$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa File: AFDD7E16DA6011EC9A304C24C4F9AE02.roa (raw, json) Hash identifier: vuA1aYKkB68NvYwo7uB0J5bfujQe8Me2IIkrPlSzC4U= Subject key identifier: A8:E6:B5:20:65:DA:FA:E0:C4:F9:B3:3A:CC:00:E3:FE:94:C7:1E:7F Certificate issuer: /CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Certificate serial: 0399 Authority key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa Signing time: Mon 03 Jun 2024 03:39:05 +0000 ROA not before: Mon 03 Jun 2024 03:39:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45947 IP address blocks: 202.43.84.0/24 maxlen: 24 202.43.85.0/24 maxlen: 24 202.43.86.0/24 maxlen: 24 202.43.87.0/24 maxlen: 24 203.22.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Validity Not Before: Jun 3 03:39:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d3ad9-2f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e2:9c:41:72:1b:01:a4:90:c5:2b:b9:c2:97: cf:f6:8f:a8:87:fe:e0:43:c5:27:1b:a8:19:c4:8b: d5:24:db:89:7c:af:11:b1:12:8c:28:da:b6:b4:f4: a7:8f:5b:00:66:c2:0c:5e:a0:75:36:03:26:23:8c: d9:31:71:1e:85:7f:d4:5e:07:c7:0f:70:db:29:0e: ec:1d:b3:67:4c:19:9e:69:93:e4:9c:bf:23:eb:9d: ab:14:fa:b1:6f:56:b2:f8:80:be:0b:f5:61:d6:b0: 2c:0e:a1:0c:6a:6d:22:76:1c:30:1d:6e:16:a2:96: 84:8b:16:d9:10:01:49:1a:d6:a8:74:5d:b3:2d:d9: 02:1c:17:d3:f4:37:2d:62:53:62:f6:91:e2:d2:01: 2d:e4:ff:27:48:bb:35:6b:7e:a6:d1:d8:b5:5a:d7: 74:95:56:cf:41:db:e4:b6:2c:bf:82:06:38:66:84: b6:32:dc:ac:e0:03:85:4c:03:19:cd:67:c0:da:c3: d6:28:5d:29:53:07:11:5f:4f:2d:40:8d:24:0a:1b: 55:95:c0:74:7a:84:0b:d0:d9:df:b3:14:eb:b6:47: 75:52:d1:1e:09:b4:d8:b2:1b:2b:9e:92:c6:3d:0b: 21:2f:37:93:c3:cc:7b:cb:14:e2:fa:c3:53:be:17: 38:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E6:B5:20:65:DA:FA:E0:C4:F9:B3:3A:CC:00:E3:FE:94:C7:1E:7F X509v3 Authority Key Identifier: keyid:AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.84.0/22 203.22.215.0/24 Signature Algorithm: sha256WithRSAEncryption 57:3b:a6:90:f3:28:8c:81:8b:c8:57:08:97:63:75:77:a9:22: 14:fc:ec:04:2e:61:36:ac:d3:0f:e1:27:74:64:8b:90:47:55: 51:e7:5f:bb:3f:6d:72:c0:a0:d8:db:70:78:87:cb:b2:66:24: 1d:6f:19:b0:2c:e7:9d:d5:9a:e9:b8:66:e8:a4:9b:26:68:60: 65:79:36:31:b0:ae:18:06:49:35:c6:92:08:23:d3:14:dd:3b: 02:f4:19:73:7c:76:34:55:3c:2d:22:85:84:7f:02:a4:fd:b2: 69:d8:d3:dc:9d:85:50:8c:e3:66:12:3a:6a:4a:72:84:4b:32: a2:a7:3f:36:62:d1:24:a2:18:78:8a:2c:9f:b5:f8:19:40:86: b8:db:e0:23:12:f2:02:7c:cd:36:1e:6a:36:92:36:71:19:a8: 2d:71:e1:52:ee:81:15:cd:0d:c1:22:c7:4b:7a:90:bb:7f:d3: 90:84:8d:71:04:e2:be:dd:11:5f:0f:11:8f:12:3f:7b:2e:d8: 76:68:2d:d2:dc:71:ab:2e:fd:2c:2b:53:06:0a:9e:7b:d1:9c: 5b:46:c0:82:b8:74:17:0d:89:1a:bf:8e:c0:3b:22:a4:58:ba: a8:4f:62:05:ec:35:df:b1:59:35:77:2d:c3:4d:1b:df:d5:b1: 55:5b:9f:63 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCQjMxMTAvBgNVBAUTKEFDN0M5RTcxODIyQzA1NjE4NTE4NjQ1M0Y5NjBCMkMx RThDQTk0RTMwHhcNMjQwNjAzMDMzOTA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkM2FkOS0yZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uKcQXIbAaSQxSu5wpfP9o+oh/7gQ8UnG6gZxIvVJNuJfK8RsRKMKNq2tPSn j1sAZsIMXqB1NgMmI4zZMXEehX/UXgfHD3DbKQ7sHbNnTBmeaZPknL8j652rFPqx b1ay+IC+C/Vh1rAsDqEMam0idhwwHW4WopaEixbZEAFJGtaodF2zLdkCHBfT9Dct YlNi9pHi0gEt5P8nSLs1a36m0di1Wtd0lVbPQdvktiy/ggY4ZoS2Mtys4AOFTAMZ zWfA2sPWKF0pUwcRX08tQI0kChtVlcB0eoQL0NnfsxTrtkd1UtEeCbTYshsrnpLG PQshLzeTw8x7yxTi+sNTvhc47wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKjmtSBl 2vrgxPmzOswA4/6Uxx5/MB8GA1UdIwQYMBaAFKx8nnGCLAVhhRhkU/lgssHoypTj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEJCMy9BRUE4NzNFQzVC QzcxMUVDQUQ1OEIwNUZDNEY5QUUwMi9ySHllY1lJc0JXR0ZHR1JULVdDeXdlakts T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIeWVjWUlzQldHRkdHUlQtV0N5d2VqS2xPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCQjMvQUVBODczRUM1QkM3MTFFQ0FENThCMDVGQzRGOUFFMDIvQUZERDdFMTZE QTYwMTFFQzlBMzA0QzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKK1QDBADLFtcwDQYJKoZIhvcNAQELBQADggEBAFc7ppDz KIyBi8hXCJdjdXepIhT87AQuYTas0w/hJ3Rki5BHVVHnX7s/bXLAoNjbcHiHy7Jm JB1vGbAs553Vmum4ZuikmyZoYGV5NjGwrhgGSTXGkggj0xTdOwL0GXN8djRVPC0i hYR/AqT9smnY09ydhVCM42YSOmpKcoRLMqKnPzZi0SSiGHiKLJ+1+BlAhrjb4CMS 8gJ8zTYeajaSNnEZqC1x4VLugRXNDcEix0t6kLt/05CEjXEE4r7dEV8PEY8SP3su 2HZoLdLccasu/SwrUwYKnnvRnFtGwIK4dBcNiRq/jsA7IqRYuqhPYgXsNd+xWTV3 LcNNG9/VsVVbn2M= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org