$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24FDC2446F3211EDA3DCF033C4F9AE02.roa File: 24FDC2446F3211EDA3DCF033C4F9AE02.roa (raw, json) Hash identifier: d2+un5XTDgzJbWROr+IzD11y+bXi6HVh7GN60G2Vs5w= Subject key identifier: 42:7B:EA:33:9D:45:48:1C:C0:E9:CE:49:07:B3:AE:9F:A8:9A:9B:F9 Certificate issuer: /CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Certificate serial: 0133 Authority key identifier: 91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24FDC2446F3211EDA3DCF033C4F9AE02.roa Signing time: Mon 01 Jul 2024 04:46:31 +0000 ROA not before: Mon 01 Jul 2024 04:46:31 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.55.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Validity Not Before: Jul 1 04:46:31 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668234a7-148e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:38:1c:d1:7d:13:d7:2d:4b:03:62:62:a3: f9:fb:08:d9:41:cd:3f:6a:89:55:3d:9f:7a:47:4c: 74:6c:72:22:09:7a:6a:4e:18:d6:72:be:6f:b3:53: ad:90:fc:4e:46:26:c9:49:61:89:f7:5a:fe:9c:13: e3:43:52:68:81:06:de:2e:0e:d3:2e:a4:6b:3e:9a: de:fd:34:e2:82:d7:b1:2a:88:38:25:33:7b:7e:86: 96:9f:b0:63:43:9b:5e:97:00:87:38:f1:63:1d:9c: 58:70:6a:53:ba:6d:62:80:d4:78:d1:8a:16:f2:21: 3d:0c:be:24:67:a0:d7:78:3f:f6:24:7c:50:23:c1: 33:d6:a4:54:33:f4:10:7a:1f:52:1c:28:9b:79:09: ee:2b:f4:f5:52:ef:71:07:fd:25:58:87:d9:26:bb: c0:7a:2d:1b:a3:7c:e2:7f:66:22:0d:e7:2f:1e:22: 83:89:c4:84:98:6d:10:41:af:20:dd:03:b3:45:f4: 71:97:71:4c:49:6b:50:8d:d1:2b:a7:e4:76:d7:a5: 5a:1a:cb:a6:91:c2:9d:05:d5:55:7d:3c:b8:0e:af: 14:2b:b2:bc:a4:7d:d4:0f:ae:d4:21:82:f8:21:79: cb:3f:34:93:4e:d7:f2:a4:7f:ad:e2:63:0f:fa:1e: 46:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7B:EA:33:9D:45:48:1C:C0:E9:CE:49:07:B3:AE:9F:A8:9A:9B:F9 X509v3 Authority Key Identifier: keyid:91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24FDC2446F3211EDA3DCF033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.55.215.0/24 Signature Algorithm: sha256WithRSAEncryption a1:e3:a4:51:45:8c:94:11:ee:45:18:c7:01:fe:92:11:bb:95: 46:46:08:a1:ea:cc:ad:c0:6c:0e:64:29:8a:f2:5d:31:74:f1: 1f:d6:e7:bd:25:11:33:82:b5:3b:47:bb:73:0e:80:5c:ef:45: a8:d0:b6:83:04:f7:d7:83:83:68:41:27:dd:8b:fa:c2:9c:7f: 07:3f:c7:7c:25:4c:b8:2c:46:39:ef:f5:f9:8f:3b:52:4f:f2: 4f:7e:ae:09:4b:32:b7:68:d4:77:4e:ee:68:01:a6:93:ca:56: 00:29:41:dd:92:db:90:71:62:73:c0:3b:b6:85:9e:c5:53:7d: a9:34:f2:b7:d5:25:f0:e0:d8:c8:24:b8:76:0b:d6:e6:e0:a1: 9c:e8:df:89:c9:1d:a2:a2:b6:b2:29:48:fb:c1:3c:4b:1e:58: a7:54:33:4c:2c:b7:b4:6a:9b:d7:8b:79:cf:b0:af:3c:fc:2a: 8f:ad:b6:12:1c:93:70:b5:e2:1c:c8:91:42:a4:fa:ad:b2:53: f4:90:78:1b:01:18:aa:ac:5e:fb:46:f6:f2:b8:ee:d7:66:3b: e9:d2:9c:4b:c8:65:6c:84:ba:4e:c7:3c:6d:27:5b:a6:d4:79: da:e7:67:21:f3:4c:42:a0:75:2c:22:73:85:df:75:ff:cf:12: cc:f6:04:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGODQxMTAvBgNVBAUTKDkxQzQ5NzZERUFEM0RFODc3OEU1QzBEQ0ZGMjYwMzk3 MUFDMkQ0REIwHhcNMjQwNzAxMDQ0NjMxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyMzRhNy0xNDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL84HNF9E9ctSwNiYqP5+wjZQc0/aolVPZ96R0x0bHIiCXpqThjWcr5vs1Ot kPxORibJSWGJ91r+nBPjQ1JogQbeLg7TLqRrPpre/TTigtexKog4JTN7foaWn7Bj Q5telwCHOPFjHZxYcGpTum1igNR40YoW8iE9DL4kZ6DXeD/2JHxQI8Ez1qRUM/QQ eh9SHCibeQnuK/T1Uu9xB/0lWIfZJrvAei0bo3zif2YiDecvHiKDicSEmG0QQa8g 3QOzRfRxl3FMSWtQjdErp+R216VaGsumkcKdBdVVfTy4Dq8UK7K8pH3UD67UIYL4 IXnLPzSTTtfypH+t4mMP+h5GiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEJ76jOd RUgcwOnOSQezrp+ompv5MB8GA1UdIwQYMBaAFJHEl23q096HeOXA3P8mA5cawtTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y4NC9GNDNBM0YwNDZG MkYxMUVEQTg0QTY5MzNDNEY5QUUwMi9rY1NYYmVyVDNvZDQ1Y0RjX3lZRGx4ckMx TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjU1hiZXJUM29kNDVjRGNfeVlEbHhyQzFOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGODQvRjQzQTNGMDQ2RjJGMTFFREE4NEE2OTMzQzRGOUFFMDIvMjRGREMyNDQ2 RjMyMTFFREEzRENGMDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLN9cwDQYJKoZIhvcNAQELBQADggEBAKHjpFFFjJQR7kUY xwH+khG7lUZGCKHqzK3AbA5kKYryXTF08R/W570lETOCtTtHu3MOgFzvRajQtoME 99eDg2hBJ92L+sKcfwc/x3wlTLgsRjnv9fmPO1JP8k9+rglLMrdo1HdO7mgBppPK VgApQd2S25BxYnPAO7aFnsVTfak08rfVJfDg2MgkuHYL1ubgoZzo34nJHaKitrIp SPvBPEseWKdUM0wst7Rqm9eLec+wrzz8Ko+tthIck3C14hzIkUKk+q2yU/SQeBsB GKqsXvtG9vK47tdmO+nSnEvIZWyEuk7HPG0nW6bUedrnZyHzTEKgdSwic4Xfdf/P Esz2BHo= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org