$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/FE2FF9B0E64611EEA8AE7979C4F9AE02.roa File: FE2FF9B0E64611EEA8AE7979C4F9AE02.roa (raw, json) Hash identifier: zTFWSulVee4Ly8DKhZ3WsgppSiRMvqo0mmrNlUemSBc= Subject key identifier: 7C:AF:9A:6F:D7:35:12:BC:6A:42:3E:CA:E1:EF:07:D4:3F:C5:63:F0 Certificate issuer: /CN=A91D9A24/serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Certificate serial: 06 Authority key identifier: 47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/FE2FF9B0E64611EEA8AE7979C4F9AE02.roa Signing time: Tue 19 Mar 2024 23:18:28 +0000 ROA not before: Tue 19 Mar 2024 23:18:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133855 IP address blocks: 202.71.188.0/23 maxlen: 24 2001:df3:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A24/serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Validity Not Before: Mar 19 23:18:28 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65fa1d44-f642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:33:fc:55:f8:14:d0:6c:13:d6:09:eb:13: 45:9f:88:b4:74:0a:6e:8b:f1:fe:30:fe:48:d4:67: 05:fa:17:86:2b:f7:37:85:78:89:52:d4:ae:02:7e: bc:5a:6c:d4:b5:9e:23:cf:3c:d7:a9:e5:d9:99:d1: d1:f6:e5:cb:65:6e:df:dd:aa:1f:d3:be:71:0c:86: cd:53:66:3a:50:58:0f:9c:70:f4:5b:05:b8:7a:ce: 2c:f4:a4:35:86:17:a4:ae:90:df:d6:dd:1d:21:e0: 8b:a2:2b:84:79:0b:05:da:25:d8:f7:d9:a9:db:bd: 8d:e8:a0:a5:e6:f5:66:7f:3f:1d:cf:64:8c:c1:8a: e7:e4:64:66:a2:7c:5e:5a:d8:49:bf:8e:d2:07:9d: 40:2d:a7:46:d6:63:5a:d3:8a:9a:54:9f:f8:59:38: 22:6d:d6:09:a4:f8:77:ad:30:18:55:7a:45:d3:0b: 60:99:3f:36:45:c1:fe:df:4d:73:b1:f4:f1:b6:12: cd:0d:12:26:8a:28:24:ff:eb:b6:f8:79:a8:df:0c: 55:c1:3d:ae:13:b2:4f:8f:c1:07:cf:d8:7b:97:13: 35:31:90:25:91:e3:24:70:3d:ac:9e:67:a9:b9:b4: 4b:2f:1d:48:1d:4b:9e:03:1d:f5:3d:b1:23:ac:41: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AF:9A:6F:D7:35:12:BC:6A:42:3E:CA:E1:EF:07:D4:3F:C5:63:F0 X509v3 Authority Key Identifier: keyid:47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/FE2FF9B0E64611EEA8AE7979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.188.0/23 IPv6: 2001:df3:90c0::/48 Signature Algorithm: sha256WithRSAEncryption 57:90:51:7a:15:a0:f8:f2:55:39:82:1b:66:80:71:06:df:ad: ae:5e:ad:f1:ff:55:20:68:68:6c:93:c8:ee:1b:ce:36:89:5f: fc:3d:f8:27:5e:a3:33:ce:6e:d3:e4:d1:73:f2:35:a0:31:5d: 0d:1f:58:ae:5e:1f:58:32:01:cd:9b:db:d2:04:d3:cd:6f:ed: 53:6e:e2:83:9f:a3:76:15:65:cb:b0:bf:48:a3:56:27:46:5c: ca:30:dd:a7:8c:d9:65:8b:96:a7:ce:0a:c6:d8:60:4e:70:4d: a8:e5:4c:f1:8b:68:4c:ca:06:a8:c1:9a:55:45:ee:0d:f8:a4: 3f:ff:b5:e2:4b:f5:74:75:ca:0b:6d:02:a7:4e:a4:8d:4a:e9: b4:e4:0d:b2:6e:0b:60:3f:58:7f:fc:54:c8:e6:be:a8:8b:eb: f1:17:98:f6:2e:68:18:c4:f3:62:00:e1:ba:7f:60:dc:de:8a: d4:fa:c2:4b:75:69:2c:20:fc:66:4e:cc:84:2d:fa:b8:e5:b1: 0f:fc:ff:8d:ce:74:bb:82:43:b3:50:b6:3c:63:43:09:51:cc: eb:54:5f:8d:b3:5c:87:b1:ba:d6:96:cf:ce:d6:89:2f:d1:8c: 58:13:cb:d7:c4:cb:3b:a1:6d:6a:32:94:a0:7d:ce:22:6a:e6: b6:ef:2c:a0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUEyNDExMC8GA1UEBRMoNDcxMEU0REU2NDE1QzQ4RThCNTMxQjU5Q0Q0N0E0MUNE NzkzNDU1RTAeFw0yNDAzMTkyMzE4MjhaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmExZDQ0LWY2NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3jjP8VfgU0GwT1gnrE0WfiLR0Cm6L8f4w/kjUZwX6F4Yr9zeFeIlS1K4Cfrxa bNS1niPPPNep5dmZ0dH25ctlbt/dqh/TvnEMhs1TZjpQWA+ccPRbBbh6ziz0pDWG F6SukN/W3R0h4IuiK4R5CwXaJdj32anbvY3ooKXm9WZ/Px3PZIzBiufkZGaifF5a 2Em/jtIHnUAtp0bWY1rTippUn/hZOCJt1gmk+HetMBhVekXTC2CZPzZFwf7fTXOx 9PG2Es0NEiaKKCT/67b4eajfDFXBPa4Tsk+PwQfP2HuXEzUxkCWR4yRwPayeZ6m5 tEsvHUgdS54DHfU9sSOsQWXHAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUfK+ab9c1 ErxqQj7K4e8H1D/FY/AwHwYDVR0jBBgwFoAURxDk3mQVxI6LUxtZzUekHNeTRV4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5QTI0LzkzOTg0Q0YyRTY0 NTExRUVCNUE3MzU3N0M0RjlBRTAyL1J4RGszbVFWeEk2TFV4dFp6VWVrSE5lVFJW NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnhEazNtUVZ4STZMVXh0WnpVZWtITmVUUlY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUEyNC85Mzk4NENGMkU2NDUxMUVFQjVBNzM1NzdDNEY5QUUwMi9GRTJGRjlCMEU2 NDYxMUVFQThBRTc5NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcpHvDAPBAIAAjAJAwcAIAEN85DAMA0GCSqGSIb3DQEBCwUA A4IBAQBXkFF6FaD48lU5ghtmgHEG362uXq3x/1UgaGhsk8juG842iV/8PfgnXqMz zm7T5NFz8jWgMV0NH1iuXh9YMgHNm9vSBNPNb+1TbuKDn6N2FWXLsL9Io1YnRlzK MN2njNlli5anzgrG2GBOcE2o5Uzxi2hMygaowZpVRe4N+KQ//7XiS/V0dcoLbQKn TqSNSum05A2ybgtgP1h//FTI5r6oi+vxF5j2LmgYxPNiAOG6f2Dc3orU+sJLdWks IPxmTsyELfq45bEP/P+NznS7gkOzULY8Y0MJUczrVF+Ns1yHsbrWls/O1okv0YxY E8vXxMs7oW1qMpSgfc4iaua27yyg -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org