$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/98BE8828663D11EE8CBBAE7CC4F9AE02.roa File: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (raw, json) Hash identifier: arODFPFaBZQE1rGrse5WRz0vacMKcSguQZ5zZWgERQU= Subject key identifier: E9:40:04:23:24:7C:7D:8B:51:B4:D3:29:36:1E:0F:EE:DE:C8:F7:48 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 22 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/98BE8828663D11EE8CBBAE7CC4F9AE02.roa Signing time: Mon 09 Oct 2023 01:32:21 +0000 ROA not before: Mon 09 Oct 2023 01:32:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 7474 IP address blocks: 203.6.0.0/18 maxlen: 18 203.10.243.0/24 maxlen: 24 203.11.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Oct 9 01:32:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65235825-e557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5a:3e:74:e6:5c:10:c8:37:53:08:de:e0:3a: 91:f3:2d:7b:b5:01:21:98:d9:9b:0b:16:94:50:2a: c2:4d:26:61:8c:15:36:02:a6:9f:f0:25:25:a3:c8: 61:0d:43:af:6e:f4:cf:1c:b4:b5:76:10:0d:5f:d5: 2f:e6:e3:c2:3f:cc:71:f0:33:cb:61:53:51:c4:5c: 66:2b:24:86:28:93:3c:f1:ac:2d:d2:49:b7:0e:9a: 06:d0:e4:74:26:07:8b:3c:63:84:0f:04:1d:02:3a: df:17:4e:96:a8:34:44:62:78:f2:0f:23:20:2a:8a: 9f:94:da:44:fc:f5:8d:90:7a:16:ba:34:e9:4a:08: 3a:09:96:81:ef:e6:c2:d3:23:8e:9e:23:55:82:fe: 07:79:fd:ba:ce:e7:a8:f1:d9:84:fc:56:b3:8b:c3: b0:c8:e1:b9:59:06:80:25:d6:ca:7b:63:50:8d:7b: a4:04:7b:b8:f2:9b:e3:37:32:ea:68:19:17:2b:9d: 5d:fa:33:b2:1d:ec:49:b3:71:44:11:ae:31:63:9f: b4:84:86:e7:b7:34:c3:5e:48:16:98:4d:ed:75:ec: 89:a4:2f:48:21:56:f8:e5:8d:c2:7e:2a:df:91:17: d5:d5:e3:9f:04:f9:73:ff:d1:98:d1:fd:71:d4:30: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:40:04:23:24:7C:7D:8B:51:B4:D3:29:36:1E:0F:EE:DE:C8:F7:48 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/98BE8828663D11EE8CBBAE7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.0.0/18 203.10.243.0/24 203.11.1.0/24 Signature Algorithm: sha256WithRSAEncryption 00:33:93:06:db:08:f3:96:09:33:f4:d3:a5:b8:9e:55:81:8f: c3:04:7c:44:31:c9:3c:a4:e7:67:2d:ea:5c:c1:eb:74:ef:26: 17:54:6c:21:36:00:0c:dd:7e:03:7f:74:4a:10:c1:f7:6d:86: 49:4a:43:25:0a:fc:4a:e9:16:0a:6b:c1:cb:5b:b0:93:b8:f0: 3d:e6:6c:8e:8e:f1:be:c0:10:94:60:21:a1:1f:35:87:9a:a1: 7b:15:6c:05:6c:22:50:cb:b1:fe:f0:93:ca:76:a8:15:29:62: 1c:70:df:41:12:07:af:a4:af:13:ad:f9:c7:4c:91:d8:43:a0: e5:36:85:23:9a:a4:ea:2b:0b:57:b1:5e:45:cc:67:8b:b2:c2: 13:49:a2:1b:c1:32:0a:b7:39:4b:cc:c0:79:79:72:fb:fc:ea: ba:a5:00:55:95:22:fc:10:b2:b0:17:9b:8d:30:9b:e7:91:4b: 38:cb:35:99:b6:56:65:af:df:dd:3a:32:4c:67:e7:11:06:a3: 44:59:cd:5b:99:80:9a:ba:a9:f2:95:17:7b:ad:84:be:ab:a3: 34:b7:03:3c:d3:6a:db:28:2c:ba:44:4b:07:04:8d:41:fb:01: f0:88:f8:f9:78:4e:5c:75:f2:94:51:fb:09:ec:f9:5f:3d:c5: a3:d4:5c:58 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUU4MjExMC8GA1UEBRMoNUU3MkFBN0Q1QjFENTYzMkU1RDMzRkVDNzJGQTc0MzNG NDlDRTI5QTAeFw0yMzEwMDkwMTMyMjFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjM1ODI1LWU1NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiWj505lwQyDdTCN7gOpHzLXu1ASGY2ZsLFpRQKsJNJmGMFTYCpp/wJSWjyGEN Q69u9M8ctLV2EA1f1S/m48I/zHHwM8thU1HEXGYrJIYokzzxrC3SSbcOmgbQ5HQm B4s8Y4QPBB0COt8XTpaoNERiePIPIyAqip+U2kT89Y2Qeha6NOlKCDoJloHv5sLT I46eI1WC/gd5/brO56jx2YT8VrOLw7DI4blZBoAl1sp7Y1CNe6QEe7jym+M3Mupo GRcrnV36M7Id7EmzcUQRrjFjn7SEhue3NMNeSBaYTe117ImkL0ghVvjljcJ+Kt+R F9XV458E+XP/0ZjR/XHUMBhvAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQU6UAEIyR8 fYtRtNMpNh4P7t7I90gwHwYDVR0jBBgwFoAUXnKqfVsdVjLl0z/scvp0M/Sc4pow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5RTgyL0VBN0U1RkE2NjM2 RjExRUU5N0M3NEI1Q0M0RjlBRTAyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5LcWZWc2RWakxsMHpfc2N2cDBNX1NjNHBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi85OEJFODgyODY2 M0QxMUVFOENCQkFFN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEBssGAAMEAMsK8wMEAMsLATANBgkqhkiG9w0BAQsFAAOCAQEA ADOTBtsI85YJM/TTpbieVYGPwwR8RDHJPKTnZy3qXMHrdO8mF1RsITYADN1+A390 ShDB922GSUpDJQr8SukWCmvBy1uwk7jwPeZsjo7xvsAQlGAhoR81h5qhexVsBWwi UMux/vCTynaoFSliHHDfQRIHr6SvE635x0yR2EOg5TaFI5qk6isLV7FeRcxni7LC E0miG8EyCrc5S8zAeXly+/zquqUAVZUi/BCysBebjTCb55FLOMs1mbZWZa/f3Toy TGfnEQajRFnNW5mAmrqp8pUXe62EvqujNLcDPNNq2ygsukRLBwSNQfsB8Ij4+XhO XHXylFH7Cez5Xz3Fo9RcWA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:32 2024 by rpki-client on console-ams.rpki-client.org