$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa File: 24D7D74C978011EE87BB7D53C4F9AE02.roa (raw, json) Hash identifier: 4NK+MhKMKZm2Ucwah4YCjjvRDUptfXHYxwu/ywrQ1XE= Subject key identifier: 6F:7D:74:82:FE:7A:8A:7B:03:FF:FD:E5:64:8F:E1:29:45:72:27:81 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 346F Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa Signing time: Thu 04 Jan 2024 14:50:33 +0000 ROA not before: Thu 04 Jan 2024 14:50:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140608 IP address blocks: 116.90.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13423 (0x346f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jan 4 14:50:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6596c5b9-8ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:25:49:1d:f9:0d:05:76:18:3c:2f:c4:1f: e9:50:ec:52:7f:a4:48:1b:bc:85:e8:71:4a:cb:89: 62:05:17:13:5a:a4:aa:26:d0:54:a6:e9:50:e6:9a: 00:e4:e4:a7:5b:8d:e9:97:02:9d:7a:8c:d7:af:94: 82:fe:ef:c2:f8:08:82:80:1d:90:ab:07:d1:cf:70: 27:bc:a0:b2:6d:37:41:0e:36:53:6c:01:45:c9:85: 06:83:5d:a0:01:9f:26:6c:7f:cf:fd:83:46:90:1a: 1d:41:3c:ac:81:8f:de:02:03:a3:e9:3f:6c:60:5f: 00:be:31:6b:ff:73:43:1b:0b:66:7a:5c:4a:c8:bc: 1b:5d:69:45:2f:13:ce:b0:c9:0f:40:af:0f:56:08: 1d:42:5f:ef:45:1f:9b:dd:7e:14:ba:ac:45:67:c1: 6b:1c:a3:1f:92:ac:55:d3:65:39:be:6d:10:07:63: 18:5a:ce:a5:d0:80:6e:53:cc:48:6a:b2:47:6c:83: 7b:97:be:f6:96:c6:81:93:21:7a:75:a9:97:ec:86: 0e:5e:a9:29:fb:91:36:51:42:ed:46:88:89:2f:ce: 2d:32:0e:14:e9:08:98:ed:17:53:31:a3:89:27:74: fa:59:33:23:87:f9:e0:59:30:4c:15:c6:68:f9:21: 3d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7D:74:82:FE:7A:8A:7B:03:FF:FD:E5:64:8F:E1:29:45:72:27:81 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.112.0/24 Signature Algorithm: sha256WithRSAEncryption ac:7f:5c:c9:45:55:29:76:e1:8a:25:67:b1:86:67:2c:69:44: 93:e6:67:a7:6e:ce:0d:3e:35:e3:1f:86:f7:5a:91:12:86:d0: 8a:03:a8:ca:83:ec:94:08:ab:69:c3:7f:0a:db:e2:4b:b1:dc: 5c:0a:9c:ca:88:26:df:b8:12:7b:12:2f:01:e3:08:6b:ca:31: b8:97:b6:8a:33:0e:0b:90:8a:9a:f9:0e:80:31:cb:b1:ec:bd: 5d:76:14:b7:38:c3:72:ec:53:1f:41:02:5f:bc:29:90:92:30: 38:16:81:ac:26:d9:c4:76:d8:34:9d:c2:1f:06:f3:2f:0f:c5: 6d:ff:b7:66:e6:45:33:e0:19:df:07:ca:69:b8:70:d2:70:aa: a9:ff:35:85:53:ee:a3:51:7b:62:bd:5c:45:40:b1:50:d3:2e: 66:80:b9:e3:12:fc:33:6e:d3:3a:d1:d2:11:99:75:96:1a:7d: 12:b4:4c:94:41:6b:39:e6:a2:75:35:9e:ff:7c:78:c6:d4:5d: e3:1f:61:b9:36:34:ba:d4:87:4b:f3:13:81:9d:1f:70:d0:c3: bc:a4:e5:d2:5b:89:5a:53:bb:d6:42:fe:dc:f9:07:68:a1:d4: 76:2e:9e:dc:e6:b4:3a:40:23:90:c8:54:3b:cb:d6:06:bc:71: 89:fb:6b:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwMTA0MTQ1MDMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2YzViOS04ZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX4lSR35DQV2GDwvxB/pUOxSf6RIG7yF6HFKy4liBRcTWqSqJtBUpulQ5poA 5OSnW43plwKdeozXr5SC/u/C+AiCgB2QqwfRz3AnvKCybTdBDjZTbAFFyYUGg12g AZ8mbH/P/YNGkBodQTysgY/eAgOj6T9sYF8AvjFr/3NDGwtmelxKyLwbXWlFLxPO sMkPQK8PVggdQl/vRR+b3X4UuqxFZ8FrHKMfkqxV02U5vm0QB2MYWs6l0IBuU8xI arJHbIN7l772lsaBkyF6damX7IYOXqkp+5E2UULtRoiJL84tMg4U6QiY7RdTMaOJ J3T6WTMjh/ngWTBMFcZo+SE92wIDAQABo4IClTCCApEwHQYDVR0OBBYEFG99dIL+ eop7A//95WSP4SlFcieBMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvMjREN0Q3NEM5 NzgwMTFFRTg3QkI3RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnAwDQYJKoZIhvcNAQELBQADggEBAKx/XMlFVSl24Yol Z7GGZyxpRJPmZ6duzg0+NeMfhvdakRKG0IoDqMqD7JQIq2nDfwrb4kux3FwKnMqI Jt+4EnsSLwHjCGvKMbiXtoozDguQipr5DoAxy7HsvV12FLc4w3LsUx9BAl+8KZCS MDgWgawm2cR22DSdwh8G8y8PxW3/t2bmRTPgGd8Hymm4cNJwqqn/NYVT7qNRe2K9 XEVAsVDTLmaAueMS/DNu0zrR0hGZdZYafRK0TJRBaznmonU1nv98eMbUXeMfYbk2 NLrUh0vzE4GdH3DQw7yk5dJbiVpTu9ZC/tz5B2ih1HYuntzmtDpAI5DIVDvL1ga8 cYn7a4s= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:21 2024 by rpki-client on console-ams.rpki-client.org