$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa File: C39CEEAAE17C11EC93AB7473C4F9AE02.roa (raw, json) Hash identifier: nULV28mYnrtjkDmhMLeXI8mw/BTU9cOO25xjbhIj4bs= Subject key identifier: 06:6E:35:D7:E3:CB:0A:31:6E:8E:F1:BD:B3:8E:35:E6:8F:16:F2:D9 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 04F2 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:16 +0000 ROA not before: Wed 31 Jul 2024 02:33:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133481 IP address blocks: 203.170.208.0/24 maxlen: 24 203.170.209.0/24 maxlen: 24 203.170.212.0/24 maxlen: 24 203.170.213.0/24 maxlen: 24 203.170.216.0/24 maxlen: 24 203.170.217.0/24 maxlen: 24 203.170.218.0/24 maxlen: 24 203.170.219.0/24 maxlen: 24 203.170.220.0/24 maxlen: 24 203.170.221.0/24 maxlen: 24 203.170.222.0/24 maxlen: 24 203.170.223.0/24 maxlen: 24 203.170.240.0/24 maxlen: 24 203.170.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:33:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a26c-7a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:77:8e:44:75:79:60:75:ff:0c:02:cc:5b:ad: 2e:9a:af:e0:72:49:b5:da:dd:e0:fe:22:b8:4e:b7: 7a:73:25:91:38:fd:0f:e9:9b:f4:8e:c7:15:36:1c: 84:29:5a:77:53:89:06:46:1f:a3:29:5d:43:e2:3f: c8:d1:c5:a9:a3:0b:e4:31:27:91:79:37:12:f5:87: 1a:7a:1c:bd:55:26:c5:56:04:d0:dc:02:99:4a:03: ea:fd:fe:17:65:5a:4e:ee:3d:0e:8c:73:c8:8f:45: ec:bf:c1:d4:90:37:cc:37:cd:eb:67:00:e7:77:96: a0:90:95:f8:0d:50:48:b3:35:4f:3f:e6:42:8b:5c: d4:a7:4b:22:1c:3c:21:8c:2a:c4:4a:49:dd:94:60: a5:53:dc:67:48:fd:5a:2b:e6:4d:b2:97:2f:94:ed: 19:76:1d:76:ff:70:c1:5d:95:d0:23:0b:03:7e:2a: 07:0c:e1:8b:fc:5f:d5:49:5a:cd:88:fc:2b:a9:e1: b6:78:05:62:0a:f6:4e:36:61:53:30:dc:6d:17:46: 97:36:d7:4b:69:16:e4:d9:c8:7f:56:77:46:06:51: 01:45:3e:81:93:b0:d3:94:f8:5e:5c:de:af:8f:9b: 03:1c:56:ea:44:5a:26:ed:82:1c:fa:42:52:0b:11: 57:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6E:35:D7:E3:CB:0A:31:6E:8E:F1:BD:B3:8E:35:E6:8F:16:F2:D9 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.208.0/23 203.170.212.0/23 203.170.216.0/21 203.170.240.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:bb:87:e5:00:a7:1b:f4:67:16:5e:84:9e:da:16:be:2b:13: a4:18:78:45:0b:c4:a0:fb:6d:cd:a6:a0:02:ac:31:65:61:58: 9b:ce:54:8c:ed:a7:67:8f:fa:b9:e3:b8:e6:0e:08:02:ef:ce: e7:19:9d:93:ad:ef:a0:26:cd:f9:d7:fb:25:ff:28:fb:d4:28: 8a:42:1a:e1:9f:c2:1c:1a:56:c3:90:47:46:c4:db:84:fa:04: 06:d4:d6:4e:f5:93:9c:31:ca:46:ac:ad:34:d1:ce:f1:aa:54: 18:09:d0:0e:6c:e5:a0:aa:16:24:77:62:4a:e1:08:de:19:ed: e0:7b:28:d2:79:0f:a9:c8:b2:c9:72:09:f3:99:e5:86:19:a1: 1f:52:2a:82:d1:c0:ad:b7:7e:f6:73:d7:95:ff:0a:45:6d:92: 48:da:5c:20:a7:a0:ef:9e:0b:b4:ea:54:74:76:ba:03:5e:b7: 61:0d:a1:ff:fb:04:1f:2b:bf:18:07:09:d2:3b:8c:c3:23:5a: f1:21:d5:9b:fb:b5:7a:b8:06:a1:fc:d7:cf:4a:0f:82:31:6e: ef:7d:79:2f:6f:4f:9b:f6:7c:48:ba:bd:81:bf:b7:db:66:df: 58:97:18:af:21:4c:3f:f5:53:1d:80:f5:8d:36:ff:41:02:50: a5:f6:40:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzMzE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI2Yy03YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2neORHV5YHX/DALMW60umq/gckm12t3g/iK4Trd6cyWROP0P6Zv0jscVNhyE KVp3U4kGRh+jKV1D4j/I0cWpowvkMSeReTcS9Ycaehy9VSbFVgTQ3AKZSgPq/f4X ZVpO7j0OjHPIj0Xsv8HUkDfMN83rZwDnd5agkJX4DVBIszVPP+ZCi1zUp0siHDwh jCrESkndlGClU9xnSP1aK+ZNspcvlO0Zdh12/3DBXZXQIwsDfioHDOGL/F/VSVrN iPwrqeG2eAViCvZONmFTMNxtF0aXNtdLaRbk2ch/VndGBlEBRT6Bk7DTlPheXN6v j5sDHFbqRFom7YIc+kJSCxFXyQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAZuNdfj ywoxbo7xvbOONeaPFvLZMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzM5Q0VFQUFF MTdDMTFFQzkzQUI3NDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAHLqtADBAHLqtQDBAPLqtgDBAHLqvAwDQYJKoZIhvcNAQEL BQADggEBAI+7h+UApxv0ZxZehJ7aFr4rE6QYeEULxKD7bc2moAKsMWVhWJvOVIzt p2eP+rnjuOYOCALvzucZnZOt76AmzfnX+yX/KPvUKIpCGuGfwhwaVsOQR0bE24T6 BAbU1k71k5wxykasrTTRzvGqVBgJ0A5s5aCqFiR3YkrhCN4Z7eB7KNJ5D6nIssly CfOZ5YYZoR9SKoLRwK23fvZz15X/CkVtkkjaXCCnoO+eC7TqVHR2ugNet2ENof/7 BB8rvxgHCdI7jMMjWvEh1Zv7tXq4BqH8189KD4Ixbu99eS9vT5v2fEi6vYG/t9tm 31iXGK8hTD/1Ux2A9Y02/0ECUKX2QGQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org