$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa File: 29B9D5B8524111EABEF0A119C4F9AE02.roa (raw, json) Hash identifier: jsRUiHxqEVSR6l1UCBND45Gu5bO5xI0ELEp0w+R91N8= Subject key identifier: D6:59:1F:F4:54:E0:E5:BB:E3:6A:33:DE:63:9C:D4:E7:02:6D:53:AC Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0931 Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa Signing time: Fri 28 Apr 2023 21:58:19 +0000 ROA not before: Fri 28 Apr 2023 21:58:19 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 45495 IP address blocks: 202.4.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2353 (0x931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Apr 28 21:58:19 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=644c417b-d93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6e:b4:2f:2c:d7:ef:e3:2d:c0:b4:aa:2d:b9: e6:7e:94:a9:e3:b4:ea:8f:20:7a:f6:3b:10:89:72: 19:9a:65:cc:e1:96:40:46:71:5f:29:8b:af:12:15: a4:42:71:cf:95:c2:1f:3e:66:39:8c:c9:80:43:fb: 6b:ce:96:23:82:a1:5b:d1:0f:08:20:8b:0c:da:d0: 86:f1:73:c8:68:f3:86:29:e9:66:3a:43:90:a0:bf: 3a:bb:42:e1:20:db:1f:61:d8:70:f4:19:77:60:cc: 98:3a:55:26:86:b0:92:b7:9d:d5:b0:5c:53:e4:33: 97:ef:51:d8:65:28:cc:b7:a0:29:a7:8a:3d:1c:4d: 18:c5:a0:db:5a:79:f4:f8:90:6d:46:e8:f7:c4:43: 3e:40:00:4b:13:a8:22:9d:d2:bd:65:24:61:58:68: 7f:0e:db:1d:7b:52:9c:5c:f8:5e:d7:83:b2:f5:7d: f7:78:ce:0e:50:7a:95:32:6f:48:67:12:8b:cd:81: 74:6f:5d:c7:77:eb:9e:cc:78:b5:9f:4c:d6:c1:d5: 26:4b:bb:be:b8:f9:f3:4d:95:88:20:63:fa:eb:2a: 19:d5:27:1f:c9:3c:21:7c:34:47:08:31:3d:76:9c: ea:10:4f:41:aa:f1:8e:45:bb:e0:50:3a:15:79:09: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:59:1F:F4:54:E0:E5:BB:E3:6A:33:DE:63:9C:D4:E7:02:6D:53:AC X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.251.0/24 Signature Algorithm: sha256WithRSAEncryption 15:36:83:a7:29:04:0e:62:19:bc:16:d7:c2:69:71:60:9c:aa: ca:3a:d1:d0:02:85:1d:72:f8:31:5e:3f:83:2d:72:d8:17:27: 4f:60:02:74:a4:b3:fb:85:99:e9:87:32:bf:29:b3:2b:48:ff: b2:32:27:0d:5f:40:14:21:c5:a1:46:91:44:43:40:da:cb:5d: 2c:38:57:e3:d9:29:13:6d:e3:2b:fd:12:fc:69:d8:15:b7:d8: b1:4c:77:7b:a5:0c:1c:2c:46:9f:17:41:f0:59:dd:2c:98:cb: 62:c5:63:3e:42:fd:99:5f:1e:75:bf:2a:63:37:32:d5:19:0b: 45:22:04:5e:26:64:52:33:87:63:8d:5d:a3:9a:1a:65:f9:09: 63:61:3e:a5:8a:32:df:b8:9d:fa:78:40:8f:01:5d:4f:6c:4f: 85:20:33:91:b5:13:3a:a9:ca:45:91:f3:02:0f:89:b6:25:5d: 94:44:1a:4c:1a:a6:9a:b7:cf:1f:80:8e:4b:02:27:0e:c6:53: 5e:37:cc:c2:2f:74:f5:0e:13:4b:ff:5e:c5:65:11:5b:89:92: a0:3e:8e:8c:69:17:20:b6:2f:be:40:16:30:c3:48:d3:53:dc: 18:38:b9:ee:53:f9:96:ce:d2:e7:da:be:3a:3d:f1:e8:53:33: 2c:f7:59:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjMwNDI4MjE1ODE5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDRjNDE3Yi1kOTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1260LyzX7+MtwLSqLbnmfpSp47TqjyB69jsQiXIZmmXM4ZZARnFfKYuvEhWk QnHPlcIfPmY5jMmAQ/trzpYjgqFb0Q8IIIsM2tCG8XPIaPOGKelmOkOQoL86u0Lh INsfYdhw9Bl3YMyYOlUmhrCSt53VsFxT5DOX71HYZSjMt6App4o9HE0YxaDbWnn0 +JBtRuj3xEM+QABLE6gindK9ZSRhWGh/Dtsde1KcXPhe14Oy9X33eM4OUHqVMm9I ZxKLzYF0b13Hd+uezHi1n0zWwdUmS7u+uPnzTZWIIGP66yoZ1ScfyTwhfDRHCDE9 dpzqEE9BqvGORbvgUDoVeQk5ZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNZZH/RU 4OW742oz3mOc1OcCbVOsMB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDQTEvNzA2M0U0MjQ1MjNGMTFFQThDOUNGMDE2QzRGOUFFMDIvMjlCOUQ1Qjg1 MjQxMTFFQUJFRjBBMTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKBPswDQYJKoZIhvcNAQELBQADggEBABU2g6cpBA5iGbwW 18JpcWCcqso60dAChR1y+DFeP4MtctgXJ09gAnSks/uFmemHMr8psytI/7IyJw1f QBQhxaFGkURDQNrLXSw4V+PZKRNt4yv9Evxp2BW32LFMd3ulDBwsRp8XQfBZ3SyY y2LFYz5C/ZlfHnW/KmM3MtUZC0UiBF4mZFIzh2ONXaOaGmX5CWNhPqWKMt+4nfp4 QI8BXU9sT4UgM5G1EzqpykWR8wIPibYlXZREGkwappq3zx+AjksCJw7GU143zMIv dPUOE0v/XsVlEVuJkqA+joxpFyC2L75AFjDDSNNT3Bg4ue5T+ZbO0ufavjo98ehT Myz3WVc= -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org