$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/24AAD02CABB011EFA8B1AB11C4F9AE02.roa File: 24AAD02CABB011EFA8B1AB11C4F9AE02.roa (raw, json) Hash identifier: sZFdiYAp0uO0VKKVLMHPaOo80NenQHD7xfu2JRKPKMg= Subject key identifier: 46:CE:1B:62:93:29:6D:15:58:85:7A:79:03:DB:DF:E5:A1:E2:59:AB Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0590 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/24AAD02CABB011EFA8B1AB11C4F9AE02.roa Signing time: Tue 26 Nov 2024 04:37:29 +0000 ROA not before: Tue 26 Nov 2024 04:37:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153459 IP address blocks: 202.183.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 02:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA Validity Not Before: Nov 26 04:37:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67455089-a4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:51:db:64:93:b6:40:99:e1:64:e0:78:90: be:d9:e9:c6:a2:c1:33:e4:10:9e:af:35:d4:32:1b: f0:bb:03:40:19:32:0c:99:0b:4c:ad:74:84:96:e9: 5a:ac:4f:c2:be:b6:b9:d0:e1:f8:c0:b1:5e:8a:37: c0:f0:fe:26:70:b1:31:f0:14:77:c1:1d:92:11:62: 6f:a5:c3:85:2b:1d:0d:04:be:ba:e1:49:76:3b:b1: f5:36:23:d3:6d:2f:54:1c:9e:4c:8b:9f:0d:9a:3b: 58:9a:c6:e6:05:19:da:9f:e6:d7:ca:b5:26:22:ab: e6:62:f2:da:d8:52:d5:12:57:71:9e:bb:16:f0:ba: 1f:dc:3a:66:4d:d4:0d:33:86:bb:86:8c:c3:00:af: a3:f9:be:f2:dc:25:a1:cc:d3:68:0f:47:4d:88:e8: a0:46:3d:d0:35:ee:bb:a3:82:4a:35:c3:82:c2:a9: d0:35:13:f1:ef:07:95:61:2a:40:de:76:ef:84:c8: 03:f7:7b:42:09:ef:fb:f5:c9:0f:e0:a2:9f:7a:d2: ea:6c:cf:70:6c:a2:c5:71:f4:08:82:f8:54:a2:14: 69:c3:e5:17:04:e5:bf:a0:03:09:a1:3c:1d:0d:4d: 1e:35:8a:46:6c:28:f5:a5:b2:47:7c:4b:ef:46:80: 28:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CE:1B:62:93:29:6D:15:58:85:7A:79:03:DB:DF:E5:A1:E2:59:AB X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/24AAD02CABB011EFA8B1AB11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.183.131.0/24 Signature Algorithm: sha256WithRSAEncryption 60:78:a0:f8:98:d3:2c:0f:63:e5:3d:ca:05:3d:a9:b3:d5:40: eb:17:36:db:ec:92:21:a2:a2:16:5d:d0:cf:e7:59:8d:23:c4: 46:99:20:49:ba:2e:fc:32:1e:5d:dc:53:13:f4:94:5f:13:0c: bd:2c:cb:57:3c:42:70:01:c9:52:ed:5d:0e:43:dc:91:0f:a1: dd:08:08:e5:a2:77:55:08:33:f1:9c:ec:9f:9f:04:98:d5:53: 0a:ca:37:b3:63:c1:2d:25:28:db:52:7a:94:84:8c:45:3a:af: a6:6f:93:c5:d2:df:c4:bd:54:f8:3c:8b:3d:4e:7c:e0:87:ee: 17:3d:84:1b:ed:f6:17:16:e0:c9:00:1f:81:68:52:e6:de:5e: 66:4f:b5:e9:84:32:7f:8e:54:02:a8:03:12:22:cd:59:c4:6f: a1:a0:9f:4c:11:dc:de:88:94:d1:ac:29:ed:03:e7:af:1d:7e: cc:94:eb:5b:7c:d9:4f:b8:f9:9b:4f:1b:2f:c6:ac:98:2d:79: 6c:93:22:9b:3c:9b:10:f1:88:6c:67:99:d1:ba:6f:d4:e7:2b: 49:40:8e:74:24:88:34:9e:9d:8f:96:55:e7:83:dd:b2:3a:dd: f0:57:a7:cc:49:dd:17:1d:5c:8c:7d:e7:66:dd:0f:ea:7a:f2: 03:6b:29:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQxMTI2MDQzNzI5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ1NTA4OS1hNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzxR22STtkCZ4WTgeJC+2enGosEz5BCerzXUMhvwuwNAGTIMmQtMrXSElula rE/Cvra50OH4wLFeijfA8P4mcLEx8BR3wR2SEWJvpcOFKx0NBL664Ul2O7H1NiPT bS9UHJ5Mi58NmjtYmsbmBRnan+bXyrUmIqvmYvLa2FLVEldxnrsW8Lof3DpmTdQN M4a7hozDAK+j+b7y3CWhzNNoD0dNiOigRj3QNe67o4JKNcOCwqnQNRPx7weVYSpA 3nbvhMgD93tCCe/79ckP4KKfetLqbM9wbKLFcfQIgvhUohRpw+UXBOW/oAMJoTwd DU0eNYpGbCj1pbJHfEvvRoAoewIDAQABo4IClTCCApEwHQYDVR0OBBYEFEbOG2KT KW0VWIV6eQPb3+Wh4lmrMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMjRBQUQwMkNB QkIwMTFFRkE4QjFBQjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKt4MwDQYJKoZIhvcNAQELBQADggEBAGB4oPiY0ywPY+U9 ygU9qbPVQOsXNtvskiGiohZd0M/nWY0jxEaZIEm6LvwyHl3cUxP0lF8TDL0sy1c8 QnAByVLtXQ5D3JEPod0ICOWid1UIM/Gc7J+fBJjVUwrKN7NjwS0lKNtSepSEjEU6 r6Zvk8XS38S9VPg8iz1OfOCH7hc9hBvt9hcW4MkAH4FoUubeXmZPtemEMn+OVAKo AxIizVnEb6Ggn0wR3N6IlNGsKe0D568dfsyU61t82U+4+ZtPGy/GrJgteWyTIps8 mxDxiGxnmdG6b9TnK0lAjnQkiDSenY+WVeeD3bI63fBXp8xJ3RcdXIx952bdD+p6 8gNrKV0= -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:53 2025 by rpki-client