$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa File: 70C04006D5EF11EE8279357EC4F9AE02.roa (raw, json) Hash identifier: CD5JHrOld6EH8gDDi5gO0sRUppO6UZeQlXazyHZlOek= Subject key identifier: C1:F8:6D:CB:70:5F:E3:8C:00:F4:50:BF:01:9D:B2:D8:C5:58:CF:96 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 35 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa Signing time: Wed 29 May 2024 09:14:55 +0000 ROA not before: Wed 29 May 2024 09:14:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24399 IP address blocks: 202.133.8.0/21 maxlen: 21 203.80.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: May 29 09:14:55 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6656f20e-4464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:37:91:12:07:bb:a8:47:95:a6:5f:42:87:21: 32:eb:08:ab:f9:ec:88:c5:88:c9:b1:8f:5d:1c:97: 21:ba:da:09:b5:95:db:7e:25:dd:fc:8f:e7:cd:d9: 81:3b:96:6e:4c:c6:b2:e8:47:81:ba:02:e7:b2:aa: 45:24:98:92:cc:83:7d:05:12:5d:ca:99:c3:0c:55: d0:ee:73:f6:60:87:5c:c3:c9:ca:f8:95:06:7c:34: 40:26:c0:96:d1:65:ed:fe:6c:e9:db:56:8a:3d:72: e3:e5:ad:75:4e:1c:41:de:65:5a:4b:5f:aa:3f:72: 66:88:cc:5c:cc:12:52:41:67:dc:d3:92:e8:bd:24: a9:40:2d:4a:ff:5d:3d:f9:94:ab:6b:06:a3:38:e4: 20:40:a8:58:9f:b7:1b:d8:ae:1a:a1:ee:e2:f6:25: e1:d6:b2:61:71:a8:c1:3f:8d:a7:8d:74:a1:9e:c1: 58:73:fc:9a:f0:41:33:05:a8:2a:39:6c:4d:c9:d6: 19:e4:a0:24:ec:2f:c9:e2:8c:15:7d:84:10:a7:89: 25:f1:c6:5d:79:61:20:ce:21:c2:32:a7:7a:d6:bd: 05:2f:93:a6:ab:30:b9:b6:05:92:41:cc:7d:59:3f: 4e:49:d0:b5:d6:de:f8:d8:5a:72:b5:82:e2:d5:cd: 67:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F8:6D:CB:70:5F:E3:8C:00:F4:50:BF:01:9D:B2:D8:C5:58:CF:96 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.133.8.0/21 203.80.184.0/22 Signature Algorithm: sha256WithRSAEncryption 03:3b:c5:53:cb:c7:57:6e:a2:66:66:c2:7a:a9:1c:09:03:63: 3a:4b:2f:d0:7e:2a:4d:61:00:fd:13:59:ae:7e:01:ed:7b:2d: bb:aa:3b:72:ee:8c:28:e7:e9:74:09:56:96:83:13:f8:42:05: 11:75:42:d9:77:cf:cd:ec:17:5e:5a:cb:d1:99:ce:c2:b4:17: 81:2a:89:eb:cf:48:d2:e5:c1:8b:fe:a0:aa:a5:36:ef:5b:68: d6:64:90:0d:4c:1a:c6:22:15:57:5e:75:2d:fd:56:55:05:ff: 4a:e0:fe:27:b4:dd:87:4e:ba:ee:e2:a8:75:ab:a0:7d:ec:03: 06:aa:f5:77:eb:5d:bc:26:c8:e0:c2:92:a0:ac:59:a2:d1:1b: 47:1e:7c:34:3b:f6:0b:ea:3f:64:69:b9:0d:61:b3:c2:ca:d9: 04:5b:14:83:a8:0c:e5:9f:6c:a3:67:f2:72:40:e4:18:b5:79: cc:ab:18:fd:36:31:72:0a:df:64:e3:64:8c:b8:90:51:6e:3d: 5b:1d:28:c5:99:3f:44:90:77:ed:5e:54:5a:69:ec:1a:69:ad: ce:9b:7a:1e:dc:55:b0:5a:1f:14:e0:bf:4d:51:41:86:4a:82: f9:43:2b:3d:44:5c:a0:20:67:19:66:f5:03:b9:4d:88:f8:aa: 2b:d0:68:6d -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjkyOTExMC8GA1UEBRMoQTkyMTREQjk5MTg0OUIyOUM0RjA0NUMzMzY0NzBFOUQ4 MkM0OENFMjAeFw0yNDA1MjkwOTE0NTVaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTZmMjBlLTQ0NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrN5ESB7uoR5WmX0KHITLrCKv57IjFiMmxj10clyG62gm1ldt+Jd38j+fN2YE7 lm5MxrLoR4G6AueyqkUkmJLMg30FEl3KmcMMVdDuc/Zgh1zDycr4lQZ8NEAmwJbR Ze3+bOnbVoo9cuPlrXVOHEHeZVpLX6o/cmaIzFzMElJBZ9zTkui9JKlALUr/XT35 lKtrBqM45CBAqFiftxvYrhqh7uL2JeHWsmFxqME/jaeNdKGewVhz/JrwQTMFqCo5 bE3J1hnkoCTsL8nijBV9hBCniSXxxl15YSDOIcIyp3rWvQUvk6arMLm2BZJBzH1Z P05J0LXW3vjYWnK1guLVzWd9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUwfhty3Bf 44wA9FC/AZ2y2MVYz5YwHwYDVR0jBBgwFoAUqSFNuZGEmynE8EXDNkcOnYLEjOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCOTI5L0JFQkRFQTk4RDVF RTExRUU5RTIwMTc3REM0RjlBRTAyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcVNGTnVaR0VteW5FOEVYRE5rY09uWUxFak9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi83MEMwNDAwNkQ1 RUYxMUVFODI3OTM1N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEA8qFCAMEAstQuDANBgkqhkiG9w0BAQsFAAOCAQEAAzvFU8vH V26iZmbCeqkcCQNjOksv0H4qTWEA/RNZrn4B7Xstu6o7cu6MKOfpdAlWloMT+EIF EXVC2XfPzewXXlrL0ZnOwrQXgSqJ689I0uXBi/6gqqU271to1mSQDUwaxiIVV151 Lf1WVQX/SuD+J7Tdh0667uKodaugfewDBqr1d+tdvCbI4MKSoKxZotEbRx58NDv2 C+o/ZGm5DWGzwsrZBFsUg6gM5Z9so2fyckDkGLV5zKsY/TYxcgrfZONkjLiQUW49 Wx0oxZk/RJB37V5UWmnsGmmtzpt6HtxVsFofFOC/TVFBhkqC+UMrPURcoCBnGWb1 A7lNiPiqK9BobQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:33 2024 by rpki-client on console-fra.rpki-client.org