$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa File: B6D7E1547EEE11EF8B38A43BC4F9AE02.roa (raw, json) Hash identifier: /DhWeAf5i2vFdPMkcJFQOvH9T/sM8ZkhHIPukebgP0Y= Subject key identifier: 57:D7:DE:C3:19:F3:74:3E:2D:A3:1F:98:B2:F6:FF:0E:18:6E:3A:23 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 271A Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa Signing time: Mon 21 Oct 2024 07:23:40 +0000 ROA not before: Mon 21 Oct 2024 07:23:40 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152891 IP address blocks: 203.213.202.0/24 maxlen: 24 2001:4457:5b7b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10010 (0x271a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Oct 21 07:23:40 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6716017c-5a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:d4:e4:66:6a:70:44:56:81:9f:fe:ff:eb: 8e:44:9b:69:ce:07:73:96:09:7c:69:3a:f8:cc:7b: a9:46:28:d9:b4:88:7f:39:20:bf:9c:91:2d:61:54: 91:55:0e:8f:2a:e4:28:53:7f:5e:14:c9:f3:f6:db: 56:d1:76:78:ad:8a:e5:12:e3:f0:61:4d:af:24:e3: 63:b5:b4:56:61:eb:d9:e9:d0:f9:72:a1:2e:c4:50: f5:56:ca:54:bd:a6:c4:9c:20:48:02:1b:22:dc:5f: 78:03:ae:dd:bc:51:52:32:78:e3:8c:54:11:63:e0: a0:25:fd:53:d7:ce:c0:b7:15:de:cd:fa:f9:66:a2: d6:33:08:a5:5b:d2:98:20:0e:1c:75:72:7f:7b:b3: 67:eb:2f:8e:cf:cc:3b:e6:63:a1:e4:a4:46:b2:8e: df:6e:2e:7d:a8:cd:46:fc:0a:4c:05:0e:1b:29:f5: cf:c6:88:b9:c7:83:46:57:e0:10:79:72:f1:4e:36: 4a:78:3c:1d:9d:df:12:06:75:51:fc:99:3c:c8:53: 07:df:6f:4f:64:06:78:62:e0:8d:1a:1b:4b:87:4a: ab:03:6a:a0:a2:ff:89:06:04:9e:eb:bc:53:bd:d8: fc:f0:ca:d8:7a:74:5e:2e:5e:28:35:1b:bf:cc:03: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D7:DE:C3:19:F3:74:3E:2D:A3:1F:98:B2:F6:FF:0E:18:6E:3A:23 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.213.202.0/24 IPv6: 2001:4457:5b7b::/48 Signature Algorithm: sha256WithRSAEncryption 1a:41:5d:24:fd:fe:e8:ca:ef:15:b4:85:91:17:fe:31:a1:98: 2e:fe:a7:72:99:09:44:bc:72:a2:4c:7c:4a:18:b4:60:57:8d: c0:19:98:a2:c7:1f:8b:67:68:13:aa:05:39:57:a0:ff:d0:72: 70:4a:fc:f9:91:d8:e4:e1:ce:c1:6a:98:fc:fa:ab:17:8b:a8: 45:48:5d:50:7a:6a:d3:bf:b9:e2:21:a4:09:d8:4a:0c:f9:fa: 6a:b2:a8:ee:8c:9e:d2:4e:ed:34:85:4f:ef:50:17:ab:39:56: 2b:d3:95:e1:59:3b:57:c2:c0:e8:85:f9:38:b2:63:78:c7:d3: 9f:05:0f:76:58:19:2a:8d:78:d8:a1:66:bb:6f:0a:86:7f:18: 0a:b3:99:e7:83:c2:fb:28:83:bf:ee:60:60:dd:c0:55:74:37: 2a:8f:b9:6b:de:25:b2:8a:e6:59:80:c5:80:89:a2:a5:8e:c8: af:9e:e3:e7:62:54:f9:56:1a:87:fe:f6:3c:a4:49:86:9d:d3: 91:d7:d7:db:35:31:f4:e9:2c:29:3d:1a:f9:a1:5b:5c:d1:b5: 73:85:93:0e:86:2e:d3:8b:36:a5:81:ff:61:68:ee:8e:f9:52: 4a:a1:92:a0:cd:21:42:da:bc:d3:47:59:b7:76:99:20:10:f0: bb:42:c7:87 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQxMDIxMDcyMzQwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzE2MDE3Yy01YTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnonU5GZqcERWgZ/+/+uORJtpzgdzlgl8aTr4zHupRijZtIh/OSC/nJEtYVSR VQ6PKuQoU39eFMnz9ttW0XZ4rYrlEuPwYU2vJONjtbRWYevZ6dD5cqEuxFD1VspU vabEnCBIAhsi3F94A67dvFFSMnjjjFQRY+CgJf1T187AtxXezfr5ZqLWMwilW9KY IA4cdXJ/e7Nn6y+Oz8w75mOh5KRGso7fbi59qM1G/ApMBQ4bKfXPxoi5x4NGV+AQ eXLxTjZKeDwdnd8SBnVR/Jk8yFMH329PZAZ4YuCNGhtLh0qrA2qgov+JBgSe67xT vdj88MrYenReLl4oNRu/zANuWwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFfX3sMZ 83Q+LaMfmLL2/w4YbjojMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQjZEN0UxNTQ3 RUVFMTFFRjhCMzhBNDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADL1cowDwQCAAIwCQMHACABRFdbezANBgkqhkiG9w0BAQsF AAOCAQEAGkFdJP3+6MrvFbSFkRf+MaGYLv6ncpkJRLxyokx8Shi0YFeNwBmYoscf i2doE6oFOVeg/9BycEr8+ZHY5OHOwWqY/PqrF4uoRUhdUHpq07+54iGkCdhKDPn6 arKo7oye0k7tNIVP71AXqzlWK9OV4Vk7V8LA6IX5OLJjeMfTnwUPdlgZKo142KFm u28Khn8YCrOZ54PC+yiDv+5gYN3AVXQ3Ko+5a94lsormWYDFgImipY7Ir57j52JU +VYah/72PKRJhp3TkdfX2zUx9OksKT0a+aFbXNG1c4WTDoYu04s2pYH/YWjujvlS SqGSoM0hQtq800dZt3aZIBDwu0LHhw== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:09 2024 by rpki-client on console-ams.rpki-client.org