$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa File: 7273624619B511EC98D2A883C4F9AE02.roa (raw, json) Hash identifier: M4PSP6XjxPVhe+drtMTrhopXxpIQ79bS62rvbFtsvvs= Subject key identifier: B1:21:65:87:E5:E8:1A:FA:5B:F9:69:73:8B:F1:77:4A:92:4B:06:77 Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 036B Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa Signing time: Thu 11 May 2023 03:41:27 +0000 ROA not before: Thu 11 May 2023 03:41:27 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 19905 IP address blocks: 202.49.96.0/24 maxlen: 24 202.49.97.0/24 maxlen: 24 202.49.98.0/24 maxlen: 24 202.49.99.0/24 maxlen: 24 202.49.100.0/24 maxlen: 24 202.49.101.0/24 maxlen: 24 202.49.102.0/24 maxlen: 24 202.49.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Validity Not Before: May 11 03:41:27 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645c63e6-2c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:14:6b:e6:d1:d8:d8:31:c5:11:3b:a3:c4: 41:3b:f4:6e:2b:b9:a8:3d:e5:c2:75:3e:4c:d7:42: f6:4d:7c:27:49:20:ee:6d:f1:8d:ed:c6:fa:63:71: ee:aa:53:da:62:93:af:49:af:b9:f1:64:6d:ad:b5: 1c:dd:81:6f:37:a6:a9:7a:f9:5e:13:48:f8:1b:39: d1:26:f9:d8:1c:b7:8c:06:1f:f0:40:c2:08:f5:67: 86:76:8e:ec:bb:b9:7f:a0:c6:60:4f:ff:3a:4e:51: 04:6c:8e:fc:81:26:1a:f6:ee:cf:7f:11:82:ae:90: 04:6b:d2:81:f5:33:77:6c:5f:48:ca:6d:cc:a1:d2: cd:04:cf:5a:48:d2:a8:6d:94:60:ec:db:de:db:af: c3:87:27:28:8a:a8:f8:aa:71:b2:8e:b3:43:5c:54: 76:2b:4d:c0:b9:75:8e:85:b5:d0:b4:35:12:be:f5: c3:ac:7c:23:34:93:81:da:39:b3:af:57:66:53:01: 8d:c7:b5:83:1a:ef:cc:ce:a8:8a:7c:53:8b:41:5f: e6:2c:66:86:4d:e8:27:83:29:c1:f1:bc:57:18:41: 04:15:ae:bc:18:ee:8f:dd:0f:75:c6:44:c3:6d:7d: eb:b4:ae:97:70:81:df:d5:c6:35:c2:86:1e:2b:57: c4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:21:65:87:E5:E8:1A:FA:5B:F9:69:73:8B:F1:77:4A:92:4B:06:77 X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption 24:36:fd:26:6a:f9:19:76:12:49:d3:4b:a7:4a:50:74:51:b2: 32:4c:f5:fb:73:e8:b1:94:7c:f4:ed:8a:5d:18:3c:13:e8:ed: a1:eb:5e:e3:1f:d8:97:c3:4c:c8:86:3c:fa:e1:a3:0b:6d:c5: 69:03:df:07:c4:b2:90:13:38:c4:be:5c:0d:7d:12:d2:af:c9: ff:7c:29:1e:59:c8:64:e7:d8:bf:61:f2:7c:72:90:76:bc:87: 25:d6:2e:56:a6:b3:a1:d2:f9:11:e3:93:8f:ce:1d:6b:aa:f9: 57:16:95:e5:6d:e2:22:57:f9:22:2c:20:79:56:6d:6d:8c:43: d5:17:c5:6b:6b:09:c0:e5:87:a4:90:9f:9c:bb:f9:fb:ce:be: 10:f4:af:58:83:cf:8c:fa:18:0f:e3:8d:33:0f:4c:7b:85:0f: 97:77:84:50:23:a0:62:62:45:c5:22:f1:3d:1f:62:fc:d1:ff: 63:e2:f7:af:b0:73:1c:76:92:a6:0e:82:ec:60:e1:20:fe:63: 54:ca:86:40:a6:e4:02:37:53:9a:5a:2f:e5:a1:1f:4a:44:41: 73:35:50:97:c9:51:e1:dd:d6:fe:96:32:25:1b:a8:cc:c0:5c: 8d:68:fd:ce:ee:a4:bf:ad:2b:a9:ba:d6:e9:00:bd:3d:12:40: 50:b3:52:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjMwNTExMDM0MTI3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVjNjNlNi0yYzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1f0Ua+bR2NgxxRE7o8RBO/RuK7moPeXCdT5M10L2TXwnSSDubfGN7cb6Y3Hu qlPaYpOvSa+58WRtrbUc3YFvN6apevleE0j4GznRJvnYHLeMBh/wQMII9WeGdo7s u7l/oMZgT/86TlEEbI78gSYa9u7PfxGCrpAEa9KB9TN3bF9Iym3ModLNBM9aSNKo bZRg7Nve26/Dhycoiqj4qnGyjrNDXFR2K03AuXWOhbXQtDUSvvXDrHwjNJOB2jmz r1dmUwGNx7WDGu/MzqiKfFOLQV/mLGaGTegngynB8bxXGEEEFa68GO6P3Q91xkTD bX3rtK6XcIHf1cY1woYeK1fEHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLEhZYfl 6Br6W/lpc4vxd0qSSwZ3MB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvNzI3MzYyNDYx OUI1MTFFQzk4RDJBODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMWAwDQYJKoZIhvcNAQELBQADggEBACQ2/SZq+Rl2EknT S6dKUHRRsjJM9ftz6LGUfPTtil0YPBPo7aHrXuMf2JfDTMiGPPrhowttxWkD3wfE spATOMS+XA19EtKvyf98KR5ZyGTn2L9h8nxykHa8hyXWLlams6HS+RHjk4/OHWuq +VcWleVt4iJX+SIsIHlWbW2MQ9UXxWtrCcDlh6SQn5y7+fvOvhD0r1iDz4z6GA/j jTMPTHuFD5d3hFAjoGJiRcUi8T0fYvzR/2Pi96+wcxx2kqYOguxg4SD+Y1TKhkCm 5AI3U5paL+WhH0pEQXM1UJfJUeHd1v6WMiUbqMzAXI1o/c7upL+tK6m61ukAvT0S QFCzUqg= -----END CERTIFICATE-----Generated at Wed May 1 04:49:30 2024 by rpki-client on console-ams.rpki-client.org