$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/993B537CDD1911EA96723D11C4F9AE02.roa File: 993B537CDD1911EA96723D11C4F9AE02.roa (raw, json) Hash identifier: 48skWMAdj9drhHu2eh7bahmOkoZkfvFChpuIgM6+7w8= Subject key identifier: 54:79:24:30:7F:27:AC:D4:B2:12:0E:C4:01:55:FB:44:9A:97:2F:DA Certificate issuer: /CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Certificate serial: 3423 Authority key identifier: E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/993B537CDD1911EA96723D11C4F9AE02.roa Signing time: Wed 02 Oct 2024 15:21:21 +0000 ROA not before: Wed 02 Oct 2024 15:21:21 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139468 IP address blocks: 101.0.28.0/24 maxlen: 24 101.0.29.0/24 maxlen: 24 101.0.30.0/24 maxlen: 24 101.0.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13347 (0x3423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Validity Not Before: Oct 2 15:21:21 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fd64f1-17d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:eb:9e:ef:c4:65:3b:29:68:83:30:88:25:6e: 87:91:f9:9f:dd:64:54:95:b9:7a:44:7a:ea:66:56: 14:76:dd:41:3b:2d:d8:c2:21:cb:07:27:a7:79:a8: 77:22:dc:60:e6:21:12:bc:d6:5d:4c:fa:d9:69:42: f5:dd:1f:47:44:25:35:1d:fc:fa:9e:4f:9e:16:5a: 67:01:55:87:d7:e8:b9:e3:b5:d2:61:01:a2:54:b3: 14:b7:d4:33:db:ed:33:b2:30:1a:77:db:b6:84:e0: 8b:c2:39:f5:9a:ed:fa:c2:8b:aa:1e:9d:d3:15:43: 9b:f4:3d:81:63:29:d0:c9:b0:50:83:59:bc:84:ab: 54:33:d5:e6:e2:ea:d8:ab:a5:bf:3f:b5:0f:a9:9d: 5b:a4:df:55:e0:0e:5e:2e:63:5a:6d:7f:88:53:e5: e1:af:ca:ed:79:79:5c:42:18:fd:cf:43:59:9e:34: 42:68:70:4c:2e:3f:7c:f5:8e:9e:8f:b5:5b:4c:97: d6:4e:d3:21:d9:e0:d8:ff:c9:5f:66:e9:ce:a8:55: 54:95:7c:1a:08:c5:e4:fd:23:ea:ed:3a:d0:23:e8: 28:d3:ac:93:24:91:4d:8d:47:79:d6:a4:f0:4d:87: 8d:8c:f1:66:73:fb:79:b3:78:cf:8a:81:c7:66:3f: 98:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:79:24:30:7F:27:AC:D4:B2:12:0E:C4:01:55:FB:44:9A:97:2F:DA X509v3 Authority Key Identifier: keyid:E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/993B537CDD1911EA96723D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.0.28.0/22 Signature Algorithm: sha256WithRSAEncryption 11:36:bd:7f:08:04:dd:b9:c9:e8:84:01:e3:76:7a:94:7f:c3: 66:11:eb:60:9d:b1:b7:e2:4a:4d:f7:6e:50:5b:cd:48:8e:61: 32:3d:1f:df:d6:5a:4e:4f:7e:b1:a4:2e:33:69:8c:f1:3e:9f: 7b:c5:c4:a7:16:39:d9:12:8c:4c:2a:f2:77:88:f8:43:45:0c: 66:7e:d5:0c:87:3f:7f:66:49:22:a6:61:f8:e3:76:1f:02:ab: af:75:8f:79:80:c1:57:a0:8f:53:ed:b8:3f:62:65:17:02:23: 98:54:c9:62:8f:31:05:42:b8:74:41:e4:b8:d7:85:81:36:09: fc:18:14:ad:8a:f6:dc:05:e4:50:1b:19:2b:ae:d0:72:29:ff: 99:9b:5e:8f:35:11:a2:ef:4a:1c:6e:3b:e7:13:bc:74:f0:89: da:cc:fd:07:9c:f9:d0:c6:cf:a2:d6:b4:f9:5c:5f:9c:c6:49: b6:f6:8c:52:49:6a:28:40:ed:ab:be:5d:ab:47:ca:af:ed:d4: c6:38:52:c8:99:3f:88:3f:73:9b:32:0b:f2:c0:ad:7e:6d:84: e5:7a:0e:eb:35:76:80:76:32:86:bd:5e:bd:e4:e8:70:42:f1: dd:f1:a3:94:43:a1:6b:e5:0c:58:a7:7a:fe:9d:e7:2f:e1:ed: c6:49:b3:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFMDMxMTAvBgNVBAUTKEUzOUFCMUQwN0I1MERCQjlBQkUyQ0I1MUNEOUIxRTNB NUE4NTQ1MjEwHhcNMjQxMDAyMTUyMTIxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkNjRmMS0xN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+ue78RlOylogzCIJW6Hkfmf3WRUlbl6RHrqZlYUdt1BOy3YwiHLByeneah3 Itxg5iESvNZdTPrZaUL13R9HRCU1Hfz6nk+eFlpnAVWH1+i547XSYQGiVLMUt9Qz 2+0zsjAad9u2hOCLwjn1mu36wouqHp3TFUOb9D2BYynQybBQg1m8hKtUM9Xm4urY q6W/P7UPqZ1bpN9V4A5eLmNabX+IU+Xhr8rteXlcQhj9z0NZnjRCaHBMLj989Y6e j7VbTJfWTtMh2eDY/8lfZunOqFVUlXwaCMXk/SPq7TrQI+go06yTJJFNjUd51qTw TYeNjPFmc/t5s3jPioHHZj+YewIDAQABo4IClTCCApEwHQYDVR0OBBYEFFR5JDB/ J6zUshIOxAFV+0Saly/aMB8GA1UdIwQYMBaAFOOasdB7UNu5q+LLUc2bHjpahUUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEUwMy8zRjQ4RjIyNDFE QTYxMUUyOUEwNzVEOUQwOEIwMkNEMi80NXF4MEh0UTI3bXI0c3RSelpzZU9scUZS U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1cXgwSHRRMjdtcjRzdFJ6WnNlT2xxRlJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFMDMvM0Y0OEYyMjQxREE2MTFFMjlBMDc1RDlEMDhCMDJDRDIvOTkzQjUzN0NE RDE5MTFFQTk2NzIzRDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJlABwwDQYJKoZIhvcNAQELBQADggEBABE2vX8IBN25yeiE AeN2epR/w2YR62CdsbfiSk33blBbzUiOYTI9H9/WWk5PfrGkLjNpjPE+n3vFxKcW OdkSjEwq8neI+ENFDGZ+1QyHP39mSSKmYfjjdh8Cq691j3mAwVegj1PtuD9iZRcC I5hUyWKPMQVCuHRB5LjXhYE2CfwYFK2K9twF5FAbGSuu0HIp/5mbXo81EaLvShxu O+cTvHTwidrM/Qec+dDGz6LWtPlcX5zGSbb2jFJJaihA7au+XatHyq/t1MY4UsiZ P4g/c5syC/LArX5thOV6Dus1doB2Moa9Xr3k6HBC8d3xo5RDoWvlDFinev6d5y/h 7cZJsxE= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org