$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/5BADDAF216D911EC9ACD9223C4F9AE02.roa File: 5BADDAF216D911EC9ACD9223C4F9AE02.roa (raw, json) Hash identifier: CjV+BRwzzXLQUXy+rMWWs67nLL9n86TEOpi9l3k8Kdk= Subject key identifier: A4:FF:BE:E1:C0:A6:EF:BB:57:00:A5:AB:60:2D:E1:F6:C6:92:97:48 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 041A Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/5BADDAF216D911EC9ACD9223C4F9AE02.roa Signing time: Tue 19 Mar 2024 01:53:49 +0000 ROA not before: Tue 19 Mar 2024 01:53:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139910 IP address blocks: 203.20.192.0/24 maxlen: 24 203.20.194.0/24 maxlen: 24 203.20.195.0/24 maxlen: 24 203.20.196.0/24 maxlen: 24 203.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1050 (0x41a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Mar 19 01:53:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65f8f02d-dc46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:24:fb:7e:7e:e4:6b:21:ff:10:02:b7:fa:46: c3:59:c7:1a:ae:36:b4:43:b2:06:62:4d:d4:2d:ec: b2:8a:1d:9d:17:e8:c7:53:85:7f:a0:25:2a:8d:b2: bb:57:01:19:95:7a:5e:8a:3f:99:ef:cf:e6:03:f3: 9c:24:74:46:88:fb:b7:30:0a:f4:e2:eb:63:f2:a6: a2:bc:b9:7c:d4:56:3a:c4:8d:8f:f0:9a:32:c4:9e: 2a:01:4d:c3:2c:a8:b8:1c:cd:25:3a:52:c6:b9:6e: 4c:e8:05:d0:c5:57:8a:55:7c:3d:a4:de:e4:0a:47: c5:c1:44:63:ee:24:1c:44:c4:0c:44:e2:3b:dd:5f: 13:96:fe:8f:bb:69:50:d9:c1:ab:db:86:90:44:9c: bb:8e:ec:d1:25:cb:e8:12:f0:c4:a8:33:41:da:e5: f2:e9:ad:a9:39:8d:d8:9b:af:30:d9:e8:ac:86:76: 68:53:f6:b4:c0:8d:43:be:89:37:f8:8b:a1:3f:ce: a5:65:cd:3b:8e:4d:7e:39:2a:24:51:9a:0b:cc:2d: b6:ea:bd:21:82:23:d5:84:79:81:a0:f4:94:3e:20: e6:75:04:6c:2b:74:05:2c:ca:65:fc:16:ce:a5:62: ee:b5:b1:ea:61:2a:07:67:1f:fc:76:b8:b5:d0:a7: d5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FF:BE:E1:C0:A6:EF:BB:57:00:A5:AB:60:2D:E1:F6:C6:92:97:48 X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/5BADDAF216D911EC9ACD9223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.192.0/24 203.20.194.0-203.20.196.255 203.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:23:a7:0d:6b:88:63:61:ed:07:1d:55:af:6e:fd:bc:20:8b: ac:17:e2:af:05:42:d9:e7:96:5c:47:4f:a9:13:a1:e3:af:a3: 98:96:54:ea:de:4c:9c:b5:c5:28:0e:be:77:24:fa:f2:ff:92: 25:98:ef:60:12:c5:18:76:83:65:be:3d:7a:8e:f9:c3:1e:b1: 82:24:6e:58:7d:65:0d:ec:30:9f:0b:99:c0:ec:fe:72:54:bf: f5:8d:b9:68:e7:f4:a2:af:e3:97:4a:e9:c5:a4:77:db:9c:db: 03:d1:f7:d9:6d:54:3d:48:c6:eb:cf:36:ad:d8:9d:97:fc:c9: 3e:cc:60:c7:b3:c2:92:49:97:1c:d9:72:7f:fe:3e:6e:6e:83: 6d:a5:60:b8:d5:16:8b:41:bd:d5:45:91:c4:41:a8:12:e9:30: e8:e5:ba:35:d9:d2:e3:5a:cb:bd:87:f9:cd:29:95:7e:23:f9: a6:0e:67:b5:fa:f1:68:c6:87:38:8a:7f:7f:0c:f3:ac:23:44: 3f:c1:c7:dd:bf:1c:6a:c4:f5:58:4c:69:c1:6f:9c:19:8b:ca: a4:75:86:eb:ba:4c:71:40:65:4c:17:3c:39:6a:2c:e7:84:6a: d1:d0:0d:ec:8c:24:c7:94:b0:63:22:a0:67:b4:e8:0a:d2:9b: 64:02:e1:86 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjQwMzE5MDE1MzQ5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4ZjAyZC1kYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CT7fn7kayH/EAK3+kbDWccarja0Q7IGYk3ULeyyih2dF+jHU4V/oCUqjbK7 VwEZlXpeij+Z78/mA/OcJHRGiPu3MAr04utj8qaivLl81FY6xI2P8JoyxJ4qAU3D LKi4HM0lOlLGuW5M6AXQxVeKVXw9pN7kCkfFwURj7iQcRMQMROI73V8Tlv6Pu2lQ 2cGr24aQRJy7juzRJcvoEvDEqDNB2uXy6a2pOY3Ym68w2eishnZoU/a0wI1Dvok3 +IuhP86lZc07jk1+OSokUZoLzC226r0hgiPVhHmBoPSUPiDmdQRsK3QFLMpl/BbO pWLutbHqYSoHZx/8dri10KfVVQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFKT/vuHA pu+7VwClq2At4fbGkpdIMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvNUJBRERBRjIx NkQ5MTFFQzlBQ0Q5MjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBADLFMAwDAMEAcsUwgMEAMsUxAMEAMsUxjANBgkqhkiG9w0B AQsFAAOCAQEAPiOnDWuIY2HtBx1Vr279vCCLrBfirwVC2eeWXEdPqROh46+jmJZU 6t5MnLXFKA6+dyT68v+SJZjvYBLFGHaDZb49eo75wx6xgiRuWH1lDewwnwuZwOz+ clS/9Y25aOf0oq/jl0rpxaR325zbA9H32W1UPUjG6882rdidl/zJPsxgx7PCkkmX HNlyf/4+bm6DbaVguNUWi0G91UWRxEGoEukw6OW6NdnS41rLvYf5zSmVfiP5pg5n tfrxaMaHOIp/fwzzrCNEP8HH3b8casT1WExpwW+cGYvKpHWG67pMcUBlTBc8OWos 54Rq0dAN7Iwkx5SwYyKgZ7ToCtKbZALhhg== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org