$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa File: 7B50FA5EA13911EF8B634635C4F9AE02.roa (raw, json) Hash identifier: fJph6uiOIJRzgAFIwvKPO3OGbJctKCAUncAfZis1/Jo= Subject key identifier: EF:9A:35:AD:71:3E:CE:79:0F:82:BB:AA:E5:9C:D3:4B:F6:9D:31:A5 Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: DA Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa Signing time: Tue 12 Nov 2024 21:02:53 +0000 ROA not before: Tue 12 Nov 2024 21:02:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 55747 IP address blocks: 202.37.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Validity Not Before: Nov 12 21:02:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6733c27c-3807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:47:64:2b:dd:74:d9:2b:bb:e4:d3:e4:0a:64: 3b:cb:a0:b0:be:12:79:0b:21:64:e5:be:92:06:16: 6e:26:2f:07:f8:a2:68:29:70:a8:32:a4:14:7d:bb: e8:c7:6d:fa:1e:5c:09:7e:01:2d:e5:0f:86:7e:02: 91:b3:d8:a9:4a:58:51:fd:89:96:86:e5:9a:c1:e4: 6d:48:70:8f:e2:4f:df:52:cc:8d:e1:da:4f:4b:de: 6d:90:b1:9c:a1:64:96:4f:68:43:22:ee:f6:04:c2: e5:87:86:fb:9b:21:11:59:6a:d4:b7:e1:c7:ec:36: 3b:35:64:c6:9a:01:fa:ff:18:63:94:51:5c:ce:ec: f9:ab:44:cf:2a:54:ed:77:08:30:b8:0c:bb:bb:c5: f2:08:fb:e7:e0:59:e7:28:6e:0a:79:ba:de:29:17: e4:4c:d6:b7:75:5f:cc:d0:7a:a3:34:41:92:78:c4: a2:ba:e9:37:ad:bf:73:62:0d:24:af:45:61:6b:26: 8f:ad:3f:d1:6f:a0:f1:53:b7:d2:aa:27:14:13:99: 50:b5:54:c8:3c:02:40:64:fd:50:82:6f:79:3f:a6: 43:ea:16:2b:08:c4:fe:b3:73:a2:84:c1:7e:97:3c: 2a:5e:e0:3e:3c:1a:17:49:da:77:80:54:4a:a2:cc: 85:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9A:35:AD:71:3E:CE:79:0F:82:BB:AA:E5:9C:D3:4B:F6:9D:31:A5 X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.43.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:f7:73:c5:35:ae:1c:6a:4d:38:c9:f4:49:55:09:c6:19:6d: 1e:34:75:01:6d:cf:d0:7c:e3:07:d2:38:bf:e0:62:a7:05:51: 2b:95:6d:61:be:4a:93:d5:5a:02:c0:56:b9:70:08:de:98:6a: 77:59:d6:60:61:08:98:79:cf:1a:ec:40:dc:bb:53:7e:ba:a7: c4:c9:c6:ba:4c:46:59:ef:af:4c:d5:39:47:5f:1c:6d:47:88: 8d:08:57:ab:c0:eb:42:b6:b9:c0:88:93:97:54:3f:e9:29:60: d9:61:03:93:1a:51:c8:44:19:f6:2f:50:32:03:e3:40:0e:b9: 7f:fc:fc:9b:84:b9:f5:9a:35:6d:00:4c:4f:8e:1d:60:33:d0: 17:08:d3:ea:eb:ca:49:ce:6f:d6:77:d7:03:78:51:dc:6e:c8: 1e:09:ca:7a:9a:21:61:24:44:48:08:84:4c:41:db:bb:f6:92: b7:a1:3e:73:ad:9a:50:78:e7:94:5a:a6:e5:2c:92:8b:56:58: 9d:d5:15:c7:93:59:a2:49:06:ae:81:79:38:e4:da:b8:c5:54: f3:e9:2a:26:28:77:57:61:5c:9b:73:b9:03:3d:17:fe:ef:fc: 76:0f:a3:0c:ea:57:ff:35:7b:1b:c3:fd:8f:ed:6f:7e:55:ce: 3e:b4:8c:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKERGNTE0NzBCMTVFOEMxNDFBRjJGQTg0NkEyOEMwM0Iz ODU5MUJBQjQwHhcNMjQxMTEyMjEwMjUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYzI3Yy0zODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEdkK9102Su75NPkCmQ7y6CwvhJ5CyFk5b6SBhZuJi8H+KJoKXCoMqQUfbvo x236HlwJfgEt5Q+GfgKRs9ipSlhR/YmWhuWaweRtSHCP4k/fUsyN4dpPS95tkLGc oWSWT2hDIu72BMLlh4b7myERWWrUt+HH7DY7NWTGmgH6/xhjlFFczuz5q0TPKlTt dwgwuAy7u8XyCPvn4FnnKG4KebreKRfkTNa3dV/M0HqjNEGSeMSiuuk3rb9zYg0k r0VhayaPrT/Rb6DxU7fSqicUE5lQtVTIPAJAZP1Qgm95P6ZD6hYrCMT+s3OihMF+ lzwqXuA+PBoXSdp3gFRKosyFVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO+aNa1x Ps55D4K7quWc00v2nTGlMB8GA1UdIwQYMBaAFN9RRwsV6MFBry+oRqKMA7OFkbq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FOTlFN0Y1MjZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zMUZIQ3hYb3dVR3ZMNmhHb293RHM0V1J1 clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI3RTkvRTk5RTdGNTI2RTJFMTFFRTg1RDkyRDMyQzRGOUFFMDIvN0I1MEZBNUVB MTM5MTFFRjhCNjM0NjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJSswDQYJKoZIhvcNAQELBQADggEBAE33c8U1rhxqTTjJ 9ElVCcYZbR40dQFtz9B84wfSOL/gYqcFUSuVbWG+SpPVWgLAVrlwCN6YandZ1mBh CJh5zxrsQNy7U366p8TJxrpMRlnvr0zVOUdfHG1HiI0IV6vA60K2ucCIk5dUP+kp YNlhA5MaUchEGfYvUDID40AOuX/8/JuEufWaNW0ATE+OHWAz0BcI0+rryknOb9Z3 1wN4UdxuyB4JynqaIWEkREgIhExB27v2krehPnOtmlB455RapuUskotWWJ3VFceT WaJJBq6BeTjk2rjFVPPpKiYod1dhXJtzuQM9F/7v/HYPowzqV/81exvD/Y/tb35V zj60jKw= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org