$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/81A901FA8A0411EEA251F746C4F9AE02.roa File: 81A901FA8A0411EEA251F746C4F9AE02.roa (raw, json) Hash identifier: LQjpde7ZOitEWCJ8Fyab2NYRAI50nPTcOZ5B3mS/eu8= Subject key identifier: 11:E3:8E:A9:39:C3:5E:13:86:04:75:D3:D6:35:51:B2:E5:35:E3:70 Certificate issuer: /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Certificate serial: 1D Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/81A901FA8A0411EEA251F746C4F9AE02.roa Signing time: Tue 09 Jan 2024 07:28:25 +0000 ROA not before: Tue 09 Jan 2024 07:28:25 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38315 IP address blocks: 203.169.24.0/21 maxlen: 21 203.169.24.0/23 maxlen: 23 203.169.24.0/24 maxlen: 24 203.169.25.0/24 maxlen: 24 203.169.26.0/23 maxlen: 23 203.169.26.0/24 maxlen: 24 203.169.27.0/24 maxlen: 24 203.169.28.0/23 maxlen: 23 203.169.28.0/24 maxlen: 24 203.169.29.0/24 maxlen: 24 203.169.30.0/23 maxlen: 23 203.169.30.0/24 maxlen: 24 203.169.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Validity Not Before: Jan 9 07:28:25 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659cf599-cf70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9f:4c:f1:98:1b:85:ba:58:9e:91:2c:25:6e: 31:2a:0f:f5:b2:a5:8d:05:6a:ab:c3:26:ae:18:6f: eb:c5:01:53:57:7d:0d:94:6d:42:d0:9c:10:da:cc: 43:7e:22:0f:25:ab:d4:55:82:3d:1f:df:05:dd:f2: 93:47:fc:4c:0b:d3:72:2f:a1:70:eb:04:9a:89:01: 36:2a:f8:28:da:0c:65:91:69:4f:9b:c0:97:5a:05: 6b:b9:45:e0:05:17:7c:f7:42:60:88:fb:04:ca:3e: 23:27:62:8a:0e:da:7c:22:bf:46:57:38:5a:3c:4f: 20:79:63:bf:bc:49:1e:87:90:4e:62:9c:82:45:43: 28:82:f7:ec:91:5c:f7:43:79:5b:f6:c3:8f:ee:34: fb:9f:b6:d5:c5:ea:22:d9:70:8c:53:95:dd:c3:af: bc:1d:36:39:9a:19:bc:f6:d3:ff:bf:cd:86:74:89: e9:20:fe:89:0f:58:6b:5f:e1:6f:24:4c:c1:22:e6: 61:71:8c:36:c9:c9:e2:c7:cc:dd:f9:61:96:8e:eb: 4f:79:30:b7:25:b8:8b:f0:c9:9a:77:97:a3:73:5c: 03:be:01:df:e3:83:a2:cb:c1:8c:34:e2:c4:78:b4: e0:2b:d7:84:e2:17:e6:3c:84:4d:00:3d:98:19:47: c8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E3:8E:A9:39:C3:5E:13:86:04:75:D3:D6:35:51:B2:E5:35:E3:70 X509v3 Authority Key Identifier: keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/81A901FA8A0411EEA251F746C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.169.24.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:17:8a:57:60:cc:3e:f6:49:97:53:f4:40:e9:cb:ec:29:e3: d0:f8:2f:1f:95:ba:57:1c:e4:92:66:7f:9a:79:c4:04:c7:b6: f5:59:dd:a5:53:95:5d:f4:b6:10:e0:43:ab:80:95:74:f6:22: 4a:f7:3c:f6:80:45:69:4c:f5:e7:ec:46:4d:01:ba:6e:18:c4: f0:66:1d:29:e8:43:a3:78:64:b9:12:85:e7:25:5d:df:84:d8: 32:b8:70:f0:46:0b:bb:f6:67:3c:17:ce:b3:4a:79:fe:44:c0: 14:c5:64:1b:8d:3a:91:16:9d:39:ab:8a:46:ba:75:01:b3:3b: a4:23:4a:a5:11:da:9a:c7:26:22:f5:cc:be:78:cc:2f:a4:31: d3:af:b8:cc:2a:3f:bd:cf:80:cb:dd:68:6a:88:ac:52:41:8c: f9:1d:5a:10:cc:80:1b:f1:be:8d:dd:42:80:b6:24:d8:76:c6: 77:f8:36:78:2b:7b:c3:f0:03:fe:b8:df:f3:88:04:b0:d7:87: a0:90:0c:cf:03:f8:65:64:ec:af:35:b4:a7:d0:85:91:e7:df: 1e:d0:93:23:c1:83:6e:d7:40:0d:2a:ed:ec:44:c8:a2:d4:b7: 75:8a:a0:4f:ba:97:60:d2:b9:62:cc:ed:cf:e3:a8:51:2c:82: 95:d1:a3:66 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RUU0RDExMC8GA1UEBRMoOTQ1OUEwN0FGRUI0NkY3OTkyNDVGRUMyMzU2RDNDQkFD OUJFRDg4ODAeFw0yNDAxMDkwNzI4MjVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWNmNTk5LWNmNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnn0zxmBuFuliekSwlbjEqD/WypY0FaqvDJq4Yb+vFAVNXfQ2UbULQnBDazEN+ Ig8lq9RVgj0f3wXd8pNH/EwL03IvoXDrBJqJATYq+CjaDGWRaU+bwJdaBWu5ReAF F3z3QmCI+wTKPiMnYooO2nwiv0ZXOFo8TyB5Y7+8SR6HkE5inIJFQyiC9+yRXPdD eVv2w4/uNPufttXF6iLZcIxTld3Dr7wdNjmaGbz20/+/zYZ0iekg/okPWGtf4W8k TMEi5mFxjDbJyeLHzN35YZaO6095MLcluIvwyZp3l6NzXAO+Ad/jg6LLwYw04sR4 tOAr14TiF+Y8hE0APZgZR8jnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEeOOqTnD XhOGBHXT1jVRsuU143AwHwYDVR0jBBgwFoAUlFmgev60b3mSRf7CNW08usm+2Igw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFRTRELzUyM0ZEQTgwOEEw MjExRUVCMjg5MDMyQ0M0RjlBRTAyL2xGbWdldjYwYjNtU1JmN0NOVzA4dXNtLTJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZtZ2V2NjBiM21TUmY3Q05XMDh1c20tMklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUU0RC81MjNGREE4MDhBMDIxMUVFQjI4OTAzMkNDNEY5QUUwMi84MUE5MDFGQThB MDQxMUVFQTI1MUY3NDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8upGDANBgkqhkiG9w0BAQsFAAOCAQEAXxeKV2DMPvZJl1P0 QOnL7Cnj0PgvH5W6VxzkkmZ/mnnEBMe29VndpVOVXfS2EOBDq4CVdPYiSvc89oBF aUz15+xGTQG6bhjE8GYdKehDo3hkuRKF5yVd34TYMrhw8EYLu/ZnPBfOs0p5/kTA FMVkG406kRadOauKRrp1AbM7pCNKpRHamscmIvXMvnjML6Qx06+4zCo/vc+Ay91o aoisUkGM+R1aEMyAG/G+jd1CgLYk2HbGd/g2eCt7w/AD/rjf84gEsNeHoJAMzwP4 ZWTsrzW0p9CFkeffHtCTI8GDbtdADSrt7ETIotS3dYqgT7qXYNK5Ysztz+OoUSyC ldGjZg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org