$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa File: C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa (raw, json) Hash identifier: kR9spEW1is0jBJfLnTc/5df7T7vuoq4ZZYVArAg5qFU= Subject key identifier: 1F:DA:8D:D2:CF:F9:8D:EF:93:BE:5D:2E:2D:CD:31:59:72:CC:B8:51 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 269D Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:47 +0000 ROA not before: Wed 10 Apr 2024 16:23:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139867 IP address blocks: 124.107.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9885 (0x269d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd12-1c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e5:ca:6c:89:db:cf:4d:07:08:f9:62:8f:46: 02:0f:8f:08:24:14:5e:61:89:cc:c6:da:33:9a:da: 07:00:4b:59:00:10:c3:42:83:94:c0:ce:f1:3d:4b: 47:65:0c:1c:6d:8c:37:01:0e:fe:ff:d8:95:23:76: 4a:8c:3b:48:c3:6a:a2:dd:83:9c:4e:af:a2:31:38: 56:57:75:9a:3b:f9:81:0f:13:60:b6:54:d2:44:2e: 45:09:af:44:83:08:95:84:05:1d:41:e5:f9:86:e2: 0b:d7:cc:ed:58:07:62:f3:69:36:21:24:53:11:7d: 9a:31:1a:8c:71:63:b9:0f:d0:42:a0:2f:ab:fa:ec: 5a:94:37:96:f9:e9:5a:09:28:3a:60:cc:d1:a9:3f: 61:bd:97:5a:74:32:17:ed:3b:bf:e5:81:7a:53:88: 30:68:36:e6:08:bc:56:c7:b0:45:81:7d:ad:75:75: e7:1b:0e:9a:2e:c9:82:ef:3e:35:43:52:98:f8:a1: 65:61:d4:47:85:12:88:91:32:46:35:9b:c8:0b:ee: e1:ac:84:7f:1b:4f:be:40:4b:70:bc:f1:c0:ab:97: fa:4b:a2:93:69:5e:2b:88:de:eb:b1:53:15:b3:12: 23:53:44:97:d8:c2:ce:c0:d8:20:6e:ad:b1:4d:b8: cc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DA:8D:D2:CF:F9:8D:EF:93:BE:5D:2E:2D:CD:31:59:72:CC:B8:51 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.107.226.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:f5:0a:8e:e8:00:71:3d:66:7d:21:e7:cb:48:2e:8d:fa:e5: b1:9c:78:91:50:83:ae:ea:04:0e:7e:56:0d:ec:7c:67:9d:37: 4a:24:c4:17:87:6c:cb:74:70:39:a3:82:0b:3d:e9:86:b7:5d: 4d:db:54:43:f6:20:ba:31:56:0b:d5:57:f4:ef:12:98:87:ab: c1:15:c3:75:80:35:7d:fc:95:53:f0:89:6f:02:f3:ea:e0:9a: 5e:47:e1:b1:5a:af:11:7d:7f:7f:5b:fc:27:ce:cf:04:88:b0: 50:d8:0b:4e:bb:67:84:97:1b:d7:4a:64:6e:92:c7:4e:c4:04: 61:30:77:31:f7:57:7c:2d:e0:f0:56:c6:4f:76:6c:42:61:a5: 9a:21:dc:3d:63:80:57:95:c9:1f:7a:1f:fb:d7:e6:74:51:21: 70:69:a1:9f:8f:e0:b6:67:10:4c:07:b4:a0:4c:50:82:4a:a6: 57:4f:08:96:f6:87:af:8a:6f:6b:78:27:89:e5:a0:00:44:9b: 37:0a:d8:24:5b:3f:5b:a6:80:31:89:10:c1:2b:eb:b3:cd:0c: a5:47:8b:e1:4d:7e:dd:3b:6e:02:28:bd:01:54:ef:5c:7a:d2: de:b5:68:01:be:ab:34:9f:17:74:9e:ed:11:c4:fc:f4:67:0f: 8a:c0:4e:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxMi0xYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOXKbInbz00HCPlij0YCD48IJBReYYnMxtozmtoHAEtZABDDQoOUwM7xPUtH ZQwcbYw3AQ7+/9iVI3ZKjDtIw2qi3YOcTq+iMThWV3WaO/mBDxNgtlTSRC5FCa9E gwiVhAUdQeX5huIL18ztWAdi82k2ISRTEX2aMRqMcWO5D9BCoC+r+uxalDeW+ela CSg6YMzRqT9hvZdadDIX7Tu/5YF6U4gwaDbmCLxWx7BFgX2tdXXnGw6aLsmC7z41 Q1KY+KFlYdRHhRKIkTJGNZvIC+7hrIR/G0++QEtwvPHAq5f6S6KTaV4riN7rsVMV sxIjU0SX2MLOwNggbq2xTbjMiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB/ajdLP +Y3vk75dLi3NMVlyzLhRMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQzgyRDZBQ0M5 NjlBMTFFQjlCQzFGQTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8a+IwDQYJKoZIhvcNAQELBQADggEBAB/1Co7oAHE9Zn0h 58tILo365bGceJFQg67qBA5+Vg3sfGedN0okxBeHbMt0cDmjggs96Ya3XU3bVEP2 ILoxVgvVV/TvEpiHq8EVw3WANX38lVPwiW8C8+rgml5H4bFarxF9f39b/CfOzwSI sFDYC067Z4SXG9dKZG6Sx07EBGEwdzH3V3wt4PBWxk92bEJhpZoh3D1jgFeVyR96 H/vX5nRRIXBpoZ+P4LZnEEwHtKBMUIJKpldPCJb2h6+Kb2t4J4nloABEmzcK2CRb P1umgDGJEMEr67PNDKVHi+FNft07bgIovQFU71x60t61aAG+qzSfF3Se7RHE/PRn D4rATh4= -----END CERTIFICATE-----Generated at Thu May 2 17:43:51 2024 by rpki-client on console-fra.rpki-client.org