$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa File: 23D4183024D711EF932FC941C4F9AE02.roa (raw, json) Hash identifier: TJnHmGcnnW0D/SYMC1vV5YI0Sni1ztQUWnBZGYy15YU= Subject key identifier: 97:F1:75:3B:A4:5D:66:64:15:2C:AB:71:67:1A:98:A4:2C:F3:16:72 Certificate issuer: /CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245 Certificate serial: 94 Authority key identifier: 3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa Signing time: Fri 07 Jun 2024 14:06:31 +0000 ROA not before: Fri 07 Jun 2024 14:06:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138640 IP address blocks: 203.99.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 06:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245 Validity Not Before: Jun 7 14:06:31 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=666313e7-6ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b4:54:3a:b5:f5:6e:b1:49:82:43:db:be:69: 33:6b:55:89:d4:4e:38:c3:c7:fe:94:bf:85:84:dd: f3:8a:5f:36:8c:6d:3e:a6:a0:52:3e:7c:7d:6c:bf: 99:f3:8f:d3:7a:d0:3e:c4:a5:37:70:19:08:9c:bf: 21:b5:0c:65:dd:57:fd:5d:ca:7a:ca:f8:14:3e:af: 8a:25:85:2b:7d:09:9b:d9:15:dd:14:d4:32:95:c5: 58:c2:53:b0:ab:26:73:ea:26:0d:85:bd:a2:e5:b8: 60:5e:51:c0:43:19:e7:2a:5a:d3:16:4a:de:a6:4d: 9c:07:33:74:5d:b9:0b:4f:1b:10:70:31:55:03:a1: 8e:e3:b8:dd:00:b5:a1:1d:e4:95:23:fc:69:23:51: c9:6a:ee:9e:e3:3b:6d:9d:84:59:f1:26:a9:d3:99: ea:c5:bc:a5:46:c1:f1:87:14:7f:ea:30:76:b8:fb: ec:2d:a9:3c:42:14:f8:dc:a9:82:a8:dd:8d:11:d9: fb:8a:a1:19:3e:b2:fe:74:bd:b8:d7:a1:5a:9c:ca: 5b:76:4a:6d:48:b3:1d:ba:42:62:22:23:e7:87:2a: 78:a3:bc:39:52:81:92:9b:ce:24:0e:c0:05:c7:17: bf:7d:45:85:32:ef:98:80:72:92:50:d3:4a:8e:a5: 6b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F1:75:3B:A4:5D:66:64:15:2C:AB:71:67:1A:98:A4:2C:F3:16:72 X509v3 Authority Key Identifier: keyid:3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.145.0/24 Signature Algorithm: sha256WithRSAEncryption c5:8f:6b:c8:28:78:f8:87:15:95:85:d9:66:61:a4:48:2b:f2: 5c:38:9a:53:5c:df:f3:64:64:b9:21:b8:b0:fc:6f:77:9a:c3: 84:df:44:08:11:8e:2c:d4:49:d2:a7:00:60:53:6f:4f:ce:ed: 7e:b4:ab:b5:05:a1:29:29:9a:63:24:5f:04:8c:e4:a8:ab:77: 1c:75:80:ac:59:e5:bd:24:55:97:0e:98:29:05:00:57:24:2a: 62:a8:db:c1:fe:f3:d0:c3:b0:f5:b1:30:de:cd:60:94:9c:6d: 8d:c6:a1:58:8f:ac:51:a4:ee:04:91:03:28:c4:91:ac:bd:5d: ec:68:e8:ce:5a:36:3f:71:6c:78:4d:83:79:82:65:1c:79:91: ca:8d:c5:1b:00:ee:61:35:80:ac:9c:d0:03:da:97:b3:ab:59: d6:2f:0e:c9:5d:de:8c:5e:35:27:8a:1f:f4:e0:d3:15:f2:e9: c9:19:3a:a0:64:0b:7a:31:11:5e:08:3d:25:aa:66:27:cb:97: 3e:59:18:0c:76:99:9c:d6:ae:f4:8e:a3:ab:07:11:e8:0c:2d: 4d:81:4b:68:2c:b7:29:21:c7:73:ac:82:e9:e3:39:37:26:9c: 9d:16:54:1c:bf:7a:7a:15:cb:b5:44:84:3c:ce:1b:60:9d:e2: 19:00:4f:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOUMxMTAvBgNVBAUTKDNDNjlCOUI2MDFEMkM5RjJBMzkxNUE2RkZCQ0EzREFE NjJFOTkyNDUwHhcNMjQwNjA3MTQwNjMxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYzMTNlNy02ZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLRUOrX1brFJgkPbvmkza1WJ1E44w8f+lL+FhN3zil82jG0+pqBSPnx9bL+Z 84/TetA+xKU3cBkInL8htQxl3Vf9Xcp6yvgUPq+KJYUrfQmb2RXdFNQylcVYwlOw qyZz6iYNhb2i5bhgXlHAQxnnKlrTFkrepk2cBzN0XbkLTxsQcDFVA6GO47jdALWh HeSVI/xpI1HJau6e4zttnYRZ8Sap05nqxbylRsHxhxR/6jB2uPvsLak8QhT43KmC qN2NEdn7iqEZPrL+dL2416FanMpbdkptSLMdukJiIiPnhyp4o7w5UoGSm84kDsAF xxe/fUWFMu+YgHKSUNNKjqVrswIDAQABo4IClTCCApEwHQYDVR0OBBYEFJfxdTuk XWZkFSyrcWcamKQs8xZyMB8GA1UdIwQYMBaAFDxpubYB0snyo5Fab/vKPa1i6ZJF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5Qy9FRUY3NjJDMDkw NzUxMUVFODdEMjY2ODBDNEY5QUUwMi9QR201dGdIU3lmS2prVnB2LThvOXJXTHBr a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHbTV0Z0hTeWZLamtWcHYtOG85cldMcGtrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOUMvRUVGNzYyQzA5MDc1MTFFRTg3RDI2NjgwQzRGOUFFMDIvMjNENDE4MzAy NEQ3MTFFRjkzMkZDOTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLY5EwDQYJKoZIhvcNAQELBQADggEBAMWPa8goePiHFZWF 2WZhpEgr8lw4mlNc3/NkZLkhuLD8b3eaw4TfRAgRjizUSdKnAGBTb0/O7X60q7UF oSkpmmMkXwSM5Kirdxx1gKxZ5b0kVZcOmCkFAFckKmKo28H+89DDsPWxMN7NYJSc bY3GoViPrFGk7gSRAyjEkay9Xexo6M5aNj9xbHhNg3mCZRx5kcqNxRsA7mE1gKyc 0APal7OrWdYvDsld3oxeNSeKH/Tg0xXy6ckZOqBkC3oxEV4IPSWqZifLlz5ZGAx2 mZzWrvSOo6sHEegMLU2BS2gstykhx3OsgunjOTcmnJ0WVBy/enoVy7VEhDzOG2Cd 4hkAT8o= -----END CERTIFICATE-----Generated at Tue Jun 25 10:01:29 2024 by rpki-client on console-fra.rpki-client.org