$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa File: 23D4183024D711EF932FC941C4F9AE02.roa (raw, json) Hash identifier: PEdc3Ajz5VckvHX4I+KQ2ScP909N/JzMHxUtf14BV6s= Subject key identifier: 89:03:FF:D6:7D:1E:4B:8B:48:3E:FB:4A:EB:8F:C1:6B:1A:3F:F3:8B Certificate issuer: /CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245 Certificate serial: 010F Authority key identifier: 3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa Signing time: Thu 19 Dec 2024 04:18:49 +0000 ROA not before: Thu 19 Dec 2024 04:18:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138640 IP address blocks: 203.99.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE09C Validity Not Before: Dec 19 04:18:49 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67639ea8-313b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:df:89:7e:10:f6:04:9f:ec:2a:60:21:6f:93: a4:b0:24:03:e5:66:68:1b:52:a8:b5:5a:5d:81:54: 62:01:af:e6:47:83:76:62:d1:37:33:c7:07:1a:0a: cb:c7:9f:1e:18:ac:ec:ec:78:96:02:61:54:ff:e7: 08:56:d8:f5:3a:dd:c0:46:8c:9e:de:39:d8:68:ab: 1e:0b:93:96:fd:db:15:29:ee:6b:ad:49:bf:11:16: 23:ec:85:b6:03:c0:a5:31:17:e4:f0:e1:25:43:f6: 0f:ea:08:68:98:09:01:a2:e3:34:fe:b7:0e:49:60: df:34:46:31:4b:6c:20:67:f4:f0:75:57:dd:7b:1d: c1:c7:a9:b0:08:55:55:e7:a4:55:61:02:46:37:3a: e4:0a:8b:ad:fb:c3:d8:1f:f6:6f:26:67:04:c7:b9: 89:84:4b:4f:55:92:a5:ae:76:ca:9f:fe:f4:e1:b4: bd:c0:ef:a6:ba:fb:69:ce:8b:6b:d8:ba:5b:80:ed: 9c:71:3b:97:7b:06:73:8e:97:41:fc:06:9a:a6:c4: 12:cd:be:44:6f:1e:61:9b:6e:e2:5b:4b:cb:c7:c4: bd:cc:46:0f:de:1c:5b:da:64:a0:d5:ca:a0:3f:6e: 94:2f:0f:00:22:c3:c4:c8:1d:e6:1f:12:ed:ba:84: cc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:03:FF:D6:7D:1E:4B:8B:48:3E:FB:4A:EB:8F:C1:6B:1A:3F:F3:8B X509v3 Authority Key Identifier: keyid:3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/23D4183024D711EF932FC941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.145.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e6:c5:02:c2:af:5d:03:55:71:72:11:ff:72:ad:8c:a3:a6: 58:ba:92:1e:0a:a1:a8:55:55:36:46:fb:5a:e5:d8:21:b4:7d: 1d:db:78:1d:43:f5:4d:c5:1e:e2:22:56:41:83:f7:36:55:e0: 83:e0:dc:c6:8c:09:2e:8b:84:23:ff:76:02:cb:3d:f5:48:d2: 4e:c7:31:30:e9:f3:1b:bc:fc:23:46:fe:fe:e5:ab:bf:45:09: 90:7e:41:71:83:34:96:cf:3e:f7:34:0e:3b:86:85:77:cb:ac: 82:dd:58:b3:9b:81:af:92:03:49:ad:d8:a8:48:34:6a:e0:65: 0b:58:34:94:79:0c:2a:a4:14:4a:71:11:50:c7:35:83:28:5f: 9a:a7:e9:ba:1f:7d:2a:74:68:9b:ba:cf:8b:05:bd:20:91:8f: de:a4:a3:ae:5f:86:bb:e6:2c:df:26:8e:de:10:84:0f:0d:e0: cd:f3:ea:4b:37:03:8c:44:95:53:9a:1e:c0:46:33:f0:aa:bd: 14:a5:7a:41:1c:fd:2f:b0:0a:db:8d:f7:fa:2b:1f:99:ed:66: 61:02:e0:2c:a9:9f:57:4c:fa:85:16:39:fd:e2:87:25:62:43: 5b:c6:25:8c:81:53:38:40:aa:cf:54:92:ab:57:12:33:9d:ea: 8b:a4:eb:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOUMxMTAvBgNVBAUTKDNDNjlCOUI2MDFEMkM5RjJBMzkxNUE2RkZCQ0EzREFE NjJFOTkyNDUwHhcNMjQxMjE5MDQxODQ5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzOWVhOC0zMTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt+JfhD2BJ/sKmAhb5OksCQD5WZoG1KotVpdgVRiAa/mR4N2YtE3M8cHGgrL x58eGKzs7HiWAmFU/+cIVtj1Ot3ARoye3jnYaKseC5OW/dsVKe5rrUm/ERYj7IW2 A8ClMRfk8OElQ/YP6ghomAkBouM0/rcOSWDfNEYxS2wgZ/TwdVfdex3Bx6mwCFVV 56RVYQJGNzrkCout+8PYH/ZvJmcEx7mJhEtPVZKlrnbKn/704bS9wO+muvtpzotr 2LpbgO2ccTuXewZzjpdB/AaapsQSzb5Ebx5hm27iW0vLx8S9zEYP3hxb2mSg1cqg P26ULw8AIsPEyB3mHxLtuoTMZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIkD/9Z9 HkuLSD77SuuPwWsaP/OLMB8GA1UdIwQYMBaAFDxpubYB0snyo5Fab/vKPa1i6ZJF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5Qy9FRUY3NjJDMDkw NzUxMUVFODdEMjY2ODBDNEY5QUUwMi9QR201dGdIU3lmS2prVnB2LThvOXJXTHBr a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHbTV0Z0hTeWZLamtWcHYtOG85cldMcGtrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOUMvRUVGNzYyQzA5MDc1MTFFRTg3RDI2NjgwQzRGOUFFMDIvMjNENDE4MzAy NEQ3MTFFRjkzMkZDOTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLY5EwDQYJKoZIhvcNAQELBQADggEBAAvmxQLCr10DVXFy Ef9yrYyjpli6kh4KoahVVTZG+1rl2CG0fR3beB1D9U3FHuIiVkGD9zZV4IPg3MaM CS6LhCP/dgLLPfVI0k7HMTDp8xu8/CNG/v7lq79FCZB+QXGDNJbPPvc0DjuGhXfL rILdWLObga+SA0mt2KhINGrgZQtYNJR5DCqkFEpxEVDHNYMoX5qn6boffSp0aJu6 z4sFvSCRj96ko65fhrvmLN8mjt4QhA8N4M3z6ks3A4xElVOaHsBGM/CqvRSlekEc /S+wCtuN9/orH5ntZmEC4Cypn1dM+oUWOf3ihyViQ1vGJYyBUzhAqs9UkqtXEjOd 6ouk66o= -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:47 2025 by rpki-client