$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa File: B6B70B6AB04E11EE91ED6854C4F9AE02.roa (raw, json) Hash identifier: QF9f+pUQoT13KprGL+p1ZKAVyTkPJFcooDk5K3cXJFE= Subject key identifier: 81:D6:FD:DF:6D:6B:3D:32:DA:F6:1A:65:40:DB:03:5C:E6:E6:E4:7C Certificate issuer: /CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Certificate serial: 0A1D Authority key identifier: A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa Signing time: Thu 11 Jan 2024 06:57:41 +0000 ROA not before: Thu 11 Jan 2024 06:57:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 2519 IP address blocks: 203.78.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Validity Not Before: Jan 11 06:57:41 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=659f9165-734d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cf:fd:70:a1:a9:98:45:e9:23:31:8d:85:32: 87:07:19:b2:cf:a2:5a:f8:c6:7a:d4:10:31:c3:37: 41:26:e0:a4:71:f6:12:67:12:06:c9:3c:2f:b5:bc: ef:4b:33:d5:d6:dc:b5:00:de:9a:44:05:6b:4f:61: 90:04:ac:99:d2:db:17:66:53:f4:36:40:53:51:ba: b5:77:d3:06:cc:6a:ac:2d:df:1e:db:0a:16:8c:33: 10:93:06:e2:30:13:2c:5e:81:90:7a:10:5e:e5:c4: dd:3d:5e:9e:2d:4e:95:7c:ba:8b:51:ca:be:5c:a7: 16:35:dd:4d:12:5e:dc:a1:5b:dc:0a:9b:d7:97:11: c6:98:ee:3d:dd:a4:81:8b:fe:ca:7a:e8:1a:fd:ba: fd:af:68:c0:71:af:59:0a:bd:09:90:5c:43:b2:80: 7e:d3:20:70:2e:72:69:56:ae:07:5c:62:96:02:9b: df:61:23:2d:b1:79:ee:9b:9f:e7:d9:e7:6a:18:bd: d9:56:ca:dc:df:33:9b:1c:cf:db:be:5b:bc:4b:5a: 43:eb:bc:1a:b5:29:93:d4:97:42:f2:59:de:1f:36: c0:84:4d:3c:eb:0c:b1:e6:23:d5:63:d0:f7:1c:a0: 77:ed:54:1c:53:10:a8:8a:93:be:6c:ed:b1:ae:f2: f5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D6:FD:DF:6D:6B:3D:32:DA:F6:1A:65:40:DB:03:5C:E6:E6:E4:7C X509v3 Authority Key Identifier: keyid:A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.132.0/22 Signature Algorithm: sha256WithRSAEncryption 36:8f:c8:b1:40:0e:f9:ef:f3:b4:76:e5:ff:ed:db:c9:fe:f9: f0:51:b6:c2:a9:83:f9:a6:41:ef:ce:d4:98:d5:84:6f:a3:e9: 21:fe:d8:f8:c2:98:95:4a:48:90:c7:45:02:16:fb:c7:1c:ab: 4f:fa:2f:77:bd:bf:1a:ed:67:c6:0f:d2:45:c4:d4:8c:be:e9: 3c:6c:85:07:87:93:e0:d7:e9:af:be:02:77:1b:03:15:14:70: a5:9b:7d:e3:3d:bf:4f:0d:a1:e6:0b:68:16:b7:e2:fb:76:74: f9:3b:56:3d:69:d0:e3:28:c7:49:e2:30:5a:da:6a:fb:dd:ee: 2f:8d:5d:28:b4:81:79:86:2b:a9:bb:be:ac:41:29:37:b7:14: e1:5c:c6:07:dd:c6:a0:5b:07:5c:a7:b5:d3:c3:e8:c7:26:1d: 13:ad:1d:93:bb:29:24:d1:4c:83:71:42:30:36:76:10:b5:05: 0f:0b:cc:2f:6c:fd:7e:70:53:5a:91:c3:fb:df:fd:ed:a9:d6: 90:68:5c:06:02:cf:13:e8:f5:26:ce:0d:7e:09:e0:6e:1b:4b: e2:08:41:81:40:48:53:39:d9:96:d3:eb:bc:16:7e:90:73:60: bd:03:8a:0f:bf:c6:58:b1:87:c5:ab:a7:43:0b:8d:ec:88:95: db:1a:ec:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQyQkIxMTAvBgNVBAUTKEE2RkYzODFBMkFFQkVBNkRDQ0ZFMERFNjVENDE5NjA0 MDI3MUZFOTQwHhcNMjQwMTExMDY1NzQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmOTE2NS03MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoM/9cKGpmEXpIzGNhTKHBxmyz6Ja+MZ61BAxwzdBJuCkcfYSZxIGyTwvtbzv SzPV1ty1AN6aRAVrT2GQBKyZ0tsXZlP0NkBTUbq1d9MGzGqsLd8e2woWjDMQkwbi MBMsXoGQehBe5cTdPV6eLU6VfLqLUcq+XKcWNd1NEl7coVvcCpvXlxHGmO493aSB i/7Keuga/br9r2jAca9ZCr0JkFxDsoB+0yBwLnJpVq4HXGKWApvfYSMtsXnum5/n 2edqGL3ZVsrc3zObHM/bvlu8S1pD67watSmT1JdC8lneHzbAhE086wyx5iPVY9D3 HKB37VQcUxCoipO+bO2xrvL1wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIHW/d9t az0y2vYaZUDbA1zm5uR8MB8GA1UdIwQYMBaAFKb/OBoq6+ptzP4N5l1BlgQCcf6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDJCQi81N0Q2NDdGQTQx NzExMUVBOTE0OTVCNkJDNEY5QUUwMi9wdjg0R2lycjZtM01fZzNtWFVHV0JBSnhf cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B2ODRHaXJyNm0zTV9nM21YVUdXQkFKeF9wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQyQkIvNTdENjQ3RkE0MTcxMTFFQTkxNDk1QjZCQzRGOUFFMDIvQjZCNzBCNkFC MDRFMTFFRTkxRUQ2ODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLToQwDQYJKoZIhvcNAQELBQADggEBADaPyLFADvnv87R2 5f/t28n++fBRtsKpg/mmQe/O1JjVhG+j6SH+2PjCmJVKSJDHRQIW+8ccq0/6L3e9 vxrtZ8YP0kXE1Iy+6TxshQeHk+DX6a++AncbAxUUcKWbfeM9v08NoeYLaBa34vt2 dPk7Vj1p0OMox0niMFraavvd7i+NXSi0gXmGK6m7vqxBKTe3FOFcxgfdxqBbB1yn tdPD6McmHROtHZO7KSTRTINxQjA2dhC1BQ8LzC9s/X5wU1qRw/vf/e2p1pBoXAYC zxPo9SbODX4J4G4bS+IIQYFASFM52ZbT67wWfpBzYL0Dig+/xlixh8Wrp0MLjeyI ldsa7F0= -----END CERTIFICATE-----Generated at Sun Jun 16 21:31:06 2024 by rpki-client on console-fra.rpki-client.org