$ rpki-client -vvf rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/934F8250338A11EFB9C7A738C4F9AE02.roa File: 934F8250338A11EFB9C7A738C4F9AE02.roa (raw, json) Hash identifier: 5xe8CAklHEvfHNnz1/f5nBginvtCFLJVR3UsgZ34D1c= Subject key identifier: A2:1D:30:F7:01:45:90:A9:1C:E9:4F:13:F1:1F:4B:6B:AB:4A:7E:92 Certificate issuer: /CN=A91164D3/serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Certificate serial: 02 Authority key identifier: 99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/934F8250338A11EFB9C7A738C4F9AE02.roa Signing time: Wed 26 Jun 2024 07:06:14 +0000 ROA not before: Wed 26 Jun 2024 07:06:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152721 IP address blocks: 202.50.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91164D3/serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Validity Not Before: Jun 26 07:06:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=667bbde6-97bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d7:3a:09:6c:37:3e:b3:02:d9:67:c7:e8:c1: 76:60:dc:fe:d4:21:4c:47:66:3d:63:1d:83:0d:21: f7:81:b2:65:b8:39:9d:ec:50:30:1a:fc:27:19:e5: 07:1c:a6:10:c7:7c:ed:1b:7a:59:fe:b0:f4:53:b9: 06:ab:ed:ea:04:46:c8:b9:bd:27:30:53:0c:84:a6: 86:ca:a8:d3:0b:e7:fe:b0:ac:c7:b3:52:06:fe:1b: e1:0d:ac:8b:88:8c:41:00:5f:b2:1a:64:49:e4:4d: cf:a7:a3:6f:03:c1:07:dd:99:f2:97:dd:0d:17:a7: cb:10:4f:55:5b:fe:10:3d:55:77:5a:aa:d0:f6:db: 46:6d:96:bb:46:6e:62:1f:d6:50:3f:be:34:25:5c: c7:40:25:a2:14:2a:48:81:61:20:71:92:0a:a3:81: 4e:61:d9:17:81:e4:37:8c:62:d3:06:7f:a9:dd:59: 4a:33:98:71:6a:5c:84:80:63:08:8e:8a:8f:da:e4: 1f:75:08:85:4f:f3:cd:86:3e:28:8b:d8:21:45:92: 35:19:64:3b:ad:0c:90:dd:00:88:5c:a5:6a:0d:0d: 9c:b8:ce:63:15:75:fd:20:dd:d1:be:4f:e2:5b:e6: ab:04:95:a0:0e:06:d8:1b:15:5a:4e:dd:5b:28:9d: 59:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1D:30:F7:01:45:90:A9:1C:E9:4F:13:F1:1F:4B:6B:AB:4A:7E:92 X509v3 Authority Key Identifier: keyid:99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/934F8250338A11EFB9C7A738C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.48.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:f7:f6:5a:0e:17:b0:67:f9:04:77:61:25:0e:63:56:1a:96: 70:ae:45:3a:95:36:bc:35:3e:b5:40:82:5c:e0:79:8c:71:5b: 94:3d:f7:3a:93:81:fc:fa:6e:b1:f2:c4:d9:f4:f2:99:b8:14: e1:53:67:cb:19:94:f7:10:92:b2:ce:23:34:ed:3a:02:75:34: a0:74:6a:40:e9:2f:43:c5:7c:bd:54:a0:33:08:48:1c:ae:f5: ed:78:ea:4b:bb:88:85:6d:c5:e7:82:e9:10:e7:fe:ac:13:b5: f7:bd:22:b0:a8:55:b1:02:14:84:74:bf:0d:f9:ac:4f:88:c4: 9d:79:1e:7a:a8:93:5a:00:10:6d:7c:48:52:07:cb:60:e0:72: 2d:90:f5:c7:e1:10:ef:cb:e4:ff:d3:56:ec:d2:93:4e:fc:5f: a4:8c:4a:6e:8a:d1:50:d4:dd:f6:82:0b:c1:d3:3f:07:81:9c: 7b:e9:51:9f:0f:ec:08:0e:a4:cd:1a:ef:4b:55:12:88:b0:33: ea:15:26:a4:1f:c9:6c:32:38:b5:a2:90:2e:08:ff:7d:3c:7c: 25:46:e2:90:fe:da:ac:97:12:09:e7:03:9a:31:e0:89:96:1d: ed:20:c9:68:a5:ac:28:14:93:62:50:9c:e1:3b:f4:93:ff:d8: f6:0a:97:a7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NjREMzExMC8GA1UEBRMoOTk2QjE5NkZDQTNDNzIxODcxRUU5RTE0MTM5MzJCOEI1 MEVEMDlBQjAeFw0yNDA2MjYwNzA2MTRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2N2JiZGU2LTk3YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC01zoJbDc+swLZZ8fowXZg3P7UIUxHZj1jHYMNIfeBsmW4OZ3sUDAa/CcZ5Qcc phDHfO0beln+sPRTuQar7eoERsi5vScwUwyEpobKqNML5/6wrMezUgb+G+ENrIuI jEEAX7IaZEnkTc+no28DwQfdmfKX3Q0Xp8sQT1Vb/hA9VXdaqtD220ZtlrtGbmIf 1lA/vjQlXMdAJaIUKkiBYSBxkgqjgU5h2ReB5DeMYtMGf6ndWUozmHFqXISAYwiO io/a5B91CIVP882GPiiL2CFFkjUZZDutDJDdAIhcpWoNDZy4zmMVdf0g3dG+T+Jb 5qsElaAOBtgbFVpO3VsonVlfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoh0w9wFF kKkc6U8T8R9La6tKfpIwHwYDVR0jBBgwFoAUmWsZb8o8chhx7p4UE5Mri1DtCasw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2NEQzLzE1NTA0OEVBMzM4 OTExRUY5OUZEMUMyN0M0RjlBRTAyL21Xc1piOG84Y2hoeDdwNFVFNU1yaTFEdENh cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbVdzWmI4bzhjaGh4N3A0VUU1TXJpMUR0Q2FzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjREMy8xNTUwNDhFQTMzODkxMUVGOTlGRDFDMjdDNEY5QUUwMi85MzRGODI1MDMz OEExMUVGQjlDN0E3MzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoyMDANBgkqhkiG9w0BAQsFAAOCAQEATvf2Wg4XsGf5BHdh JQ5jVhqWcK5FOpU2vDU+tUCCXOB5jHFblD33OpOB/PpusfLE2fTymbgU4VNnyxmU 9xCSss4jNO06AnU0oHRqQOkvQ8V8vVSgMwhIHK717XjqS7uIhW3F54LpEOf+rBO1 970isKhVsQIUhHS/DfmsT4jEnXkeeqiTWgAQbXxIUgfLYOByLZD1x+EQ78vk/9NW 7NKTTvxfpIxKborRUNTd9oILwdM/B4Gce+lRnw/sCA6kzRrvS1USiLAz6hUmpB/J bDI4taKQLgj/fTx8JUbikP7arJcSCecDmjHgiZYd7SDJaKWsKBSTYlCc4Tv0k//Y 9gqXpw== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:24 2024 by rpki-client on console-fra.rpki-client.org