$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/DE76B04EC2BA11EB99E5E36FC4F9AE02.roa File: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (raw, json) Hash identifier: vnLp/g0V/F/MvaYVIrAZzlUv5Vsmgf3IbBef1IThZtE= Subject key identifier: 1F:07:4D:54:84:FC:59:6D:F5:B4:9D:7A:FA:7F:08:FF:75:9B:26:2C Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0905 Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/DE76B04EC2BA11EB99E5E36FC4F9AE02.roa Signing time: Sat 24 Feb 2024 21:09:27 +0000 ROA not before: Sat 24 Feb 2024 21:09:27 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136170 IP address blocks: 123.100.226.0/24 maxlen: 24 202.157.176.0/23 maxlen: 24 202.157.184.0/23 maxlen: 24 202.157.186.0/23 maxlen: 23 202.157.186.0/24 maxlen: 24 202.157.187.0/24 maxlen: 24 202.157.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Feb 24 21:09:27 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65da5b07-4266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ab:28:5e:d5:56:01:4e:95:a4:cd:e0:77:dd: 31:4b:45:33:61:8a:8b:72:9c:67:0c:ce:4d:13:20: 9e:7f:55:41:6c:71:ff:4e:94:44:f4:fd:8e:59:39: 08:0a:cc:fa:eb:6a:22:e6:16:7b:47:88:ae:bb:5b: d5:6a:3e:e8:af:98:88:3d:8d:f7:83:e2:36:56:07: b4:86:e8:ca:78:cf:33:a9:fb:7c:d8:ca:81:ec:89: 2b:e2:a9:3a:94:89:d9:d6:b3:66:71:1c:26:8c:6b: d6:9b:0c:62:29:5f:8a:f8:4f:78:0f:63:e6:dc:d3: 29:78:54:31:de:95:95:04:39:10:c6:bc:d4:2c:41: eb:25:cc:a4:05:f7:22:66:8a:58:65:70:cf:62:04: 1e:5f:23:e0:45:9a:39:7c:b2:e4:11:a5:98:c8:fb: 95:cf:b6:59:fe:cf:d8:21:59:c0:31:13:f2:62:5f: d3:21:84:ca:13:86:b0:15:c6:c3:69:06:ef:87:d3: 70:2c:5a:18:7c:3e:9b:e0:8a:11:21:b1:56:56:df: c0:27:5c:8f:74:f0:44:d3:bd:23:bd:f6:2d:a1:b3: c1:12:75:62:5d:d0:d6:1f:e8:cf:8b:c4:49:6a:9d: e4:4b:e2:2e:7f:73:73:92:83:52:6b:be:46:dd:3b: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:07:4D:54:84:FC:59:6D:F5:B4:9D:7A:FA:7F:08:FF:75:9B:26:2C X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/DE76B04EC2BA11EB99E5E36FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.226.0/24 202.157.176.0/23 202.157.184.0-202.157.189.255 Signature Algorithm: sha256WithRSAEncryption 3b:c3:3d:7c:83:b6:1e:5b:46:c1:00:58:5f:db:23:c3:a4:c8: 65:64:04:4f:da:cf:6b:b8:6a:31:42:bf:01:44:65:4c:8b:0f: 6b:82:fd:54:ac:e5:16:0a:8c:32:21:d8:8f:3f:c2:8c:20:4c: b5:e4:c2:24:ec:a0:d7:2a:06:ea:f9:39:a0:a8:10:1f:26:b2: b9:a9:57:f4:f1:0b:91:18:6b:96:bd:67:aa:99:71:64:8c:b7: 30:49:bc:5a:d9:75:da:ce:78:4d:7a:17:24:ea:96:6c:a6:c5: be:28:ea:8b:11:cf:fa:a9:c1:37:e0:ba:11:c8:30:40:9b:8b: 61:9f:3d:24:c8:e4:b8:bc:9c:da:66:41:fe:03:7f:8e:6e:29: 1d:a3:d0:e3:4d:74:67:8f:47:38:e4:f7:f4:20:3d:31:ee:f5: 81:a7:6e:74:ea:36:fc:40:89:a4:14:fb:ba:f8:64:c1:74:83: 65:22:ff:58:e8:64:db:ad:9a:6d:4d:26:cc:ec:17:14:ce:67: e6:40:8f:ab:8c:2d:8b:32:e6:53:67:cd:91:e2:c3:5c:93:88: 14:99:34:12:f2:cf:6b:12:e5:41:aa:94:84:2e:fe:33:37:ba: f2:21:c1:78:d4:c0:ad:99:a1:64:d3:58:bd:26:dd:d3:b3:86: b6:0f:59:8b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjQwMjI0MjEwOTI3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhNWIwNy00MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KsoXtVWAU6VpM3gd90xS0UzYYqLcpxnDM5NEyCef1VBbHH/TpRE9P2OWTkI Csz662oi5hZ7R4iuu1vVaj7or5iIPY33g+I2Vge0hujKeM8zqft82MqB7Ikr4qk6 lInZ1rNmcRwmjGvWmwxiKV+K+E94D2Pm3NMpeFQx3pWVBDkQxrzULEHrJcykBfci ZopYZXDPYgQeXyPgRZo5fLLkEaWYyPuVz7ZZ/s/YIVnAMRPyYl/TIYTKE4awFcbD aQbvh9NwLFoYfD6b4IoRIbFWVt/AJ1yPdPBE070jvfYtobPBEnViXdDWH+jPi8RJ ap3kS+Iuf3NzkoNSa75G3TtenwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFB8HTVSE /Flt9bSdevp/CP91myYsMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk1ODAvQzdDRTJFMTA3RjhEMTFFQUFEOENENTFFQzRGOUFFMDIvREU3NkIwNEVD MkJBMTFFQjk5RTVFMzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAB7ZOIDBAHKnbAwDAMEA8qduAMEAcqdvDANBgkqhkiG9w0B AQsFAAOCAQEAO8M9fIO2HltGwQBYX9sjw6TIZWQET9rPa7hqMUK/AURlTIsPa4L9 VKzlFgqMMiHYjz/CjCBMteTCJOyg1yoG6vk5oKgQHyayualX9PELkRhrlr1nqplx ZIy3MEm8Wtl12s54TXoXJOqWbKbFvijqixHP+qnBN+C6EcgwQJuLYZ89JMjkuLyc 2mZB/gN/jm4pHaPQ4010Z49HOOT39CA9Me71gadudOo2/ECJpBT7uvhkwXSDZSL/ WOhk262abU0mzOwXFM5n5kCPq4wtizLmU2fNkeLDXJOIFJk0EvLPaxLlQaqUhC7+ Mze68iHBeNTArZmhZNNYvSbd07OGtg9Ziw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org