$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa File: D2A2964A0CAE11EDA6E8C661C4F9AE02.roa (raw, json) Hash identifier: yI62k3HDsAst7b3Qo0JtUN2sIMtTm1dDCXVLtBX2JP8= Subject key identifier: 3C:A8:06:EB:1B:DF:EE:C9:F7:A7:84:CA:D7:BF:59:81:A9:EE:67:51 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 09B2 Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa Signing time: Thu 02 Nov 2023 20:48:05 +0000 ROA not before: Thu 02 Nov 2023 20:48:05 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141419 IP address blocks: 223.119.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Nov 2 20:48:05 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65440b05-52f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:37:fd:4b:2b:4d:ac:33:ce:5a:2b:a9:8e:b4: 07:e1:94:cf:c5:9a:fc:8a:83:cd:c1:09:f7:ed:1a: 4d:10:f4:e7:63:99:95:07:5e:bd:2e:15:ee:c5:3e: 9a:dd:43:eb:7e:e7:53:38:6c:f5:e8:83:13:bb:e1: a5:aa:2c:6c:e7:30:0e:2c:16:6d:15:e1:5b:19:bf: da:5c:3a:5f:00:c1:1b:bb:18:cd:6e:8c:c9:2b:6a: 65:ea:01:2b:21:16:f0:de:22:c4:63:3f:5f:27:99: 17:c0:58:3e:56:58:d3:12:a3:58:33:e1:03:a5:29: d7:fb:a4:92:6f:55:1e:9a:5f:9b:4c:02:cb:35:46: 49:36:67:3b:eb:a5:fb:92:ca:65:f1:31:0e:64:f1: 78:c8:cc:79:88:9a:89:db:21:19:05:fd:d4:89:e6: 0a:f7:20:54:17:16:4b:c3:ab:e7:d7:7a:c0:a8:8a: a1:fb:33:93:b9:35:f5:9e:be:69:ea:d0:83:30:eb: 53:ea:49:c1:44:9a:6a:e1:94:c3:f3:52:66:bf:df: 8a:34:9c:0d:90:27:7c:f5:9c:82:3b:e7:fa:07:cb: 4d:18:37:16:b3:ff:61:ed:fb:1d:c3:01:02:fe:41: b5:22:f1:e5:71:b1:91:36:79:a1:a9:a1:08:07:b2: cf:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A8:06:EB:1B:DF:EE:C9:F7:A7:84:CA:D7:BF:59:81:A9:EE:67:51 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.52.0/24 Signature Algorithm: sha256WithRSAEncryption 96:c9:8b:ab:90:ec:8d:f2:1c:35:c8:58:38:98:87:ee:6d:eb: e2:fc:c8:5c:52:23:46:f8:68:15:90:93:1f:e1:1f:d0:89:02: f1:ce:29:cf:50:24:29:b2:30:ae:0f:f8:01:d6:8b:6e:27:40: 84:a1:0a:16:88:ba:be:e7:c0:30:80:6f:c1:ae:e5:2d:4e:b4: f2:c5:92:70:69:00:bc:88:64:f9:95:32:34:81:d4:68:2f:2d: 58:6b:95:95:09:5d:ca:8a:1d:ce:17:0f:cd:f6:4b:a3:52:ac: 18:de:9a:97:af:9c:23:dd:69:c4:82:1e:f3:6a:d6:e5:d3:15: aa:d7:26:ef:39:d1:26:c2:37:6f:38:1d:c7:b4:8a:7b:2e:9f: 87:e0:3f:98:f9:40:37:e9:e1:9a:0a:30:67:fc:61:56:3f:5a: bf:83:83:22:0b:52:fb:1c:56:de:f6:5a:4a:9d:c4:1d:fe:42: 13:76:61:b2:49:7a:98:74:cc:9e:63:a8:15:36:7c:36:17:ac: e9:37:bf:5e:21:ba:cb:5f:60:f7:12:14:f3:00:17:5a:c2:b2: 89:2f:cd:84:8a:f4:e0:0b:67:9b:df:1b:17:29:c5:be:28:3e: 5b:35:ef:49:42:eb:42:b1:f3:ef:d3:5b:d9:83:34:7b:d4:12: b9:83:cb:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjMxMTAyMjA0ODA1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MGIwNS01MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jf9SytNrDPOWiupjrQH4ZTPxZr8ioPNwQn37RpNEPTnY5mVB169LhXuxT6a 3UPrfudTOGz16IMTu+Glqixs5zAOLBZtFeFbGb/aXDpfAMEbuxjNbozJK2pl6gEr IRbw3iLEYz9fJ5kXwFg+VljTEqNYM+EDpSnX+6SSb1Ueml+bTALLNUZJNmc766X7 kspl8TEOZPF4yMx5iJqJ2yEZBf3UieYK9yBUFxZLw6vn13rAqIqh+zOTuTX1nr5p 6tCDMOtT6knBRJpq4ZTD81Jmv9+KNJwNkCd89ZyCO+f6B8tNGDcWs/9h7fsdwwEC /kG1IvHlcbGRNnmhqaEIB7LPxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDyoBusb 3+7J96eEyte/WYGp7mdRMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvRDJBMjk2NEEw Q0FFMTFFREE2RThDNjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfdzQwDQYJKoZIhvcNAQELBQADggEBAJbJi6uQ7I3yHDXI WDiYh+5t6+L8yFxSI0b4aBWQkx/hH9CJAvHOKc9QJCmyMK4P+AHWi24nQIShChaI ur7nwDCAb8Gu5S1OtPLFknBpALyIZPmVMjSB1GgvLVhrlZUJXcqKHc4XD832S6NS rBjempevnCPdacSCHvNq1uXTFarXJu850SbCN284Hce0insun4fgP5j5QDfp4ZoK MGf8YVY/Wr+DgyILUvscVt72WkqdxB3+QhN2YbJJeph0zJ5jqBU2fDYXrOk3v14h ustfYPcSFPMAF1rCsokvzYSK9OALZ5vfGxcpxb4oPls170lC60Kx8+/TW9mDNHvU ErmDy+E= -----END CERTIFICATE-----Generated at Fri May 31 22:13:12 2024 by rpki-client on console-fra.rpki-client.org