$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa File: 743ABB72997011EAB50D6934C4F9AE02.roa (raw, json) Hash identifier: E7J2EE4Iw2nztwDHOazaLxPeQrBXYkfo/CwcOcaXIpo= Subject key identifier: 8E:B0:20:98:D2:53:02:B3:A7:36:CC:5B:B0:8B:F6:9C:B8:89:C8:6F Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 26A7 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:56 +0000 ROA not before: Wed 10 Apr 2024 16:23:56 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 20940 IP address blocks: 124.106.175.0/24 maxlen: 24 202.138.183.0/24 maxlen: 24 2001:4450:40::/48 maxlen: 48 2001:4457:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9895 (0x26a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:56 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd1c-059a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8f:81:7e:a9:0f:e2:35:6e:f4:f7:6a:1f:0e: 3d:8b:c1:d7:31:c9:bb:19:f6:90:06:cb:9d:13:23: 32:bb:21:c0:1a:d1:b7:d8:da:c8:eb:1f:83:64:06: 0b:d8:0b:c8:80:9d:bc:fa:0b:4f:c3:95:54:fa:80: 5f:28:65:c7:8a:d4:35:d2:d5:3a:1f:62:ca:64:79: a8:f9:de:05:cb:26:5b:f8:02:91:8b:68:00:b7:11: 4c:a4:aa:e7:92:f2:d9:c1:37:83:b5:03:04:bf:e7: 85:60:c4:b5:e4:2b:43:8d:7a:fc:31:9c:13:79:59: c7:d0:88:17:f9:c9:c2:9a:8c:4d:09:5c:7d:61:40: 39:a2:5e:1b:a7:e1:f3:9c:e7:19:35:3d:71:77:70: b8:f1:88:95:9c:d3:87:3f:99:2a:7e:38:5f:d7:96: 81:9d:73:87:25:fe:b8:36:90:d7:ad:1a:92:79:f5: 57:43:b2:5d:38:50:83:50:54:bf:fa:84:f8:c1:bb: 85:19:3d:89:18:dd:b1:8f:c4:d8:2b:88:e6:04:99: 36:d2:56:10:e1:1f:3d:74:76:c8:d8:67:2e:b9:3e: aa:26:20:86:8d:e7:a2:1f:99:eb:f2:a0:16:0b:5a: e9:a2:8f:dd:49:af:4e:e0:05:db:ee:31:42:eb:ab: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B0:20:98:D2:53:02:B3:A7:36:CC:5B:B0:8B:F6:9C:B8:89:C8:6F X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.106.175.0/24 202.138.183.0/24 IPv6: 2001:4450:40::/48 2001:4457:ff0::/48 Signature Algorithm: sha256WithRSAEncryption 75:4f:1f:2d:8c:4f:fb:e0:7e:b6:8e:bc:37:4a:1a:f9:0f:6d: 58:61:bf:48:82:9a:4a:81:ff:cf:0d:54:49:ed:ef:52:66:a0: fe:23:20:58:3a:6d:90:7c:23:7e:f7:4b:ad:9f:78:59:b2:a1: 11:bf:c9:74:47:1d:2a:85:25:73:88:ca:a0:7b:b9:cc:66:41: 5c:26:3d:51:ab:87:f9:37:22:43:21:fb:63:22:f2:d1:b9:5c: a6:60:53:b4:3e:34:02:06:d8:d1:57:31:44:59:b4:72:92:28: 34:6f:91:00:62:5e:8f:b8:7c:cb:4b:79:31:9e:06:88:4b:32: 98:13:ce:d2:1d:50:8f:e9:06:28:ed:9f:e2:08:8c:6f:5e:4e: a3:4c:8e:a5:d5:0d:b5:80:e3:66:eb:68:96:b2:bc:ba:c4:09: 70:79:d7:dd:7d:c6:cc:64:10:2d:41:cb:b2:4e:cb:ee:6a:93: a7:fe:7e:23:d4:8b:ff:19:cb:d4:e7:2b:ea:21:b1:08:da:39: 12:eb:42:1b:20:d4:cd:d2:88:9e:ba:df:27:66:5b:65:b8:fb: fd:08:8c:af:ed:d3:e6:3a:ab:bb:16:4f:3e:91:d6:8f:18:35: d1:9c:fe:f6:8b:b8:27:41:ee:68:76:73:d8:cd:2a:50:8a:56: 24:d6:7c:a3 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICJqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzU2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxYy0wNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74+BfqkP4jVu9PdqHw49i8HXMcm7GfaQBsudEyMyuyHAGtG32NrI6x+DZAYL 2AvIgJ28+gtPw5VU+oBfKGXHitQ10tU6H2LKZHmo+d4FyyZb+AKRi2gAtxFMpKrn kvLZwTeDtQMEv+eFYMS15CtDjXr8MZwTeVnH0IgX+cnCmoxNCVx9YUA5ol4bp+Hz nOcZNT1xd3C48YiVnNOHP5kqfjhf15aBnXOHJf64NpDXrRqSefVXQ7JdOFCDUFS/ +oT4wbuFGT2JGN2xj8TYK4jmBJk20lYQ4R89dHbI2GcuuT6qJiCGjeeiH5nr8qAW C1rpoo/dSa9O4AXb7jFC66uw/QIDAQABo4ICtTCCArEwHQYDVR0OBBYEFI6wIJjS UwKzpzbMW7CL9py4ichvMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzQzQUJCNzI5 OTcwMTFFQUI1MEQ2OTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAB8aq8DBADKircwGAQCAAIwEgMHACABRFAAQAMHACABRFcP 8DANBgkqhkiG9w0BAQsFAAOCAQEAdU8fLYxP++B+to68N0oa+Q9tWGG/SIKaSoH/ zw1USe3vUmag/iMgWDptkHwjfvdLrZ94WbKhEb/JdEcdKoUlc4jKoHu5zGZBXCY9 UauH+TciQyH7YyLy0blcpmBTtD40AgbY0VcxRFm0cpIoNG+RAGJej7h8y0t5MZ4G iEsymBPO0h1Qj+kGKO2f4giMb15Oo0yOpdUNtYDjZutolrK8usQJcHnX3X3GzGQQ LUHLsk7L7mqTp/5+I9SL/xnL1Ocr6iGxCNo5EutCGyDUzdKInrrfJ2ZbZbj7/QiM r+3T5jqruxZPPpHWjxg10Zz+9ou4J0HuaHZz2M0qUIpWJNZ8ow== -----END CERTIFICATE-----Generated at Thu May 2 17:43:51 2024 by rpki-client on console-fra.rpki-client.org