$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa File: BC75F7EEB69511EEA0196A79C4F9AE02.roa (raw, json) Hash identifier: kkdAlFSE+tCHqDF8THqrdDK9DXb0r2SRnzjT7LJ3/GM= Subject key identifier: 3C:77:AF:2E:48:0B:3D:D3:B0:74:36:5E:22:97:2A:63:9A:B9:04:EE Certificate issuer: /CN=A91DFFB0/serialNumber=17A66E6EFDED105E812190990536A5DF603BA80E Certificate serial: 04 Authority key identifier: 17:A6:6E:6E:FD:ED:10:5E:81:21:90:99:05:36:A5:DF:60:3B:A8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa Signing time: Fri 19 Jan 2024 06:41:12 +0000 ROA not before: Fri 19 Jan 2024 06:41:12 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17667 IP address blocks: 110.238.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.crl rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFFB0/serialNumber=17A66E6EFDED105E812190990536A5DF603BA80E Validity Not Before: Jan 19 06:41:12 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65aa1988-8630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:6c:55:ca:7f:5e:f3:d1:5c:0f:f0:70:17: ff:a9:b5:5f:34:70:b0:f1:d7:9b:cb:f9:a9:da:1d: 91:d3:ec:c0:42:bf:71:81:27:f2:48:b9:f0:fb:28: eb:c2:01:15:10:71:53:41:a4:13:48:12:01:8d:43: c8:2a:d5:0b:e7:3c:f5:cf:d5:d2:a9:b2:ef:bb:a6: 27:0f:64:ab:43:3e:85:9c:7f:ce:ed:e6:88:6f:b3: f4:25:0a:be:aa:18:a4:cc:39:0b:68:8f:c1:6e:0c: 42:58:d7:1a:17:cf:eb:9e:50:a0:27:43:03:8f:bc: 20:48:9e:ef:6d:19:06:e7:83:ce:7c:cf:e9:7b:4a: 63:7e:21:a8:cd:51:ce:e0:b9:0e:ff:0e:5e:fd:2d: 08:c3:17:55:7b:44:05:9c:a7:2f:53:e5:77:cc:4a: 2d:28:ac:3d:88:b4:d8:23:e1:2a:18:20:fb:40:d4: 21:8b:fe:30:7d:e3:05:46:41:af:2f:89:f6:18:54: 6b:a5:71:94:bd:4c:36:a1:f9:b9:7e:7d:94:dc:f4: b7:0d:3a:27:2e:ca:2c:d1:de:3c:26:76:71:28:ef: 50:63:15:98:88:45:4e:7f:58:fd:f1:61:b7:9a:61: 07:c7:d7:6b:82:a7:fa:98:25:f4:60:d0:fd:e9:42: 14:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:77:AF:2E:48:0B:3D:D3:B0:74:36:5E:22:97:2A:63:9A:B9:04:EE X509v3 Authority Key Identifier: keyid:17:A6:6E:6E:FD:ED:10:5E:81:21:90:99:05:36:A5:DF:60:3B:A8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.238.0.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:1d:7b:37:b2:c6:9a:e7:8f:56:49:a6:25:5b:25:7a:2f:c7: c1:88:d9:b5:2e:c7:1e:c6:56:8d:e2:48:89:60:1c:67:f4:8d: 29:b8:54:83:eb:aa:b1:0d:bf:87:07:28:6d:64:d2:a2:be:89: ab:1f:85:cf:5f:ac:4c:63:28:63:21:67:52:40:06:1d:c2:ae: b7:a0:91:76:09:53:e7:aa:22:02:a6:d6:f4:9d:cf:70:75:e1: de:2d:9c:2c:45:32:c0:59:0e:12:aa:46:14:a3:e3:d5:43:76: d5:ff:50:2f:bf:7c:94:93:f1:da:a1:02:4c:12:c4:6e:17:af: b8:f1:7c:fc:c9:ab:ae:54:bc:4e:96:00:12:ce:60:69:69:b1: 5b:3c:26:e5:4e:a8:cc:d0:56:99:e8:69:0f:01:92:9c:1a:72: 8c:ae:3c:70:94:a6:df:8e:0c:0f:86:30:df:4c:49:12:91:64: 2a:20:8e:69:53:48:38:7c:50:09:e1:7b:8a:6a:e5:1a:77:b0: 30:65:c2:5b:43:d6:79:53:cb:33:d9:ce:c1:10:c7:bf:b2:bb: 71:37:a2:4e:5b:d2:bc:d0:1c:24:69:f2:e0:ae:37:d0:1e:85: f8:b6:da:71:00:35:05:ec:f3:90:87:06:86:35:e0:f7:7c:aa: 9d:14:31:21 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkZCMDExMC8GA1UEBRMoMTdBNjZFNkVGREVEMTA1RTgxMjE5MDk5MDUzNkE1REY2 MDNCQTgwRTAeFw0yNDAxMTkwNjQxMTJaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWExOTg4LTg2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvImxVyn9e89FcD/BwF/+ptV80cLDx15vL+anaHZHT7MBCv3GBJ/JIufD7KOvC ARUQcVNBpBNIEgGNQ8gq1QvnPPXP1dKpsu+7picPZKtDPoWcf87t5ohvs/QlCr6q GKTMOQtoj8FuDEJY1xoXz+ueUKAnQwOPvCBInu9tGQbng858z+l7SmN+IajNUc7g uQ7/Dl79LQjDF1V7RAWcpy9T5XfMSi0orD2ItNgj4SoYIPtA1CGL/jB94wVGQa8v ifYYVGulcZS9TDah+bl+fZTc9LcNOicuyizR3jwmdnEo71BjFZiIRU5/WP3xYbea YQfH12uCp/qYJfRg0P3pQhTNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPHevLkgL PdOwdDZeIpcqY5q5BO4wHwYDVR0jBBgwFoAUF6Zubv3tEF6BIZCZBTal32A7qA4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRkIwL0QwMEM1Rjg4QjY4 RjExRUVBNTZCQUUxMUM0RjlBRTAyL0Y2WnVidjN0RUY2QklaQ1pCVGFsMzJBN3FB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRjZadWJ2M3RFRjZCSVpDWkJUYWwzMkE3cUE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkZCMC9EMDBDNUY4OEI2OEYxMUVFQTU2QkFFMTFDNEY5QUUwMi9CQzc1RjdFRUI2 OTUxMUVFQTAxOTZBNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAW7uADANBgkqhkiG9w0BAQsFAAOCAQEAjB17N7LGmuePVkmm JVslei/HwYjZtS7HHsZWjeJIiWAcZ/SNKbhUg+uqsQ2/hwcobWTSor6Jqx+Fz1+s TGMoYyFnUkAGHcKut6CRdglT56oiAqbW9J3PcHXh3i2cLEUywFkOEqpGFKPj1UN2 1f9QL798lJPx2qECTBLEbhevuPF8/MmrrlS8TpYAEs5gaWmxWzwm5U6ozNBWmehp DwGSnBpyjK48cJSm344MD4Yw30xJEpFkKiCOaVNIOHxQCeF7imrlGnewMGXCW0PW eVPLM9nOwRDHv7K7cTeiTlvSvNAcJGny4K430B6F+LbacQA1BezzkIcGhjXg93yq nRQxIQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org