$ rpki-client -vvf rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa File: 88FD3F60EE7D11EE8868470EC4F9AE02.roa (raw, json) Hash identifier: CY+0lVCE8pyV/yuqoYwTYIt3uyuTBJHx9OgX18w8m2Q= Subject key identifier: DA:02:DD:9E:2F:73:F1:A4:93:B0:61:06:44:3E:FF:7B:A1:17:84:40 Certificate issuer: /CN=A9190CC3/serialNumber=F413F51D87BBFF4B0A41072187476EBE07D361BF Certificate serial: 02 Authority key identifier: F4:13:F5:1D:87:BB:FF:4B:0A:41:07:21:87:47:6E:BE:07:D3:61:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa Signing time: Sat 30 Mar 2024 10:09:03 +0000 ROA not before: Sat 30 Mar 2024 10:09:03 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152674 IP address blocks: 203.28.252.0/24 maxlen: 24 203.28.253.0/24 maxlen: 24 2001:df3:9fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.crl rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190CC3/serialNumber=F413F51D87BBFF4B0A41072187476EBE07D361BF Validity Not Before: Mar 30 10:09:03 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6607e4bf-07de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:2d:dc:ed:f8:5b:7e:95:84:4e:ae:43:4f: c4:90:36:64:18:db:29:9d:b7:11:e0:bc:34:6f:20: b1:f9:c9:43:33:f6:ff:b2:fd:ad:31:a1:88:bf:ad: 92:c8:91:02:b6:88:6e:14:5d:c2:2b:ab:f7:24:e6: ca:56:a5:11:3d:23:41:9d:55:7b:f1:7e:8d:ca:dc: a5:97:f4:46:3a:f1:0a:fb:bb:58:b0:3a:0c:a4:8a: 44:bb:81:64:46:31:d1:e5:a5:f8:c1:c8:6d:23:a8: ec:2c:18:87:dd:fe:8a:3c:c0:b6:d3:0c:6e:d0:b9: 56:fa:33:73:08:c4:e9:50:62:15:c5:7a:fb:86:53: 37:e9:c3:9a:90:6c:b3:51:ac:8d:45:1c:14:ba:28: ba:9e:37:6e:10:d4:2c:9b:71:e7:67:46:d8:62:5a: 3a:ae:40:40:51:25:5c:10:bf:3e:3d:71:f3:6e:da: 27:35:c8:f6:0f:b3:df:d9:d1:ae:52:82:50:5f:0f: af:97:2e:30:71:75:85:19:62:1e:9b:81:e2:70:da: 5c:77:ad:9f:a4:f1:86:20:c2:3c:f4:ed:7c:db:aa: f6:43:b1:dd:dd:a2:55:37:20:e7:9f:7e:14:8c:f8: 52:49:40:bf:cd:6a:fe:99:c8:d4:c6:24:0f:6b:88: b8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:02:DD:9E:2F:73:F1:A4:93:B0:61:06:44:3E:FF:7B:A1:17:84:40 X509v3 Authority Key Identifier: keyid:F4:13:F5:1D:87:BB:FF:4B:0A:41:07:21:87:47:6E:BE:07:D3:61:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.252.0/23 IPv6: 2001:df3:9fc0::/48 Signature Algorithm: sha256WithRSAEncryption b0:6d:17:72:86:b3:e6:14:0c:a0:69:f4:b1:d5:d5:33:11:55: 1c:64:69:46:ca:85:a9:2c:de:b3:97:27:c5:89:5d:b1:67:05: d0:25:59:4d:5b:26:03:2a:12:76:e3:4b:b5:3e:71:65:b1:e3: 7d:e2:19:76:eb:e6:a7:1c:05:c3:77:b3:c6:d2:34:27:31:3d: d6:3b:f6:2e:d5:26:ae:dc:71:54:cc:b7:26:cc:5b:83:21:70: 12:c3:d0:69:b3:f4:2e:87:b7:5a:22:d4:56:b1:1e:6d:b6:22: 1a:ca:0f:1f:ca:0a:00:9d:5c:6d:52:c1:f0:71:6e:7a:c6:50: a1:29:4c:aa:bc:8f:29:d0:ab:ed:4d:55:3e:e4:28:0a:b5:2c: 2e:6f:19:79:cf:81:4a:51:65:77:6a:b4:4b:6a:b0:e8:25:ba: e8:c1:ef:3b:30:54:1b:b3:54:b8:78:9a:ed:53:ad:c4:26:e0: 02:37:ab:22:d5:88:56:cd:f9:df:f9:1b:b8:73:3e:80:b3:df: 4a:d9:0f:40:84:e8:85:dd:d3:d5:a1:ef:24:ad:0f:55:c6:9f: db:13:69:44:64:7d:78:14:c8:f3:df:e9:65:d4:21:47:2f:d5: 64:1e:46:d1:bd:43:93:c0:cd:88:d5:59:3c:3c:9b:fb:9d:2e: b4:20:81:e2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MENDMzExMC8GA1UEBRMoRjQxM0Y1MUQ4N0JCRkY0QjBBNDEwNzIxODc0NzZFQkUw N0QzNjFCRjAeFw0yNDAzMzAxMDA5MDNaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDdlNGJmLTA3ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1IC3c7fhbfpWETq5DT8SQNmQY2ymdtxHgvDRvILH5yUMz9v+y/a0xoYi/rZLI kQK2iG4UXcIrq/ck5spWpRE9I0GdVXvxfo3K3KWX9EY68Qr7u1iwOgykikS7gWRG MdHlpfjByG0jqOwsGIfd/oo8wLbTDG7QuVb6M3MIxOlQYhXFevuGUzfpw5qQbLNR rI1FHBS6KLqeN24Q1CybcednRthiWjquQEBRJVwQvz49cfNu2ic1yPYPs9/Z0a5S glBfD6+XLjBxdYUZYh6bgeJw2lx3rZ+k8YYgwjz07XzbqvZDsd3dolU3IOeffhSM +FJJQL/Nav6ZyNTGJA9riLgxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU2gLdni9z 8aSTsGEGRD7/e6EXhEAwHwYDVR0jBBgwFoAU9BP1HYe7/0sKQQchh0duvgfTYb8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwQ0MzLzI0QjhFMjU4RUU3 QzExRUU5RjI5MEU4MEM0RjlBRTAyLzlCUDFIWWU3XzBzS1FRY2hoMGR1dmdmVFli OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUJQMUhZZTdfMHNLUVFjaGgwZHV2Z2ZUWWI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MENDMy8yNEI4RTI1OEVFN0MxMUVFOUYyOTBFODBDNEY5QUUwMi84OEZEM0Y2MEVF N0QxMUVFODg2ODQ3MEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcsc/DAPBAIAAjAJAwcAIAEN85/AMA0GCSqGSIb3DQEBCwUA A4IBAQCwbRdyhrPmFAygafSx1dUzEVUcZGlGyoWpLN6zlyfFiV2xZwXQJVlNWyYD KhJ240u1PnFlseN94hl26+anHAXDd7PG0jQnMT3WO/Yu1Sau3HFUzLcmzFuDIXAS w9Bps/Quh7daItRWsR5ttiIayg8fygoAnVxtUsHwcW56xlChKUyqvI8p0KvtTVU+ 5CgKtSwubxl5z4FKUWV3arRLarDoJbrowe87MFQbs1S4eJrtU63EJuACN6si1YhW zfnf+Ru4cz6As99K2Q9AhOiF3dPVoe8krQ9Vxp/bE2lEZH14FMjz3+ll1CFHL9Vk HkbRvUOTwM2I1Vk8PJv7nS60IIHi -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org