$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/605B17F8E19611EC8AD57C6CC4F9AE02.roa File: 605B17F8E19611EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: OnFKcB9l7ORZOBYg0MjtwQsLFK5ySSbBrtpdhFXjv+4= Subject key identifier: 42:78:4A:2C:44:8D:E0:6B:F5:5A:B6:8D:47:C4:77:70:07:77:1F:51 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 04FD Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/605B17F8E19611EC8AD57C6CC4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:25 +0000 ROA not before: Wed 31 Jul 2024 02:33:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137392 IP address blocks: 203.172.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:33:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a275-6046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:64:be:1d:f9:08:bb:09:5d:7f:cc:4e:d7:69: 8e:f8:7b:a0:b2:66:fe:ce:2b:23:b8:36:65:40:7c: e0:0e:55:94:98:d4:b8:c8:2d:07:6d:de:d9:6b:16: b4:24:d1:17:3f:81:ac:2a:b9:88:73:c8:37:0d:d4: b6:98:bd:2b:e3:69:75:50:dd:b5:1e:93:74:07:c6: 23:f2:57:61:f7:80:be:79:03:94:c2:7d:76:14:cf: 5a:04:22:37:d4:5b:4d:fd:f9:46:7d:0f:8c:8a:f1: 92:7a:16:eb:91:fc:10:b8:84:5a:d9:93:83:ef:9f: 74:11:96:a8:4b:17:95:03:47:1d:93:d4:2c:78:c9: 0b:b5:8b:cf:52:81:1d:6d:15:39:19:ca:79:16:c0: 2f:48:0d:75:fa:f4:55:e9:cf:12:f9:19:87:5d:f6: 76:c0:ab:d3:7c:dd:29:e8:65:18:8e:b6:46:12:cd: bc:44:d1:dd:88:1e:4a:5f:b6:fe:f8:11:bb:ee:30: 47:4a:67:6d:d7:fd:e9:0a:49:2d:30:af:30:50:fb: 70:22:ac:1e:84:db:b4:21:8e:7b:0f:33:31:c9:50: 54:13:4b:3e:45:e1:d8:c0:68:65:e9:36:2d:91:58: 47:a2:58:ad:43:3c:b5:ed:de:d6:45:30:e3:62:a4: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:78:4A:2C:44:8D:E0:6B:F5:5A:B6:8D:47:C4:77:70:07:77:1F:51 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/605B17F8E19611EC8AD57C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.172.73.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:b2:70:c5:1f:b6:f0:35:12:6e:b7:25:22:bf:d5:42:6b:1f: 03:75:7d:e2:50:69:28:c3:d3:b1:5b:cf:81:1d:01:85:ec:f7: 2f:21:d8:19:9c:09:67:e1:12:9e:45:49:97:ff:fa:fd:50:15: 2f:a4:2e:a7:46:92:a3:2a:db:0e:7a:ed:05:7d:32:b5:1f:65: 68:91:86:2d:12:39:80:87:dd:cc:3e:da:63:77:db:70:55:0d: 4e:3f:64:fc:f2:70:31:03:7d:24:a8:c0:08:ab:30:a0:92:92: 2b:7d:81:46:5e:b5:a1:d6:56:1a:53:81:ec:04:5c:fc:36:44: 87:a7:f4:eb:68:71:91:0d:e6:b9:30:00:87:20:6f:6e:70:3d: 03:ec:38:60:f7:d0:bc:0f:14:c2:7e:cf:5d:e0:eb:00:59:92: bc:b4:dc:c4:99:28:4a:c7:96:45:60:cf:ab:55:3d:21:02:81: 2c:ce:96:21:29:55:e3:88:8f:f3:ed:4d:0e:9b:3d:74:ef:ee: ba:62:06:cb:83:f9:67:89:01:71:48:ac:f0:98:5f:07:c7:3e: f8:9a:f7:03:bb:7b:af:5d:a2:a0:7a:f9:14:57:1d:20:ed:89: 5f:81:04:c3:43:6e:47:7a:e0:6e:53:12:8f:e7:dd:1e:c1:c6: 6c:52:15:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzMzI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI3NS02MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2S+HfkIuwldf8xO12mO+Hugsmb+zisjuDZlQHzgDlWUmNS4yC0Hbd7Zaxa0 JNEXP4GsKrmIc8g3DdS2mL0r42l1UN21HpN0B8Yj8ldh94C+eQOUwn12FM9aBCI3 1FtN/flGfQ+MivGSehbrkfwQuIRa2ZOD7590EZaoSxeVA0cdk9QseMkLtYvPUoEd bRU5Gcp5FsAvSA11+vRV6c8S+RmHXfZ2wKvTfN0p6GUYjrZGEs28RNHdiB5KX7b+ +BG77jBHSmdt1/3pCkktMK8wUPtwIqwehNu0IY57DzMxyVBUE0s+ReHYwGhl6TYt kVhHolitQzy17d7WRTDjYqRObQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEJ4SixE jeBr9Vq2jUfEd3AHdx9RMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvNjA1QjE3RjhF MTk2MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLrEkwDQYJKoZIhvcNAQELBQADggEBAF6ycMUftvA1Em63 JSK/1UJrHwN1feJQaSjD07Fbz4EdAYXs9y8h2BmcCWfhEp5FSZf/+v1QFS+kLqdG kqMq2w567QV9MrUfZWiRhi0SOYCH3cw+2mN323BVDU4/ZPzycDEDfSSowAirMKCS kit9gUZetaHWVhpTgewEXPw2RIen9OtocZEN5rkwAIcgb25wPQPsOGD30LwPFMJ+ z13g6wBZkry03MSZKErHlkVgz6tVPSECgSzOliEpVeOIj/PtTQ6bPXTv7rpiBsuD +WeJAXFIrPCYXwfHPvia9wO7e69doqB6+RRXHSDtiV+BBMNDbkd64G5TEo/n3R7B xmxSFTA= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org