$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa File: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk= Subject key identifier: 11:C2:50:5F:48:CD:9B:34:58:EE:7E:8D:BA:FB:64:E8:D0:CB:9B:9C Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 061B Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:25 +0000 ROA not before: Mon 14 Oct 2024 22:52:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132815 IP address blocks: 131.203.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 14 22:52:25 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0a8-ce9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b2:67:17:87:68:0e:4b:da:35:4c:1c:1c:3b: b5:ac:30:67:dc:74:5e:cc:ef:f3:7f:5b:bf:fd:4a: d7:1e:25:6d:d9:27:a2:98:12:9b:80:e8:8d:bd:82: 13:6e:dd:fe:a1:9a:37:4e:ec:ec:37:2b:84:0e:24: 46:86:27:0d:c8:3c:af:35:0c:2a:e7:8f:6e:92:62: 5d:bd:ef:ba:f7:6f:17:05:f0:2b:9c:86:01:03:7c: 10:28:ba:73:71:3f:b3:3a:e9:36:a3:4d:0a:df:4c: e2:7b:6e:6f:b0:c5:63:7a:2f:28:9d:92:eb:53:68: 43:60:76:7f:50:20:cd:16:88:90:06:3b:f7:4c:d6: 84:37:dc:87:b9:98:fc:c3:24:29:f3:f9:2e:ac:84: 2b:bc:e7:f8:cf:b1:69:aa:e2:4c:0d:92:b6:02:fe: fa:80:6d:6f:b2:8f:83:f9:63:1b:9c:49:ab:cc:3a: 69:31:46:44:0a:5f:01:88:8d:c2:af:9a:d9:c0:e6: c4:26:ae:9a:b9:b1:68:ca:49:04:16:82:61:b2:f8: e8:78:90:19:89:11:db:19:0c:58:75:62:56:2f:9f: 0a:2f:77:00:7e:30:e3:81:83:36:38:cf:ad:ce:b3: f2:3d:01:12:45:d8:b3:42:e1:36:18:e6:b6:51:f4: 46:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C2:50:5F:48:CD:9B:34:58:EE:7E:8D:BA:FB:64:E8:D0:CB:9B:9C X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.185.0/24 Signature Algorithm: sha256WithRSAEncryption bb:bd:5e:63:ac:12:cc:c8:f4:b9:ae:d1:35:c3:a9:31:21:3a: 1a:ef:71:5e:4a:86:05:8d:51:d5:29:e8:89:cf:43:da:f9:46: 31:78:fd:e1:4b:50:e8:fd:f8:47:f8:9f:3c:e5:db:8c:5d:fb: 71:f2:4c:10:9f:e9:b2:ba:d9:c6:ca:e4:37:64:1b:e6:c1:2a: db:dc:f1:6d:55:d3:f8:f0:c3:19:96:c9:b7:24:89:63:27:7f: c2:4f:04:16:45:e5:a6:1b:bb:96:c2:6e:03:b3:78:21:b0:4d: 99:84:c7:82:f4:cc:8a:e4:81:b8:83:f6:d9:d7:a5:68:72:11: 39:bb:9c:ad:67:b0:fd:32:cd:00:2c:7b:5a:29:33:0a:f6:97: 93:36:d4:39:35:d6:96:0d:94:e5:0d:b7:70:a1:92:87:8d:20: c7:4e:f1:cd:24:6d:05:82:0f:7c:15:6e:39:0c:3f:c6:95:b9: 37:45:1f:55:aa:22:56:2b:0f:10:cc:a4:65:56:49:00:98:b6: e5:52:cd:ad:dc:eb:b5:3a:f2:12:d4:a9:02:ac:83:93:94:c0: 8a:e3:94:23:66:a8:05:36:66:d6:d8:64:89:74:1f:1c:e4:2e: 14:4f:51:93:e8:5d:b4:9d:80:53:79:90:cc:c4:8e:1e:2b:b2: 2c:1b:11:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMDE0MjI1MjI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBhOC1jZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bJnF4doDkvaNUwcHDu1rDBn3HRezO/zf1u//UrXHiVt2SeimBKbgOiNvYIT bt3+oZo3TuzsNyuEDiRGhicNyDyvNQwq549ukmJdve+6928XBfArnIYBA3wQKLpz cT+zOuk2o00K30zie25vsMVjei8onZLrU2hDYHZ/UCDNFoiQBjv3TNaEN9yHuZj8 wyQp8/kurIQrvOf4z7FpquJMDZK2Av76gG1vso+D+WMbnEmrzDppMUZECl8BiI3C r5rZwObEJq6aubFoykkEFoJhsvjoeJAZiRHbGQxYdWJWL58KL3cAfjDjgYM2OM+t zrPyPQESRdizQuE2GOa2UfRGUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBHCUF9I zZs0WO5+jbr7ZOjQy5ucMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0M3QUU5QjRB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy7kwDQYJKoZIhvcNAQELBQADggEBALu9XmOsEszI9Lmu 0TXDqTEhOhrvcV5KhgWNUdUp6InPQ9r5RjF4/eFLUOj9+Ef4nzzl24xd+3HyTBCf 6bK62cbK5DdkG+bBKtvc8W1V0/jwwxmWybckiWMnf8JPBBZF5aYbu5bCbgOzeCGw TZmEx4L0zIrkgbiD9tnXpWhyETm7nK1nsP0yzQAse1opMwr2l5M21Dk11pYNlOUN t3ChkoeNIMdO8c0kbQWCD3wVbjkMP8aVuTdFH1WqIlYrDxDMpGVWSQCYtuVSza3c 67U68hLUqQKsg5OUwIrjlCNmqAU2ZtbYZIl0HxzkLhRPUZPoXbSdgFN5kMzEjh4r siwbEZk= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:38 2024 by rpki-client on console-ams.rpki-client.org