$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa File: B6B70B6AB04E11EE91ED6854C4F9AE02.roa (raw, json) Hash identifier: lqUwBU6qLo8LNgZrXqfbLxcdXoYoKZ77/+ziECt9CZk= Subject key identifier: 61:B6:DC:1E:6E:F2:ED:91:3C:9B:AF:F5:3C:6B:A4:6C:B9:01:90:35 Certificate issuer: /CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Certificate serial: 0A9A Authority key identifier: A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa Signing time: Mon 02 Sep 2024 20:28:23 +0000 ROA not before: Mon 02 Sep 2024 20:28:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 2519 IP address blocks: 203.78.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Validity Not Before: Sep 2 20:28:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d61fe7-14a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:be:dc:1b:e2:0a:c2:23:62:8f:2d:4f:03: 32:cd:ed:dd:b3:c5:79:eb:78:23:8f:22:94:eb:27: 88:68:6d:cf:dc:da:da:ff:70:83:18:fd:b5:5d:68: e5:1e:71:d7:46:f4:a9:10:ee:b3:3a:a8:68:30:21: 33:d2:21:1b:c1:ba:63:14:a3:b4:b8:83:d7:2c:33: 43:3a:fd:f4:2e:e3:94:dc:ff:4c:a3:4b:6b:4f:e8: e2:6f:6c:16:71:78:25:6d:9c:fd:34:f6:b6:5e:35: e5:a0:fc:a1:c3:93:e2:cd:e6:2e:ef:bd:9f:0d:81: 81:a6:2f:b0:b9:a5:5a:ca:32:95:43:44:57:fe:ca: 94:8a:a9:12:aa:31:37:10:d2:ab:7a:3c:d0:65:78: 7c:7e:56:e7:b2:10:42:0f:a0:9f:2b:f3:2a:ed:fb: 84:0b:4e:a4:9f:c5:f7:83:e1:e4:20:e4:83:e8:d8: a6:56:d7:86:8d:6e:bf:da:3c:a2:33:09:7f:65:11: 9b:82:6d:92:82:ef:4c:c1:53:03:aa:43:41:0d:9a: fa:86:c1:e2:7c:05:82:c6:e9:4c:a6:c8:91:a4:7e: 62:de:1b:b0:10:4c:90:1a:89:08:22:90:23:ad:15: 2b:06:5e:50:46:63:63:94:33:7e:3f:9b:df:34:ab: eb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B6:DC:1E:6E:F2:ED:91:3C:9B:AF:F5:3C:6B:A4:6C:B9:01:90:35 X509v3 Authority Key Identifier: keyid:A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.132.0/22 Signature Algorithm: sha256WithRSAEncryption ab:9d:2f:9f:21:55:73:10:47:e7:47:83:e6:94:59:40:a5:cd: c6:17:5e:d4:f8:e9:72:32:3b:d8:83:03:88:81:61:e5:a0:07: 91:81:e8:c4:54:68:19:ae:8b:2d:1e:68:da:56:82:c1:e7:56: a4:dd:0e:34:f3:43:bc:a4:cf:bc:0d:1d:9e:25:d5:ef:85:55: 9f:02:d7:f7:67:e7:8f:85:08:a8:a7:5d:90:b6:d7:c8:f7:8c: bd:20:92:07:f3:9b:ff:8a:3a:ec:88:7e:97:1a:1c:91:ff:ed: bd:ca:49:23:1b:af:6a:4e:33:43:04:cb:58:08:68:d2:56:fb: 88:cc:14:dd:49:76:94:0b:22:15:3e:aa:14:c0:f5:70:bd:6c: 14:71:94:4d:8c:2b:12:cb:97:d6:7d:b1:54:64:2b:78:03:51: e4:29:b1:a0:5c:57:2f:da:c7:8f:24:ed:ee:37:5c:78:99:00: 3f:b6:c8:88:b0:8e:2c:06:16:01:68:5d:6d:9c:ab:32:22:5b: b6:86:45:2f:0a:0a:10:f7:3f:8b:45:ad:fe:4a:16:6b:e3:2a: 24:fd:9a:6f:3f:d5:e1:a5:c9:79:03:c5:f4:de:99:3f:e3:f5: 0b:11:33:0a:ae:79:b4:9a:15:5d:6d:11:9d:58:c2:2c:f9:41: f7:3a:c7:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQyQkIxMTAvBgNVBAUTKEE2RkYzODFBMkFFQkVBNkRDQ0ZFMERFNjVENDE5NjA0 MDI3MUZFOTQwHhcNMjQwOTAyMjAyODIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MWZlNy0xNGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUi+3BviCsIjYo8tTwMyze3ds8V563gjjyKU6yeIaG3P3Nra/3CDGP21XWjl HnHXRvSpEO6zOqhoMCEz0iEbwbpjFKO0uIPXLDNDOv30LuOU3P9Mo0trT+jib2wW cXglbZz9NPa2XjXloPyhw5PizeYu772fDYGBpi+wuaVayjKVQ0RX/sqUiqkSqjE3 ENKrejzQZXh8flbnshBCD6CfK/Mq7fuEC06kn8X3g+HkIOSD6NimVteGjW6/2jyi Mwl/ZRGbgm2Sgu9MwVMDqkNBDZr6hsHifAWCxulMpsiRpH5i3huwEEyQGokIIpAj rRUrBl5QRmNjlDN+P5vfNKvrwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGG23B5u 8u2RPJuv9TxrpGy5AZA1MB8GA1UdIwQYMBaAFKb/OBoq6+ptzP4N5l1BlgQCcf6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDJCQi81N0Q2NDdGQTQx NzExMUVBOTE0OTVCNkJDNEY5QUUwMi9wdjg0R2lycjZtM01fZzNtWFVHV0JBSnhf cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B2ODRHaXJyNm0zTV9nM21YVUdXQkFKeF9wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQyQkIvNTdENjQ3RkE0MTcxMTFFQTkxNDk1QjZCQzRGOUFFMDIvQjZCNzBCNkFC MDRFMTFFRTkxRUQ2ODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLToQwDQYJKoZIhvcNAQELBQADggEBAKudL58hVXMQR+dH g+aUWUClzcYXXtT46XIyO9iDA4iBYeWgB5GB6MRUaBmuiy0eaNpWgsHnVqTdDjTz Q7ykz7wNHZ4l1e+FVZ8C1/dn54+FCKinXZC218j3jL0gkgfzm/+KOuyIfpcaHJH/ 7b3KSSMbr2pOM0MEy1gIaNJW+4jMFN1JdpQLIhU+qhTA9XC9bBRxlE2MKxLLl9Z9 sVRkK3gDUeQpsaBcVy/ax48k7e43XHiZAD+2yIiwjiwGFgFoXW2cqzIiW7aGRS8K ChD3P4tFrf5KFmvjKiT9mm8/1eGlyXkDxfTemT/j9QsRMwquebSaFV1tEZ1Ywiz5 Qfc6x00= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:29 2024 by rpki-client on console-fra.rpki-client.org