$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/6E491F58A79211EFABD45B2BC4F9AE02.roa File: 6E491F58A79211EFABD45B2BC4F9AE02.roa (raw, json) Hash identifier: Ro/P4O73D4CrHjoYuZrr/Ewq3mf9Tkt210TUWqP66yA= Subject key identifier: BE:E5:FA:9D:86:79:58:B9:91:73:C7:5E:A0:6C:5A:E2:5D:9A:9E:40 Certificate issuer: /CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Certificate serial: 0E Authority key identifier: 2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/6E491F58A79211EFABD45B2BC4F9AE02.roa Signing time: Wed 20 Nov 2024 22:54:43 +0000 ROA not before: Wed 20 Nov 2024 22:54:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 153451 IP address blocks: 203.23.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Validity Not Before: Nov 20 22:54:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=673e68b3-1722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:9a:0b:d9:02:b9:04:38:49:fb:e0:11:cd: 4d:ec:c1:c9:50:35:2f:31:b5:c2:f6:0b:b1:d4:e8: 7a:56:a3:49:e3:36:03:ae:ed:24:71:ca:4b:7f:36: 11:2c:cf:2a:3f:c2:3f:fe:a5:92:15:dc:25:fa:2e: 24:3d:76:4d:71:fb:d1:99:27:71:6b:d7:07:e2:21: 27:5b:98:0b:77:0a:2d:f5:22:27:f7:ec:9b:b3:b4: 0b:49:3b:f3:f4:6b:12:70:69:1a:c0:f5:2a:af:9c: e7:88:12:de:fa:aa:d2:17:d5:ec:33:94:ec:95:8e: c2:0b:0e:d9:0a:b0:6a:54:28:1c:ff:ec:cb:5e:33: fe:f7:31:78:85:d1:29:88:da:28:08:a1:71:3c:75: c8:c9:c0:ad:84:79:5b:00:2f:1e:fa:e6:00:7e:85: 53:a5:c4:46:93:3f:47:da:ce:6f:fc:4f:55:13:1e: d7:88:38:ae:19:ea:1c:60:bd:ca:39:1a:43:f1:44: 13:f1:b2:00:3a:10:67:38:62:d3:59:58:fc:e3:eb: b6:29:35:f5:87:f1:db:9f:0b:19:ae:ba:ac:3f:2b: df:92:c3:db:17:0c:6f:6f:1c:01:cd:44:15:e6:87: a7:19:ea:bf:db:35:83:51:86:8e:51:a9:97:d7:1a: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E5:FA:9D:86:79:58:B9:91:73:C7:5E:A0:6C:5A:E2:5D:9A:9E:40 X509v3 Authority Key Identifier: keyid:2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/6E491F58A79211EFABD45B2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.36.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:79:92:fb:94:d9:2c:e3:eb:a7:df:8f:34:4b:d3:9e:23:80: 3e:73:a1:4a:a4:62:a1:e7:1b:2d:39:b0:64:7b:f8:a5:a0:e8: cd:9b:bf:b6:07:38:b7:2a:84:c2:2c:1e:26:97:dd:18:f4:64: 5f:39:67:80:9c:c7:a4:21:2a:12:e9:4c:21:5a:10:29:82:d5: 87:e7:e9:34:2b:1f:56:57:43:33:f4:20:86:b1:2f:32:1c:8c: 20:4f:5d:c8:2b:b0:da:55:04:00:53:7b:63:1b:6b:b7:de:82: bc:61:56:be:ac:22:8b:61:6f:23:ae:d9:77:30:1a:56:9d:5b: fc:47:0e:b0:0e:c0:1a:16:f5:69:90:1f:26:40:c6:dd:c8:50: 30:03:c8:48:e4:b0:de:d2:c4:5b:cd:a6:fb:f8:c9:08:53:f6: b3:72:27:1f:d0:15:d8:a7:a6:cb:e6:4c:7a:30:93:70:c1:f7: b9:4a:1c:23:4e:b1:63:8f:cd:3b:af:33:ab:9a:74:97:61:52: 64:68:3e:bd:8b:e7:d1:cf:0e:b1:f9:16:c3:dd:2c:53:f6:c4: cf:bb:e7:86:0c:a5:60:61:0a:3f:08:9a:43:ca:80:d0:75:c4: 52:e9:9b:c5:2a:6e:5f:6f:d3:b2:a3:39:d4:14:61:76:6b:89: c5:57:f4:73 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkMxQjExMC8GA1UEBRMoMkNGQjBDRUY2RDE2RDY2NzZFRUEyMTE2NDNFQzhFODVD MjVDRjJGRjAeFw0yNDExMjAyMjU0NDNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2U2OGIzLTE3MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEe5oL2QK5BDhJ++ARzU3swclQNS8xtcL2C7HU6HpWo0njNgOu7SRxykt/NhEs zyo/wj/+pZIV3CX6LiQ9dk1x+9GZJ3Fr1wfiISdbmAt3Ci31Iif37JuztAtJO/P0 axJwaRrA9SqvnOeIEt76qtIX1ewzlOyVjsILDtkKsGpUKBz/7MteM/73MXiF0SmI 2igIoXE8dcjJwK2EeVsALx765gB+hVOlxEaTP0fazm/8T1UTHteIOK4Z6hxgvco5 GkPxRBPxsgA6EGc4YtNZWPzj67YpNfWH8dufCxmuuqw/K9+Sw9sXDG9vHAHNRBXm h6cZ6r/bNYNRho5RqZfXGqw5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvuX6nYZ5 WLmRc8deoGxa4l2ankAwHwYDVR0jBBgwFoAULPsM720W1mdu6iEWQ+yOhcJc8v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2QzFCL0U1NzMwNkNBOUE3 MjExRUY4RUI0MTYyREM0RjlBRTAyL0xQc003MjBXMW1kdTZpRVdRLXlPaGNKYzh2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFBzTTcyMFcxbWR1NmlFV1EteU9oY0pjOHY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkMxQi9FNTczMDZDQTlBNzIxMUVGOEVCNDE2MkRDNEY5QUUwMi82RTQ5MUY1OEE3 OTIxMUVGQUJENDVCMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsXJDANBgkqhkiG9w0BAQsFAAOCAQEAjHmS+5TZLOPrp9+P NEvTniOAPnOhSqRioecbLTmwZHv4paDozZu/tgc4tyqEwiweJpfdGPRkXzlngJzH pCEqEulMIVoQKYLVh+fpNCsfVldDM/QghrEvMhyMIE9dyCuw2lUEAFN7Yxtrt96C vGFWvqwii2FvI67ZdzAaVp1b/EcOsA7AGhb1aZAfJkDG3chQMAPISOSw3tLEW82m +/jJCFP2s3InH9AV2Kemy+ZMejCTcMH3uUocI06xY4/NO68zq5p0l2FSZGg+vYvn 0c8OsfkWw90sU/bEz7vnhgylYGEKPwiaQ8qA0HXEUumbxSpuX2/TsqM51BRhdmuJ xVf0cw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org