 97:83:95:82:df:02:c2:8b:56:36:b6:ed:86:e7:5b: 9d:78:de:87:18:50:a8:1d:d1:5a:f3:ae:71:71:00: a3:f9:27:f7:55:79:10:0e:87:72:6b:32:4e:ad:88: d3:d1:2c:22:aa:2a:18:1b:49:26:8e:fe:78:b8:33: 79:ac:d4:07:36:6c:93:ab:f2:02:8a:aa:71:aa:2b: a3:e9:3d:d2:88:51:fb:e8:4b:b4:b6:e1:6c:58:7d: 94:1b:1a:5d:1c:5d:06:44:28:2d:49:b6:16:74:fa: 95:61:2b:58:84:c9:dc:72:9a:eb:41:fd:7a:94:b7: ca:58:e4:c8:39:0a:12:27:20:3b:72:3e:a2:b7:78: 7e:35:b1:5b:9c:d1:6c:fe:32:61:13:fe:ae:5a:b6: 04:a4:05:14:cc:e0:de:dc:42:11:90:63:fe:f7:42: 67:9f:65:82:20:f4:10:e4:83:d2:cc:7d:aa:a1:05: d6:0e:e9:5e:8f:d3:0a:eb:58:39:7e:5b:34:2c:d1: 52:6f:aa:05:56:58:0f:37:61:29:db:9f:b2:f2:12: 5a:76:28:38:01:52:53:a0:9b:f6:91:52:fc:95:c2: 20:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:64:DC:D1:91:85:8E:FA:B2:E9:A1:90:C0:36:17:B7:14:78:9D:22 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.32.0/20 Signature Algorithm: sha256WithRSAEncryption 76:61:aa:0f:e8:d8:45:e4:00:20:ce:f0:d2:32:41:89:1a:2c: 15:a4:57:73:89:0f:bd:2d:22:3e:6f:52:2c:10:28:43:10:a1: e7:3a:c1:2c:ce:17:71:f5:7a:40:e1:bc:a1:86:93:ac:c9:cb: 95:57:f7:01:3a:92:5b:de:1b:c8:92:cc:6e:78:87:46:90:2b: 39:90:cd:c0:e7:0f:f9:e6:14:f4:e1:8c:05:6d:5b:93:c3:ed: e8:cd:af:13:16:1e:da:4b:c0:7a:ef:b7:e6:da:f1:8f:38:97: 00:4d:46:15:1c:a8:2c:5b:b4:0c:c2:8e:92:d4:35:f5:b7:91: 96:9b:bf:ab:93:03:a6:59:71:88:34:72:2a:f7:a7:d5:3b:ef: 25:52:a5:8e:60:0a:05:df:54:d7:46:30:7d:5d:74:4c:9d:cc: 40:7e:76:79:93:db:8d:a6:46:13:48:4a:18:a5:67:6f:5b:72: 1a:f1:93:08:8d:d7:07:33:53:b4:45:ef:e9:44:3a:ad:41:a2: 1d:0a:b7:f6:48:cf:5b:57:0b:ee:64:00:28:1a:06:27:f8:7d: 84:b7:cf:6c:a9:1c:ad:22:7e:5d:05:e8:8c:6c:58:2f:67:79: bf:6b:6e:5e:2b:5e:6b:f0:1e:55:1a:3a:27:bd:db:2d:b5:f7: b9:14:7c:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjMxMjEyMTUwMDQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4NzU5OS04YTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7GbM5pvjsQBLWf6cZ48E6UVRKtgnI/q3D5ArvOXg5WC3wLCi1Y2tu2G51ud eN6HGFCoHdFa865xcQCj+Sf3VXkQDodyazJOrYjT0SwiqioYG0kmjv54uDN5rNQH NmyTq/ICiqpxqiuj6T3SiFH76Eu0tuFsWH2UGxpdHF0GRCgtSbYWdPqVYStYhMnc cprrQf16lLfKWOTIOQoSJyA7cj6it3h+NbFbnNFs/jJhE/6uWrYEpAUUzODe3EIR kGP+90Jnn2WCIPQQ5IPSzH2qoQXWDulej9MK61g5fls0LNFSb6oFVlgPN2Ep25+y 8hJadig4AVJToJv2kVL8lcIg5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIZk3NGR hY76sumhkMA2F7cUeJ0iMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEQUUvRkVGQkNDOEUxRDhGMTFFMkI1NEE3REVGMDhCMDJDRDIvMjIwRTMyQ0VG RUE0MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKKyAwDQYJKoZIhvcNAQELBQADggEBAHZhqg/o2EXkACDO 8NIyQYkaLBWkV3OJD70tIj5vUiwQKEMQoec6wSzOF3H1ekDhvKGGk6zJy5VX9wE6 klveG8iSzG54h0aQKzmQzcDnD/nmFPThjAVtW5PD7ejNrxMWHtpLwHrvt+ba8Y84 lwBNRhUcqCxbtAzCjpLUNfW3kZabv6uTA6ZZcYg0cir3p9U77yVSpY5gCgXfVNdG MH1ddEydzEB+dnmT242mRhNIShilZ29bchrxkwiN1wczU7RF7+lEOq1Boh0Kt/ZI z1tXC+5kACgaBif4fYS3z2ypHK0ifl0F6IxsWC9neb9rbl4rXmvwHlUaOie92y21 97kUfK4= -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org