$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/645EF9CADB9311E988E56C33C4F9AE02.roa File: 645EF9CADB9311E988E56C33C4F9AE02.roa (raw, json) Hash identifier: CaGe0AHcQubCu6O3M8q6AVpJO4E7E++RqJexbr/jygs= Subject key identifier: 59:FD:E5:94:AD:18:0A:67:44:F6:DB:8D:33:A6:64:D9:74:B9:0C:71 Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0C1C Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/645EF9CADB9311E988E56C33C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:57:13 +0000 ROA not before: Thu 28 Dec 2023 18:57:13 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9789 IP address blocks: 202.131.3.0/24 maxlen: 24 202.131.5.0/24 maxlen: 24 202.131.6.0/24 maxlen: 24 202.131.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Dec 28 18:57:13 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658dc508-e2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:b7:36:64:4a:f7:da:d0:4d:36:1a:5a:85: 65:7a:e3:6d:4d:40:8f:11:46:00:4a:fb:5d:97:4d: e8:fd:2e:6d:89:27:86:45:c7:3f:61:d7:62:9f:49: e6:d8:86:20:01:81:cb:7c:fc:a3:c7:4a:f8:da:d7: 9d:d0:32:6a:1a:84:13:70:63:35:79:e8:84:24:f4: eb:9a:6c:64:d4:a8:a1:fe:5b:f2:3d:66:b4:4c:da: e9:43:88:d0:1b:de:76:6f:47:71:bf:59:1f:11:f4: 04:a9:6f:d0:48:1e:82:5a:a4:5e:81:cf:c1:f2:cd: 6d:6d:2a:16:99:cd:25:0b:a7:b4:74:ba:28:7a:d9: 3b:ad:37:ee:b1:e6:50:ff:f5:22:37:e9:9a:d8:90: 78:59:12:f4:d7:db:3b:e8:10:af:a6:15:fb:6a:a5: 09:8d:d6:62:45:f9:10:8b:c6:2a:8c:74:4e:73:ce: 7a:de:ec:e3:9e:ad:21:57:a3:d9:d5:49:5f:a7:93: 15:ee:84:13:c6:39:13:a5:5d:bd:96:89:0e:65:bb: de:01:f1:ff:85:0a:0d:e1:be:17:7d:fd:1a:3d:32: 76:a1:fb:55:eb:0b:4b:85:31:16:84:4d:4c:74:1b: 6f:ca:9c:f1:d1:ac:57:6f:38:b3:45:a1:bf:4f:20: 73:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FD:E5:94:AD:18:0A:67:44:F6:DB:8D:33:A6:64:D9:74:B9:0C:71 X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/645EF9CADB9311E988E56C33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.3.0/24 202.131.5.0-202.131.7.255 Signature Algorithm: sha256WithRSAEncryption 5c:59:fb:d9:95:8b:28:73:39:88:ff:3f:46:de:9d:83:12:d7: 8c:10:ad:46:d3:b6:7f:f9:fc:e8:b0:05:58:1b:ad:75:b4:f9: 52:6a:cd:72:88:50:c3:08:89:84:6b:19:83:8f:e7:ee:8b:58: b8:d3:4c:51:9b:99:0b:1f:43:99:f3:a9:0a:b7:f4:1c:f1:82: a0:7d:7e:f2:8f:ce:aa:2d:0d:49:8f:11:0c:70:ec:07:b1:93: 7d:61:9c:89:cc:1e:c1:8e:e4:d5:79:5c:71:36:6b:cd:a3:ef: a7:d0:3b:b6:1d:58:c3:23:61:66:f4:b9:37:a0:6e:15:e9:ee: f3:da:48:01:bd:66:44:8b:01:5d:4c:23:27:fa:f0:27:de:6e: b1:b8:b9:82:76:c2:3b:90:3f:ba:fa:4e:a6:c5:6b:78:d4:d7: 3f:d2:6a:c7:28:6a:ed:88:e6:ef:55:7a:80:13:c6:ea:06:eb: 78:7f:cc:cb:3d:b9:d1:3b:b4:f4:87:97:10:68:a5:4e:34:f9: 66:3a:44:6b:36:e7:54:32:aa:cd:aa:dd:0a:ed:b1:bd:5b:e4: 95:a7:60:3f:cb:58:b5:67:67:ef:d2:9d:18:75:c8:e8:02:f0: 37:58:2b:c2:51:0d:96:fe:fe:22:bd:e7:61:b8:ec:d0:93:0a: ce:bb:e8:bc -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjMxMjI4MTg1NzEzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzUwOC1lMmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWu3NmRK99rQTTYaWoVleuNtTUCPEUYASvtdl03o/S5tiSeGRcc/Yddin0nm 2IYgAYHLfPyjx0r42ted0DJqGoQTcGM1eeiEJPTrmmxk1Kih/lvyPWa0TNrpQ4jQ G952b0dxv1kfEfQEqW/QSB6CWqRegc/B8s1tbSoWmc0lC6e0dLooetk7rTfuseZQ //UiN+ma2JB4WRL019s76BCvphX7aqUJjdZiRfkQi8YqjHROc8563uzjnq0hV6PZ 1Ulfp5MV7oQTxjkTpV29lokOZbveAfH/hQoN4b4Xff0aPTJ2oftV6wtLhTEWhE1M dBtvypzx0axXbzizRaG/TyBzpQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFn95ZSt GApnRPbbjTOmZNl0uQxxMB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvNjQ1RUY5Q0FE QjkzMTFFOTg4RTU2QzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBADKgwMwDAMEAMqDBQMEA8qDADANBgkqhkiG9w0BAQsFAAOC AQEAXFn72ZWLKHM5iP8/Rt6dgxLXjBCtRtO2f/n86LAFWButdbT5UmrNcohQwwiJ hGsZg4/n7otYuNNMUZuZCx9DmfOpCrf0HPGCoH1+8o/Oqi0NSY8RDHDsB7GTfWGc icwewY7k1XlccTZrzaPvp9A7th1YwyNhZvS5N6BuFenu89pIAb1mRIsBXUwjJ/rw J95usbi5gnbCO5A/uvpOpsVreNTXP9Jqxyhq7Yjm71V6gBPG6gbreH/Myz250Tu0 9IeXEGilTjT5ZjpEazbnVDKqzardCu2xvVvkladgP8tYtWdn79KdGHXI6ALwN1gr wlENlv7+Ir3nYbjs0JMKzrvovA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org