$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/7C836BA46C8E11EEA38B9554C4F9AE02.roa File: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (raw, json) Hash identifier: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY= Subject key identifier: 14:F8:BF:56:77:16:64:D2:28:5E:F4:B3:14:79:C2:DF:52:3F:8F:58 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3436 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/7C836BA46C8E11EEA38B9554C4F9AE02.roa Signing time: Thu 26 Oct 2023 05:03:27 +0000 ROA not before: Thu 26 Oct 2023 05:03:27 +0000 ROA not after: Mon 31 Mar 2031 00:00:00 +0000 asID: 18367 IP address blocks: 203.119.42.0/24 maxlen: 24 2001:dd8:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13366 (0x3436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Oct 26 05:03:27 2023 GMT Not After : Mar 31 00:00:00 2031 GMT Subject: CN=6539f31e-470d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c1:07:ee:ed:46:70:7e:b9:f7:09:0b:7c:b9: de:8e:73:e9:4b:32:62:0b:5d:6b:33:65:5a:cf:a3: e7:7e:bf:f5:2f:47:a6:b9:9e:8b:c8:7c:47:4b:fa: 3a:28:33:67:59:1f:ab:e6:ee:5f:aa:e1:1e:92:aa: 5f:c1:7f:4b:54:84:54:41:57:18:e2:e5:21:01:58: ed:d8:b2:39:c9:39:c4:9f:48:f0:c5:fa:82:b6:bd: f5:02:44:ff:fa:64:dd:84:76:4d:6e:25:57:cb:91: 95:79:af:c4:80:52:f4:1d:17:50:4e:2e:04:31:ef: 98:11:9f:14:e2:bd:e0:ff:c9:1f:f1:10:6c:25:df: e4:8d:f5:46:fc:f9:26:cf:c2:2f:ff:b1:cf:e3:13: f6:47:e3:2b:e9:c6:65:1b:48:d2:eb:c6:fa:4e:d1: 5f:cd:ae:e7:f7:64:0c:87:cf:25:7d:72:76:f6:91: 95:7d:60:b1:c3:1e:ec:d1:c0:0d:12:de:af:9f:c5: 27:d2:05:aa:cd:c9:b1:57:bf:03:ea:29:f5:8c:40: 8a:d1:72:4d:fa:60:1c:bb:b7:e9:ed:a6:65:12:66: 5d:fb:23:81:8b:3c:5b:c3:b9:62:e9:a9:88:9f:dd: 07:87:32:a0:8a:eb:6a:7e:d5:6e:87:a3:48:88:d9: ee:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F8:BF:56:77:16:64:D2:28:5E:F4:B3:14:79:C2:DF:52:3F:8F:58 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/7C836BA46C8E11EEA38B9554C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.119.42.0/24 IPv6: 2001:dd8:e::/48 Signature Algorithm: sha256WithRSAEncryption 66:42:33:6d:a5:ad:93:22:3e:50:bf:72:f7:fb:db:76:e6:a3: ab:ba:fe:94:e6:85:b6:8f:da:7f:8b:d1:cc:95:63:fa:de:05: bd:f4:69:6a:83:c4:5c:cd:db:1c:75:b4:b9:4d:e4:f2:d2:33: 45:a7:32:31:8e:ff:21:b3:a1:2d:0b:8b:fa:7a:22:40:29:11: bb:be:6f:e5:36:e0:2d:d4:7d:79:8c:35:ca:16:9c:a1:d5:8f: 9b:a6:f6:b8:16:2b:53:6a:b6:7e:19:7b:b7:1d:a8:8e:d2:be: 1e:e9:4f:3b:86:c2:c3:43:1b:86:78:f6:f4:d4:90:dc:6f:4e: 5d:5e:58:90:92:6a:e6:05:44:cb:fd:12:22:40:59:f5:19:42: e7:58:bd:c9:df:a8:69:2c:b7:2e:32:6b:a3:1b:17:1f:4a:eb: ce:48:3f:b9:f6:b0:6e:ce:8a:5b:e2:c9:f1:bb:28:57:8e:6a: 30:71:29:86:40:80:77:36:a6:95:49:28:ca:ec:e9:49:95:d5: d6:61:c3:67:7a:5a:30:2e:6f:c4:dc:3f:c9:08:5a:95:4b:8e: a7:40:9e:cb:3a:a2:87:31:32:6e:f2:c7:2f:8f:7b:81:c2:a5: 27:f1:f8:2a:c3:8b:f7:3e:cc:11:f0:0c:33:b9:8f:89:e1:39: 01:58:2b:94 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjMxMDI2MDUwMzI3WhcNMzEwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM5ZjMxZS00NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sEH7u1GcH659wkLfLnejnPpSzJiC11rM2Vaz6Pnfr/1L0emuZ6LyHxHS/o6 KDNnWR+r5u5fquEekqpfwX9LVIRUQVcY4uUhAVjt2LI5yTnEn0jwxfqCtr31AkT/ +mTdhHZNbiVXy5GVea/EgFL0HRdQTi4EMe+YEZ8U4r3g/8kf8RBsJd/kjfVG/Pkm z8Iv/7HP4xP2R+Mr6cZlG0jS68b6TtFfza7n92QMh88lfXJ29pGVfWCxwx7s0cAN Et6vn8Un0gWqzcmxV78D6in1jECK0XJN+mAcu7fp7aZlEmZd+yOBizxbw7li6amI n90HhzKgiutqftVuh6NIiNnuZwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBT4v1Z3 FmTSKF70sxR5wt9SP49YMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM1QkUvRDQwMTYxOUExRDY5MTFFMkFGQjY0RUE3MDhCMDJDRDIvN0M4MzZCQTQ2 QzhFMTFFRUEzOEI5NTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLdyowDwQCAAIwCQMHACABDdgADjANBgkqhkiG9w0BAQsF AAOCAQEAZkIzbaWtkyI+UL9y9/vbduajq7r+lOaFto/af4vRzJVj+t4FvfRpaoPE XM3bHHW0uU3k8tIzRacyMY7/IbOhLQuL+noiQCkRu75v5TbgLdR9eYw1yhacodWP m6b2uBYrU2q2fhl7tx2ojtK+HulPO4bCw0Mbhnj29NSQ3G9OXV5YkJJq5gVEy/0S IkBZ9RlC51i9yd+oaSy3LjJroxsXH0rrzkg/ufawbs6KW+LJ8bsoV45qMHEphkCA dzamlUkoyuzpSZXV1mHDZ3paMC5vxNw/yQhalUuOp0CeyzqihzEybvLHL497gcKl J/H4KsOL9z7MEfAMM7mPieE5AVgrlA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org