$ rpki-client -vvf rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa File: 4FCB21E6E05211EE8AEC805CC4F9AE02.roa (raw, json) Hash identifier: +YBZ5ZIb6u7/Qx6y05kFQ2mmnk33q8W1HFBaQuaUJcQ= Subject key identifier: 7E:21:CE:5E:B3:93:BB:C4:7B:2A:8B:00:F7:5C:A0:10:C4:37:EC:D4 Certificate issuer: /CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Certificate serial: 6F Authority key identifier: 31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa Signing time: Fri 11 Oct 2024 05:38:58 +0000 ROA not before: Fri 11 Oct 2024 05:38:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9237 IP address blocks: 203.91.128.0/19 maxlen: 24 2406:af40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Validity Not Before: Oct 11 05:38:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6708b9f2-a419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5a:6b:76:b5:ef:65:18:63:67:dc:4a:2f:22: 25:f7:79:9e:6f:34:5b:b4:81:74:cc:01:5b:f1:32: f5:a3:4e:e2:37:98:0e:e0:50:8a:b3:93:4c:a6:b5: fe:f2:1c:db:88:74:d3:61:25:40:9e:4a:56:fc:2f: dd:da:de:b6:fb:a1:e0:6f:f3:0c:9c:6a:f5:5b:8d: 51:7d:b4:95:b8:1e:bd:84:de:36:6a:55:b3:69:b9: a6:20:b1:5f:57:bd:e0:8d:d9:e8:a7:ee:3c:5e:4c: e1:6b:a9:72:36:67:1d:b4:6e:08:fc:09:68:59:51: 29:ba:2c:99:30:70:3d:6e:47:97:ba:1d:27:d1:5d: ea:70:a4:8b:c6:cf:bb:60:af:82:c1:17:20:2b:8d: ac:90:09:b1:d8:74:cf:77:a8:bb:f8:a7:52:4d:10: 17:e5:e4:a6:50:84:73:1e:f7:79:4a:98:1f:09:f4: 73:72:03:14:ad:8b:5f:68:81:72:e8:46:e8:6b:46: ca:48:e4:82:38:39:24:e2:4c:70:f7:d2:bb:82:1c: f5:d7:f0:f8:d8:db:61:5a:04:91:f2:3f:73:37:d6: 81:19:33:18:0b:18:11:bb:23:95:be:88:af:27:38: c7:f3:f7:9c:b7:82:3e:3f:38:9c:b5:2d:14:9a:f1: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:21:CE:5E:B3:93:BB:C4:7B:2A:8B:00:F7:5C:A0:10:C4:37:EC:D4 X509v3 Authority Key Identifier: keyid:31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.91.128.0/19 IPv6: 2406:af40::/32 Signature Algorithm: sha256WithRSAEncryption 53:19:69:70:4f:1a:46:f5:f1:db:45:ab:fc:ad:db:b2:fd:65: 78:f8:f4:67:94:cc:7b:3e:17:93:63:cc:7b:f9:bb:19:87:f0: ca:c9:ea:eb:e4:c9:2c:08:e7:0e:f5:6d:80:0e:55:be:bf:42: ce:84:ac:3d:71:28:ac:f3:d8:66:52:82:a1:d1:66:e1:df:56: 55:37:8b:e3:b5:81:0a:32:8c:0c:21:5f:82:64:70:f5:57:90: 44:71:2f:59:dc:a8:1a:87:81:c7:b4:be:c5:b4:ec:47:3f:92: 1c:dd:d2:03:4a:89:4c:ab:df:f1:dc:15:a6:eb:7d:82:4c:75: a9:1c:2c:06:44:58:97:0b:bf:98:a4:58:bb:85:51:40:ad:6b: 58:2f:e4:7b:f5:c8:f2:a4:f8:7d:b7:bc:e1:dc:6b:14:e6:c4: 2c:04:77:fe:77:73:c6:4c:39:54:58:db:9f:5f:76:31:5e:9f: 75:29:7f:fb:f9:57:c5:35:f0:bc:e9:03:5c:bd:4a:83:56:92: 9d:61:b5:a7:19:6e:b5:37:3b:34:be:c2:c6:db:b4:a4:c9:f4: 73:c4:98:8b:39:1b:b2:7c:ac:29:f1:c1:81:91:18:9e:ab:44: 18:9d:4b:fb:1d:05:2b:44:08:78:dc:ce:ba:8f:c1:30:64:5d: dc:63:63:af -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Mzc4QjExMC8GA1UEBRMoMzE4NTUzRUQwOUMyMDA5NThDQjE1RENDRTI3N0NDNDhB QTQyQTM4ODAeFw0yNDEwMTEwNTM4NThaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDhiOWYyLWE0MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsWmt2te9lGGNn3EovIiX3eZ5vNFu0gXTMAVvxMvWjTuI3mA7gUIqzk0ymtf7y HNuIdNNhJUCeSlb8L93a3rb7oeBv8wycavVbjVF9tJW4Hr2E3jZqVbNpuaYgsV9X veCN2ein7jxeTOFrqXI2Zx20bgj8CWhZUSm6LJkwcD1uR5e6HSfRXepwpIvGz7tg r4LBFyArjayQCbHYdM93qLv4p1JNEBfl5KZQhHMe93lKmB8J9HNyAxSti19ogXLo RuhrRspI5II4OSTiTHD30ruCHPXX8PjY22FaBJHyP3M31oEZMxgLGBG7I5W+iK8n OMfz95y3gj4/OJy1LRSa8evrAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUfiHOXrOT u8R7KosA91ygEMQ37NQwHwYDVR0jBBgwFoAUMYVT7QnCAJWMsV3M4nfMSKpCo4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzNzhCL0MxM0FBNzc2RTA1 MTExRUVCNUIwOTI1QkM0RjlBRTAyL01ZVlQ3UW5DQUpXTXNWM000bmZNU0twQ280 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVlWVDdRbkNBSldNc1YzTTRuZk1TS3BDbzRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzc4Qi9DMTNBQTc3NkUwNTExMUVFQjVCMDkyNUJDNEY5QUUwMi80RkNCMjFFNkUw NTIxMUVFOEFFQzgwNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEBctbgDANBAIAAjAHAwUAJAavQDANBgkqhkiG9w0BAQsFAAOC AQEAUxlpcE8aRvXx20Wr/K3bsv1lePj0Z5TMez4Xk2PMe/m7GYfwysnq6+TJLAjn DvVtgA5Vvr9CzoSsPXEorPPYZlKCodFm4d9WVTeL47WBCjKMDCFfgmRw9VeQRHEv WdyoGoeBx7S+xbTsRz+SHN3SA0qJTKvf8dwVput9gkx1qRwsBkRYlwu/mKRYu4VR QK1rWC/ke/XI8qT4fbe84dxrFObELAR3/ndzxkw5VFjbn192MV6fdSl/+/lXxTXw vOkDXL1Kg1aSnWG1pxlutTc7NL7Cxtu0pMn0c8SYizkbsnysKfHBgZEYnqtEGJ1L +x0FK0QIeNzOuo/BMGRd3GNjrw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:20 2024 by rpki-client on console-ams.rpki-client.org