$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa File: 6C523164E03F11EE87838439C4F9AE02.roa (raw, json) Hash identifier: v+2l/01UoHJgdCC0kM5naU4djCslZb9P5MPHegECJtE= Subject key identifier: CF:6E:36:BA:19:E7:36:CD:ED:E4:99:B9:7E:AC:84:D5:C3:F7:FC:26 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 81 Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa Signing time: Wed 30 Oct 2024 08:31:09 +0000 ROA not before: Wed 30 Oct 2024 08:31:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152637 IP address blocks: 202.37.52.0/23 maxlen: 23 202.37.52.0/24 maxlen: 24 202.37.53.0/24 maxlen: 24 2401:8860::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Oct 30 08:31:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6721eecd-87da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:30:f7:00:5a:2d:0c:e7:ba:f6:d9:ea:ea: 08:81:26:00:10:21:ff:9f:6f:45:b1:6f:d8:52:39: b1:da:db:64:56:9e:37:15:e2:ec:e9:0a:06:e7:f4: 49:6f:df:86:fa:a0:35:ef:8f:3e:33:83:4d:5f:d0: 0d:74:09:3b:d2:96:33:ff:fd:30:a7:a4:53:58:29: 35:4d:f3:f0:90:15:e8:24:ca:1f:f5:9f:0f:eb:7c: 29:bb:65:07:0f:63:8e:19:6e:89:7d:a9:2d:8a:4d: bb:8a:c5:fa:5d:7c:17:91:66:14:ec:4d:46:c0:a9: ba:02:f7:f8:32:28:9b:a8:6c:61:7b:e0:e7:e8:89: f2:9b:b6:6c:29:71:a3:9c:3e:15:1f:53:85:f4:7a: 0e:4f:60:7e:8d:1e:50:9e:f9:95:17:a6:28:92:d5: 15:44:02:6d:30:28:52:6f:06:f9:f0:5d:b2:3d:6e: bc:63:54:b1:3f:4d:9a:40:0a:2d:fa:f4:57:1c:bb: 36:88:8c:01:17:31:4c:d2:65:cc:81:e8:74:39:5a: 83:53:1c:0c:4f:2b:87:84:3a:b8:1a:20:9d:00:7b: a0:f0:76:b5:38:47:e9:12:1e:a4:4d:8e:d2:fe:fd: e0:31:36:9b:fc:f1:7f:29:b1:34:e0:6b:b7:86:fb: ba:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:6E:36:BA:19:E7:36:CD:ED:E4:99:B9:7E:AC:84:D5:C3:F7:FC:26 X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.52.0/23 IPv6: 2401:8860::/32 Signature Algorithm: sha256WithRSAEncryption 2d:82:55:f8:84:75:7c:4e:54:e6:d7:56:f1:0b:1b:ad:eb:60: 4a:b1:bb:e4:7a:69:96:e0:17:9c:db:54:d3:19:de:33:19:be: 5f:91:d0:68:04:b4:70:1a:fd:d0:4c:19:01:f8:33:0c:03:49: 7b:33:af:3a:ed:98:ed:93:87:da:28:c0:f5:4a:a5:86:98:dc: c8:1e:aa:7b:03:9f:5f:9b:eb:67:7d:35:09:c1:b0:05:4c:bb: 8f:65:9e:37:94:92:15:60:6d:d4:fc:92:f1:1c:4b:ef:4d:78: f0:91:40:59:19:75:32:c9:d4:b0:af:ec:a9:7a:04:e0:cd:22: f6:51:43:ec:a7:cd:51:1d:6c:4c:92:ad:37:0b:46:72:a7:ee: 7b:0a:61:e4:c2:f9:c3:d5:7b:53:b8:c8:e0:81:9c:e0:9c:17: 15:e8:17:0d:27:21:32:a4:23:2a:62:f1:e1:90:d5:a7:2e:cc: 96:be:fb:d2:d2:0e:b1:87:49:91:29:7d:71:58:a7:c2:dd:4b: 0f:63:be:3c:f3:c0:92:c9:03:54:c3:5c:66:55:b0:80:a8:71: ff:d0:3d:00:08:9f:ff:93:d6:cc:e8:14:93:f3:df:9f:1d:5c: 3d:f1:ae:1a:6a:a3:cb:b3:92:8e:1c:d6:28:d4:89:8b:f0:69: ab:e3:d9:22 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjQxMDMwMDgzMTA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIxZWVjZC04N2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKEw9wBaLQznuvbZ6uoIgSYAECH/n29FsW/YUjmx2ttkVp43FeLs6QoG5/RJ b9+G+qA1748+M4NNX9ANdAk70pYz//0wp6RTWCk1TfPwkBXoJMof9Z8P63wpu2UH D2OOGW6Jfaktik27isX6XXwXkWYU7E1GwKm6Avf4MiibqGxhe+Dn6Inym7ZsKXGj nD4VH1OF9HoOT2B+jR5QnvmVF6YoktUVRAJtMChSbwb58F2yPW68Y1SxP02aQAot +vRXHLs2iIwBFzFM0mXMgeh0OVqDUxwMTyuHhDq4GiCdAHug8Ha1OEfpEh6kTY7S /v3gMTab/PF/KbE04Gu3hvu6bwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM9uNroZ 5zbN7eSZuX6shNXD9/wmMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE0OTgvQjNDOEE5N0NERkI1MTFFRUI3QUQ4RjJFQzRGOUFFMDIvNkM1MjMxNjRF MDNGMTFFRTg3ODM4NDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAHKJTQwDQQCAAIwBwMFACQBiGAwDQYJKoZIhvcNAQELBQAD ggEBAC2CVfiEdXxOVObXVvELG63rYEqxu+R6aZbgF5zbVNMZ3jMZvl+R0GgEtHAa /dBMGQH4MwwDSXszrzrtmO2Th9oowPVKpYaY3MgeqnsDn1+b62d9NQnBsAVMu49l njeUkhVgbdT8kvEcS+9NePCRQFkZdTLJ1LCv7Kl6BODNIvZRQ+ynzVEdbEySrTcL RnKn7nsKYeTC+cPVe1O4yOCBnOCcFxXoFw0nITKkIypi8eGQ1acuzJa++9LSDrGH SZEpfXFYp8LdSw9jvjzzwJLJA1TDXGZVsICocf/QPQAIn/+T1szoFJPz358dXD3x rhpqo8uzko4c1ijUiYvwaavj2SI= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org