$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa File: 311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: 6RPn1a+rWd2NLisQdeM9L8BHTz2fD0+yCLXi5mKnbws= Subject key identifier: 40:FD:A3:87:D8:CA:BB:D2:72:BE:06:95:28:38:B2:59:28:65:70:5E Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 179D Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:35 +0000 ROA not before: Tue 20 Feb 2024 17:55:35 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 45167 IP address blocks: 203.18.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6045 (0x179d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:35 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e797-03ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c1:d7:f1:fa:28:4d:c0:55:39:bb:c0:32:d4: 4d:ae:d8:47:69:9f:e9:28:da:36:31:40:a3:f6:5a: 7f:28:d9:81:32:f4:be:8c:ba:8a:eb:93:11:8c:f2: 79:c5:ea:7c:68:ee:30:a0:d8:c3:6a:b2:b8:f5:d5: 30:43:ed:15:7f:3b:52:3b:2f:e8:e0:68:43:56:2d: cb:d4:dd:57:9c:c0:73:dc:0b:00:4f:cb:a8:9e:9c: 99:0e:3b:51:6d:e6:0a:b0:8d:c7:80:7d:bb:14:9c: b0:76:ab:08:96:2e:a7:96:c6:5a:1d:89:c6:b9:a7: 10:86:6e:88:93:be:ab:8c:ff:3f:8f:80:a3:0f:6e: 90:15:22:7a:76:b1:84:b6:05:a9:43:d7:fc:1d:8f: 22:52:63:fe:ef:a3:43:47:75:81:f2:89:6a:da:10: ab:42:5b:5d:d8:38:b0:a4:d8:36:7a:8e:7e:ae:f7: 3e:0a:cf:61:f4:c3:8d:19:55:ab:7c:a8:8b:86:d2: e5:82:fb:e5:9c:9c:8f:ae:8e:bf:5a:f9:f4:a7:9e: 52:e7:d9:00:79:90:d2:71:99:85:44:f7:84:f2:f2: af:66:62:56:7f:c8:2a:9b:6a:44:52:82:0b:41:d3: cb:5f:12:5d:c6:5e:af:ef:0a:cc:54:e6:c7:c8:d2: 47:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FD:A3:87:D8:CA:BB:D2:72:BE:06:95:28:38:B2:59:28:65:70:5E X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.213.0/24 Signature Algorithm: sha256WithRSAEncryption 68:43:35:4f:92:6c:98:86:eb:a1:4a:3e:f6:25:f7:0b:fa:1f: 06:31:81:78:f8:0e:c0:82:00:34:75:64:ea:12:60:db:88:78: b9:79:3a:ef:f3:98:e6:53:a2:07:29:36:ce:e9:00:da:fc:ca: af:f6:e4:99:a7:47:6c:5b:83:3e:fc:78:d5:30:8b:49:58:7f: d5:33:18:e3:e2:d3:08:1e:2d:d6:59:37:fd:bf:25:f8:03:cc: 36:7e:9c:ca:50:4d:a1:bc:b9:8b:a1:1f:77:c9:14:8e:77:8d: 75:3b:83:78:62:60:2d:31:af:3d:3a:93:28:49:ab:28:c4:55: be:d1:45:e4:5e:70:14:bb:16:ba:52:73:7e:f7:ba:89:73:64: 9d:63:a2:2f:16:e1:ee:45:93:c4:1d:53:27:b4:16:77:ff:61: 37:62:8c:82:45:27:47:6a:cc:1b:7e:7d:30:39:66:2a:85:62: d4:3a:e1:a2:95:f9:0a:13:21:9d:5d:03:68:b4:35:03:52:11: 93:14:b3:0b:7a:bd:8f:57:ee:07:06:12:55:38:fa:44:7d:f5: 88:43:4c:4b:60:22:16:07:a4:f5:91:07:6d:b0:5f:3b:ce:e9: 58:ee:6f:b8:c4:fb:08:44:78:89:9c:aa:12:2c:a4:a5:7f:2e: 2a:33:4c:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTM1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5Ny0wM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysHX8fooTcBVObvAMtRNrthHaZ/pKNo2MUCj9lp/KNmBMvS+jLqK65MRjPJ5 xep8aO4woNjDarK49dUwQ+0VfztSOy/o4GhDVi3L1N1XnMBz3AsAT8uonpyZDjtR beYKsI3HgH27FJywdqsIli6nlsZaHYnGuacQhm6Ik76rjP8/j4CjD26QFSJ6drGE tgWpQ9f8HY8iUmP+76NDR3WB8olq2hCrQltd2DiwpNg2eo5+rvc+Cs9h9MONGVWr fKiLhtLlgvvlnJyPro6/Wvn0p55S59kAeZDScZmFRPeE8vKvZmJWf8gqm2pEUoIL QdPLXxJdxl6v7wrMVObHyNJHnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFED9o4fY yrvScr4GlSg4slkoZXBeMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMzExQTlBOENE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLEtUwDQYJKoZIhvcNAQELBQADggEBAGhDNU+SbJiG66FK PvYl9wv6HwYxgXj4DsCCADR1ZOoSYNuIeLl5Ou/zmOZTogcpNs7pANr8yq/25Jmn R2xbgz78eNUwi0lYf9UzGOPi0wgeLdZZN/2/JfgDzDZ+nMpQTaG8uYuhH3fJFI53 jXU7g3hiYC0xrz06kyhJqyjEVb7RReRecBS7FrpSc373uolzZJ1joi8W4e5Fk8Qd Uye0Fnf/YTdijIJFJ0dqzBt+fTA5ZiqFYtQ64aKV+QoTIZ1dA2i0NQNSEZMUswt6 vY9X7gcGElU4+kR99YhDTEtgIhYHpPWRB22wXzvO6Vjub7jE+whEeImcqhIspKV/ LiozTPQ= -----END CERTIFICATE-----Generated at Sun Jun 2 18:40:08 2024 by rpki-client on console-fra.rpki-client.org