$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa File: 350711FA881211EE9710F928C4F9AE02.roa (raw, json) Hash identifier: /AJd6poS8Ng5rehLy7t+jOBIXVOshJArXBaFYmXY69Y= Subject key identifier: D5:37:F8:C9:44:86:96:B2:95:1B:80:19:95:26:4E:5C:59:22:60:E6 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0DC7 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa Signing time: Fri 30 Aug 2024 18:56:22 +0000 ROA not before: Fri 30 Aug 2024 18:56:22 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24433 IP address blocks: 203.15.122.0/24 maxlen: 24 203.27.220.0/23 maxlen: 24 2405:140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Aug 30 18:56:22 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d215d5-3d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:a7:6d:b7:ad:cf:8f:43:c4:9e:b8:cd:ce: b4:53:99:ae:34:cb:27:af:ef:26:4f:04:0b:9f:20: d7:8e:37:67:fb:14:5e:80:ce:89:f9:eb:4f:8d:3b: 4f:27:2c:fc:13:20:91:44:e2:58:a5:93:30:d8:5f: a3:01:dd:cb:7b:b3:b4:40:02:a4:5b:d4:13:b0:3f: 5c:da:33:8a:f0:b5:5f:70:89:99:10:d4:b8:75:8c: 94:3b:67:70:c2:c8:44:68:75:2e:0b:11:41:04:74: 1e:8a:fe:e6:74:8a:69:9f:65:1c:29:4e:7d:d0:14: 3b:14:46:e9:9e:49:65:a0:6a:c4:20:56:60:77:89: f2:46:74:5c:f7:8b:ed:67:7c:1c:ac:3f:b3:67:88: e4:7b:44:85:26:37:8b:04:68:c0:34:dc:3f:37:fc: f0:d1:69:07:8e:bc:5d:65:af:96:44:a2:8b:e2:f8: 85:a9:75:e8:92:f6:4f:03:83:34:41:59:e8:89:bc: ad:c9:85:3b:ba:95:c7:7a:a7:eb:60:bc:5c:50:a1: d0:52:a0:76:46:3c:13:f3:bb:3c:fe:74:2e:5b:84: 9c:30:ab:6c:dd:62:0d:29:d8:e9:91:03:27:f4:d5: fe:6a:3a:07:19:e6:50:cd:e2:4e:f4:af:22:b3:bb: 86:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:37:F8:C9:44:86:96:B2:95:1B:80:19:95:26:4E:5C:59:22:60:E6 X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.15.122.0/24 203.27.220.0/23 IPv6: 2405:140::/32 Signature Algorithm: sha256WithRSAEncryption bf:f0:a6:45:c2:b7:4a:54:fc:83:cf:c7:97:f7:89:b3:04:81: 2f:dd:d3:41:0b:23:c5:20:c1:a0:b6:a3:23:08:92:8e:cc:19: 7a:8c:31:b1:a2:a3:c4:dc:6b:da:c5:56:e0:33:61:bb:b2:f8: f5:4a:aa:80:f5:20:12:2b:df:50:fb:16:67:7c:da:5d:6b:a8: b7:a7:f8:1b:34:ab:f1:84:be:e9:42:af:b2:63:73:c9:20:a6: 73:a1:20:9f:6e:0d:f1:81:56:49:95:35:6d:9e:ae:71:b9:49: 5a:83:88:b9:02:9a:c5:35:7f:90:a6:94:7c:b3:0c:1b:6b:2d: f7:a1:15:0d:32:23:ef:c9:f1:d5:a6:ff:1a:25:24:51:93:3d: 9d:b8:f7:3b:21:af:12:51:94:74:3a:30:24:3f:6a:ab:09:1f: fd:cb:2b:0b:47:03:49:6c:c9:fb:90:cb:59:94:65:c9:58:db: 86:8a:34:6b:42:04:91:9a:0b:c9:5d:23:40:06:2a:6f:ae:d2: 19:20:c0:9a:31:4b:c3:1a:70:dc:29:6e:5a:9d:de:f2:72:8e: ac:8f:6f:ab:a6:f9:77:71:47:8c:cc:0c:92:66:9f:85:8b:09: 17:73:d9:a4:a5:47:02:89:a7:6e:3b:51:d8:ea:f7:ee:8d:cb: 7b:5d:51:e1 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjQwODMwMTg1NjIyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyMTVkNS0zZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYmnbbetz49DxJ64zc60U5muNMsnr+8mTwQLnyDXjjdn+xRegM6J+etPjTtP Jyz8EyCRROJYpZMw2F+jAd3Le7O0QAKkW9QTsD9c2jOK8LVfcImZENS4dYyUO2dw wshEaHUuCxFBBHQeiv7mdIppn2UcKU590BQ7FEbpnklloGrEIFZgd4nyRnRc94vt Z3wcrD+zZ4jke0SFJjeLBGjANNw/N/zw0WkHjrxdZa+WRKKL4viFqXXokvZPA4M0 QVnoibytyYU7upXHeqfrYLxcUKHQUqB2RjwT87s8/nQuW4ScMKts3WINKdjpkQMn 9NX+ajoHGeZQzeJO9K8is7uGUwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNU3+MlE hpaylRuAGZUmTlxZImDmMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4NTYvMkNENDVGQkE5RTI0MTFFOUIxNDNCRTcxQzRGOUFFMDIvMzUwNzExRkE4 ODEyMTFFRTk3MTBGOTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADLD3oDBAHLG9wwDQQCAAIwBwMFACQFAUAwDQYJKoZIhvcN AQELBQADggEBAL/wpkXCt0pU/IPPx5f3ibMEgS/d00ELI8UgwaC2oyMIko7MGXqM MbGio8Tca9rFVuAzYbuy+PVKqoD1IBIr31D7Fmd82l1rqLen+Bs0q/GEvulCr7Jj c8kgpnOhIJ9uDfGBVkmVNW2ernG5SVqDiLkCmsU1f5CmlHyzDBtrLfehFQ0yI+/J 8dWm/xolJFGTPZ249zshrxJRlHQ6MCQ/aqsJH/3LKwtHA0lsyfuQy1mUZclY24aK NGtCBJGaC8ldI0AGKm+u0hkgwJoxS8MacNwpblqd3vJyjqyPb6um+XdxR4zMDJJm n4WLCRdz2aSlRwKJp247Udjq9+6Ny3tdUeE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org