$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/EFC7DBD264DA11EF92775E34C4F9AE02.roa File: EFC7DBD264DA11EF92775E34C4F9AE02.roa (raw, json) Hash identifier: k/unWYK0qbqTZIUAnZTc6IuxCkln58Rat1ytVVKutxQ= Subject key identifier: 6D:D6:22:04:31:67:09:C3:85:A5:17:16:F8:C0:FA:00:AA:BC:44:01 Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Certificate serial: 0754 Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/EFC7DBD264DA11EF92775E34C4F9AE02.roa Signing time: Wed 28 Aug 2024 01:14:56 +0000 ROA not before: Wed 28 Aug 2024 01:14:56 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9268 IP address blocks: 220.157.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179 Validity Not Before: Aug 28 01:14:56 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66ce7a10-fad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:71:fb:de:c2:5f:b9:f1:cf:ed:d2:fa:a8:e2: f8:ee:e7:16:17:c5:0c:e8:c8:7a:94:17:af:06:56: 3e:93:c3:34:0d:49:3a:35:a9:46:31:44:4a:4e:6f: b9:79:60:5e:34:7f:6c:a4:95:48:b8:4f:1d:70:70: 98:6e:81:7b:ed:26:85:43:50:3f:05:8d:bb:b4:5b: f4:30:f8:40:96:f9:8b:77:5b:3c:32:1c:60:86:41: 9f:31:66:b1:8f:e1:93:e0:24:29:75:17:a1:09:fd: b7:d2:97:00:fb:57:45:8c:76:c6:f6:f2:1b:f3:88: 05:21:d5:40:74:15:99:9c:3e:8d:0a:5f:3d:f9:b1: b5:bf:b2:8f:74:07:cc:98:cd:41:31:6a:b1:80:5d: 65:31:7b:bb:0d:22:34:17:dd:a9:ff:b0:03:3d:b2: da:42:c1:f0:ea:a6:2e:72:90:fd:5e:e4:e3:4d:a2: 6c:83:34:0b:d3:5e:26:7c:1d:c5:47:84:16:7d:b9: 2d:ca:5b:aa:d7:e4:55:cf:ef:b7:44:eb:8a:ee:85: d2:f2:d0:4a:8a:83:53:61:68:95:49:06:89:f4:9d: 21:96:99:09:20:9f:c8:c4:9b:15:c2:b8:6c:13:7b: d6:13:c1:fd:5e:f4:cf:5e:f5:10:0b:7b:f3:f7:1f: 53:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D6:22:04:31:67:09:C3:85:A5:17:16:F8:C0:FA:00:AA:BC:44:01 X509v3 Authority Key Identifier: keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/EFC7DBD264DA11EF92775E34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.157.68.0/24 Signature Algorithm: sha256WithRSAEncryption 11:5c:59:dc:97:63:48:05:14:73:43:ab:31:b4:f3:2e:27:a2: 2a:54:0d:67:83:2a:68:a1:6e:03:8e:0d:b5:e7:12:5a:ef:c9: ba:f1:6e:f9:ff:73:e7:13:c0:0b:4f:60:c7:9d:d7:61:3d:c9: 97:3f:c8:e7:fe:77:f5:cf:69:cf:43:1d:3f:e8:12:97:ed:38: 40:02:f6:b7:94:90:44:9e:b5:82:2f:9e:e7:5c:23:0e:76:1b: 74:80:28:f5:53:d5:4e:b3:7f:82:c3:e9:c3:02:75:95:41:81: 21:ff:24:85:2c:da:e5:d0:f5:19:7c:53:5c:70:9d:15:11:cf: 39:a3:b0:da:b6:ee:3f:70:cb:4b:1b:be:ba:53:46:1d:90:a0: 08:4a:df:9a:4b:90:3b:78:b7:50:10:da:62:8c:03:8b:2f:a6: 59:f2:48:40:49:7b:3a:22:aa:9a:f5:67:7c:c5:e5:6d:bf:3d: 41:2c:5d:b0:7e:da:dc:c3:ef:d8:c8:66:f2:ee:4a:6a:91:17: a4:8b:07:f0:77:01:ab:79:a5:91:a8:86:f6:29:a1:32:6a:75: 2b:4a:80:0c:d7:2d:25:59:33:a9:aa:1b:fa:7b:54:c4:6f:ec: dc:e5:33:86:23:22:dc:3b:44:78:cb:78:52:a1:d1:b3:fd:76: 13:36:b9:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy NDE3ODMxNzkwHhcNMjQwODI4MDExNDU2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNlN2ExMC1mYWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznH73sJfufHP7dL6qOL47ucWF8UM6Mh6lBevBlY+k8M0DUk6NalGMURKTm+5 eWBeNH9spJVIuE8dcHCYboF77SaFQ1A/BY27tFv0MPhAlvmLd1s8MhxghkGfMWax j+GT4CQpdRehCf230pcA+1dFjHbG9vIb84gFIdVAdBWZnD6NCl89+bG1v7KPdAfM mM1BMWqxgF1lMXu7DSI0F92p/7ADPbLaQsHw6qYucpD9XuTjTaJsgzQL014mfB3F R4QWfbktyluq1+RVz++3ROuK7oXS8tBKioNTYWiVSQaJ9J0hlpkJIJ/IxJsVwrhs E3vWE8H9XvTPXvUQC3vz9x9TPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG3WIgQx ZwnDhaUXFvjA+gCqvEQBMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1 RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvRUZDN0RCRDI2 NERBMTFFRjkyNzc1RTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcnUQwDQYJKoZIhvcNAQELBQADggEBABFcWdyXY0gFFHND qzG08y4noipUDWeDKmihbgOODbXnElrvybrxbvn/c+cTwAtPYMed12E9yZc/yOf+ d/XPac9DHT/oEpftOEAC9reUkESetYIvnudcIw52G3SAKPVT1U6zf4LD6cMCdZVB gSH/JIUs2uXQ9Rl8U1xwnRURzzmjsNq27j9wy0sbvrpTRh2QoAhK35pLkDt4t1AQ 2mKMA4svplnySEBJezoiqpr1Z3zF5W2/PUEsXbB+2tzD79jIZvLuSmqRF6SLB/B3 Aat5pZGohvYpoTJqdStKgAzXLSVZM6mqG/p7VMRv7NzlM4YjItw7RHjLeFKh0bP9 dhM2uX4= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:35 2024 by rpki-client on console-fra.rpki-client.org