$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa File: B08503D8F8AA11EE91684140C4F9AE02.roa (raw, json) Hash identifier: ZuM6BVmH6niQKuKQ1eCiPR55KnpBaOjGce45jTQXxyE= Subject key identifier: 1F:75:1D:7A:09:25:C8:F8:2F:AA:DB:83:F2:2F:6F:45:3A:CE:0C:49 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: BD Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa Signing time: Tue 01 Oct 2024 05:18:26 +0000 ROA not before: Tue 01 Oct 2024 05:18:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 10143 IP address blocks: 202.27.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Oct 1 05:18:26 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=66fb8622-3f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:71:50:a8:90:0a:b3:33:3a:70:fd:a2:88:cb: f2:3d:85:46:63:be:35:3c:31:74:e5:b1:37:55:44: 3d:25:50:89:68:2e:37:14:6f:37:c1:eb:85:c5:bf: ad:c4:8e:85:f3:6d:d1:40:63:bc:bc:33:a5:c6:bb: 29:f1:e3:eb:b7:d5:5e:a2:b7:92:46:86:fd:11:aa: 5c:c8:cc:43:ff:2a:f2:4b:54:ec:dc:95:6a:cb:0a: f9:f9:93:89:9e:ce:75:d8:36:6e:59:69:1e:16:46: 18:f1:62:66:3b:a4:6d:a6:8a:b5:cc:7e:5d:b4:2e: 8f:0f:bb:86:cc:aa:de:29:81:92:81:29:bd:02:71: 80:30:ef:d7:16:24:df:9d:8f:a3:a5:6b:0b:17:57: 5d:d0:e4:88:2a:ca:76:0d:58:dd:4f:1c:b2:ac:fa: 95:e1:ba:7d:ba:3d:af:2c:83:be:7f:0b:d6:72:84: 44:21:3b:76:80:81:e6:a1:1e:1f:b1:74:7f:37:aa: a1:e7:6e:cc:24:1b:5a:86:57:58:a0:43:47:4e:fe: b5:65:0f:0c:94:5a:7c:9b:fa:86:c6:93:d3:5b:62: 82:0f:c1:ea:51:37:d2:27:9b:a2:71:86:6a:0a:bf: 1b:a7:a0:13:90:af:8f:cf:09:67:19:f4:d3:65:4c: 94:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:75:1D:7A:09:25:C8:F8:2F:AA:DB:83:F2:2F:6F:45:3A:CE:0C:49 X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.229.0/24 Signature Algorithm: sha256WithRSAEncryption bf:6e:82:cd:8c:25:28:f1:46:e4:76:e7:c4:59:d7:53:a6:a3: da:47:51:d6:3e:98:57:59:4f:9b:21:fe:56:2f:fb:f5:45:3e: eb:f1:2d:b2:64:bc:17:e9:9a:58:7a:59:5e:bd:f6:3c:b9:8e: 67:16:6f:92:9d:e2:ea:54:aa:67:81:6b:72:7a:cb:55:48:b7: 96:f7:fd:bf:2e:7a:77:f1:b7:6f:0b:50:ae:47:92:1d:20:0e: da:e4:b2:a5:b5:97:53:ab:c8:6e:12:b3:6e:05:25:e1:44:be: b1:05:c5:40:25:33:44:65:e4:c3:5b:9f:27:e6:67:f1:be:3e: 0a:19:8f:45:1a:fe:00:8d:48:86:87:fc:2b:e4:f5:fd:29:89: c4:71:7e:9a:e4:13:69:9a:76:eb:5d:ae:4b:6e:a9:15:02:69: d0:69:9b:d9:e2:7b:a1:fd:94:cb:cb:4e:a7:af:7c:24:25:cb: a8:ef:de:1b:7e:c5:19:57:96:cf:a0:4c:c1:aa:ef:9a:80:0a: 37:03:ca:9e:ac:2f:96:2d:7b:cc:1e:22:f8:59:e6:b4:26:2b: 7b:00:94:f7:45:f8:db:53:a5:1b:6c:f7:7d:fe:d0:a7:e4:c9: 12:b7:da:e0:02:6b:0a:ac:f8:d8:c8:5d:f1:a9:b9:16:49:66: 92:1c:99:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjQxMDAxMDUxODI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiODYyMi0zZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnFQqJAKszM6cP2iiMvyPYVGY741PDF05bE3VUQ9JVCJaC43FG83weuFxb+t xI6F823RQGO8vDOlxrsp8ePrt9VeoreSRob9EapcyMxD/yryS1Ts3JVqywr5+ZOJ ns512DZuWWkeFkYY8WJmO6Rtpoq1zH5dtC6PD7uGzKreKYGSgSm9AnGAMO/XFiTf nY+jpWsLF1dd0OSIKsp2DVjdTxyyrPqV4bp9uj2vLIO+fwvWcoREITt2gIHmoR4f sXR/N6qh527MJBtahldYoENHTv61ZQ8MlFp8m/qGxpPTW2KCD8HqUTfSJ5uicYZq Cr8bp6ATkK+PzwlnGfTTZUyU+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFB91HXoJ Jcj4L6rbg/Ivb0U6zgxJMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3QTIvQjNERkM4ODQ2RDYyMTFFRUIzMDdDRTE5QzRGOUFFMDIvQjA4NTAzRDhG OEFBMTFFRTkxNjg0MTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKG+UwDQYJKoZIhvcNAQELBQADggEBAL9ugs2MJSjxRuR2 58RZ11Omo9pHUdY+mFdZT5sh/lYv+/VFPuvxLbJkvBfpmlh6WV699jy5jmcWb5Kd 4upUqmeBa3J6y1VIt5b3/b8uenfxt28LUK5Hkh0gDtrksqW1l1OryG4Ss24FJeFE vrEFxUAlM0Rl5MNbnyfmZ/G+PgoZj0Ua/gCNSIaH/Cvk9f0picRxfprkE2madutd rktuqRUCadBpm9nie6H9lMvLTqevfCQly6jv3ht+xRlXls+gTMGq75qACjcDyp6s L5Yte8weIvhZ5rQmK3sAlPdF+NtTpRts933+0KfkyRK32uACawqs+NjIXfGpuRZJ ZpIcmS8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org