$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa File: 7EE93AAC893111EF824EA948C4F9AE02.roa (raw, json) Hash identifier: 0qxVmtS0/Q5718VBgLAhk0g/i2FXx966gyKoh4X0d7A= Subject key identifier: 03:44:33:54:40:26:28:C6:1E:EA:37:B7:28:85:A2:FF:62:D0:36:36 Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 047A Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa Signing time: Sun 13 Oct 2024 07:05:15 +0000 ROA not before: Sun 13 Oct 2024 07:05:15 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 32787 IP address blocks: 202.49.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Validity Not Before: Oct 13 07:05:15 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=670b712b-1c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:83:7e:1a:2e:29:94:31:bd:71:8e:7c:f6: b3:f3:87:f9:f5:bd:b3:44:3a:78:4f:95:60:41:14: 6b:a8:85:6a:9a:7c:d8:3a:c8:bf:06:18:bd:db:c5: d1:71:2e:82:25:23:86:1f:ba:e5:7c:f4:d3:cf:c4: 7d:43:63:fd:0e:1e:28:a6:e2:21:dc:45:71:48:25: 98:ce:4c:2c:ed:ad:a0:53:49:16:e1:2c:98:ed:75: cf:26:a3:e9:ce:4a:bd:cb:be:50:66:96:78:3b:3a: ad:02:f3:a3:c6:eb:28:79:78:90:9b:3e:ab:23:dd: ea:2d:d9:a0:f5:5d:34:81:90:6f:2a:9f:2d:5f:45: 98:16:40:c0:2c:03:6b:d2:1d:e6:84:d4:60:1a:3d: 98:1b:c4:2f:3c:2e:73:ab:74:00:5e:67:88:b5:c5: bb:42:7e:48:9e:9c:37:c0:e4:89:2b:bc:05:11:fd: e0:e8:88:07:aa:0c:be:31:5d:c1:e4:83:5c:b3:a8: ea:f4:29:de:fc:e7:0a:67:9b:7b:da:c4:6b:30:ec: 82:20:f8:dc:71:cb:84:53:59:0b:ef:6b:28:4f:1c: 46:ea:ad:a5:9c:35:db:a7:77:94:38:08:dd:56:27: ee:3a:f1:e6:5b:8c:a8:8b:c2:65:c5:c1:c6:b3:02: c4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:44:33:54:40:26:28:C6:1E:EA:37:B7:28:85:A2:FF:62:D0:36:36 X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:d2:09:2e:2f:ff:01:8e:92:e4:e6:95:f9:00:c4:2b:ab:33: 77:ec:8a:e5:ca:6c:ab:fc:dc:22:53:82:11:d4:79:5b:c7:69: 3f:63:19:32:0a:e6:ef:70:38:92:a3:1b:6e:1b:fa:42:de:9c: 59:0f:2e:51:26:83:e1:90:fe:78:4f:e3:a3:35:fc:bb:bf:7a: 8b:48:8f:16:95:9a:89:7f:6a:cd:ed:28:c0:9a:66:36:97:a6: 1e:d2:c2:c3:f8:96:f9:99:a7:e0:e6:cf:7c:eb:bf:09:1b:be: 8d:68:bc:fd:88:17:93:ed:4a:ce:81:b5:5f:57:8b:4f:73:58: 75:9b:19:ba:be:46:0f:e7:e7:5a:31:54:f3:94:83:ba:27:94: 80:cf:9e:5c:6f:c4:0c:95:95:2a:4d:ce:0e:59:e7:53:2f:f2: 76:46:8c:f4:29:23:eb:a4:6a:3a:40:2c:36:12:01:4a:a9:75: 6c:e9:db:ec:ae:8b:a0:df:79:6f:21:fb:c8:3f:3e:b1:b6:81: 67:0a:f4:43:3c:9e:8f:f1:84:a9:b4:91:c0:f7:40:bb:5e:1e: e7:d2:67:19:f9:67:f7:43:d1:ef:db:55:83:b1:5b:71:0f:b5: 4d:0a:37:d7:fb:e5:c6:2d:c2:11:b2:12:56:97:da:05:00:0c: c0:9e:53:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjQxMDEzMDcwNTE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBiNzEyYi0xYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4qDfhouKZQxvXGOfPaz84f59b2zRDp4T5VgQRRrqIVqmnzYOsi/Bhi928XR cS6CJSOGH7rlfPTTz8R9Q2P9Dh4opuIh3EVxSCWYzkws7a2gU0kW4SyY7XXPJqPp zkq9y75QZpZ4OzqtAvOjxusoeXiQmz6rI93qLdmg9V00gZBvKp8tX0WYFkDALANr 0h3mhNRgGj2YG8QvPC5zq3QAXmeItcW7Qn5Inpw3wOSJK7wFEf3g6IgHqgy+MV3B 5INcs6jq9Cne/OcKZ5t72sRrMOyCIPjcccuEU1kL72soTxxG6q2lnDXbp3eUOAjd VifuOvHmW4yoi8JlxcHGswLETQIDAQABo4IClTCCApEwHQYDVR0OBBYEFANEM1RA JijGHuo3tyiFov9i0DY2MB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvN0VFOTNBQUM4 OTMxMTFFRjgyNEVBOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMWAwDQYJKoZIhvcNAQELBQADggEBAH/SCS4v/wGOkuTm lfkAxCurM3fsiuXKbKv83CJTghHUeVvHaT9jGTIK5u9wOJKjG24b+kLenFkPLlEm g+GQ/nhP46M1/Lu/eotIjxaVmol/as3tKMCaZjaXph7SwsP4lvmZp+Dmz3zrvwkb vo1ovP2IF5PtSs6BtV9Xi09zWHWbGbq+Rg/n51oxVPOUg7onlIDPnlxvxAyVlSpN zg5Z51Mv8nZGjPQpI+ukajpALDYSAUqpdWzp2+yui6DfeW8h+8g/PrG2gWcK9EM8 no/xhKm0kcD3QLteHufSZxn5Z/dD0e/bVYOxW3EPtU0KN9f75cYtwhGyElaX2gUA DMCeUzU= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:33 2024 by rpki-client on console-fra.rpki-client.org