$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa File: BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa (raw, json) Hash identifier: tDzRS9D9LYakwWnsKRwiJRr0iEVNxo6X/cCE3yfKlJ4= Subject key identifier: D7:5C:98:7E:BE:EB:16:24:8D:A1:F5:B2:CE:86:6E:A3:79:2E:A3:59 Certificate issuer: /CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Certificate serial: 04 Authority key identifier: 3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa Signing time: Wed 17 Jan 2024 16:37:42 +0000 ROA not before: Wed 17 Jan 2024 16:37:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 20454 IP address blocks: 202.134.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6CA/serialNumber=3B1DB316C08D2936C74A356A277EEAC43CB7524C Validity Not Before: Jan 17 16:37:42 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65a80255-e500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:68:ad:ed:76:6e:7a:27:e4:66:da:d5:d5: 40:39:da:b9:1f:8f:3c:39:77:f4:33:41:6f:bc:34: 67:15:04:5a:30:db:35:f3:d2:63:81:73:5e:4a:c7: 5b:98:7e:19:48:3b:a1:9b:09:52:20:88:8d:86:43: 29:aa:ac:1e:72:f1:b8:bd:97:d2:f3:10:0b:f5:6b: 3f:94:59:ad:d1:6c:53:10:53:3b:77:8e:c3:f9:fa: 51:f4:2f:1a:68:33:cf:74:af:72:00:87:59:ca:71: d4:d9:bc:3c:48:c2:a2:67:42:54:07:e3:d6:48:25: ad:33:8a:72:8e:d9:58:81:7d:7a:84:9a:11:80:d2: 59:53:69:04:c6:86:74:d5:c8:f8:73:14:4e:80:4e: 2e:7a:54:74:c9:60:98:59:f5:43:ed:cd:b4:c9:5e: 1b:45:54:3b:38:fc:cb:9a:fb:d4:6a:47:82:26:07: 6c:ca:c4:79:ac:a1:5b:ee:5f:bc:63:83:3b:5e:f7: d9:94:e8:5f:c8:b4:92:eb:4c:af:f9:99:3a:83:ac: 7a:93:2b:b7:75:da:52:41:15:a1:29:40:a9:f8:95: 5b:0d:0e:5c:35:63:70:10:cf:39:b5:6f:7e:6c:f6: 0a:2f:0a:0a:f8:37:9e:5f:bf:0d:7c:e5:43:05:e0: 96:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5C:98:7E:BE:EB:16:24:8D:A1:F5:B2:CE:86:6E:A3:79:2E:A3:59 X509v3 Authority Key Identifier: keyid:3B:1D:B3:16:C0:8D:29:36:C7:4A:35:6A:27:7E:EA:C4:3C:B7:52:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ox2zFsCNKTbHSjVqJ37qxDy3Ukw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6CA/DE0A6D32B48711EE99DC0A13C4F9AE02/BBAB8FA8B55611EE83AC3E1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.56.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:38:11:09:eb:b7:89:08:a2:82:10:48:00:aa:fc:28:28:b2: 15:b2:d1:98:ea:8f:23:e9:51:59:0e:c9:af:ea:37:6f:63:17: ff:88:99:de:71:11:32:e3:48:42:7b:2b:28:b8:50:11:32:26: 4b:f0:fd:ae:26:43:a5:af:9a:4a:6c:07:2e:40:ed:69:9d:55: fb:24:a0:db:98:ec:cb:83:ae:a9:5b:d5:7b:5f:44:4a:54:f5: 68:c5:66:30:dc:70:f1:c1:4c:6e:12:47:3e:4b:d4:d9:37:5f: f4:3d:2b:4c:45:7b:19:e7:71:d6:96:7d:35:bc:80:d4:e8:5b: 91:06:36:f7:b1:11:0c:8a:c9:20:b9:8b:da:0d:d7:ff:7d:30: 57:30:b1:01:d1:14:ce:37:0d:09:a5:ec:d3:e3:e4:44:1c:dc: 9b:01:be:a7:f9:ad:7c:04:bf:2c:77:61:2a:4a:0a:14:d0:75: 45:89:54:ca:15:fb:b8:89:ca:8d:67:4f:49:fd:f1:d6:fc:2c: eb:aa:62:b1:1c:85:43:f5:cf:5f:1e:af:18:7e:35:9a:f9:97: 7c:55:34:6d:52:95:3f:f5:1e:a6:8b:38:90:9e:6d:79:93:85: b1:72:2f:a1:83:bc:7c:36:cd:89:3a:d1:ce:cc:f0:a4:92:37: e6:b6:7e:a8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTZDQTExMC8GA1UEBRMoM0IxREIzMTZDMDhEMjkzNkM3NEEzNTZBMjc3RUVBQzQz Q0I3NTI0QzAeFw0yNDAxMTcxNjM3NDJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YTgwMjU1LWU1MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Rmit7XZueifkZtrV1UA52rkfjzw5d/QzQW+8NGcVBFow2zXz0mOBc15Kx1uY fhlIO6GbCVIgiI2GQymqrB5y8bi9l9LzEAv1az+UWa3RbFMQUzt3jsP5+lH0Lxpo M890r3IAh1nKcdTZvDxIwqJnQlQH49ZIJa0zinKO2ViBfXqEmhGA0llTaQTGhnTV yPhzFE6ATi56VHTJYJhZ9UPtzbTJXhtFVDs4/Mua+9RqR4ImB2zKxHmsoVvuX7xj gzte99mU6F/ItJLrTK/5mTqDrHqTK7d12lJBFaEpQKn4lVsNDlw1Y3AQzzm1b35s 9govCgr4N55fvw185UMF4JbTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU11yYfr7r FiSNofWyzoZuo3kuo1kwHwYDVR0jBBgwFoAUOx2zFsCNKTbHSjVqJ37qxDy3Ukww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNkNBL0RFMEE2RDMyQjQ4 NzExRUU5OURDMEExM0M0RjlBRTAyL094MnpGc0NOS1RiSFNqVnFKMzdxeER5M1Vr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT3gyekZzQ05LVGJIU2pWcUozN3F4RHkzVWt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTZDQS9ERTBBNkQzMkI0ODcxMUVFOTlEQzBBMTNDNEY5QUUwMi9CQkFCOEZBOEI1 NTYxMUVFODNBQzNFMURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMqGODANBgkqhkiG9w0BAQsFAAOCAQEAbDgRCeu3iQiighBI AKr8KCiyFbLRmOqPI+lRWQ7Jr+o3b2MX/4iZ3nERMuNIQnsrKLhQETImS/D9riZD pa+aSmwHLkDtaZ1V+ySg25jsy4OuqVvVe19ESlT1aMVmMNxw8cFMbhJHPkvU2Tdf 9D0rTEV7Gedx1pZ9NbyA1OhbkQY297ERDIrJILmL2g3X/30wVzCxAdEUzjcNCaXs 0+PkRBzcmwG+p/mtfAS/LHdhKkoKFNB1RYlUyhX7uInKjWdPSf3x1vws66pisRyF Q/XPXx6vGH41mvmXfFU0bVKVP/Uepos4kJ5teZOFsXIvoYO8fDbNiTrRzszwpJI3 5rZ+qA== -----END CERTIFICATE-----Generated at Sat May 11 09:13:21 2024 by rpki-client on console-ams.rpki-client.org