$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/09C2A1645A3511ED8F0A3087C4F9AE02.roa File: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (raw, json) Hash identifier: kFZl4IQNhnU2aj7rGn68m71oMcBKAQdxzYX/r9H/7DI= Subject key identifier: 17:33:AE:10:98:70:E8:1F:E6:65:56:E8:87:42:58:93:0F:8E:84:EB Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 0352 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/09C2A1645A3511ED8F0A3087C4F9AE02.roa Signing time: Fri 01 Mar 2024 02:44:49 +0000 ROA not before: Fri 01 Mar 2024 02:44:49 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 9342 IP address blocks: 202.6.74.0/24 maxlen: 24 203.2.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 850 (0x352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Mar 1 02:44:49 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e14120-f8c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:24:98:32:37:87:9c:dc:be:c9:eb:d5:45:9e: c5:22:dd:a9:5c:dc:f2:4b:47:9c:fb:fe:d2:e9:51: 73:b6:d3:c4:c3:e6:42:15:64:03:a9:38:15:c1:15: 21:d5:cc:ec:bd:21:44:50:49:51:af:71:6e:4d:a0: 90:02:29:64:3a:67:83:67:d0:26:49:1a:b0:b8:c1: 8c:24:39:ad:16:fb:80:66:1e:00:16:ba:b5:b4:25: 5a:89:b5:10:f9:ba:60:89:c4:ec:28:eb:18:36:27: 0a:5c:76:28:d5:d3:ca:99:4b:17:8a:f9:75:e0:1d: 3b:1f:d0:b7:42:bd:f9:ca:de:cc:83:25:70:6a:92: 8c:01:eb:9d:cd:bc:ec:28:ac:1b:a1:34:f5:45:13: 2d:05:38:1e:0d:2a:33:41:75:bd:d3:3e:8b:c1:2c: c7:2f:29:a3:64:6b:29:11:fc:32:6a:bc:d3:b5:2b: 2e:73:65:17:71:68:41:85:93:d2:50:9a:0e:f5:31: 42:60:25:0c:a5:f2:7e:39:41:9f:02:55:3c:bb:80: f4:63:ee:3e:ca:a1:42:b5:95:6d:c0:a5:03:0f:13: 71:b8:76:f1:55:6b:db:35:62:65:4f:e0:3a:3b:65: 48:56:a4:70:89:41:98:8e:29:e2:be:fd:64:80:eb: 41:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:33:AE:10:98:70:E8:1F:E6:65:56:E8:87:42:58:93:0F:8E:84:EB X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/09C2A1645A3511ED8F0A3087C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.6.74.0/24 203.2.218.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:49:ce:d4:2e:b0:29:43:97:aa:cb:1a:61:80:86:a7:9e:ae: 00:cf:ae:39:52:60:1f:98:49:09:40:54:ea:cf:4b:90:b4:78: f6:5a:ec:98:6d:aa:ce:fe:cf:a2:8f:b1:c6:bb:72:1e:c1:c3: e4:b6:73:f2:fc:f7:c0:02:f3:fd:53:24:f2:82:bf:4f:f8:b8: 71:80:01:a4:77:83:16:4f:78:8e:1f:17:76:43:ba:1d:a3:eb: c9:0a:62:e5:33:4c:28:43:b0:5d:bd:3d:73:25:5e:85:4a:12: d5:0d:82:5d:f7:db:90:c0:d3:76:a8:49:aa:d7:d7:f7:e9:d5: 68:96:6d:fa:23:73:44:e0:8e:13:70:75:56:70:26:f9:73:e5: f8:47:9a:f4:1e:f0:a9:28:48:e4:1e:94:21:92:bf:68:8a:53: 72:90:d7:a2:bd:81:c0:24:ec:0a:ac:f1:10:6f:e3:7d:ea:2d: 15:d3:c9:c2:66:9b:4c:85:f7:2f:72:b2:35:d6:10:1a:1d:bc: 1c:85:25:c6:38:98:29:ff:fa:30:94:39:ab:02:c0:7a:d8:4e: 99:29:9f:cd:f6:c3:20:fe:bd:90:ed:7f:fc:82:b5:d2:98:0f: 8c:c1:38:53:3c:8d:d7:18:1d:cf:97:ba:fd:ba:42:19:f1:5d: 9e:94:20:24 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjQwMzAxMDI0NDQ5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNDEyMC1mOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSSYMjeHnNy+yevVRZ7FIt2pXNzyS0ec+/7S6VFzttPEw+ZCFWQDqTgVwRUh 1czsvSFEUElRr3FuTaCQAilkOmeDZ9AmSRqwuMGMJDmtFvuAZh4AFrq1tCVaibUQ +bpgicTsKOsYNicKXHYo1dPKmUsXivl14B07H9C3Qr35yt7MgyVwapKMAeudzbzs KKwboTT1RRMtBTgeDSozQXW90z6LwSzHLymjZGspEfwyarzTtSsuc2UXcWhBhZPS UJoO9TFCYCUMpfJ+OUGfAlU8u4D0Y+4+yqFCtZVtwKUDDxNxuHbxVWvbNWJlT+A6 O2VIVqRwiUGYjinivv1kgOtBCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBczrhCY cOgf5mVW6IdCWJMPjoTrMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjIvQjUwNTQ2NTI1RUUyMTFFQ0FGQTY0QjQ0QzRGOUFFMDIvMDlDMkExNjQ1 QTM1MTFFRDhGMEEzMDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKBkoDBADLAtowDQYJKoZIhvcNAQELBQADggEBADtJztQu sClDl6rLGmGAhqeergDPrjlSYB+YSQlAVOrPS5C0ePZa7Jhtqs7+z6KPsca7ch7B w+S2c/L898AC8/1TJPKCv0/4uHGAAaR3gxZPeI4fF3ZDuh2j68kKYuUzTChDsF29 PXMlXoVKEtUNgl3325DA03aoSarX1/fp1WiWbfojc0TgjhNwdVZwJvlz5fhHmvQe 8KkoSOQelCGSv2iKU3KQ16K9gcAk7Aqs8RBv433qLRXTycJmm0yF9y9ysjXWEBod vByFJcY4mCn/+jCUOasCwHrYTpkpn832wyD+vZDtf/yCtdKYD4zBOFM8jdcYHc+X uv26QhnxXZ6UICQ= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:08 2024 by rpki-client on console-fra.rpki-client.org