$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/986F0854F7C611EA8B23C30CC4F9AE02.roa File: 986F0854F7C611EA8B23C30CC4F9AE02.roa (raw, json) Hash identifier: F2B6eTQtjw4DMTGhIIRc21e5xRW7fmJOpub38olCp9w= Subject key identifier: BF:54:C4:58:6B:BE:9C:A6:AA:BC:55:85:B0:94:1A:8D:70:07:E8:8C Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 0756 Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/986F0854F7C611EA8B23C30CC4F9AE02.roa Signing time: Wed 16 Oct 2024 21:40:28 +0000 ROA not before: Wed 16 Oct 2024 21:40:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7473 IP address blocks: 202.189.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1878 (0x756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Oct 16 21:40:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671032cc-9c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:fb:3e:64:1a:12:00:74:10:33:b6:46:82: 0d:a0:85:70:2c:77:47:c1:3d:31:68:88:57:e5:a2: b9:fb:9e:20:4e:e9:92:ce:6b:b2:44:cb:a4:76:5a: bd:6f:6a:a0:1a:2f:0c:ca:14:ce:e1:0f:26:57:2b: c1:af:ea:72:61:42:5b:93:98:10:5c:f9:03:08:9b: b8:80:13:e2:ba:df:1e:e1:6f:41:01:ff:f6:5a:fc: f3:87:3c:3b:c0:c1:66:0a:2a:db:48:c9:b4:6b:6e: 8c:40:12:dd:b7:7f:b8:73:5f:5c:85:04:08:cf:69: 5a:97:db:82:89:7f:e9:8f:a4:ab:e3:71:23:d5:0f: b5:cb:4e:dd:c7:f5:32:cf:e9:77:be:68:aa:30:e3: dd:c9:f9:61:9d:17:82:e5:fe:d1:6f:48:83:57:c3: f7:55:c5:66:1d:9d:61:ee:7a:bd:ff:20:a5:bb:d2: de:3f:52:e3:2c:ce:97:06:09:d1:2a:26:07:94:f6: a1:35:16:f5:82:ba:53:1f:88:6d:cd:67:4b:16:91: 0e:45:8e:14:f4:23:7a:dc:44:f5:d2:73:b6:76:c9: f5:8b:dc:94:35:60:11:34:19:5b:61:5f:e8:c4:d6: 2f:ff:69:bb:ad:67:7f:dc:f0:7b:11:d9:0a:97:2d: 5d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:54:C4:58:6B:BE:9C:A6:AA:BC:55:85:B0:94:1A:8D:70:07:E8:8C X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/986F0854F7C611EA8B23C30CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.189.128.0/24 Signature Algorithm: sha256WithRSAEncryption 56:06:f1:22:d9:ef:46:89:91:45:63:62:0e:5c:50:8b:0a:a8: 57:c9:04:d8:7c:31:92:4f:64:85:3d:af:a8:9d:9c:36:1f:99: 02:de:7b:d9:ab:08:b4:e2:59:a0:61:18:58:68:a0:7a:df:bf: a9:be:03:96:a7:60:78:36:33:d7:d0:8c:f2:22:d0:a9:1e:d3: 02:39:fb:e3:dd:c7:51:d3:48:1f:dd:15:ab:6f:c5:93:93:bc: 3d:3f:e4:5f:6a:76:69:18:89:c3:99:79:20:39:6b:df:06:e7: 79:fa:b0:78:e6:86:3c:bf:a7:82:38:d9:c1:5c:17:a7:6d:ac: 32:0a:97:c8:2e:55:6b:23:8e:94:00:c8:f8:a9:f9:48:2e:7a: 8d:86:bf:8a:21:ca:ce:7d:6f:5f:a4:63:fe:79:41:7f:39:69: 5f:dc:8d:e0:30:5f:d6:cc:9d:87:70:6b:f0:b3:06:06:c8:e6: b1:7b:b7:e8:92:b2:8c:d6:d1:f4:7b:21:58:7c:2a:9c:f8:bc: 88:ce:b2:49:08:a4:a4:71:a5:6a:37:ad:98:e1:12:9a:a2:10: 01:ca:ba:c6:05:a2:10:92:20:bd:9d:97:b6:27:53:ff:9f:cf: 9e:95:d8:8d:84:ae:84:31:61:5f:25:cf:ac:75:01:ab:61:10: 90:41:aa:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjQxMDE2MjE0MDI4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwMzJjYy05YzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cv7PmQaEgB0EDO2RoINoIVwLHdHwT0xaIhX5aK5+54gTumSzmuyRMukdlq9 b2qgGi8MyhTO4Q8mVyvBr+pyYUJbk5gQXPkDCJu4gBPiut8e4W9BAf/2Wvzzhzw7 wMFmCirbSMm0a26MQBLdt3+4c19chQQIz2lal9uCiX/pj6Sr43Ej1Q+1y07dx/Uy z+l3vmiqMOPdyflhnReC5f7Rb0iDV8P3VcVmHZ1h7nq9/yClu9LeP1LjLM6XBgnR KiYHlPahNRb1grpTH4htzWdLFpEORY4U9CN63ET10nO2dsn1i9yUNWARNBlbYV/o xNYv/2m7rWd/3PB7EdkKly1d5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL9UxFhr vpymqrxVhbCUGo1wB+iMMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU1OTAvQTg5NTI0OUVGN0M1MTFFQTg3MUMwMDBDQzRGOUFFMDIvOTg2RjA4NTRG N0M2MTFFQThCMjNDMzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKvYAwDQYJKoZIhvcNAQELBQADggEBAFYG8SLZ70aJkUVj Yg5cUIsKqFfJBNh8MZJPZIU9r6idnDYfmQLee9mrCLTiWaBhGFhooHrfv6m+A5an YHg2M9fQjPIi0Kke0wI5++Pdx1HTSB/dFatvxZOTvD0/5F9qdmkYicOZeSA5a98G 53n6sHjmhjy/p4I42cFcF6dtrDIKl8guVWsjjpQAyPip+Ugueo2Gv4ohys59b1+k Y/55QX85aV/cjeAwX9bMnYdwa/CzBgbI5rF7t+iSsozW0fR7IVh8Kpz4vIjOskkI pKRxpWo3rZjhEpqiEAHKusYFohCSIL2dl7YnU/+fz56V2I2EroQxYV8lz6x1Aath EJBBqvk= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org