$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/71921B808DBD11EBB4566432C4F9AE02.roa File: 71921B808DBD11EBB4566432C4F9AE02.roa (raw, json) Hash identifier: WO3P7J6kH8GHMXL59YwFi42dBM3PbTzsCl3nAQGVmAk= Subject key identifier: EE:9F:20:90:16:85:E3:C9:5A:6C:4F:9D:D6:D2:D6:0D:9A:6B:81:79 Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Certificate serial: 0638 Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/71921B808DBD11EBB4566432C4F9AE02.roa Signing time: Sun 03 Dec 2023 00:12:38 +0000 ROA not before: Sun 03 Dec 2023 00:12:38 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137536 IP address blocks: 123.200.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Validity Not Before: Dec 3 00:12:38 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656bc7f5-f880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:aa:4f:4c:32:ea:d3:bc:68:82:e8:13:e0: a5:2c:00:b2:fc:e5:01:e7:13:34:f9:88:5f:56:5a: 7f:e7:bc:81:cc:d5:55:7e:3d:d6:4d:7e:fc:62:7d: 20:24:7e:e2:8e:8a:25:14:50:10:15:d3:c4:70:32: e3:7f:59:e6:ca:ba:2e:e3:07:bd:31:58:aa:4c:f7: fe:5a:38:14:7a:59:bc:e4:19:ed:8b:3e:14:e6:57: 1e:2a:af:76:64:e7:c2:c8:5a:d2:c8:85:80:f2:19: 07:e9:5b:03:db:a9:49:92:5b:1a:82:6a:eb:23:20: 47:bd:5d:a7:ad:37:aa:c5:0c:ae:77:80:d5:94:8a: cf:46:43:c1:5a:1c:9f:06:c6:29:c7:d1:26:52:62: 32:bb:a0:e6:b4:5e:07:14:7b:d7:d2:e8:d4:75:bf: 22:26:88:88:a1:84:ba:4c:16:04:4b:07:0a:a1:7a: 3e:0d:86:30:85:28:f6:86:8a:78:2d:38:1f:00:46: 67:e1:65:28:b2:54:b1:db:3d:6b:be:e8:d5:c4:b6: 7c:91:ce:ec:c9:d7:84:91:eb:52:3f:83:34:fc:c6: b7:8c:87:de:f3:01:17:6d:a4:94:f0:74:16:7b:6b: 93:b5:91:a0:8e:2c:a0:32:0f:63:c9:65:0a:35:d4: 03:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9F:20:90:16:85:E3:C9:5A:6C:4F:9D:D6:D2:D6:0D:9A:6B:81:79 X509v3 Authority Key Identifier: keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/71921B808DBD11EBB4566432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.200.136.0/24 Signature Algorithm: sha256WithRSAEncryption cf:97:61:41:f6:4a:5d:18:13:40:75:96:32:80:40:5d:0e:35: 88:96:d8:60:e8:ca:df:28:55:64:f1:db:25:2e:a3:a6:15:0c: 3f:49:6c:38:fc:ae:a5:94:0e:1c:59:c1:78:7d:3d:0f:d9:2f: f4:d0:71:fc:36:46:4c:24:fe:e0:ed:ac:8b:6b:78:2d:72:d6: 2f:47:d6:a4:91:f8:b0:09:01:46:d8:32:6c:d8:ca:cf:65:14: f5:e6:9f:3a:aa:04:d7:de:7e:e3:b5:67:bf:7f:a8:40:38:dd: 8e:ea:35:19:45:67:5b:52:10:1d:6d:1e:0b:40:b7:e6:37:f3: e4:08:06:2d:3a:84:9b:a8:61:07:d9:54:21:93:25:7d:fd:aa: 77:c0:4a:94:a6:ca:ea:d0:a3:36:5a:ca:93:7c:c0:69:ab:b5: 94:2b:d0:59:fd:ad:eb:29:7f:75:fd:93:7e:8e:60:68:8c:54: eb:e5:4f:66:1b:ea:b0:90:8a:57:d9:ae:ed:2f:fe:31:c4:a5: f1:fb:40:5f:b0:5d:f1:b4:a6:de:ff:30:93:35:a2:4d:7e:75: a6:7c:fd:61:ff:ca:e2:24:c4:22:92:df:6c:b0:f7:db:49:86: 37:cd:57:b9:98:54:9a:b6:66:29:ed:a2:f2:0b:c5:67:9c:41: 62:4e:f6:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy NDE3ODMxNzkwHhcNMjMxMjAzMDAxMjM4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiYzdmNS1mODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRiqT0wy6tO8aILoE+ClLACy/OUB5xM0+YhfVlp/57yBzNVVfj3WTX78Yn0g JH7ijoolFFAQFdPEcDLjf1nmyrou4we9MViqTPf+WjgUelm85Bntiz4U5lceKq92 ZOfCyFrSyIWA8hkH6VsD26lJklsagmrrIyBHvV2nrTeqxQyud4DVlIrPRkPBWhyf BsYpx9EmUmIyu6DmtF4HFHvX0ujUdb8iJoiIoYS6TBYESwcKoXo+DYYwhSj2hop4 LTgfAEZn4WUoslSx2z1rvujVxLZ8kc7sydeEketSP4M0/Ma3jIfe8wEXbaSU8HQW e2uTtZGgjiygMg9jyWUKNdQDswIDAQABo4IClTCCApEwHQYDVR0OBBYEFO6fIJAW hePJWmxPndbS1g2aa4F5MB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1 RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvNzE5MjFCODA4 REJEMTFFQkI0NTY2NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7yIgwDQYJKoZIhvcNAQELBQADggEBAM+XYUH2Sl0YE0B1 ljKAQF0ONYiW2GDoyt8oVWTx2yUuo6YVDD9JbDj8rqWUDhxZwXh9PQ/ZL/TQcfw2 Rkwk/uDtrItreC1y1i9H1qSR+LAJAUbYMmzYys9lFPXmnzqqBNfefuO1Z79/qEA4 3Y7qNRlFZ1tSEB1tHgtAt+Y38+QIBi06hJuoYQfZVCGTJX39qnfASpSmyurQozZa ypN8wGmrtZQr0Fn9respf3X9k36OYGiMVOvlT2Yb6rCQilfZru0v/jHEpfH7QF+w XfG0pt7/MJM1ok1+daZ8/WH/yuIkxCKS32yw99tJhjfNV7mYVJq2ZintovILxWec QWJO9ks= -----END CERTIFICATE-----Generated at Fri May 17 01:07:00 2024 by rpki-client on console-fra.rpki-client.org