$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa File: C9104DDAF63511EE9461F649C4F9AE02.roa (raw, json) Hash identifier: Usn+KtLh2fQfBRzeOzAzXm3AdLqgWTBEojWaTaYRxFo= Subject key identifier: EF:1B:70:89:94:57:4A:B2:8C:00:CC:73:06:A0:8C:67:F5:40:C1:3D Certificate issuer: /CN=A91FCA1E/serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Certificate serial: 04 Authority key identifier: 8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa Signing time: Tue 09 Apr 2024 11:33:43 +0000 ROA not before: Tue 09 Apr 2024 11:33:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4797 IP address blocks: 202.81.147.0/24 maxlen: 24 202.81.148.0/24 maxlen: 24 202.81.149.0/24 maxlen: 24 202.81.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCA1E/serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Validity Not Before: Apr 9 11:33:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66152796-5912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:79:2d:ef:9d:95:0d:9d:60:da:2c:b7:33:76: 2e:ef:bd:ce:a8:bd:f8:90:61:bc:38:03:a5:d2:0c: a2:17:16:2f:c2:03:17:0d:e5:8c:a8:ac:16:7e:79: 91:7b:9d:f6:de:26:e5:98:45:51:98:f6:8d:81:92: 64:71:cd:06:ca:a4:1e:a0:5a:64:ad:2d:ef:ae:cd: 3f:54:ae:ff:1c:e9:7b:1b:d0:5f:ec:df:e7:83:77: 4c:c0:a7:20:04:fe:35:80:96:be:4c:2a:c1:4b:b2: 07:24:ea:fa:79:ca:e2:c1:42:bb:5b:b2:11:83:48: 2b:fa:4f:6a:55:4e:31:97:42:02:af:a3:ec:50:ef: 74:73:79:9b:b4:4c:ab:39:16:21:6b:60:aa:d4:76: 6c:29:02:7f:68:51:1d:57:3c:74:25:3c:18:6a:7e: e5:f2:96:35:b1:f4:b1:88:a9:50:ae:75:99:85:87: 0e:41:b1:08:ce:d7:aa:33:18:1c:cf:f2:ce:ae:ea: d9:4f:81:1c:d3:cd:eb:57:dd:cd:02:ef:48:22:25: 44:bc:c5:f4:24:a3:93:25:42:cc:5b:0a:95:53:69: ff:8b:5f:28:8f:3c:36:f4:75:76:55:c8:3c:1d:37: 2b:11:a3:30:c8:00:ad:2b:29:f5:fd:cc:e4:e6:a1: b8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:1B:70:89:94:57:4A:B2:8C:00:CC:73:06:A0:8C:67:F5:40:C1:3D X509v3 Authority Key Identifier: keyid:8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.81.147.0-202.81.150.255 Signature Algorithm: sha256WithRSAEncryption 82:7e:e9:82:fa:6f:10:ab:1d:71:26:bb:da:d7:d1:f0:e8:85: 5f:7a:2e:3e:82:af:45:da:6e:bc:53:20:b5:94:39:e9:42:a3: 3b:da:17:88:4a:3c:ed:29:f9:54:ee:10:92:a6:72:ca:e6:47: 11:b5:6d:10:0e:8f:6f:e1:51:b7:7f:05:39:75:96:bb:cd:97: 50:93:80:4f:82:1b:6d:d0:fd:b4:55:9f:c1:6b:bd:1c:65:37: c0:9c:08:bf:42:a2:1e:65:5f:05:64:57:25:28:a0:02:62:8c: 94:98:52:42:63:ad:6d:8e:fd:11:36:da:48:06:e1:f7:bc:27: 3c:99:65:f1:41:4d:db:cb:c6:80:0f:6e:71:73:37:e6:c6:ca: 45:17:22:91:be:28:e1:db:d9:fe:c3:d4:07:99:eb:61:fe:38: 13:de:79:62:06:71:6a:15:c8:ed:5d:12:05:d1:3b:37:c4:2b: 1c:90:a4:7c:60:4b:f1:11:3d:6e:1b:36:e1:63:6f:90:40:59: aa:e1:59:70:df:a5:90:3b:b0:d0:34:ec:60:70:1a:ec:4d:df: 36:54:ec:0d:12:e2:da:e6:1a:cb:e2:63:7c:85:10:ba:8f:dd: 37:b7:d8:32:a5:ba:fb:d3:ae:82:a1:e4:8d:0d:8d:34:bb:58: e9:19:e1:1a -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Q0ExRTExMC8GA1UEBRMoOEU2NTBBNzEyREM4NEYyMkI4OUI4RjE4Qjg2NEMyOUY5 REQ3MTNDNTAeFw0yNDA0MDkxMTMzNDNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTUyNzk2LTU5MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdeS3vnZUNnWDaLLczdi7vvc6ovfiQYbw4A6XSDKIXFi/CAxcN5YyorBZ+eZF7 nfbeJuWYRVGY9o2BkmRxzQbKpB6gWmStLe+uzT9Urv8c6Xsb0F/s3+eDd0zApyAE /jWAlr5MKsFLsgck6vp5yuLBQrtbshGDSCv6T2pVTjGXQgKvo+xQ73RzeZu0TKs5 FiFrYKrUdmwpAn9oUR1XPHQlPBhqfuXyljWx9LGIqVCudZmFhw5BsQjO16ozGBzP 8s6u6tlPgRzTzetX3c0C70giJUS8xfQko5MlQsxbCpVTaf+LXyiPPDb0dXZVyDwd NysRozDIAK0rKfX9zOTmobjpAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQU7xtwiZRX SrKMAMxzBqCMZ/VAwT0wHwYDVR0jBBgwFoAUjmUKcS3ITyK4m48YuGTCn53XE8Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDQTFFL0YwMDYyRjI4RjYz NDExRUU4QUVBQzc0N0M0RjlBRTAyL2ptVUtjUzNJVHlLNG00OFl1R1RDbjUzWEU4 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvam1VS2NTM0lUeUs0bTQ4WXVHVENuNTNYRThVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0ExRS9GMDA2MkYyOEY2MzQxMUVFOEFFQUM3NDdDNEY5QUUwMi9DOTEwNEREQUY2 MzUxMUVFOTQ2MUY2NDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAylGTAwQAylGWMA0GCSqGSIb3DQEBCwUAA4IBAQCCfumC +m8Qqx1xJrva19Hw6IVfei4+gq9F2m68UyC1lDnpQqM72heISjztKflU7hCSpnLK 5kcRtW0QDo9v4VG3fwU5dZa7zZdQk4BPghtt0P20VZ/Ba70cZTfAnAi/QqIeZV8F ZFclKKACYoyUmFJCY61tjv0RNtpIBuH3vCc8mWXxQU3by8aAD25xczfmxspFFyKR vijh29n+w9QHmeth/jgT3nliBnFqFcjtXRIF0Ts3xCsckKR8YEvxET1uGzbhY2+Q QFmq4Vlw36WQO7DQNOxgcBrsTd82VOwNEuLa5hrL4mN8hRC6j903t9gypbr7066C oeSNDY00u1jpGeEa -----END CERTIFICATE-----Generated at Fri Jun 7 12:38:48 2024 by rpki-client on console-ams.rpki-client.org