$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa File: 3ED152FE82A411EE87690C58C4F9AE02.roa (raw, json) Hash identifier: n4N0FT2lZDwaB7NLBXSRmim8K1WaikU2H0XvlYORAuA= Subject key identifier: E0:C5:29:84:F8:48:FA:41:4F:E3:CA:4D:43:7A:02:CF:5D:5D:9D:58 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 02 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa Signing time: Tue 14 Nov 2023 04:14:04 +0000 ROA not before: Tue 14 Nov 2023 04:14:04 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 152097 IP address blocks: 203.99.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Nov 14 04:14:04 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6552f40b-42ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:9b:05:67:63:2e:ae:6c:f2:e7:7c:37:20: cb:e1:39:f1:28:a0:5b:e2:21:66:e5:b3:3d:52:66: 4e:f1:a6:ff:14:c1:2d:3d:42:33:1f:0d:ad:cb:e9: c8:3a:90:b0:85:fb:3d:83:06:34:a8:15:12:17:84: d6:2b:f0:13:7a:48:fa:72:5a:de:d2:77:90:fb:8f: 8b:09:db:3d:be:db:9f:ff:bd:9a:a5:76:f2:06:00: 2a:43:7d:4b:7a:1a:2f:5c:f0:f9:91:4c:2f:f9:a2: 0e:3f:72:1c:36:41:ad:41:b0:52:f2:ff:be:02:e1: 0a:fe:be:0d:e2:12:23:a6:3e:4f:13:34:b1:0b:a2: b2:46:4f:9c:46:f7:bd:af:85:7d:cb:c1:6a:7a:46: 83:18:23:8f:d3:4d:56:1b:18:01:db:a1:53:62:15: 63:6a:be:af:52:9d:bd:96:29:af:5b:b3:69:ac:c3: 26:40:dc:65:8a:e2:12:b4:b6:55:c9:15:b2:6d:e6: 4b:6a:54:b2:19:69:39:8b:af:44:a5:87:08:37:4c: d1:1b:41:db:c8:2f:b7:92:54:53:db:6e:47:36:1d: ed:fa:f2:a7:3b:ff:90:e4:66:7e:aa:2e:9b:eb:9c: ce:5c:2d:e6:08:c2:0f:f5:17:df:83:f0:5e:c3:0f: d3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C5:29:84:F8:48:FA:41:4F:E3:CA:4D:43:7A:02:CF:5D:5D:9D:58 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.150.0/23 Signature Algorithm: sha256WithRSAEncryption 08:bd:6e:85:37:35:77:f7:9d:7e:fa:ea:8d:a5:f2:bd:1d:7b: c9:b0:c9:09:d2:9b:d1:90:52:98:e4:98:c6:aa:27:bd:84:6c: fb:cc:28:0b:e0:81:eb:dd:5d:9a:f4:12:86:99:65:a5:f3:a4: 15:1b:3e:0b:46:21:1e:92:a6:30:a6:ff:ec:71:cd:11:ea:a9: 85:83:c2:44:75:c6:81:6c:a2:ff:fb:d3:f6:0e:4b:fe:07:73: 93:f0:3e:1a:42:fd:3c:0d:86:c9:d1:f1:51:d6:73:51:89:cc: a4:8a:92:97:41:13:94:5a:b4:df:f3:c7:c1:13:d9:7c:05:13: ac:47:3b:cd:11:3e:26:4f:03:02:58:b2:34:68:77:f8:c0:bd: 8a:5b:f2:3c:34:ea:79:34:bb:9f:cd:fc:55:09:12:9d:06:58: cf:ae:48:73:a0:48:db:f2:b3:4d:d8:2c:0a:d7:b5:72:8d:02: 21:52:aa:26:9c:3a:0d:a4:15:00:59:50:f2:7b:ae:90:8d:66: 1e:0c:e2:47:9a:14:05:ca:1f:e1:5e:0b:a4:ac:fc:fd:e2:e2: b2:84:f7:87:f6:a6:b6:ad:a1:f2:bc:ab:1e:0f:bd:59:46:ca: ba:4a:f9:e2:ba:5d:5d:eb:e6:47:d0:40:b6:a3:1f:5b:ed:3f: 9f:89:ef:7d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdCMTExMC8GA1UEBRMoNDMyQTM2RTZENTcwMEIwQkNBQ0NFMEY0MTU3NkFFNkIx M0NBRDNDMDAeFw0yMzExMTQwNDE0MDRaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTJmNDBiLTQyZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyyZsFZ2Murmzy53w3IMvhOfEooFviIWblsz1SZk7xpv8UwS09QjMfDa3L6cg6 kLCF+z2DBjSoFRIXhNYr8BN6SPpyWt7Sd5D7j4sJ2z2+25//vZqldvIGACpDfUt6 Gi9c8PmRTC/5og4/chw2Qa1BsFLy/74C4Qr+vg3iEiOmPk8TNLELorJGT5xG972v hX3LwWp6RoMYI4/TTVYbGAHboVNiFWNqvq9Snb2WKa9bs2mswyZA3GWK4hK0tlXJ FbJt5ktqVLIZaTmLr0Slhwg3TNEbQdvIL7eSVFPbbkc2He368qc7/5DkZn6qLpvr nM5cLeYIwg/1F9+D8F7DD9MbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4MUphPhI +kFP48pNQ3oCz11dnVgwHwYDVR0jBBgwFoAUQyo25tVwCwvKzOD0FXauaxPK08Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0IxLzhGQUYyQkRFODJB MzExRUVBQzY5RjQ1NkM0RjlBRTAyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXlvMjV0VndDd3ZLek9EMEZYYXVheFBLMDhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi8zRUQxNTJGRTgy QTQxMUVFODc2OTBDNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEActjljANBgkqhkiG9w0BAQsFAAOCAQEACL1uhTc1d/edfvrq jaXyvR17ybDJCdKb0ZBSmOSYxqonvYRs+8woC+CB691dmvQShpllpfOkFRs+C0Yh HpKmMKb/7HHNEeqphYPCRHXGgWyi//vT9g5L/gdzk/A+GkL9PA2GydHxUdZzUYnM pIqSl0ETlFq03/PHwRPZfAUTrEc7zRE+Jk8DAliyNGh3+MC9ilvyPDTqeTS7n838 VQkSnQZYz65Ic6BI2/KzTdgsCte1co0CIVKqJpw6DaQVAFlQ8nuukI1mHgziR5oU Bcof4V4LpKz8/eLisoT3h/amtq2h8ryrHg+9WUbKukr54rpdXevmR9BAtqMfW+0/ n4nvfQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org