$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa File: B69D3A2A8AA711EB876EF84BC4F9AE02.roa (raw, json) Hash identifier: GI0D4c+i8GztSKiMIzM0FDwwnqFG6gghVhxe7Xvgsdw= Subject key identifier: B5:24:9B:5F:ED:7F:CD:47:45:D0:E5:F6:20:E2:3A:48:FE:87:D6:3F Certificate issuer: /CN=A91FEE70/serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Certificate serial: 0B67 Authority key identifier: FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa Signing time: Thu 18 Apr 2024 19:57:43 +0000 ROA not before: Thu 18 Apr 2024 19:57:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 203.2.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2919 (0xb67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEE70/serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Validity Not Before: Apr 18 19:57:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66217b36-aa39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:88:ef:fd:ee:2e:f9:0d:56:65:48:a8:bb: 81:2a:10:b7:44:f3:ee:51:c1:da:9d:2e:c3:14:df: fd:e4:26:23:bb:93:0c:41:a1:51:96:df:44:7c:4e: e0:ab:10:28:2e:93:9e:84:9d:d5:08:3e:1c:75:3b: a4:93:f9:e5:d2:57:7b:a5:5d:df:54:cb:5c:90:39: ba:7a:82:7d:38:e0:ca:b1:f5:21:df:dd:45:da:bb: 17:ea:14:31:eb:4f:d0:ea:65:05:a5:f2:97:52:aa: 4b:3f:72:ab:b7:80:03:3a:f1:8f:0f:8d:01:ae:ba: 0c:a2:a6:84:0e:b6:ee:16:81:ce:7e:0b:d1:c7:a4: 12:9b:32:fa:3a:76:84:82:82:10:c4:16:86:3b:95: e5:cf:fe:44:72:bb:83:4b:67:be:30:5e:ec:06:57: fc:c0:ca:8c:f4:a3:0e:f2:35:ae:3c:16:9e:16:9c: 5e:f8:fc:55:47:ac:38:9e:77:d3:e2:78:62:a0:51: 8b:b9:e9:c9:05:dc:60:cd:76:8a:8a:12:fc:f2:8e: 07:a9:e2:78:f9:57:a4:67:a9:a5:88:e7:2d:34:d6: 42:fe:a7:2a:a0:13:26:08:8f:3a:4c:8c:0a:bd:19: 5c:00:25:ee:07:c6:b3:2e:53:f8:d4:ae:f7:d6:71: a9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:24:9B:5F:ED:7F:CD:47:45:D0:E5:F6:20:E2:3A:48:FE:87:D6:3F X509v3 Authority Key Identifier: keyid:FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.2.170.0/24 Signature Algorithm: sha256WithRSAEncryption 31:4e:27:e7:1a:f0:e6:fc:f6:73:6a:34:61:2a:e9:ef:cd:55: 19:d3:24:f0:ba:21:d3:da:23:2d:3c:89:d9:b5:f8:59:5c:65: 2e:76:20:bf:30:b1:5e:d5:16:35:2a:57:73:8e:db:e7:45:44: 8b:d8:05:0f:72:c7:69:7e:5c:0e:7c:07:fa:11:17:a1:b6:c7: 53:15:95:08:f7:90:70:01:64:61:0d:20:e2:1b:a5:09:36:76: 7b:4c:ea:ef:dd:6e:5b:82:61:1f:cc:5b:76:1b:7e:a9:c0:8b: ed:d1:5b:3f:ee:02:49:90:e0:f1:e3:fb:02:67:de:04:30:91: 42:92:44:ad:c9:c7:b2:27:4a:c9:58:26:d2:79:ad:c5:50:2f: 00:98:58:ac:f8:e3:37:09:81:88:22:47:66:d8:55:95:c5:51: b5:a0:eb:d2:ac:d4:df:c7:5e:2e:e9:66:6a:a8:86:23:c5:0d: 0c:22:a4:3e:f8:31:d0:c7:ab:be:46:c2:39:a9:11:1a:51:16: c5:c6:71:e5:7e:be:8d:61:7e:9d:f8:6b:84:04:ed:d4:fe:16: 5a:bc:d1:4f:db:96:b4:ff:fd:48:30:2d:07:e1:9f:f9:15:0b: a4:19:1c:da:1c:23:4e:52:2b:f4:e6:25:9d:a9:20:46:b3:15: 7a:09:5f:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFNzAxMTAvBgNVBAUTKEZBOTRERTM5MDg4RUMzOEE1MkI2OTIyNzlBNDJDNEFG RkI1QjczQjEwHhcNMjQwNDE4MTk1NzQzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxN2IzNi1hYTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCeI7/3uLvkNVmVIqLuBKhC3RPPuUcHanS7DFN/95CYju5MMQaFRlt9EfE7g qxAoLpOehJ3VCD4cdTukk/nl0ld7pV3fVMtckDm6eoJ9OODKsfUh391F2rsX6hQx 60/Q6mUFpfKXUqpLP3Krt4ADOvGPD40BrroMoqaEDrbuFoHOfgvRx6QSmzL6OnaE goIQxBaGO5Xlz/5EcruDS2e+MF7sBlf8wMqM9KMO8jWuPBaeFpxe+PxVR6w4nnfT 4nhioFGLuenJBdxgzXaKihL88o4HqeJ4+VekZ6mliOctNNZC/qcqoBMmCI86TIwK vRlcACXuB8azLlP41K731nGphQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLUkm1/t f81HRdDl9iDiOkj+h9Y/MB8GA1UdIwQYMBaAFPqU3jkIjsOKUraSJ5pCxK/7W3Ox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUU3MC8wOTEwRDFBMDA5 RTgxMUVBQTYzMDE2NEZDNEY5QUUwMi8tcFRlT1FpT3c0cFN0cElubWtMRXJfdGJj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1wVGVPUWlPdzRwU3RwSW5ta0xFcl90YmM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVFNzAvMDkxMEQxQTAwOUU4MTFFQUE2MzAxNjRGQzRGOUFFMDIvQjY5RDNBMkE4 QUE3MTFFQjg3NkVGODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLAqowDQYJKoZIhvcNAQELBQADggEBADFOJ+ca8Ob89nNq NGEq6e/NVRnTJPC6IdPaIy08idm1+FlcZS52IL8wsV7VFjUqV3OO2+dFRIvYBQ9y x2l+XA58B/oRF6G2x1MVlQj3kHABZGENIOIbpQk2dntM6u/dbluCYR/MW3YbfqnA i+3RWz/uAkmQ4PHj+wJn3gQwkUKSRK3Jx7InSslYJtJ5rcVQLwCYWKz44zcJgYgi R2bYVZXFUbWg69Ks1N/HXi7pZmqohiPFDQwipD74MdDHq75GwjmpERpRFsXGceV+ vo1hfp34a4QE7dT+Flq80U/blrT//UgwLQfhn/kVC6QZHNocI05SK/TmJZ2pIEaz FXoJX6A= -----END CERTIFICATE-----Generated at Sun Nov 24 19:47:00 2024 by rpki-client on console-fra.rpki-client.org