$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/FC72B9529F0311EAB6B8EA87C4F9AE02.roa File: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (raw, json) Hash identifier: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw= Subject key identifier: 40:90:D0:19:DE:D8:FA:CF:47:C0:73:59:E9:20:D8:2C:74:ED:B3:AE Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 2DFE Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/FC72B9529F0311EAB6B8EA87C4F9AE02.roa Signing time: Fri 27 Nov 2020 14:20:06 +0000 ROA not before: Fri 27 Nov 2020 14:20:06 +0000 ROA not after: Mon 31 Mar 2031 00:00:00 +0000 asID: 18366 IP address blocks: 202.12.31.0/24 maxlen: 24 2001:dd8:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11774 (0x2dfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Nov 27 14:20:06 2020 GMT Not After : Mar 31 00:00:00 2031 GMT Subject: CN=5fc10b15-3c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:c3:66:01:20:ee:a5:e5:28:63:88:81:a2: 9c:ee:8e:c4:2b:32:58:ce:0d:91:50:a2:e8:c5:f8: 93:3d:bb:87:57:c6:39:38:d1:8b:21:6f:b5:84:c9: ad:36:f0:56:55:fd:91:02:36:67:75:a6:e1:4a:17: 7f:24:22:b0:e0:95:10:01:8e:ef:4f:e6:8e:29:c2: d3:3a:51:ef:04:7d:1c:de:cd:b2:ce:d4:a1:45:04: e2:e2:a5:98:af:49:21:f1:1e:4d:fd:cb:d0:30:86: 60:f6:67:fa:30:ed:a1:4b:90:17:87:e8:27:ab:ac: 65:41:ec:fe:19:1a:b1:0a:d0:f3:a1:94:08:14:cf: 80:30:fe:32:6a:1e:1d:b0:6b:33:be:8a:e3:de:92: 6f:4a:7b:81:09:cb:fd:b3:4f:41:be:91:97:f4:df: 1f:4e:1a:07:be:8b:83:59:57:e8:c1:8d:61:bc:3a: 03:73:ad:ff:35:f8:c5:34:68:d1:09:2b:b9:38:49: 4b:7f:a6:a7:50:59:f3:26:09:fa:3e:95:b2:4e:50: 98:f0:76:5e:27:29:59:10:9a:b6:f1:cb:0e:7b:26: 9c:47:88:f0:b8:71:43:a5:78:e9:b7:a6:53:de:c9: 87:d1:54:0c:bc:d9:72:6c:06:a1:4a:df:eb:32:28: b4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:90:D0:19:DE:D8:FA:CF:47:C0:73:59:E9:20:D8:2C:74:ED:B3:AE X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/FC72B9529F0311EAB6B8EA87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.31.0/24 IPv6: 2001:dd8:12::/48 Signature Algorithm: sha256WithRSAEncryption 60:77:81:81:24:72:07:e3:84:2c:c6:ab:42:b7:46:63:00:b1: 96:48:00:58:ea:f8:25:ec:c3:8f:a3:2d:8a:0c:58:c1:24:50: 8e:40:d3:fe:5a:b7:96:27:b4:5d:4a:97:05:cd:5a:2b:d3:fc: 0a:ce:c7:11:b2:a3:07:27:49:e0:c8:17:73:34:a0:5f:b3:a5: 45:97:68:24:7d:27:3a:41:3b:57:e7:28:8d:2d:ed:10:db:ff: 67:19:e1:db:ae:f8:67:d9:0c:41:f0:90:d0:74:6d:d0:a5:7f: 10:e3:7f:a5:87:14:05:e3:32:13:54:a7:0a:e9:06:88:2c:6c: 8f:a5:1f:2c:ca:a9:ce:ac:0e:e5:38:45:10:1d:36:5d:5a:60: 48:c2:20:10:2e:cc:c0:af:19:3c:fd:b0:5b:c0:b3:05:4e:ec: 86:5f:c0:93:b3:d7:6b:50:d1:83:f5:a1:a8:d5:d3:3a:9e:53: 9c:aa:6a:ce:48:53:c3:50:e4:e4:21:8a:b8:f8:e2:7d:6b:aa: 8e:d7:11:65:06:51:c6:81:02:96:90:3d:08:e2:63:6d:6e:11: fa:13:2e:d5:48:ea:a9:c5:40:96:4d:c3:7c:d3:6c:d3:95:b5: b7:32:7b:81:97:8b:be:20:f3:9d:86:a6:1e:ce:25:69:e6:f1: 5b:7e:d1:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICLf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjAxMTI3MTQyMDA2WhcNMzEwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw01ZmMxMGIxNS0zYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFLDZgEg7qXlKGOIgaKc7o7EKzJYzg2RUKLoxfiTPbuHV8Y5ONGLIW+1hMmt NvBWVf2RAjZndabhShd/JCKw4JUQAY7vT+aOKcLTOlHvBH0c3s2yztShRQTi4qWY r0kh8R5N/cvQMIZg9mf6MO2hS5AXh+gnq6xlQez+GRqxCtDzoZQIFM+AMP4yah4d sGszvorj3pJvSnuBCcv9s09BvpGX9N8fThoHvouDWVfowY1hvDoDc63/NfjFNGjR CSu5OElLf6anUFnzJgn6PpWyTlCY8HZeJylZEJq28csOeyacR4jwuHFDpXjpt6ZT 3smH0VQMvNlybAahSt/rMii07wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFECQ0Bne 2PrPR8BzWekg2Cx07bOuMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM1QkUvRDQwMTYxOUExRDY5MTFFMkFGQjY0RUE3MDhCMDJDRDIvRkM3MkI5NTI5 RjAzMTFFQUI2QjhFQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKDB8wDwQCAAIwCQMHACABDdgAEjANBgkqhkiG9w0BAQsF AAOCAQEAYHeBgSRyB+OELMarQrdGYwCxlkgAWOr4JezDj6MtigxYwSRQjkDT/lq3 lie0XUqXBc1aK9P8Cs7HEbKjBydJ4MgXczSgX7OlRZdoJH0nOkE7V+cojS3tENv/ Zxnh2674Z9kMQfCQ0HRt0KV/EON/pYcUBeMyE1SnCukGiCxsj6UfLMqpzqwO5ThF EB02XVpgSMIgEC7MwK8ZPP2wW8CzBU7shl/Ak7PXa1DRg/WhqNXTOp5TnKpqzkhT w1Dk5CGKuPjifWuqjtcRZQZRxoEClpA9COJjbW4R+hMu1UjqqcVAlk3DfNNs05W1 tzJ7gZeLviDznYamHs4laebxW37Rwg== -----END CERTIFICATE-----Generated at Sun Jun 16 15:56:56 2024 by rpki-client on console-ams.rpki-client.org