$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa File: 367E2CC86E2F11EE9F5DEF32C4F9AE02.roa (raw, json) Hash identifier: j6e518IrFLggTcXwdzTc/DnExHzZEsAGE1ciCOFgyjQ= Subject key identifier: 2D:F7:53:CE:9E:74:49:12:7F:D6:19:A7:4A:7C:C3:F9:80:B3:8F:99 Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: 60 Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa Signing time: Tue 19 Mar 2024 07:19:04 +0000 ROA not before: Tue 19 Mar 2024 07:19:04 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23878 IP address blocks: 202.36.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Validity Not Before: Mar 19 07:19:04 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65f93c68-10f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2d:62:b6:53:44:d6:52:73:fe:1c:dd:0c:8f: d6:13:d0:b9:a9:b1:a0:21:51:76:61:66:2f:88:ca: 87:17:3f:14:c1:b3:57:b9:8c:5d:d2:09:06:2e:9b: 1c:09:c7:1d:4f:47:cb:e1:2c:e6:0e:39:1b:f9:b7: e7:51:fd:e3:82:59:15:c8:1b:c9:53:9c:5c:d6:79: e1:e3:a9:ca:41:8b:53:92:f8:47:1e:c7:6d:53:c0: 97:9f:f8:0d:ff:d7:01:a1:cf:d8:3c:40:3a:67:58: b4:09:6a:bd:f5:2b:4a:7a:2e:a5:a3:a5:58:20:33: 02:5a:40:92:bd:1c:29:27:e7:e3:dd:e2:92:f6:6d: 09:ad:ed:fe:6f:70:c3:eb:42:62:e5:4a:0c:88:d7: 5a:9b:fb:0a:31:d2:5d:ae:81:18:cb:15:6f:0f:73: 84:ea:a5:a4:65:02:6b:e3:8c:3b:3e:36:ef:af:15: 0f:ae:1b:5a:a8:8b:4b:c5:01:9f:9b:e6:a1:d8:53: 69:07:93:f3:1c:00:30:b5:18:27:ed:1a:56:78:8f: 54:cc:ce:98:cc:9d:3d:49:c6:f8:ad:28:18:fd:1d: 39:d7:58:b3:62:38:a9:3a:44:2e:bf:4a:a6:c5:42: c0:1b:7f:40:92:3a:41:a3:39:37:28:68:7a:5d:8d: 13:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F7:53:CE:9E:74:49:12:7F:D6:19:A7:4A:7C:C3:F9:80:B3:8F:99 X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.224.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:4e:4a:7f:8c:02:9d:5d:91:e8:78:ad:ad:b6:7e:9e:9b:f2: 96:29:80:f4:45:a8:95:25:7a:4d:db:a7:da:ca:6d:c8:8c:88: c0:49:6a:d0:28:15:68:f9:cb:00:cb:77:1b:13:0a:e1:55:4b: ca:26:fb:0b:b4:b8:c4:7e:21:6b:20:bc:cf:d1:73:a2:0f:71: 4f:75:a9:b0:bb:9a:41:53:ac:77:32:82:c6:e9:9e:10:98:3f: ae:77:ed:23:6d:b2:5d:93:4d:75:0c:dd:90:f7:fa:88:f5:7e: 43:37:d7:39:4d:47:95:a0:34:70:5f:8a:f6:ae:f3:7d:de:e3: d4:2e:58:d2:62:11:80:15:97:62:72:b8:63:e6:99:ad:af:b6: 61:1c:fd:4b:3e:eb:2f:ce:a5:7e:3a:e4:95:55:eb:03:64:34: fb:7b:c8:70:f2:55:04:04:a8:a0:13:8a:0e:b1:46:a7:42:d3: 53:76:3f:02:00:9a:b8:67:7f:e7:f4:53:c9:0f:6e:eb:c3:55: ea:15:91:b0:48:db:39:b0:83:4b:f8:80:6e:fa:8d:23:12:a2: ed:02:63:dc:9a:8e:70:62:20:d3:51:27:08:bf:f3:17:46:56: 04:1e:1e:b8:e5:eb:b8:b7:a4:5b:30:42:47:d3:14:ae:cd:41: 6f:43:2d:2a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QjdFOTExMC8GA1UEBRMoREY1MTQ3MEIxNUU4QzE0MUFGMkZBODQ2QTI4QzAzQjM4 NTkxQkFCNDAeFw0yNDAzMTkwNzE5MDRaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjkzYzY4LTEwZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeLWK2U0TWUnP+HN0Mj9YT0LmpsaAhUXZhZi+IyocXPxTBs1e5jF3SCQYumxwJ xx1PR8vhLOYOORv5t+dR/eOCWRXIG8lTnFzWeeHjqcpBi1OS+Ecex21TwJef+A3/ 1wGhz9g8QDpnWLQJar31K0p6LqWjpVggMwJaQJK9HCkn5+Pd4pL2bQmt7f5vcMPr QmLlSgyI11qb+wox0l2ugRjLFW8Pc4TqpaRlAmvjjDs+Nu+vFQ+uG1qoi0vFAZ+b 5qHYU2kHk/McADC1GCftGlZ4j1TMzpjMnT1JxvitKBj9HTnXWLNiOKk6RC6/SqbF QsAbf0CSOkGjOTcoaHpdjRP3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULfdTzp50 SRJ/1hmnSnzD+YCzj5kwHwYDVR0jBBgwFoAU31FHCxXowUGvL6hGoowDs4WRurQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCN0U5L0U5OUU3RjUyNkUy RTExRUU4NUQ5MkQzMkM0RjlBRTAyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVy US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzFGSEN4WG93VUd2TDZoR29vd0RzNFdSdXJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FOTlFN0Y1MjZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zNjdFMkNDODZF MkYxMUVFOUY1REVGMzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcok4DANBgkqhkiG9w0BAQsFAAOCAQEAj05Kf4wCnV2R6Hit rbZ+npvylimA9EWolSV6Tdun2sptyIyIwElq0CgVaPnLAMt3GxMK4VVLyib7C7S4 xH4hayC8z9Fzog9xT3WpsLuaQVOsdzKCxumeEJg/rnftI22yXZNNdQzdkPf6iPV+ QzfXOU1HlaA0cF+K9q7zfd7j1C5Y0mIRgBWXYnK4Y+aZra+2YRz9Sz7rL86lfjrk lVXrA2Q0+3vIcPJVBASooBOKDrFGp0LTU3Y/AgCauGd/5/RTyQ9u68NV6hWRsEjb ObCDS/iAbvqNIxKi7QJj3JqOcGIg01EnCL/zF0ZWBB4euOXruLekWzBCR9MUrs1B b0MtKg== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org