$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/A18158C6E64611EE95C0CE78C4F9AE02.roa File: A18158C6E64611EE95C0CE78C4F9AE02.roa (raw, json) Hash identifier: OhwAMmDXpoUwiIlu+NNwWEG2Mjf5q973vVgDZWZTt/I= Subject key identifier: 25:84:A4:3D:DC:85:7B:52:3A:0B:C5:54:2E:6A:25:D2:2F:EA:01:EB Certificate issuer: /CN=A91D9A24/serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Certificate serial: 02 Authority key identifier: 47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/A18158C6E64611EE95C0CE78C4F9AE02.roa Signing time: Tue 19 Mar 2024 23:15:53 +0000 ROA not before: Tue 19 Mar 2024 23:15:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139623 IP address blocks: 202.71.188.0/23 maxlen: 24 2001:df3:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A24/serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Validity Not Before: Mar 19 23:15:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65fa1ca8-e8b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f2:5a:14:88:0c:19:91:2b:96:74:57:21:af: e3:0a:52:9f:b8:fc:79:79:e2:8a:b8:d3:34:00:31: 55:08:cd:77:3c:e4:d7:be:06:dc:ff:97:a6:63:1e: 44:6d:a2:e5:33:19:b6:1a:0f:5b:0e:4c:b2:b2:d7: 63:d2:4e:62:f4:ad:8d:6b:66:d4:4a:cf:90:3e:b9: 37:4b:b6:2a:f3:b2:15:99:e4:07:dc:e9:ec:56:b2: c9:53:52:46:95:cc:60:83:ec:9f:5b:de:ca:ed:c5: 0c:29:b9:74:d3:a5:13:90:3c:29:b3:58:5d:b7:5c: cd:31:b0:28:10:93:c6:0b:75:1a:d0:62:3b:12:63: ec:67:99:dc:55:78:3d:f3:d4:a2:02:1b:3c:e5:8e: 33:15:77:73:dd:58:a8:6e:46:0a:31:44:0e:04:67: 50:b9:1c:86:93:47:c6:53:b1:17:58:11:62:8f:88: ce:a5:03:6d:ff:8d:44:e0:13:d6:a3:91:be:49:b3: 26:d4:9b:9c:f5:73:0e:cb:30:ec:a2:d0:73:9f:19: 1f:13:30:49:4c:fd:4a:2b:41:a8:b0:77:f6:f3:62: c9:4f:c9:50:09:d4:2f:6d:72:bc:8c:d6:f5:0b:19: f8:9d:2a:34:8d:e7:2c:28:37:98:67:d7:ed:3d:74: 9b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:84:A4:3D:DC:85:7B:52:3A:0B:C5:54:2E:6A:25:D2:2F:EA:01:EB X509v3 Authority Key Identifier: keyid:47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/A18158C6E64611EE95C0CE78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.188.0/23 IPv6: 2001:df3:90c0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:41:2e:67:fb:80:0c:6f:73:56:2e:88:8a:9e:51:10:d6:c8: 17:8c:4c:b5:66:ed:a3:b7:9c:4d:38:f3:7b:13:a9:94:59:cc: 79:14:22:26:53:12:cf:af:e8:40:a7:24:28:f7:6c:5e:e9:14: e4:65:2d:f7:92:eb:34:01:69:f2:e7:45:33:a8:0d:17:0d:95: 3c:cd:82:a1:e8:db:84:f9:bc:84:9e:55:c6:c5:ea:6c:b2:1e: 70:f7:0c:65:0e:2c:73:20:5d:a1:2d:47:3d:f7:c8:e0:a9:53: bd:9d:bb:49:18:94:ef:1b:93:5d:b3:d5:3c:db:91:e9:2f:89: 0b:fe:51:19:e1:97:3e:ae:a5:8b:4a:a1:2b:ea:f1:83:8b:c0: 78:31:2a:dc:f5:95:2b:5c:73:7e:74:eb:ba:7b:b5:cd:c0:d8: 9f:de:79:d0:f9:73:c8:7d:8b:6c:65:0a:15:3c:35:4e:26:10: cb:fe:fb:dd:6b:d3:7e:cd:23:b9:f8:87:2b:13:b2:28:d7:f2: 95:46:94:71:58:95:98:60:44:08:1e:06:9b:59:6c:ad:4d:52: cf:0d:ca:ea:6f:fe:68:19:63:d0:71:b3:7f:88:a0:ce:65:94: c4:2b:47:3c:5f:42:ca:1d:36:ac:b3:c6:16:c5:59:76:f8:53: d7:09:e6:99 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUEyNDExMC8GA1UEBRMoNDcxMEU0REU2NDE1QzQ4RThCNTMxQjU5Q0Q0N0E0MUNE NzkzNDU1RTAeFw0yNDAzMTkyMzE1NTNaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmExY2E4LWU4YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd8loUiAwZkSuWdFchr+MKUp+4/Hl54oq40zQAMVUIzXc85Ne+Btz/l6ZjHkRt ouUzGbYaD1sOTLKy12PSTmL0rY1rZtRKz5A+uTdLtirzshWZ5Afc6exWsslTUkaV zGCD7J9b3srtxQwpuXTTpROQPCmzWF23XM0xsCgQk8YLdRrQYjsSY+xnmdxVeD3z 1KICGzzljjMVd3PdWKhuRgoxRA4EZ1C5HIaTR8ZTsRdYEWKPiM6lA23/jUTgE9aj kb5JsybUm5z1cw7LMOyi0HOfGR8TMElM/UorQaiwd/bzYslPyVAJ1C9tcryM1vUL GfidKjSN5ywoN5hn1+09dJvRAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUJYSkPdyF e1I6C8VULmol0i/qAeswHwYDVR0jBBgwFoAURxDk3mQVxI6LUxtZzUekHNeTRV4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5QTI0LzkzOTg0Q0YyRTY0 NTExRUVCNUE3MzU3N0M0RjlBRTAyL1J4RGszbVFWeEk2TFV4dFp6VWVrSE5lVFJW NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnhEazNtUVZ4STZMVXh0WnpVZWtITmVUUlY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUEyNC85Mzk4NENGMkU2NDUxMUVFQjVBNzM1NzdDNEY5QUUwMi9BMTgxNThDNkU2 NDYxMUVFOTVDMENFNzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcpHvDAPBAIAAjAJAwcAIAEN85DAMA0GCSqGSIb3DQEBCwUA A4IBAQCNQS5n+4AMb3NWLoiKnlEQ1sgXjEy1Zu2jt5xNOPN7E6mUWcx5FCImUxLP r+hApyQo92xe6RTkZS33kus0AWny50UzqA0XDZU8zYKh6NuE+byEnlXGxepssh5w 9wxlDixzIF2hLUc998jgqVO9nbtJGJTvG5Nds9U825HpL4kL/lEZ4Zc+rqWLSqEr 6vGDi8B4MSrc9ZUrXHN+dOu6e7XNwNif3nnQ+XPIfYtsZQoVPDVOJhDL/vvda9N+ zSO5+IcrE7Io1/KVRpRxWJWYYEQIHgabWWytTVLPDcrqb/5oGWPQcbN/iKDOZZTE K0c8X0LKHTass8YWxVl2+FPXCeaZ -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:55 2024 by rpki-client on console-fra.rpki-client.org