$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/2504266C1D1A11E8BDAD4F54C4F9AE02.roa File: 2504266C1D1A11E8BDAD4F54C4F9AE02.roa (raw, json) Hash identifier: becdUlU0pzm+rTWjvZx42/pYjskuy1zBf2rR0ajjah0= Subject key identifier: 1B:D5:B2:8D:35:61:0C:53:3B:39:D5:E3:E9:FD:E6:C9:46:E1:B2:BD Certificate issuer: /CN=A91C3083/serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Certificate serial: 1A2A Authority key identifier: B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/2504266C1D1A11E8BDAD4F54C4F9AE02.roa Signing time: Thu 08 Feb 2024 16:44:04 +0000 ROA not before: Thu 08 Feb 2024 16:44:04 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137478 IP address blocks: 202.144.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6698 (0x1a2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3083/serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Validity Not Before: Feb 8 16:44:04 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c504d4-f0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b4:0a:cd:e1:f0:4a:28:45:9f:e4:e8:05:d8: 9a:ef:82:ef:eb:c8:95:d9:ee:c3:5d:74:97:00:c7: 6f:a8:d9:e4:35:36:0e:aa:25:33:05:f8:bd:a3:b3: cd:b1:c0:ab:df:d6:a2:93:b5:46:43:33:26:03:c6: 26:15:73:51:57:23:e4:2f:f4:86:c6:85:89:83:92: f4:7d:a2:55:9b:fb:01:5c:b9:8a:a0:c2:70:24:e8: 89:a2:45:40:39:8e:52:41:7d:df:c8:8b:59:84:cf: 73:76:4b:f8:a5:eb:7d:a4:5e:c0:95:4d:e1:28:7e: 89:9a:b3:e3:fd:17:31:f7:12:6f:75:ba:91:0b:d4: 2e:60:b0:06:de:2f:ab:4a:20:41:41:42:ab:42:ff: b9:eb:a1:2c:84:ff:a9:61:41:3c:5b:13:fc:40:df: c0:ac:0e:2c:d9:87:a7:83:a2:c7:54:11:61:42:b2: 46:e7:5b:62:e0:80:51:db:ec:c4:28:9a:5e:07:46: 23:87:9b:77:37:b5:40:61:6b:2d:3a:50:c1:90:d6: c3:f8:9c:5a:d6:5a:84:70:11:51:5b:61:9a:95:5e: 85:06:7a:00:8e:a1:78:14:6a:56:e8:c4:3a:95:85: f2:c3:b4:ca:7d:90:f6:d3:24:61:7a:c2:2f:1b:ba: 12:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D5:B2:8D:35:61:0C:53:3B:39:D5:E3:E9:FD:E6:C9:46:E1:B2:BD X509v3 Authority Key Identifier: keyid:B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/2504266C1D1A11E8BDAD4F54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.144.203.0/24 Signature Algorithm: sha256WithRSAEncryption 98:62:49:aa:be:db:b2:94:ac:7e:4d:81:70:82:56:ff:99:f8: 74:9c:6b:31:58:f2:96:aa:2f:17:aa:32:9b:af:cf:a2:19:bd: 1d:89:c2:35:ba:4e:66:d8:86:d6:7b:37:b0:b5:bc:3c:cb:41: f3:56:49:29:39:0a:70:c8:e6:8f:e4:f7:34:1d:e1:9b:db:f6: 35:ca:17:8b:1a:c3:4f:0f:54:f7:1a:e7:f2:e6:39:87:02:ee: ee:fa:49:b5:d5:bd:b6:59:31:1a:e5:8c:45:84:65:75:96:3c: cd:05:47:32:3c:67:09:b2:4e:01:f4:db:8f:2a:c8:8b:36:8c: 5d:79:4c:a7:45:3f:1a:ec:17:e9:44:42:7b:ea:86:c0:4d:a6: 53:45:5e:be:32:64:c3:80:4f:36:4e:61:bf:52:b4:e2:09:87: 80:06:f1:a1:14:02:5a:f4:3b:c3:38:ac:20:3b:d2:b2:7e:99: 50:8c:e0:da:c6:ad:0f:3f:43:95:13:57:0c:a1:10:4a:b1:90: 5a:46:40:3a:ad:a5:8e:66:00:24:89:f8:e8:00:62:ff:ff:5c: af:54:cf:8f:2d:ce:ef:a2:e8:56:f9:89:72:7f:2f:0b:ab:cc: cc:a3:e5:e4:97:29:c5:cc:de:d7:79:80:ce:70:c4:21:a8:df: ab:8b:e9:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwODMxMTAvBgNVBAUTKEI3QUE1MzczODMyMTRENjQ4RTYzM0JDQzQyMEQzQkQ2 ODYxNjc4RkQwHhcNMjQwMjA4MTY0NDA0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MDRkNC1mMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbQKzeHwSihFn+ToBdia74Lv68iV2e7DXXSXAMdvqNnkNTYOqiUzBfi9o7PN scCr39aik7VGQzMmA8YmFXNRVyPkL/SGxoWJg5L0faJVm/sBXLmKoMJwJOiJokVA OY5SQX3fyItZhM9zdkv4pet9pF7AlU3hKH6JmrPj/Rcx9xJvdbqRC9QuYLAG3i+r SiBBQUKrQv+566EshP+pYUE8WxP8QN/ArA4s2Yeng6LHVBFhQrJG51ti4IBR2+zE KJpeB0Yjh5t3N7VAYWstOlDBkNbD+Jxa1lqEcBFRW2GalV6FBnoAjqF4FGpW6MQ6 lYXyw7TKfZD20yRhesIvG7oSLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvVso01 YQxTOznV4+n95slG4bK9MB8GA1UdIwQYMBaAFLeqU3ODIU1kjmM7zEINO9aGFnj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA4My9BMENGMDU5QTJF NjAxMUU3Qjc0NzNFNzBDNEY5QUUwMi90NnBUYzRNaFRXU09ZenZNUWcwNzFvWVdl UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2cFRjNE1oVFdTT1l6dk1RZzA3MW9ZV2VQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMwODMvQTBDRjA1OUEyRTYwMTFFN0I3NDczRTcwQzRGOUFFMDIvMjUwNDI2NkMx RDFBMTFFOEJEQUQ0RjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKkMswDQYJKoZIhvcNAQELBQADggEBAJhiSaq+27KUrH5N gXCCVv+Z+HScazFY8paqLxeqMpuvz6IZvR2JwjW6TmbYhtZ7N7C1vDzLQfNWSSk5 CnDI5o/k9zQd4Zvb9jXKF4saw08PVPca5/LmOYcC7u76SbXVvbZZMRrljEWEZXWW PM0FRzI8ZwmyTgH0248qyIs2jF15TKdFPxrsF+lEQnvqhsBNplNFXr4yZMOATzZO Yb9StOIJh4AG8aEUAlr0O8M4rCA70rJ+mVCM4NrGrQ8/Q5UTVwyhEEqxkFpGQDqt pY5mACSJ+OgAYv//XK9Uz48tzu+i6Fb5iXJ/LwurzMyj5eSXKcXM3td5gM5wxCGo 36uL6f4= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org