$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa File: 436F1AE2ECF411EA822E8D28C4F9AE02.roa (raw, json) Hash identifier: OTRxLWYGIuHzUDilAOLR2h6DuKbihwZG+/xdIto74Po= Subject key identifier: 3E:3E:C8:78:6C:37:B0:B2:B2:42:E0:B7:76:9B:63:64:9C:66:EB:E3 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0AB5 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa Signing time: Tue 02 Jul 2024 20:08:12 +0000 ROA not before: Tue 02 Jul 2024 20:08:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10081 IP address blocks: 116.197.0.0/17 maxlen: 17 203.92.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jul 2 20:08:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66845e2c-1381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d8:aa:f2:ee:3e:33:66:ea:09:ed:3a:b1:19: 10:61:37:d3:3f:aa:fa:d0:fb:1e:39:05:03:07:0a: 9e:41:22:92:0b:fb:ec:5d:2c:cd:46:bf:fc:e7:79: 80:21:7c:ac:5a:7c:33:6f:c6:04:a6:68:0d:5a:ae: ea:6e:01:ed:79:9c:00:e1:3a:15:ae:e2:c0:12:d6: 10:3d:6c:1c:f3:9c:75:23:00:b2:02:80:fb:a8:81: 94:01:ab:57:4a:78:5f:db:da:bd:70:61:1d:85:a7: 75:a8:80:07:63:07:55:a1:94:ce:44:c7:36:ef:07: 82:14:d5:c9:e7:4d:5e:39:d0:74:fa:ef:e3:40:b2: 7b:86:04:12:52:1a:3a:45:18:94:50:b4:cb:e0:4d: d3:49:f7:31:ee:fb:9c:f2:a1:6d:24:9b:f8:03:2d: de:e6:5c:a5:b2:ca:fc:7d:cb:6b:dd:9d:7c:be:65: ae:59:00:ad:9f:9c:f0:90:81:f7:5a:a7:c6:c1:ad: 9f:a5:e0:c6:b1:0d:be:74:17:10:06:51:7b:ce:5b: ef:46:b5:ed:76:37:19:cd:47:15:18:d5:50:c2:65: eb:94:02:19:7f:e9:78:aa:ec:25:3d:11:97:62:9c: ad:99:7a:a9:01:40:b9:a3:9b:80:3e:14:4f:01:26: 37:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3E:C8:78:6C:37:B0:B2:B2:42:E0:B7:76:9B:63:64:9C:66:EB:E3 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.0.0/17 203.92.128.0/19 Signature Algorithm: sha256WithRSAEncryption 96:39:b7:2b:62:f1:67:75:7e:74:1a:4c:c9:66:7e:72:66:7a: 3d:c7:c2:9a:0b:1b:fd:c3:c0:b7:74:b4:16:42:90:30:9b:0d: 26:13:99:78:9f:12:43:f7:49:2e:5d:ce:8a:ff:18:5c:67:ba: a8:da:40:f1:80:71:f4:c9:46:19:b1:ff:05:94:6f:9f:da:7c: a6:ae:72:fc:6f:79:d8:14:6b:0b:a8:8a:a4:9b:f2:91:9d:77: e3:45:d9:32:2f:b2:5c:2f:fa:11:aa:18:fa:d0:0f:4c:c0:55: c9:6f:ae:cc:34:1c:64:fc:f9:c8:ca:17:6d:37:32:a8:fb:e6: de:e7:f6:b6:10:2e:6b:2e:d2:bb:ed:af:10:85:b4:85:1d:6b: 5a:ba:e8:67:a5:1c:d4:a7:80:74:58:f4:9a:27:80:8b:76:d0: 13:23:3b:8b:95:0c:24:12:78:8c:9e:d4:10:49:5c:bf:ce:98: ef:d2:5a:ab:b3:0e:21:ab:e8:f1:46:9b:a6:9b:95:c2:3e:74: e2:27:11:ce:20:05:12:87:28:4a:ce:ae:25:f4:73:d7:b9:18: 2b:f0:43:3c:6b:92:00:17:64:41:61:2a:97:8f:e7:d4:da:f9: 84:70:ac:01:ed:bd:6f:c5:0d:bd:d4:9c:98:f2:22:14:e1:c9: a5:83:7b:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjQwNzAyMjAwODEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NWUyYy0xMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNiq8u4+M2bqCe06sRkQYTfTP6r60PseOQUDBwqeQSKSC/vsXSzNRr/853mA IXysWnwzb8YEpmgNWq7qbgHteZwA4ToVruLAEtYQPWwc85x1IwCyAoD7qIGUAatX Snhf29q9cGEdhad1qIAHYwdVoZTORMc27weCFNXJ501eOdB0+u/jQLJ7hgQSUho6 RRiUULTL4E3TSfcx7vuc8qFtJJv4Ay3e5lylssr8fctr3Z18vmWuWQCtn5zwkIH3 WqfGwa2fpeDGsQ2+dBcQBlF7zlvvRrXtdjcZzUcVGNVQwmXrlAIZf+l4quwlPRGX YpytmXqpAUC5o5uAPhRPASY37wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD4+yHhs N7CyskLgt3abY2ScZuvjMB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvNDM2RjFBRTJF Q0Y0MTFFQTgyMkU4RDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAd0xQADBAXLXIAwDQYJKoZIhvcNAQELBQADggEBAJY5tyti 8Wd1fnQaTMlmfnJmej3HwpoLG/3DwLd0tBZCkDCbDSYTmXifEkP3SS5dzor/GFxn uqjaQPGAcfTJRhmx/wWUb5/afKaucvxvedgUawuoiqSb8pGdd+NF2TIvslwv+hGq GPrQD0zAVclvrsw0HGT8+cjKF203Mqj75t7n9rYQLmsu0rvtrxCFtIUda1q66Gel HNSngHRY9JongIt20BMjO4uVDCQSeIye1BBJXL/OmO/SWquzDiGr6PFGm6ablcI+ dOInEc4gBRKHKErOriX0c9e5GCvwQzxrkgAXZEFhKpeP59Ta+YRwrAHtvW/FDb3U nJjyIhThyaWDe5k= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org