$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa File: 0120C296835D11EEA3484166C4F9AE02.roa (raw, json) Hash identifier: XnGiaZTL2Hv3YZbAOxRpbKT7n7AsmKwDOuzgfwWiTks= Subject key identifier: AD:5E:BD:97:14:71:D2:4E:66:CE:51:03:77:4C:05:ED:FE:D6:C5:EC Certificate issuer: /CN=A91E7A8E/serialNumber=0B813E2BBA84069EB434D656667FECE1F61B494B Certificate serial: 02 Authority key identifier: 0B:81:3E:2B:BA:84:06:9E:B4:34:D6:56:66:7F:EC:E1:F6:1B:49:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa Signing time: Wed 15 Nov 2023 02:16:37 +0000 ROA not before: Wed 15 Nov 2023 02:16:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 20473 IP address blocks: 203.34.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.crl rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A8E/serialNumber=0B813E2BBA84069EB434D656667FECE1F61B494B Validity Not Before: Nov 15 02:16:37 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65542a05-371d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:e9:7e:88:af:74:89:42:de:94:22:19:94: 60:51:83:86:aa:e2:fe:a0:7d:70:44:1e:02:70:e0: c0:d2:1e:09:b5:3e:47:67:a8:92:cd:18:0b:fd:88: 87:3c:9c:38:bd:7f:78:3b:96:49:cd:73:e8:70:b3: f5:30:5b:9c:c0:3c:e8:8f:7d:98:0f:c2:a0:9f:bc: 6a:82:ce:b5:8a:1d:79:59:6f:c3:45:49:af:00:2b: 1d:44:9e:e4:8e:fc:9f:41:3e:3e:bf:35:6f:9d:77: 0b:f8:ca:ef:fe:d3:d8:00:78:fd:86:83:48:5b:09: a2:24:9c:ac:97:b5:bc:e4:d6:f0:36:36:89:56:c6: 2f:00:c4:53:ec:64:17:e3:a0:e3:ab:73:eb:be:89: 36:27:20:c2:04:51:1c:fe:3d:f0:6e:e9:f1:68:8f: f3:83:6c:1d:ab:70:f2:5f:c8:d8:03:c8:22:b1:22: 46:17:07:75:a2:42:f8:f8:cd:45:0e:69:1f:b5:6d: 68:1a:bf:c9:95:c4:2e:57:ee:26:19:20:38:0c:80: e1:ec:c1:51:d6:00:79:00:8e:03:3d:95:29:06:21: e3:03:3b:83:e0:ea:2f:00:c4:2c:c2:76:5b:15:54: 6d:4c:8c:b1:5f:09:06:c6:9d:39:00:9c:59:71:90: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5E:BD:97:14:71:D2:4E:66:CE:51:03:77:4C:05:ED:FE:D6:C5:EC X509v3 Authority Key Identifier: keyid:0B:81:3E:2B:BA:84:06:9E:B4:34:D6:56:66:7F:EC:E1:F6:1B:49:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.235.0/24 Signature Algorithm: sha256WithRSAEncryption 79:55:b0:f2:b7:9b:42:64:e1:67:1e:4e:87:76:6d:1e:5e:bd: f7:55:46:1c:be:44:83:37:24:a9:50:e1:ba:e7:b6:a3:6e:df: 5b:6f:fe:3e:4f:de:d8:a2:13:5c:bc:95:26:ce:b8:49:73:7a: 87:51:e9:37:f0:f4:95:14:e6:d2:4a:e8:78:83:c6:9e:d6:72: 37:ab:d0:68:2f:5d:d6:1f:2f:37:6a:de:1d:9c:3b:62:1a:00: 75:eb:48:2c:08:2d:3a:ce:a7:9e:31:1b:60:7c:85:22:c7:3e: 6a:cb:c7:da:9e:a3:1c:25:0b:cd:7a:5a:b7:57:71:c7:93:21: a7:73:5d:79:ff:6e:48:ef:0e:81:cf:9f:0e:ec:bc:24:6c:c9: 5c:c6:4a:03:e1:1f:19:b8:55:ad:95:70:49:b6:79:13:6d:93: eb:85:4d:aa:ba:45:8b:97:c8:3a:44:b9:2f:c5:6a:9c:a2:c2: 91:5a:da:df:bc:f0:3f:dd:a2:06:d3:4b:d6:f7:9a:b7:4a:7d: a5:61:60:50:14:a9:c7:cd:12:3c:c3:a4:d3:e1:de:1f:ab:b6: 9b:75:bf:65:54:3c:e1:cc:72:44:7c:26:0d:a7:00:90:50:02: 63:0d:49:02:30:2c:93:b0:50:6a:94:4c:36:7d:bd:3f:89:fb: a6:18:87:af -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0E4RTExMC8GA1UEBRMoMEI4MTNFMkJCQTg0MDY5RUI0MzRENjU2NjY3RkVDRTFG NjFCNDk0QjAeFw0yMzExMTUwMjE2MzdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTQyYTA1LTM3MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUnOl+iK90iULelCIZlGBRg4aq4v6gfXBEHgJw4MDSHgm1PkdnqJLNGAv9iIc8 nDi9f3g7lknNc+hws/UwW5zAPOiPfZgPwqCfvGqCzrWKHXlZb8NFSa8AKx1EnuSO /J9BPj6/NW+ddwv4yu/+09gAeP2Gg0hbCaIknKyXtbzk1vA2NolWxi8AxFPsZBfj oOOrc+u+iTYnIMIEURz+PfBu6fFoj/ODbB2rcPJfyNgDyCKxIkYXB3WiQvj4zUUO aR+1bWgav8mVxC5X7iYZIDgMgOHswVHWAHkAjgM9lSkGIeMDO4Pg6i8AxCzCdlsV VG1MjLFfCQbGnTkAnFlxkA9RAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrV69lxRx 0k5mzlEDd0wF7f7WxewwHwYDVR0jBBgwFoAUC4E+K7qEBp60NNZWZn/s4fYbSUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3QThFL0EwNTE1NkE2ODM1 QzExRUU4OEVBQjg0RkM0RjlBRTAyL0M0RS1LN3FFQnA2ME5OWldabl9zNGZZYlNV cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzRFLUs3cUVCcDYwTk5aV1puX3M0ZlliU1VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0E4RS9BMDUxNTZBNjgzNUMxMUVFODhFQUI4NEZDNEY5QUUwMi8wMTIwQzI5Njgz NUQxMUVFQTM0ODQxNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsi6zANBgkqhkiG9w0BAQsFAAOCAQEAeVWw8rebQmThZx5O h3ZtHl6991VGHL5EgzckqVDhuue2o27fW2/+Pk/e2KITXLyVJs64SXN6h1HpN/D0 lRTm0kroeIPGntZyN6vQaC9d1h8vN2reHZw7YhoAdetILAgtOs6nnjEbYHyFIsc+ asvH2p6jHCULzXpat1dxx5Mhp3Ndef9uSO8Ogc+fDuy8JGzJXMZKA+EfGbhVrZVw SbZ5E22T64VNqrpFi5fIOkS5L8VqnKLCkVra37zwP92iBtNL1veat0p9pWFgUBSp x80SPMOk0+HeH6u2m3W/ZVQ84cxyRHwmDacAkFACYw1JAjAsk7BQapRMNn29P4n7 phiHrw== -----END CERTIFICATE-----Generated at Sun May 5 08:39:15 2024 by rpki-client on console-fra.rpki-client.org