$ rpki-client -vvf rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa File: 63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa (raw, json) Hash identifier: MuheuDbxWA9cTRmQYpvrgqrlEvSaTJmW3FLp8JLtH4w= Subject key identifier: 18:E5:CD:E2:9A:0E:1F:88:D5:DD:4A:EF:29:DA:3D:DC:78:B5:D6:E6 Certificate issuer: /CN=A91F223F/serialNumber=DBDAD009017D91DFB438D70D1B8D4D34862F068E Certificate serial: 28 Authority key identifier: DB:DA:D0:09:01:7D:91:DF:B4:38:D7:0D:1B:8D:4D:34:86:2F:06:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa Signing time: Mon 29 Jan 2024 07:28:53 +0000 ROA not before: Mon 29 Jan 2024 07:28:53 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45359 IP address blocks: 202.49.172.0/24 maxlen: 24 202.49.173.0/24 maxlen: 24 202.49.174.0/24 maxlen: 24 202.49.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.crl rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F223F/serialNumber=DBDAD009017D91DFB438D70D1B8D4D34862F068E Validity Not Before: Jan 29 07:28:53 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b753b4-8cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:99:b3:82:32:01:78:76:34:21:26:fc:e5:02: 77:36:e8:7c:ee:d1:16:4d:6d:df:ec:e9:10:63:cc: c5:bd:e1:2b:2e:50:a8:41:76:05:ee:19:bc:d3:ea: 1a:80:00:f4:d8:f1:75:a8:c8:4f:d5:3f:2c:13:f8: 73:87:7a:67:59:4b:f6:5f:db:31:92:4c:3a:40:3d: 43:18:a4:24:ab:41:cd:69:94:94:4a:e8:13:43:9f: e1:1a:28:89:eb:a9:36:c8:60:de:f2:2f:dc:9f:0b: be:2e:c1:6b:bc:f2:18:c8:2e:36:a8:0e:62:c9:cf: f9:1e:e8:27:20:5d:94:93:dd:54:eb:5b:b9:f1:46: 92:e4:54:c5:8e:28:4c:0e:d6:61:7f:00:3a:2e:7d: f8:ac:51:85:33:6d:26:39:f4:6f:8a:f0:16:22:0b: 16:e2:3b:22:1b:c8:9b:88:40:d1:f8:5b:f5:3e:f3: df:45:d8:7f:4e:da:e9:99:4f:7f:58:ec:7d:b3:75: c8:e0:ff:22:95:91:85:17:a1:00:57:f1:56:3a:cb: 2e:aa:9f:79:bb:2b:49:ef:62:7a:b2:d7:1e:7c:b3: 5c:02:6d:62:83:fc:c4:26:06:9f:99:95:c7:c5:42: 9a:c8:f9:b9:f6:39:e1:91:ba:72:f9:b3:39:23:67: a8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E5:CD:E2:9A:0E:1F:88:D5:DD:4A:EF:29:DA:3D:DC:78:B5:D6:E6 X509v3 Authority Key Identifier: keyid:DB:DA:D0:09:01:7D:91:DF:B4:38:D7:0D:1B:8D:4D:34:86:2F:06:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.172.0/22 Signature Algorithm: sha256WithRSAEncryption 17:bd:4a:f5:b9:40:3c:4a:fe:6f:ed:b3:4c:5e:39:90:69:6a: 81:eb:cd:bc:cb:a7:9a:76:c7:29:5a:90:3a:49:db:ba:f9:65: 2e:62:cc:c3:00:40:19:92:04:99:cf:01:99:28:46:fa:b6:cc: ae:16:f9:22:e2:16:71:87:f1:ba:0d:0d:1f:27:22:56:e6:5c: 3a:df:86:20:f7:6e:12:2a:6c:34:c5:d0:6d:b2:81:fa:91:30: fb:03:c3:9c:7a:da:33:00:1e:26:3e:5c:41:b3:03:ab:0e:a9: 02:a9:c4:f2:1d:19:43:7c:74:ae:a4:0b:62:6e:2a:ad:b9:ae: f4:1d:b5:17:04:c1:17:e2:49:3c:f5:97:c3:cd:2c:36:48:41: 70:1a:4e:65:d4:86:b0:d5:78:64:56:11:37:5a:ab:91:3f:2e: 23:6c:52:73:98:5c:21:3e:0a:b3:65:81:4d:de:f9:c2:8b:97: 67:0a:bf:a1:ed:73:18:c8:9d:b8:fd:4f:66:f5:0c:9c:29:cf: ce:48:47:fd:43:74:2a:84:dc:f3:4f:f8:db:65:3e:50:1a:b0: f8:2e:54:89:a3:38:d5:c1:7e:5f:fd:a2:1a:c2:e3:25:73:ef: bc:b4:4d:f8:3c:7f:93:86:e7:29:28:35:28:a6:9e:36:72:50: df:88:27:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjIzRjExMC8GA1UEBRMoREJEQUQwMDkwMTdEOTFERkI0MzhENzBEMUI4RDREMzQ4 NjJGMDY4RTAeFw0yNDAxMjkwNzI4NTNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Yjc1M2I0LThjZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqmbOCMgF4djQhJvzlAnc26Hzu0RZNbd/s6RBjzMW94SsuUKhBdgXuGbzT6hqA APTY8XWoyE/VPywT+HOHemdZS/Zf2zGSTDpAPUMYpCSrQc1plJRK6BNDn+EaKInr qTbIYN7yL9yfC74uwWu88hjILjaoDmLJz/ke6CcgXZST3VTrW7nxRpLkVMWOKEwO 1mF/ADouffisUYUzbSY59G+K8BYiCxbiOyIbyJuIQNH4W/U+899F2H9O2umZT39Y 7H2zdcjg/yKVkYUXoQBX8VY6yy6qn3m7K0nvYnqy1x58s1wCbWKD/MQmBp+ZlcfF QprI+bn2OeGRunL5szkjZ6h9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGOXN4poO H4jV3UrvKdo93Hi11uYwHwYDVR0jBBgwFoAU29rQCQF9kd+0ONcNG41NNIYvBo4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyMjNGLzA5NjkxMjdDOENB QTExRUU4NjRERkQ2REM0RjlBRTAyLzI5clFDUUY5a2QtME9OY05HNDFOTklZdkJv NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjlyUUNRRjlrZC0wT05jTkc0MU5OSVl2Qm80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjIzRi8wOTY5MTI3QzhDQUExMUVFODY0REZENkRDNEY5QUUwMi82M0U4RTFBQThD QUExMUVFOEIyMEQ4NkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsoxrDANBgkqhkiG9w0BAQsFAAOCAQEAF71K9blAPEr+b+2z TF45kGlqgevNvMunmnbHKVqQOknbuvllLmLMwwBAGZIEmc8BmShG+rbMrhb5IuIW cYfxug0NHyciVuZcOt+GIPduEipsNMXQbbKB+pEw+wPDnHraMwAeJj5cQbMDqw6p AqnE8h0ZQ3x0rqQLYm4qrbmu9B21FwTBF+JJPPWXw80sNkhBcBpOZdSGsNV4ZFYR N1qrkT8uI2xSc5hcIT4Ks2WBTd75wouXZwq/oe1zGMiduP1PZvUMnCnPzkhH/UN0 KoTc80/422U+UBqw+C5UiaM41cF+X/2iGsLjJXPvvLRN+Dx/k4bnKSg1KKaeNnJQ 34gnjA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org