$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa File: 07258E36F3C611EE807A6F3EC4F9AE02.roa (raw, json) Hash identifier: Iu3dQo3UxQ27f0LG5TZGsWFPYKiAJAsXE8htjtPCT1A= Subject key identifier: 36:41:8D:56:C0:C9:B3:9F:E1:32:07:47:32:AF:29:02:DA:A9:FA:F9 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: 0A Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa Signing time: Sat 06 Apr 2024 03:30:34 +0000 ROA not before: Sat 06 Apr 2024 03:30:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.170.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 09:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Validity Not Before: Apr 6 03:30:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6610c1da-c7db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:e6:5e:b5:b6:e6:5a:46:ec:94:ad:19:b6: c1:89:de:f2:aa:d3:c7:7f:65:2e:22:da:44:f5:e5: 66:1d:ab:dd:4f:87:5e:dc:a4:c9:1d:f0:a5:50:15: 87:81:3c:96:30:97:8a:af:c2:e5:5e:73:45:46:4b: 40:51:bb:c1:74:68:bd:2d:e8:6d:36:0f:4b:be:83: 2f:fc:54:39:0c:72:4e:e4:58:1f:2c:e8:49:01:66: e9:03:d6:3e:8c:4e:3e:ca:6e:59:7a:20:46:d9:b2: 0f:94:d6:2a:27:c0:e6:39:c2:f5:65:04:4b:8a:fe: d7:54:68:e9:ec:8a:3e:d9:68:38:01:45:d4:99:aa: f8:34:13:64:c5:aa:b3:fc:c8:0a:b9:98:15:ef:5d: db:6b:bc:0a:55:27:ff:14:f1:cd:d4:99:55:d9:46: f4:f5:d0:71:b7:09:a8:76:5d:a4:ff:2e:a3:bb:37: 54:4a:c5:6d:39:c1:dc:67:3c:01:86:c1:3d:26:e7: 41:2d:ad:46:9a:0e:6a:6f:de:fd:84:b4:6a:46:fe: d1:12:8e:15:4d:38:d4:11:4d:90:ce:41:d4:5f:01: a2:50:05:0a:02:09:81:79:d7:1f:d3:99:f1:0a:65: 38:4e:b1:6d:6e:dc:df:7d:79:37:69:41:52:49:ed: 43:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:41:8D:56:C0:C9:B3:9F:E1:32:07:47:32:AF:29:02:DA:A9:FA:F9 X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.90.0/23 Signature Algorithm: sha256WithRSAEncryption 23:5f:69:be:b6:29:8b:19:e0:ca:e3:66:06:a9:e6:fa:59:25: ba:33:c0:80:fc:b4:a2:6e:b8:68:6d:17:e6:85:af:6b:c5:a4: 4e:33:b1:8f:de:43:d9:a8:89:06:84:07:e9:75:ed:41:b5:13: f7:1b:c5:8d:20:a7:5b:56:4a:57:79:bc:5b:a1:99:d2:37:5d: fa:1b:25:93:7f:6d:06:fa:a7:58:ac:1f:66:59:ea:fa:2c:14: 0c:b2:7a:ee:fd:c4:30:26:4b:3d:39:de:84:19:a1:53:39:46: 1e:b0:5e:cf:d8:0a:2d:bb:d4:8d:b7:6f:65:77:82:65:78:b7: 6c:de:5d:7c:f1:57:59:d1:f4:ad:9d:da:33:6d:23:5b:b2:28: e1:4e:4b:91:c8:d9:a5:19:d2:d5:2d:b4:8d:6e:01:ac:a0:f6: c2:3d:a5:ab:83:72:2a:8d:9f:7b:1c:d6:db:ff:a2:31:40:28: 5b:97:9c:f4:4b:e4:ef:b9:8c:ea:f2:7b:8b:03:9e:7b:19:d2: e5:e8:57:8a:f1:25:82:7e:a1:f1:76:d0:0e:d4:ca:db:7d:c4: 5b:81:8c:d0:50:58:e9:88:0f:90:f6:ec:06:e6:68:e7:f3:b1: ca:93:40:2d:25:f4:a4:2c:10:74:a0:da:8c:50:ef:c8:9c:7a: 4a:6d:fb:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RUY0MTExMC8GA1UEBRMoMzM2RERFN0VDMzI4MDQ5OTk2NDM3MUNBRUUyNjIwRkJG Q0FDREM5ODAeFw0yNDA0MDYwMzMwMzRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTBjMWRhLWM3ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMzeZetbbmWkbslK0ZtsGJ3vKq08d/ZS4i2kT15WYdq91Ph17cpMkd8KVQFYeB PJYwl4qvwuVec0VGS0BRu8F0aL0t6G02D0u+gy/8VDkMck7kWB8s6EkBZukD1j6M Tj7Kbll6IEbZsg+U1ionwOY5wvVlBEuK/tdUaOnsij7ZaDgBRdSZqvg0E2TFqrP8 yAq5mBXvXdtrvApVJ/8U8c3UmVXZRvT10HG3Cah2XaT/LqO7N1RKxW05wdxnPAGG wT0m50EtrUaaDmpv3v2EtGpG/tESjhVNONQRTZDOQdRfAaJQBQoCCYF51x/TmfEK ZThOsW1u3N99eTdpQVJJ7UMFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNkGNVsDJ s5/hMgdHMq8pAtqp+vkwHwYDVR0jBBgwFoAUM23efsMoBJmWQ3HK7iYg+/ys3Jgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFRjQxL0M3NURBMTMyRjJG QjExRUU5RkNGNzY0Q0M0RjlBRTAyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTIzZWZzTW9CSm1XUTNISzdpWWctX3lzM0pnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUY0MS9DNzVEQTEzMkYyRkIxMUVFOUZDRjc2NENDNEY5QUUwMi8wNzI1OEUzNkYz QzYxMUVFODA3QTZGM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcuqWjANBgkqhkiG9w0BAQsFAAOCAQEAI19pvrYpixngyuNm Bqnm+lklujPAgPy0om64aG0X5oWva8WkTjOxj95D2aiJBoQH6XXtQbUT9xvFjSCn W1ZKV3m8W6GZ0jdd+hslk39tBvqnWKwfZlnq+iwUDLJ67v3EMCZLPTnehBmhUzlG HrBez9gKLbvUjbdvZXeCZXi3bN5dfPFXWdH0rZ3aM20jW7Io4U5LkcjZpRnS1S20 jW4BrKD2wj2lq4NyKo2fexzW2/+iMUAoW5ec9Evk77mM6vJ7iwOeexnS5ehXivEl gn6h8XbQDtTK233EW4GM0FBY6YgPkPbsBuZo5/OxypNALSX0pCwQdKDajFDvyJx6 Sm372w== -----END CERTIFICATE-----Generated at Wed May 1 10:34:20 2024 by rpki-client on console-fra.rpki-client.org