$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa File: 70783ACCAF3411E99DF2F83EC4F9AE02.roa (raw, json) Hash identifier: T9i0DKwHASY+s6SnXICLRaNhTKqbk+FbtGkLEMvl4c4= Subject key identifier: 1A:21:6D:44:02:58:CC:2B:1C:D4:47:D9:95:D2:9E:8C:E3:31:7A:DC Certificate issuer: /CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Certificate serial: 0D48 Authority key identifier: AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa Signing time: Sat 08 Jun 2024 19:32:31 +0000 ROA not before: Sat 08 Jun 2024 19:32:31 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134099 IP address blocks: 202.36.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3400 (0xd48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Validity Not Before: Jun 8 19:32:31 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6664b1ce-bedb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bc:5b:9e:38:c0:eb:e4:0b:38:02:0c:57:7a: 60:2b:86:56:d3:09:6a:a0:4b:19:98:ab:8b:76:e3: a6:be:cb:ad:9a:4e:ee:4e:ad:dd:65:6c:68:7e:cf: 3d:f3:88:85:df:9c:f0:4e:bc:f2:24:a8:88:7e:f4: bd:00:12:c7:55:22:cf:bc:d1:ae:9d:b2:f1:23:01: 02:ef:35:89:37:f1:26:68:56:f6:bf:19:b1:2b:e1: 41:d7:b0:fe:8f:6d:3a:44:06:43:d1:e4:15:4c:1b: 78:59:d3:f5:7c:fe:9f:5b:01:46:0e:1d:a9:6d:a5: e0:59:14:e5:ce:8f:cc:8e:f8:3c:8b:f8:0d:d9:a7: 61:a9:8f:d0:3f:4b:4f:39:e7:30:b0:fc:2d:3c:3d: b6:0c:10:57:4b:76:82:ef:62:2c:4e:cf:88:ef:b7: c2:e0:15:07:c4:0d:3a:6f:45:af:17:9e:e4:f5:98: b7:61:73:53:b2:f2:ed:28:3d:db:b3:98:27:49:51: 6e:06:76:0d:4b:64:f1:e9:7d:9a:05:fc:20:24:1a: dc:33:cf:c2:6f:da:35:46:0f:13:b6:16:72:54:9c: cb:cc:cc:77:55:74:31:a4:aa:d6:b6:dd:76:14:5f: 21:ca:cb:0f:1d:1a:4e:f9:14:42:cc:de:06:c6:04: 5c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:21:6D:44:02:58:CC:2B:1C:D4:47:D9:95:D2:9E:8C:E3:31:7A:DC X509v3 Authority Key Identifier: keyid:AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.47.0/24 Signature Algorithm: sha256WithRSAEncryption 12:6f:31:e4:fc:3f:6a:d8:81:87:22:0b:4d:f3:11:a8:cf:fd: 0a:53:b4:a1:ef:74:87:f4:a6:27:07:f7:a3:fa:a5:87:51:cd: c4:fb:bb:14:01:b5:cd:67:23:54:52:3b:35:5c:e7:74:6e:0e: 00:b7:c7:6c:0b:e8:8d:a7:d9:24:2c:ba:aa:ea:9f:46:ea:ed: cc:af:dc:ed:a1:ef:83:7f:84:79:0b:00:6e:33:0a:ae:13:a3: 68:39:3e:e6:15:98:60:bd:dc:79:5e:59:2b:1c:6c:e2:f5:76: 65:bd:0c:cb:47:dd:e0:ef:9e:3c:7a:fa:71:89:55:64:57:fd: 75:6f:1f:af:d2:ef:2e:b4:46:33:87:a9:b3:1b:e3:86:6b:de: 7b:ca:9d:88:48:1f:08:fd:46:92:1b:ce:3f:b7:09:39:2c:77: b2:82:e4:a6:b1:52:c0:21:d2:aa:e0:30:c7:c8:20:fa:2f:b4: 69:32:53:b5:3d:cf:ec:4d:98:82:d6:34:f3:ce:8a:1c:79:2b: 38:91:b9:b6:6f:2b:16:cb:53:e6:49:e7:f0:81:24:30:0b:a6: 34:83:6a:91:84:c7:9b:53:2a:b1:88:e3:71:db:e4:55:06:db: bd:03:33:e8:fa:d6:92:00:e6:34:0f:f4:7d:c9:39:c0:fd:6a: ce:1c:da:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3RkMxMTAvBgNVBAUTKEFCQTRDMzk0QzhCOUJEMTUxQjNCMzg5NjM5QjhDNkZG ODA3MDQ5RjIwHhcNMjQwNjA4MTkzMjMxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY0YjFjZS1iZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rxbnjjA6+QLOAIMV3pgK4ZW0wlqoEsZmKuLduOmvsutmk7uTq3dZWxofs89 84iF35zwTrzyJKiIfvS9ABLHVSLPvNGunbLxIwEC7zWJN/EmaFb2vxmxK+FB17D+ j206RAZD0eQVTBt4WdP1fP6fWwFGDh2pbaXgWRTlzo/Mjvg8i/gN2adhqY/QP0tP OecwsPwtPD22DBBXS3aC72IsTs+I77fC4BUHxA06b0WvF57k9Zi3YXNTsvLtKD3b s5gnSVFuBnYNS2Tx6X2aBfwgJBrcM8/Cb9o1Rg8TthZyVJzLzMx3VXQxpKrWtt12 FF8hyssPHRpO+RRCzN4GxgRciQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBohbUQC WMwrHNRH2ZXSnozjMXrcMB8GA1UdIwQYMBaAFKukw5TIub0VGzs4ljm4xv+AcEny MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdGQy9GRUQ5MDE1NkFG MzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZSVWJPemlXT2JqR180QndT ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2VERsTWk1dlJVYk96aVdPYmpHXzRCd1NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc3RkMvRkVEOTAxNTZBRjMwMTFFOUFFRTEzRTM0QzRGOUFFMDIvNzA3ODNBQ0NB RjM0MTFFOTlERjJGODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJC8wDQYJKoZIhvcNAQELBQADggEBABJvMeT8P2rYgYci C03zEajP/QpTtKHvdIf0picH96P6pYdRzcT7uxQBtc1nI1RSOzVc53RuDgC3x2wL 6I2n2SQsuqrqn0bq7cyv3O2h74N/hHkLAG4zCq4To2g5PuYVmGC93HleWSscbOL1 dmW9DMtH3eDvnjx6+nGJVWRX/XVvH6/S7y60RjOHqbMb44Zr3nvKnYhIHwj9RpIb zj+3CTksd7KC5KaxUsAh0qrgMMfIIPovtGkyU7U9z+xNmILWNPPOihx5KziRubZv KxbLU+ZJ5/CBJDALpjSDapGEx5tTKrGI43Hb5FUG270DM+j61pIA5jQP9H3JOcD9 as4c2mk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org