$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/96F24818744F11ECBFE4A57DC4F9AE02.roa File: 96F24818744F11ECBFE4A57DC4F9AE02.roa (raw, json) Hash identifier: k+Z56AZRkmsg8G/VM5gkdImqRL0zYO34OeSgcqTOnfk= Subject key identifier: 20:DB:FB:CE:67:01:F3:0D:93:4A:EF:91:4B:73:44:17:1E:A4:ED:89 Certificate issuer: /CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Certificate serial: 030A Authority key identifier: 8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/96F24818744F11ECBFE4A57DC4F9AE02.roa Signing time: Mon 15 Jan 2024 02:14:22 +0000 ROA not before: Mon 15 Jan 2024 02:14:22 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.19.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Validity Not Before: Jan 15 02:14:22 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a494fe-34c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2a:c1:54:95:03:e5:de:85:cf:66:ad:65:14: aa:23:71:18:a2:1a:6d:e9:e1:06:3d:01:66:7a:5a: 16:e8:b4:1d:e1:e6:05:f2:4f:c7:fe:46:29:48:8e: fb:a4:4b:50:d2:2e:fc:04:5f:e7:97:6a:3e:df:1a: 2b:41:7c:98:3d:a0:6e:f8:4e:37:f3:01:31:56:86: e4:d4:6e:6a:5e:84:42:c0:fc:0d:dc:d3:c5:bc:64: f9:b9:ea:59:3f:e5:09:57:88:93:92:03:c5:53:f5: d5:51:a3:06:a0:a4:29:0b:00:09:ff:50:85:38:fe: ce:9a:70:76:62:a4:d3:51:fc:38:4a:47:30:86:60: 0f:a2:24:3d:e9:0f:54:48:01:33:f2:ca:8f:c5:79: 07:42:0b:96:77:d9:26:53:47:b0:fc:47:b6:0b:f2: 6f:0a:9a:01:3b:fb:3f:7f:6c:19:da:96:0e:78:e2: f9:b0:c9:1c:84:61:1e:52:6d:62:1d:93:94:66:10: 49:09:b2:a3:ae:8e:90:86:0b:7a:7b:aa:9e:be:6c: 42:f2:b2:7d:0f:e7:da:0d:25:4f:1e:57:71:63:85: 6b:13:e8:69:b7:b6:fe:5b:4d:22:27:46:36:6f:06: ea:a2:2d:a5:13:52:a0:82:bf:3f:71:dd:02:59:e0: b8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DB:FB:CE:67:01:F3:0D:93:4A:EF:91:4B:73:44:17:1E:A4:ED:89 X509v3 Authority Key Identifier: keyid:8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/96F24818744F11ECBFE4A57DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.158.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:9b:c9:45:a1:ab:7b:f9:6e:6d:4d:d2:73:6c:5a:08:20:37: 31:63:88:04:47:1c:ec:13:ee:8b:9f:16:be:cf:c3:da:ad:92: 5f:be:44:5e:37:74:95:ff:74:9a:3c:4e:37:1f:4a:5e:b8:94: 91:8f:e5:19:ed:18:93:a7:af:a5:57:04:89:40:31:42:da:17: 8d:87:9c:ae:5c:43:fe:b1:5d:27:f7:e9:bd:35:5c:15:4c:1f: 1d:e9:3f:e5:ea:6d:fe:7c:99:85:9d:b9:52:d8:16:f0:bf:f1: f8:76:fb:e3:58:52:73:d8:cf:ae:5a:47:71:31:e5:92:33:8c: 84:6c:c5:75:2f:53:bc:07:27:69:57:d8:a6:5b:df:b1:4d:f1: 77:8d:f7:c3:90:d0:36:0e:86:b6:bb:6e:4d:a7:6c:06:b5:21: 72:36:05:d5:b9:4b:3c:33:8b:7d:ac:aa:10:28:f7:ff:f3:76: 05:e1:8a:d0:e5:88:9e:4c:bf:0a:cf:c0:35:b7:cf:54:4d:bf: 4d:0c:07:d2:f7:c8:61:0f:ac:f7:8a:e2:04:25:e2:94:ca:ed: cb:9f:45:8c:1c:60:50:c0:0b:22:73:0a:d9:46:bc:c6:0e:ff: 90:18:27:a7:11:41:b7:74:91:16:85:18:ef:f6:a0:bd:1d:9b: 23:c5:8f:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMzQxMTAvBgNVBAUTKDhDQ0U0RTQ2MTk1RDE1NzA0RkI1NjI5MzJFMEFCNjJB MEVCOThBMjYwHhcNMjQwMTE1MDIxNDIyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE0OTRmZS0zNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yrBVJUD5d6Fz2atZRSqI3EYohpt6eEGPQFmeloW6LQd4eYF8k/H/kYpSI77 pEtQ0i78BF/nl2o+3xorQXyYPaBu+E438wExVobk1G5qXoRCwPwN3NPFvGT5uepZ P+UJV4iTkgPFU/XVUaMGoKQpCwAJ/1CFOP7OmnB2YqTTUfw4SkcwhmAPoiQ96Q9U SAEz8sqPxXkHQguWd9kmU0ew/Ee2C/JvCpoBO/s/f2wZ2pYOeOL5sMkchGEeUm1i HZOUZhBJCbKjro6Qhgt6e6qevmxC8rJ9D+faDSVPHldxY4VrE+hpt7b+W00iJ0Y2 bwbqoi2lE1Kggr8/cd0CWeC4eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCDb+85n AfMNk0rvkUtzRBcepO2JMB8GA1UdIwQYMBaAFIzOTkYZXRVwT7Viky4KtioOuYom MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMzNC83QTQwNDlEQTc0 NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZYQlB0V0tUTGdxMktnNjVp aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNNU9SaGxkRlhCUHRXS1RMZ3EyS2c2NWlpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMzQvN0E0MDQ5REE3NDRCMTFFQ0I5QUE4RDc0QzRGOUFFMDIvOTZGMjQ4MTg3 NDRGMTFFQ0JGRTRBNTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLE54wDQYJKoZIhvcNAQELBQADggEBADqbyUWhq3v5bm1N 0nNsWgggNzFjiARHHOwT7oufFr7Pw9qtkl++RF43dJX/dJo8TjcfSl64lJGP5Rnt GJOnr6VXBIlAMULaF42HnK5cQ/6xXSf36b01XBVMHx3pP+Xqbf58mYWduVLYFvC/ 8fh2++NYUnPYz65aR3Ex5ZIzjIRsxXUvU7wHJ2lX2KZb37FN8XeN98OQ0DYOhra7 bk2nbAa1IXI2BdW5Szwzi32sqhAo9//zdgXhitDliJ5MvwrPwDW3z1RNv00MB9L3 yGEPrPeK4gQl4pTK7cufRYwcYFDACyJzCtlGvMYO/5AYJ6cRQbd0kRaFGO/2oL0d myPFj3s= -----END CERTIFICATE-----Generated at Mon May 27 04:53:45 2024 by rpki-client on console-fra.rpki-client.org