$ rpki-client -vvf rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/D1E78BC0A15D11EFBAE3332CC4F9AE02.roa File: D1E78BC0A15D11EFBAE3332CC4F9AE02.roa (raw, json) Hash identifier: 03/IZSSaWCkjD0t5R6IQf4NgtsFNdSzPU+q4DaqUlgg= Subject key identifier: 1C:31:81:8C:1C:1F:89:6A:6C:80:BC:14:3A:DA:2D:14:2B:DF:17:27 Certificate issuer: /CN=A91637FD/serialNumber=0ACE6F6AA6A3FAE27A085C7A127F9BC994245214 Certificate serial: 02 Authority key identifier: 0A:CE:6F:6A:A6:A3:FA:E2:7A:08:5C:7A:12:7F:9B:C9:94:24:52:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/D1E78BC0A15D11EFBAE3332CC4F9AE02.roa Signing time: Wed 13 Nov 2024 01:23:00 +0000 ROA not before: Wed 13 Nov 2024 01:23:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 141451 IP address blocks: 203.33.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.crl rsync://rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91637FD/serialNumber=0ACE6F6AA6A3FAE27A085C7A127F9BC994245214 Validity Not Before: Nov 13 01:23:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6733ff74-bdc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:1c:56:78:4f:42:8a:99:b9:df:a2:e9:f7: 31:20:25:96:a1:65:51:c0:a4:fe:b0:87:d1:86:3e: 51:e4:c9:8d:25:16:21:5c:8c:73:18:f1:ef:29:a5: 19:8c:12:45:03:46:21:d4:a7:ae:dd:0a:d7:59:8f: 70:de:bf:1c:fe:b6:d0:ab:5f:55:f1:07:2c:7f:9a: 4a:6c:01:5b:7d:59:10:64:93:f2:fd:c1:95:49:bb: 43:bb:5a:4b:14:d1:1d:1e:c0:70:ed:1d:f8:6a:be: f2:00:db:74:b4:68:af:17:6a:be:02:3d:9a:b5:e6: f4:6a:88:cb:47:f2:a6:62:42:37:4e:3f:3b:c2:87: 56:62:d2:19:52:da:f7:8b:ab:2e:e9:76:99:95:09: 5a:0e:a6:1c:9a:84:30:03:00:7a:d3:a8:05:7d:08: d1:bb:55:1e:44:15:27:28:63:91:02:4c:1e:e5:80: 05:b6:b8:7c:b7:63:1d:8d:ca:73:f3:6b:cc:42:7a: b3:60:3e:09:82:11:44:d5:4e:d9:ae:24:79:3f:29: 65:32:45:e7:86:2e:c1:5a:93:3f:59:36:e9:f7:06: cc:92:b9:fc:f7:f3:42:e8:68:51:a4:a7:08:22:2a: b1:1e:e9:30:75:5a:e9:7d:c7:39:2d:66:5c:98:b9: 31:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:31:81:8C:1C:1F:89:6A:6C:80:BC:14:3A:DA:2D:14:2B:DF:17:27 X509v3 Authority Key Identifier: keyid:0A:CE:6F:6A:A6:A3:FA:E2:7A:08:5C:7A:12:7F:9B:C9:94:24:52:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cs5vaqaj-uJ6CFx6En-byZQkUhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91637FD/E245B5B2A15A11EFA1EC2B5FC4F9AE02/D1E78BC0A15D11EFBAE3332CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.55.0/24 Signature Algorithm: sha256WithRSAEncryption 46:76:14:c8:4f:46:a7:78:c2:0a:a7:e3:12:d0:a0:16:5c:53: 0b:3b:ec:d1:ab:1a:1b:a7:ce:15:c9:46:09:29:9c:bb:6d:27: 9f:74:b9:39:e5:77:8d:1f:1b:68:90:5b:d6:2c:c9:44:b6:ac: ce:84:21:94:74:b4:95:88:75:98:ec:4c:e1:98:47:30:f9:0f: 9b:b0:a6:c9:94:aa:81:e3:b5:82:51:b9:db:41:5e:10:ce:f1: 8a:46:80:d5:9f:66:a4:2f:4f:eb:42:a0:45:f7:97:cd:d3:8e: 57:35:1a:48:dd:bb:e3:67:ea:69:08:c8:07:7c:03:d0:19:5b: 33:1e:a2:7c:92:5a:fb:41:31:d1:10:57:d2:3a:ac:a6:4a:87: c1:23:07:fb:21:de:63:16:18:33:29:3d:17:9a:6f:80:8e:bc: b3:20:c9:d9:1c:45:67:8c:56:30:4c:50:b9:e3:e3:9e:c0:c7: 31:04:29:a5:e0:a7:54:c3:dc:5c:e9:ca:61:63:9b:e5:a6:29: 2a:ae:c1:e2:85:c6:88:12:b8:dc:b1:9b:d5:1d:fa:ae:86:50: 31:e2:23:0c:76:8d:b9:89:47:7f:45:c7:36:1f:48:77:9e:c1: ef:05:76:82:ce:a8:13:8a:47:83:c3:15:50:6c:7a:b3:ef:c9: f8:12:a7:66 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MzdGRDExMC8GA1UEBRMoMEFDRTZGNkFBNkEzRkFFMjdBMDg1QzdBMTI3RjlCQzk5 NDI0NTIxNDAeFw0yNDExMTMwMTIzMDBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzNmZjc0LWJkYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLSBxWeE9Cipm536Lp9zEgJZahZVHApP6wh9GGPlHkyY0lFiFcjHMY8e8ppRmM EkUDRiHUp67dCtdZj3Devxz+ttCrX1XxByx/mkpsAVt9WRBkk/L9wZVJu0O7WksU 0R0ewHDtHfhqvvIA23S0aK8Xar4CPZq15vRqiMtH8qZiQjdOPzvCh1Zi0hlS2veL qy7pdpmVCVoOphyahDADAHrTqAV9CNG7VR5EFScoY5ECTB7lgAW2uHy3Yx2NynPz a8xCerNgPgmCEUTVTtmuJHk/KWUyReeGLsFakz9ZNun3BsySufz380LoaFGkpwgi KrEe6TB1Wul9xzktZlyYuTGzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHDGBjBwf iWpsgLwUOtotFCvfFycwHwYDVR0jBBgwFoAUCs5vaqaj+uJ6CFx6En+byZQkUhQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzN0ZEL0UyNDVCNUIyQTE1 QTExRUZBMUVDMkI1RkM0RjlBRTAyL0NzNXZhcWFqLXVKNkNGeDZFbi1ieVpRa1Vo US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3M1dmFxYWotdUo2Q0Z4NkVuLWJ5WlFrVWhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzdGRC9FMjQ1QjVCMkExNUExMUVGQTFFQzJCNUZDNEY5QUUwMi9EMUU3OEJDMEEx NUQxMUVGQkFFMzMzMkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMshNzANBgkqhkiG9w0BAQsFAAOCAQEARnYUyE9Gp3jCCqfj EtCgFlxTCzvs0asaG6fOFclGCSmcu20nn3S5OeV3jR8baJBb1izJRLaszoQhlHS0 lYh1mOxM4ZhHMPkPm7CmyZSqgeO1glG520FeEM7xikaA1Z9mpC9P60KgRfeXzdOO VzUaSN2742fqaQjIB3wD0BlbMx6ifJJa+0Ex0RBX0jqspkqHwSMH+yHeYxYYMyk9 F5pvgI68syDJ2RxFZ4xWMExQuePjnsDHMQQppeCnVMPcXOnKYWOb5aYpKq7B4oXG iBK43LGb1R36roZQMeIjDHaNuYlHf0XHNh9Id57B7wV2gs6oE4pHg8MVUGx6s+/J +BKnZg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org