$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa File: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (raw, json) Hash identifier: J+eUq7xSVl/ftHVow0zUjtY1Um3ErdEi7ydMTSgX11Y= Subject key identifier: 3A:80:64:44:7B:4A:AF:84:24:E4:F1:DC:60:46:CC:55:16:55:48:1E Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: E6 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa Signing time: Tue 13 Feb 2024 05:16:50 +0000 ROA not before: Tue 13 Feb 2024 05:16:50 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132029 IP address blocks: 203.7.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Feb 13 05:16:50 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65cafb42-3784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:18:fd:53:5f:24:6c:b9:a8:19:c3:fa:9c:39: f4:dc:e6:e2:25:17:3e:da:2d:9b:d8:89:0b:07:79: 1e:95:ad:7f:fa:b5:23:f8:c1:57:2f:48:a8:a8:23: e4:8f:0d:aa:e7:a4:cb:64:60:5f:db:e7:8c:b8:a1: fc:1c:1a:72:9e:72:6d:25:69:2f:c7:cf:fe:5a:40: 39:d0:40:0f:da:eb:fb:2d:ae:65:db:c3:af:e7:73: 78:03:d3:0b:3d:6e:81:ee:f9:c2:54:f0:37:19:fd: d0:1f:a8:ea:32:2f:10:36:85:f2:d7:f9:9a:70:4b: 90:00:15:05:9f:e7:0a:f4:d0:04:59:3d:27:ff:d1: 96:8f:ae:eb:4c:51:75:4f:32:21:61:7d:c4:ac:66: b8:d6:b4:89:ee:a5:3d:7b:92:35:c8:55:0a:79:f9: c8:9d:54:02:25:27:74:09:03:6b:5f:ee:c9:6f:7f: d7:8f:69:e9:96:2e:49:a4:6d:ba:ff:ec:c8:c3:68: e8:9e:fc:1b:71:15:fe:1b:d2:ab:3d:46:14:e4:14: c6:ef:0a:56:07:bc:ba:c8:a5:92:8b:e2:42:7d:35: b3:82:5a:90:5e:3c:c2:fa:d0:72:f8:a7:6a:29:b3: f3:a7:74:57:1a:24:3b:d4:51:fb:da:6b:ff:51:73: d7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:80:64:44:7B:4A:AF:84:24:E4:F1:DC:60:46:CC:55:16:55:48:1E X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.7.140.0/22 Signature Algorithm: sha256WithRSAEncryption b1:94:03:46:f5:c8:6f:05:92:a4:68:8e:db:27:0e:29:eb:80: 60:2b:36:c4:cc:53:e2:10:fe:83:27:9b:6a:68:3f:bf:1a:d0: 36:8a:ec:a7:9f:c9:59:d7:14:79:d6:b5:3f:8d:7b:7a:d7:20: 11:aa:b7:b2:ab:09:d4:a8:ba:8a:c7:da:9d:2c:18:d8:8c:b8: d1:6c:b7:8e:de:1b:7a:d1:a4:71:20:72:b1:93:68:54:86:ec: 17:d1:7e:84:cc:a0:d4:ed:98:b8:28:2b:88:4c:96:30:6f:7f: bd:82:f1:27:03:c6:02:ac:fc:0d:00:2f:fd:7d:b8:db:16:cc: fe:06:c6:89:ae:ff:7f:ed:26:0a:c9:31:db:a1:96:49:dc:25: 02:39:b2:65:56:02:13:34:66:5c:46:11:d4:a0:1a:57:c7:39: 6b:20:b5:f3:62:2b:36:95:69:15:c2:e3:4a:ba:51:46:24:f0: 0e:f0:4a:70:2f:d3:8c:b6:b5:a3:89:89:44:0f:b4:01:19:9d: 59:aa:8d:34:60:03:3a:ac:80:94:11:32:cb:6e:8e:32:89:de: fe:fa:bc:f3:a3:dd:3c:9e:62:6c:a1:50:4c:f8:af:a3:ce:8f: f4:f4:64:cc:83:4b:cd:1b:35:cb:a4:88:59:60:47:f0:05:05: 00:fb:22:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjQwMjEzMDUxNjUwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhZmI0Mi0zNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Bj9U18kbLmoGcP6nDn03ObiJRc+2i2b2IkLB3kela1/+rUj+MFXL0ioqCPk jw2q56TLZGBf2+eMuKH8HBpynnJtJWkvx8/+WkA50EAP2uv7La5l28Ov53N4A9ML PW6B7vnCVPA3Gf3QH6jqMi8QNoXy1/macEuQABUFn+cK9NAEWT0n/9GWj67rTFF1 TzIhYX3ErGa41rSJ7qU9e5I1yFUKefnInVQCJSd0CQNrX+7Jb3/Xj2npli5JpG26 /+zIw2jonvwbcRX+G9KrPUYU5BTG7wpWB7y6yKWSi+JCfTWzglqQXjzC+tBy+Kdq KbPzp3RXGiQ71FH72mv/UXPXkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDqAZER7 Sq+EJOTx3GBGzFUWVUgeMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYzMTYvQTFERjE1MjA3NzRDMTFFREI4MjZCQzBCQzRGOUFFMDIvNTkwQTZBOUE3 OTJFMTFFRUE1QUFCODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLB4wwDQYJKoZIhvcNAQELBQADggEBALGUA0b1yG8FkqRo jtsnDinrgGArNsTMU+IQ/oMnm2poP78a0DaK7KefyVnXFHnWtT+Ne3rXIBGqt7Kr CdSouorH2p0sGNiMuNFst47eG3rRpHEgcrGTaFSG7BfRfoTMoNTtmLgoK4hMljBv f72C8ScDxgKs/A0AL/19uNsWzP4Gxomu/3/tJgrJMduhlkncJQI5smVWAhM0ZlxG EdSgGlfHOWsgtfNiKzaVaRXC40q6UUYk8A7wSnAv04y2taOJiUQPtAEZnVmqjTRg AzqsgJQRMstujjKJ3v76vPOj3TyeYmyhUEz4r6POj/T0ZMyDS80bNcukiFlgR/AF BQD7Irg= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org