$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa File: 8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa (raw, json) Hash identifier: 3RupdV0E3AJ2Yrqp3j0pmtVBbkL6edsyZAqwmmp5q2E= Subject key identifier: 9C:8C:E9:83:21:CB:CE:27:E4:9D:A4:48:02:4F:07:C9:AE:49:F6:FF Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DB7 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:40 +0000 ROA not before: Thu 28 Dec 2023 18:56:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 151326 IP address blocks: 220.232.135.0/24 maxlen: 24 220.232.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 18:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3511 (0xdb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:40 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4e8-75dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:65:39:47:7a:af:1a:81:16:e5:66:14:56: db:6b:18:f9:80:06:04:34:3a:34:6c:23:e7:d9:44: e9:5b:2e:89:07:35:d5:dc:37:ce:17:11:49:59:f5: 32:2a:6f:0c:d3:da:b4:98:61:dd:92:db:8e:fd:b2: 4c:e3:4f:b3:7a:07:94:71:b0:c9:04:30:57:88:4d: 72:96:0e:65:17:be:ad:59:ec:0d:87:7a:71:fe:ad: 04:f4:05:cd:b3:f8:4e:40:a2:01:7f:37:14:30:42: cb:fa:fe:f7:38:ef:e3:ba:3f:88:96:d0:0c:60:13: 37:72:31:b3:c0:b7:4c:9c:09:f2:54:f1:31:ec:67: 68:b6:4b:7a:aa:40:74:cb:3a:f7:b3:6e:e6:a5:5e: 73:cc:96:19:fd:89:a1:40:0c:9c:b8:5d:b0:da:ea: da:bd:08:0c:5c:42:9f:7e:41:41:d1:1e:ff:d2:f1: a1:cc:c1:89:7e:fd:13:36:99:70:d5:a0:cf:52:af: 84:24:66:e4:cf:7b:7b:a6:5a:af:f1:9d:37:71:7f: 75:64:da:5e:21:fd:b8:b8:38:59:9d:2d:18:8c:8c: db:3f:67:60:1b:52:0b:72:78:4d:3c:12:90:ed:93: ff:ac:dd:43:69:91:8d:77:4d:b2:6d:cc:fa:57:24: 46:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:8C:E9:83:21:CB:CE:27:E4:9D:A4:48:02:4F:07:C9:AE:49:F6:FF X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.232.135.0/24 220.232.158.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e9:43:5d:5e:1d:46:8a:ba:06:b6:12:63:04:b2:2b:b5:9d: 1b:54:5f:d8:07:45:6f:ed:b7:e8:62:f6:16:c4:a0:84:ac:b4: 6e:a5:cc:bf:4a:34:e1:1b:7d:78:7e:18:69:ec:fd:32:8d:3d: 5a:6e:5f:e7:99:90:4b:fc:8c:cf:fb:1d:3d:63:25:fc:1a:ee: a8:06:be:ca:46:fc:22:51:52:26:21:12:3b:d7:24:80:1a:a3: f8:cb:25:c5:32:71:12:22:e0:31:05:6e:8b:c6:9c:f6:16:da: 7c:a5:15:a6:85:df:f3:4b:12:31:3f:06:43:49:47:df:5c:20: 95:f7:58:10:99:be:1b:a3:31:2f:d7:21:83:5f:16:6e:8f:40: fc:e5:dc:42:ba:77:3d:f9:a9:ea:99:a6:91:5a:df:85:7c:67: 3e:fb:25:f6:40:d2:d4:6a:81:d0:02:cd:a5:1a:31:e7:e6:9e: 0c:ba:89:57:e2:84:d9:3d:15:60:76:ec:0e:65:3d:fe:5a:03: 17:50:08:5a:96:a5:34:3a:0b:17:12:40:5a:52:0b:28:70:cf: 7f:79:ec:86:13:93:bd:21:4e:29:8b:95:fa:5f:93:7d:58:5d: c3:3c:d0:d8:83:49:30:46:de:e6:ae:6b:29:32:03:69:8b:91: 28:4a:e9:82 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlOC03NWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPhlOUd6rxqBFuVmFFbbaxj5gAYENDo0bCPn2UTpWy6JBzXV3DfOFxFJWfUy Km8M09q0mGHdktuO/bJM40+zegeUcbDJBDBXiE1ylg5lF76tWewNh3px/q0E9AXN s/hOQKIBfzcUMELL+v73OO/juj+IltAMYBM3cjGzwLdMnAnyVPEx7Gdotkt6qkB0 yzr3s27mpV5zzJYZ/YmhQAycuF2w2uravQgMXEKffkFB0R7/0vGhzMGJfv0TNplw 1aDPUq+EJGbkz3t7plqv8Z03cX91ZNpeIf24uDhZnS0YjIzbP2dgG1ILcnhNPBKQ 7ZP/rN1DaZGNd02ybcz6VyRGZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJyM6YMh y84n5J2kSAJPB8muSfb/MB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvOEM5RkZFNEMw RjJGMTFFRTg1QzI2QzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADc6IcDBADc6J4wDQYJKoZIhvcNAQELBQADggEBAGPpQ11e HUaKuga2EmMEsiu1nRtUX9gHRW/tt+hi9hbEoISstG6lzL9KNOEbfXh+GGns/TKN PVpuX+eZkEv8jM/7HT1jJfwa7qgGvspG/CJRUiYhEjvXJIAao/jLJcUycRIi4DEF bovGnPYW2nylFaaF3/NLEjE/BkNJR99cIJX3WBCZvhujMS/XIYNfFm6PQPzl3EK6 dz35qeqZppFa34V8Zz77JfZA0tRqgdACzaUaMefmngy6iVfihNk9FWB27A5lPf5a AxdQCFqWpTQ6CxcSQFpSCyhwz3957IYTk70hTimLlfpfk31YXcM80NiDSTBG3uau aykyA2mLkShK6YI= -----END CERTIFICATE-----Generated at Sat Jun 22 20:38:06 2024 by rpki-client on console-ams.rpki-client.org