$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa File: 5366509AC63511EAAC843455C4F9AE02.roa (raw, json) Hash identifier: sZIeVS4EzNY7xGT9g8wGT7ZJ5Ha157jK1HmygHHXLCQ= Subject key identifier: 23:AB:85:45:E9:35:E6:90:C8:87:72:36:44:88:8B:85:B5:31:9B:FD Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 26B0 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa Signing time: Wed 10 Apr 2024 16:24:13 +0000 ROA not before: Wed 10 Apr 2024 16:24:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9497 IP address blocks: 202.138.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9904 (0x26b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:24:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd2c-ecd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1d:0a:5c:b0:00:13:8a:a7:76:e4:31:ef:31: 09:dc:ec:d6:18:5e:be:71:66:99:f8:d9:d3:02:42: df:ab:d4:ae:6e:c2:1e:23:91:30:ed:04:d0:fe:18: b6:18:b7:ac:01:16:60:58:8b:79:9d:b2:83:87:e0: 74:a8:83:da:43:2d:df:0a:05:34:f5:aa:fc:f9:f5: 33:cf:79:67:48:84:d9:50:ef:75:2f:e6:0b:14:4d: e5:65:70:d2:94:78:69:62:01:d5:62:fb:3a:27:71: b5:51:e4:b5:07:45:62:32:4c:d4:13:ba:24:5a:ab: 7f:d0:27:97:b5:86:74:ba:70:a2:38:48:9c:af:d9: ff:57:7f:9a:3d:98:7c:06:ea:55:d6:73:fe:84:f7: 08:74:35:07:6b:e1:61:a8:b0:1b:cb:f1:d4:11:2b: 9b:bc:07:fc:33:58:40:09:ca:73:5a:6d:b1:47:83: 14:5f:61:b2:fb:5c:f4:74:88:eb:31:15:03:69:ec: ea:f4:af:44:09:e3:5b:35:3c:61:ae:65:df:6e:79: 83:19:93:8c:e6:d1:f4:5f:95:48:74:b9:34:ed:ef: 28:7a:93:eb:0a:48:4a:a4:5f:45:a5:e8:f7:3a:12: 24:6d:d8:22:c7:ef:b0:cf:2b:ce:2e:2a:bd:b6:15: 5e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AB:85:45:E9:35:E6:90:C8:87:72:36:44:88:8B:85:B5:31:9B:FD X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.138.128.0/19 Signature Algorithm: sha256WithRSAEncryption 05:f5:7e:cd:49:94:a2:32:c6:f3:79:a0:8f:30:04:01:cb:1d: c7:3e:58:00:4e:0f:14:5c:ea:d4:55:62:df:14:9c:5c:52:ae: 62:6f:73:15:5d:11:25:99:18:58:37:2c:11:ff:c4:10:4b:f3: 80:75:25:37:1d:e3:94:6c:20:d6:ec:a1:74:10:80:f6:cd:3c: af:00:61:60:08:c2:b8:26:ea:4f:15:65:ac:4a:58:29:4a:d0: 58:6a:94:d0:cf:ac:ce:23:59:7a:65:d6:66:ee:31:b2:fe:34: 0f:d2:78:84:72:6b:fe:9a:cb:83:6b:b1:1e:38:87:02:ea:26: 95:72:43:cf:6a:72:ea:1e:dd:99:b1:28:e4:6a:ad:b3:d5:02: d6:da:20:ba:52:a5:50:17:82:c4:05:d3:25:09:d3:57:46:5e: b2:01:4e:8a:b7:42:b0:f9:9f:b3:9a:47:5f:5b:0d:06:38:1c: fe:47:c2:23:ee:96:6d:c9:2f:cf:6a:a0:d4:bc:2b:f0:5a:27: 54:a5:9e:58:92:9e:1a:05:dc:c0:9c:cb:82:5c:1e:b6:de:b5: 65:99:98:cd:19:1b:0d:03:d1:6d:fd:59:48:51:62:9f:fc:c9: 25:69:a4:c2:25:40:1b:5b:c4:a1:14:d6:22:b0:8d:df:3f:89: b6:15:55:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyNDEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQyYy1lY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsR0KXLAAE4qnduQx7zEJ3OzWGF6+cWaZ+NnTAkLfq9SubsIeI5Ew7QTQ/hi2 GLesARZgWIt5nbKDh+B0qIPaQy3fCgU09ar8+fUzz3lnSITZUO91L+YLFE3lZXDS lHhpYgHVYvs6J3G1UeS1B0ViMkzUE7okWqt/0CeXtYZ0unCiOEicr9n/V3+aPZh8 BupV1nP+hPcIdDUHa+FhqLAby/HUESubvAf8M1hACcpzWm2xR4MUX2Gy+1z0dIjr MRUDaezq9K9ECeNbNTxhrmXfbnmDGZOM5tH0X5VIdLk07e8oepPrCkhKpF9Fpej3 OhIkbdgix++wzyvOLiq9thVe1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCOrhUXp NeaQyIdyNkSIi4W1MZv9MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTM2NjUwOUFD NjM1MTFFQUFDODQzNDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXKioAwDQYJKoZIhvcNAQELBQADggEBAAX1fs1JlKIyxvN5 oI8wBAHLHcc+WABODxRc6tRVYt8UnFxSrmJvcxVdESWZGFg3LBH/xBBL84B1JTcd 45RsINbsoXQQgPbNPK8AYWAIwrgm6k8VZaxKWClK0FhqlNDPrM4jWXpl1mbuMbL+ NA/SeIRya/6ay4NrsR44hwLqJpVyQ89qcuoe3ZmxKORqrbPVAtbaILpSpVAXgsQF 0yUJ01dGXrIBToq3QrD5n7OaR19bDQY4HP5HwiPulm3JL89qoNS8K/BaJ1SlnliS nhoF3MCcy4JcHrbetWWZmM0ZGw0D0W39WUhRYp/8ySVppMIlQBtbxKEU1iKwjd8/ ibYVVX0= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:58 2024 by rpki-client on console-ams.rpki-client.org