$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa File: 8D52A23871A611EF8F5B9755C4F9AE02.roa (raw, json) Hash identifier: hF0cvJ5WGf8hjnk2FrHWwiuqbgTh6n818KkJ7xF10xU= Subject key identifier: 2E:35:84:F8:DE:96:C1:C7:BA:10:11:8E:BF:A9:1A:37:D0:63:F6:C4 Certificate issuer: /CN=A91EA54A/serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Certificate serial: 02 Authority key identifier: F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa Signing time: Fri 13 Sep 2024 08:02:42 +0000 ROA not before: Fri 13 Sep 2024 08:02:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7310 IP address blocks: 203.5.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA54A/serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Validity Not Before: Sep 13 08:02:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3f1a2-dd6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:5f:00:a2:73:88:a7:ce:de:0c:a0:bd:10: 5a:93:7b:5f:1c:8e:dc:67:52:e1:2b:28:03:77:0d: 3d:d6:28:e3:eb:41:dd:a8:99:7e:7a:63:79:e5:ec: 00:5f:f1:f7:94:ba:bc:a4:8d:f9:d8:7f:2b:bc:f8: 19:96:76:61:6d:97:db:e5:d8:da:1d:5e:a6:a0:44: e6:ce:25:8c:07:4a:84:a4:3e:24:f6:3d:d6:10:04: 3b:4d:89:c2:03:7d:6d:71:0f:ca:ee:b9:14:93:1a: 04:4d:0d:55:94:d7:1e:4d:c7:a1:76:d2:fd:bd:2b: 5b:6f:6f:21:5e:e0:a2:5a:dd:31:a8:f4:3b:e1:2d: ce:cb:9d:b5:8f:d9:14:22:bd:db:48:82:50:bd:10: ca:7d:94:38:cc:d6:09:41:4c:47:9c:8b:14:f4:95: 99:cf:89:21:0b:ab:c1:ca:65:3e:76:9a:60:72:0c: ec:eb:b9:62:dd:9e:06:ed:47:73:51:05:ec:f8:17: e2:39:50:7d:3e:49:96:5f:d2:a6:24:fc:91:1a:69: 51:e1:f1:92:b4:3c:04:db:49:69:0e:7d:e8:ec:65: 63:b5:38:22:26:84:d9:ba:eb:3c:8b:0f:b6:e1:2a: 35:e5:18:8b:a7:37:f1:5e:b0:31:2b:0e:5e:82:ab: c3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:35:84:F8:DE:96:C1:C7:BA:10:11:8E:BF:A9:1A:37:D0:63:F6:C4 X509v3 Authority Key Identifier: keyid:F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.212.0/24 Signature Algorithm: sha256WithRSAEncryption a1:ac:a1:d8:af:4f:ea:00:93:63:39:8d:e6:82:11:b2:5c:f0: 46:d6:39:80:0c:62:23:01:c2:96:93:72:56:02:2a:bc:30:c5: ee:10:b2:94:fe:39:6b:50:26:40:68:77:66:6c:72:fb:34:ba: 83:a4:a8:a2:b6:83:c5:4d:9a:6a:85:84:79:e1:27:b5:68:7b: ba:c2:6e:65:66:25:3e:6d:f6:5b:3e:13:b3:ac:3a:ac:5a:84: 83:83:41:e9:f7:4e:de:fa:9c:6f:88:94:a2:f3:dd:03:76:a3: 19:af:6f:db:04:38:ef:d7:72:a0:2c:a0:84:3c:11:08:ff:7f: af:9d:93:c6:f7:55:cc:34:68:99:fb:f1:b6:2f:d9:e2:85:58: 4f:4e:80:32:24:ae:76:b7:5f:44:cf:44:26:53:ba:03:9d:7c: 1b:c7:c4:d4:18:a5:08:62:a5:6a:b0:fc:75:88:9b:2b:d2:e7: 10:98:e0:3e:f3:07:a0:64:96:c9:1d:65:bc:d2:1e:79:32:ec: d5:9d:29:c0:ee:bc:a5:f3:57:16:84:21:e0:b2:f6:fb:27:46: ba:d5:e3:46:f8:fc:32:70:61:17:73:2a:a1:cf:c1:98:f5:4b: 1e:ea:df:6b:f1:c9:28:e5:3f:aa:df:8b:f7:a4:31:6a:88:ec: 7c:7b:67:ca -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTU0QTExMC8GA1UEBRMoRjQwMTU3MUY0RTBGRThGODBENTdDRDAyN0NEOUVFMTVE NzM4OEYyNDAeFw0yNDA5MTMwODAyNDJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTNmMWEyLWRkNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8U18AonOIp87eDKC9EFqTe18cjtxnUuErKAN3DT3WKOPrQd2omX56Y3nl7ABf 8feUurykjfnYfyu8+BmWdmFtl9vl2NodXqagRObOJYwHSoSkPiT2PdYQBDtNicID fW1xD8ruuRSTGgRNDVWU1x5Nx6F20v29K1tvbyFe4KJa3TGo9DvhLc7LnbWP2RQi vdtIglC9EMp9lDjM1glBTEecixT0lZnPiSELq8HKZT52mmByDOzruWLdngbtR3NR Bez4F+I5UH0+SZZf0qYk/JEaaVHh8ZK0PATbSWkOfejsZWO1OCImhNm66zyLD7bh KjXlGIunN/FesDErDl6Cq8PHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULjWE+N6W wce6EBGOv6kaN9Bj9sQwHwYDVR0jBBgwFoAU9AFXH04P6PgNV80CfNnuFdc4jyQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNTRBL0JFODRBODIwNzFB NTExRUY4RDgwNUM3OEM0RjlBRTAyLzlBRlhIMDRQNlBnTlY4MENmTm51RmRjNGp5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUFGWEgwNFA2UGdOVjgwQ2ZObnVGZGM0anlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU0QS9CRTg0QTgyMDcxQTUxMUVGOEQ4MDVDNzhDNEY5QUUwMi84RDUyQTIzODcx QTYxMUVGOEY1Qjk3NTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsF1DANBgkqhkiG9w0BAQsFAAOCAQEAoayh2K9P6gCTYzmN 5oIRslzwRtY5gAxiIwHClpNyVgIqvDDF7hCylP45a1AmQGh3Zmxy+zS6g6SooraD xU2aaoWEeeEntWh7usJuZWYlPm32Wz4Ts6w6rFqEg4NB6fdO3vqcb4iUovPdA3aj Ga9v2wQ479dyoCyghDwRCP9/r52TxvdVzDRomfvxti/Z4oVYT06AMiSudrdfRM9E JlO6A518G8fE1BilCGKlarD8dYibK9LnEJjgPvMHoGSWyR1lvNIeeTLs1Z0pwO68 pfNXFoQh4LL2+ydGutXjRvj8MnBhF3Mqoc/BmPVLHurfa/HJKOU/qt+L96Qxaojs fHtnyg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org