$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/EB75D8C4FDE111ED848B004CC4F9AE02.roa File: EB75D8C4FDE111ED848B004CC4F9AE02.roa (raw, json) Hash identifier: rlKl2Pr8a6vrmygkXuTtnSn/232x96ED+d2JzG3BqsA= Subject key identifier: 83:7D:2D:52:57:60:ED:59:18:7A:C3:7D:36:A0:E7:9F:04:29:1F:48 Certificate issuer: /CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Certificate serial: 58 Authority key identifier: 26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/EB75D8C4FDE111ED848B004CC4F9AE02.roa Signing time: Wed 01 Nov 2023 06:37:09 +0000 ROA not before: Wed 01 Nov 2023 06:37:09 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24324 IP address blocks: 202.50.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Validity Not Before: Nov 1 06:37:09 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541f215-e0a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:ce:2b:48:b6:71:10:14:82:8a:f5:55:9a: d5:1e:79:c1:98:31:31:fc:c3:a2:4f:b9:b9:5b:de: 31:d3:13:92:fd:58:b5:a2:93:90:d0:e4:11:2d:a7: 49:03:ef:96:df:eb:16:44:78:6b:1d:2c:f1:88:41: 01:95:48:55:42:a5:d9:13:68:a0:12:74:37:23:b0: e6:7c:f2:b9:eb:c1:19:90:ad:73:15:94:77:04:cb: b5:aa:e6:9d:cc:1e:f7:9a:8d:96:e9:b1:39:85:47: e0:d2:08:f3:4f:7e:22:d3:8f:2c:dc:2f:5e:0f:aa: f7:e2:fd:b7:1b:a0:ae:6e:78:7c:72:16:1f:17:e1: bf:28:3e:10:9c:46:e3:ec:33:25:6c:03:6b:fc:47: 0f:13:0f:2b:a4:55:bd:38:23:62:30:b0:10:fd:79: 51:dc:ab:cf:1c:7b:3b:a4:af:ea:ba:2a:eb:a8:8b: b7:9a:11:28:04:1a:3e:fe:09:7a:c2:ae:99:a3:ed: 40:bb:45:ab:94:c5:53:dd:d7:0c:2e:f2:20:f5:2d: 99:7f:11:d9:ab:eb:3d:52:5b:f0:60:0d:5f:48:5c: 96:e0:d4:a4:60:20:5f:4a:e0:65:ed:b2:dd:76:8e: 2e:a2:92:da:25:74:87:2b:da:9f:2e:41:d1:e8:c7: 46:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7D:2D:52:57:60:ED:59:18:7A:C3:7D:36:A0:E7:9F:04:29:1F:48 X509v3 Authority Key Identifier: keyid:26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/EB75D8C4FDE111ED848B004CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.117.0/24 Signature Algorithm: sha256WithRSAEncryption a8:2d:07:b2:1a:56:c9:5e:2d:1f:4b:f4:bc:56:e2:96:79:99: 1b:a4:f7:56:8e:ed:72:0b:7f:2c:5f:3d:f3:22:66:66:4d:af: 43:05:18:d2:6d:3a:97:10:0a:cb:f8:98:58:d0:18:71:10:7a: 13:95:60:de:b0:5b:b7:24:ed:8f:e7:78:c3:ea:1e:42:46:c4: 34:46:ab:10:07:7e:c8:26:e2:c1:7d:14:b4:d1:d5:92:6f:25: ec:7d:b0:ac:07:fe:3b:53:c9:f6:59:c8:f5:73:1f:2c:73:a1: f1:02:51:38:9c:38:da:ce:3b:63:91:25:9d:5e:ea:e9:91:c2: a6:ef:0f:2b:6b:2a:7f:f9:82:79:1b:fb:af:ec:a4:4b:53:f8: d8:03:f8:11:a6:17:48:84:c7:ff:00:52:66:3c:6c:50:bc:50: b9:1a:ef:ba:74:51:f2:2c:98:42:98:fc:b3:1f:7d:bd:87:5a: a1:38:ad:48:b9:e1:cd:c2:66:0a:5a:5e:0f:41:55:48:7c:c1: 68:12:66:07:70:ca:d2:20:77:22:4b:5e:77:07:cd:20:a8:94: 4d:4e:56:87:dd:b0:2d:84:58:2d:31:f3:28:cf:5a:d6:08:62: 18:99:f0:33:10:b2:29:c1:05:b8:00:ba:7c:27:33:39:75:89: be:d6:49:5b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDVFQzExMC8GA1UEBRMoMjZCMkM4NDYyRkVBMURBNTE0MTY2QjVCMTM5MEFEMEND Mjc3QTVBODAeFw0yMzExMDEwNjM3MDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDFmMjE1LWUwYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKOM4rSLZxEBSCivVVmtUeecGYMTH8w6JPublb3jHTE5L9WLWik5DQ5BEtp0kD 75bf6xZEeGsdLPGIQQGVSFVCpdkTaKASdDcjsOZ88rnrwRmQrXMVlHcEy7Wq5p3M HveajZbpsTmFR+DSCPNPfiLTjyzcL14Pqvfi/bcboK5ueHxyFh8X4b8oPhCcRuPs MyVsA2v8Rw8TDyukVb04I2IwsBD9eVHcq88cezukr+q6Kuuoi7eaESgEGj7+CXrC rpmj7UC7RauUxVPd1wwu8iD1LZl/Edmr6z1SW/BgDV9IXJbg1KRgIF9K4GXtst12 ji6iktoldIcr2p8uQdHox0bJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUg30tUldg 7VkYesN9NqDnnwQpH0gwHwYDVR0jBBgwFoAUJrLIRi/qHaUUFmtbE5CtDMJ3pagw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURENUVDLzA1MzE1REVFRkRE QjExRURBMDMyQkY0MkM0RjlBRTAyL0pyTElSaV9xSGFVVUZtdGJFNUN0RE1KM3Bh Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSnJMSVJpX3FIYVVVRm10YkU1Q3RETUozcGFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFQy8wNTMxNURFRUZEREIxMUVEQTAzMkJGNDJDNEY5QUUwMi9FQjc1RDhDNEZE RTExMUVEODQ4QjAwNENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoydTANBgkqhkiG9w0BAQsFAAOCAQEAqC0HshpWyV4tH0v0 vFbilnmZG6T3Vo7tcgt/LF898yJmZk2vQwUY0m06lxAKy/iYWNAYcRB6E5Vg3rBb tyTtj+d4w+oeQkbENEarEAd+yCbiwX0UtNHVkm8l7H2wrAf+O1PJ9lnI9XMfLHOh 8QJROJw42s47Y5ElnV7q6ZHCpu8PK2sqf/mCeRv7r+ykS1P42AP4EaYXSITH/wBS ZjxsULxQuRrvunRR8iyYQpj8sx99vYdaoTitSLnhzcJmClpeD0FVSHzBaBJmB3DK 0iB3IktedwfNIKiUTU5Wh92wLYRYLTHzKM9a1ghiGJnwMxCyKcEFuAC6fCczOXWJ vtZJWw== -----END CERTIFICATE-----Generated at Fri May 17 08:13:54 2024 by rpki-client on console-fra.rpki-client.org