$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2DDD8D12E0D111ECAF88A30DC4F9AE02.roa File: 2DDD8D12E0D111ECAF88A30DC4F9AE02.roa (raw, json) Hash identifier: 2dQQsgieu7RDqRTlJvV/Oc93cQSMrc+xmgOsw6bn1iE= Subject key identifier: F2:BA:05:58:BC:ED:EB:21:A5:73:51:6B:9D:61:3D:17:0C:D3:62:A0 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0515 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2DDD8D12E0D111ECAF88A30DC4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:45 +0000 ROA not before: Wed 31 Jul 2024 02:33:45 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38815 IP address blocks: 202.183.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:33:45 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a289-8a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0c:9e:47:cd:39:13:14:a3:f1:92:74:a2:08: 68:08:3c:9e:d3:8a:8b:67:6d:7e:d0:73:61:af:97: 2e:19:a1:8b:f2:63:7f:53:f9:6e:9f:71:d5:a6:e3: 96:82:ff:33:02:6b:1e:5d:a5:db:0d:09:12:98:a3: 14:22:e4:5a:aa:c4:78:86:1c:5d:56:7a:0f:c1:1f: 30:f2:f1:f5:85:c0:bf:03:d0:b5:3f:55:c4:b1:6d: 62:64:be:53:e6:a8:99:53:2f:fc:e4:8e:88:75:aa: be:01:2a:2e:97:3d:12:8f:f0:5b:d6:fd:d1:5f:a4: 85:ad:40:7e:66:c8:35:d0:5b:5a:f7:58:a9:30:df: fd:7a:c8:54:c6:83:50:16:69:59:21:7a:89:2f:61: 77:f6:b0:37:77:24:d5:48:f5:7c:72:6b:9d:d7:04: 5e:2b:b8:8c:e1:f5:f3:16:b1:d7:01:6a:a5:c0:6e: 54:5c:8b:71:51:74:3b:d2:c9:e7:2c:f2:8b:35:9c: 67:9d:9f:35:b4:85:c1:75:f4:28:60:f2:c0:b0:9e: d3:40:3b:1e:ca:9c:03:ee:3b:98:28:76:da:72:d3: 37:2d:2d:73:74:99:0a:82:73:55:13:82:7e:02:33: 68:2a:e8:62:bb:de:81:85:66:5a:fa:69:99:2c:43: c4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BA:05:58:BC:ED:EB:21:A5:73:51:6B:9D:61:3D:17:0C:D3:62:A0 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2DDD8D12E0D111ECAF88A30DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.183.202.0/24 Signature Algorithm: sha256WithRSAEncryption 67:2e:04:a6:1f:fc:45:f2:bf:80:df:52:61:10:45:57:7b:6b: 1d:cb:1b:a1:cc:ae:6b:1e:c4:f4:22:b2:7a:71:de:f6:53:99: f9:08:3b:50:50:0d:d4:a6:c7:c8:97:83:87:b0:7c:50:54:28: ee:89:a9:03:eb:08:d2:66:64:44:db:8b:19:8d:9a:96:e5:0d: f6:6f:3b:eb:51:ba:1a:fe:3d:c4:0e:f5:51:b6:0f:e8:07:90: 6b:e0:6b:8d:c2:28:5f:5e:db:b6:82:cd:d2:9e:fa:67:5a:7e: 9b:ab:ed:ae:a0:3e:6f:ea:ac:b2:9e:fa:3d:e0:4b:ca:f1:e2: 83:c2:1f:83:9f:2a:43:8a:77:2a:89:ea:54:f2:89:85:ac:96: 11:f3:95:3c:ec:04:d0:0c:b8:79:8a:7e:d0:93:f3:ab:af:c5: b9:51:1e:6b:3f:d0:1d:db:88:6b:1b:66:b8:11:31:64:fc:bf: 2a:77:5d:cb:b2:d5:42:b7:89:30:db:83:44:35:9b:d6:b9:e5: 0c:25:12:6f:b9:73:1d:79:e5:56:2f:e0:61:80:91:43:1a:d3: 6b:08:67:68:61:fd:ac:42:0c:a0:dd:aa:28:6f:ad:8e:1d:0a: e4:1d:7a:35:42:9d:80:c2:0f:e7:e6:ca:ac:51:cc:0f:3e:4d: 92:c2:f6:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzMzQ1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI4OS04YTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwyeR805ExSj8ZJ0oghoCDye04qLZ21+0HNhr5cuGaGL8mN/U/lun3HVpuOW gv8zAmseXaXbDQkSmKMUIuRaqsR4hhxdVnoPwR8w8vH1hcC/A9C1P1XEsW1iZL5T 5qiZUy/85I6Idaq+ASoulz0Sj/Bb1v3RX6SFrUB+Zsg10Fta91ipMN/9eshUxoNQ FmlZIXqJL2F39rA3dyTVSPV8cmud1wReK7iM4fXzFrHXAWqlwG5UXItxUXQ70snn LPKLNZxnnZ81tIXBdfQoYPLAsJ7TQDseypwD7juYKHbactM3LS1zdJkKgnNVE4J+ AjNoKuhiu96BhWZa+mmZLEPElQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPK6BVi8 7eshpXNRa51hPRcM02KgMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMkRERDhEMTJF MEQxMTFFQ0FGODhBMzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKt8owDQYJKoZIhvcNAQELBQADggEBAGcuBKYf/EXyv4Df UmEQRVd7ax3LG6HMrmsexPQisnpx3vZTmfkIO1BQDdSmx8iXg4ewfFBUKO6JqQPr CNJmZETbixmNmpblDfZvO+tRuhr+PcQO9VG2D+gHkGvga43CKF9e27aCzdKe+mda fpur7a6gPm/qrLKe+j3gS8rx4oPCH4OfKkOKdyqJ6lTyiYWslhHzlTzsBNAMuHmK ftCT86uvxblRHms/0B3biGsbZrgRMWT8vyp3Xcuy1UK3iTDbg0Q1m9a55QwlEm+5 cx155VYv4GGAkUMa02sIZ2hh/axCDKDdqihvrY4dCuQdejVCnYDCD+fmyqxRzA8+ TZLC9kw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:55 2024 by rpki-client on console-ams.rpki-client.org