$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa File: 35A803641F1C11ECAD024E53C4F9AE02.roa (raw, json) Hash identifier: cxESMtHFEdXtubG4BTxFI1OsqEhiDOADXKBQNVk/TWw= Subject key identifier: 89:DF:06:4F:51:93:21:61:BA:D0:55:E7:68:99:67:D5:76:8D:2F:3A Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06C9 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:38 +0000 ROA not before: Mon 14 Oct 2024 22:52:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 18159 IP address blocks: 202.124.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 14 22:52:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0b6-5506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:b1:b1:1a:fd:ac:ba:d0:36:15:46:b0:ef: dc:4b:0a:ca:59:6e:ba:e7:4a:f9:e1:c3:70:b0:6c: 39:3e:fa:2b:91:46:4b:b5:79:af:fd:e5:78:99:18: 91:cb:c7:52:e1:79:50:56:d2:4b:3a:1a:e3:d4:bb: 1c:7f:32:ec:8b:be:f2:38:e1:98:cd:12:11:da:10: 74:fb:0d:08:ac:84:0a:0c:93:62:28:94:9d:df:bf: 53:8f:69:7c:f2:1c:cb:a5:88:51:fe:9c:64:e6:66: e3:77:4b:ca:4a:a3:3d:1c:04:5e:2a:59:63:71:13: 94:08:67:6b:0a:4d:25:33:5a:1f:08:ba:4e:0f:a2: 21:35:74:b0:c3:f4:02:00:6f:a1:29:0f:f0:04:35: ed:c3:17:08:73:16:38:fe:b5:1d:bc:09:1c:b5:fc: 9f:5a:97:b6:18:89:39:05:f9:d6:f4:84:af:46:98: 28:f7:fa:c4:e0:06:eb:e3:8a:db:ef:7a:9b:67:f4: 12:1e:dd:fe:8a:ff:fa:2e:5b:01:3b:69:ad:d5:25: ab:c1:8d:a2:c1:72:0a:90:69:41:b6:d6:15:92:bc: 5c:0b:90:b8:87:36:43:e6:78:18:38:24:25:8b:c0: 28:78:ee:df:dc:0e:7f:cb:72:5d:28:b2:5f:61:cc: 42:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DF:06:4F:51:93:21:61:BA:D0:55:E7:68:99:67:D5:76:8D:2F:3A X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/35A803641F1C11ECAD024E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.100.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:64:5c:93:e8:84:42:05:61:b2:33:88:41:3f:ff:dc:17:f3: 9e:c5:64:23:6d:95:27:2d:81:81:42:d5:47:1d:94:e8:f6:00: 33:20:54:db:3a:5f:51:be:2b:78:c7:a6:32:59:3a:0a:23:ba: 14:b6:04:34:d8:ad:7f:e0:2c:87:c0:8c:05:2c:43:45:9e:a6: e8:88:26:6d:9a:2e:c3:82:95:b4:97:5a:e7:2e:e4:b7:f5:dd: 75:24:e1:09:f7:85:69:8b:32:0a:ea:c6:06:28:12:bb:b4:49: 99:c7:18:e5:31:84:d0:7d:f8:be:a6:f0:92:e2:dd:08:83:a9: e6:1e:a6:06:d7:ae:30:e2:bb:30:04:6c:c8:73:58:10:f3:66: 48:a6:1d:df:22:ed:90:af:9d:d5:0d:8a:85:2b:f5:57:ec:63: ee:d8:da:a6:50:b0:f1:ea:26:51:49:e8:c2:19:6e:72:1c:79: c1:a0:fb:87:a9:93:26:d1:50:0c:ce:ca:02:73:48:a1:92:51: 42:5f:a8:42:72:3d:6e:ce:6d:3a:9f:f2:35:84:59:83:d0:2c: b6:00:69:e8:5b:3b:c8:7a:50:f1:95:3a:fa:9c:58:d6:3d:98: 56:61:9d:0d:24:64:8e:49:e4:fd:a8:70:75:20:14:e3:01:db: 2c:72:b7:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiNi01NTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ2xsRr9rLrQNhVGsO/cSwrKWW6650r54cNwsGw5PvorkUZLtXmv/eV4mRiR y8dS4XlQVtJLOhrj1LscfzLsi77yOOGYzRIR2hB0+w0IrIQKDJNiKJSd379Tj2l8 8hzLpYhR/pxk5mbjd0vKSqM9HAReKlljcROUCGdrCk0lM1ofCLpOD6IhNXSww/QC AG+hKQ/wBDXtwxcIcxY4/rUdvAkctfyfWpe2GIk5BfnW9ISvRpgo9/rE4Abr44rb 73qbZ/QSHt3+iv/6LlsBO2mt1SWrwY2iwXIKkGlBttYVkrxcC5C4hzZD5ngYOCQl i8AoeO7f3A5/y3JdKLJfYcxCcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFInfBk9R kyFhutBV52iZZ9V2jS86MB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMzVBODAzNjQx RjFDMTFFQ0FEMDI0RTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKfGQwDQYJKoZIhvcNAQELBQADggEBACtkXJPohEIFYbIz iEE//9wX857FZCNtlSctgYFC1UcdlOj2ADMgVNs6X1G+K3jHpjJZOgojuhS2BDTY rX/gLIfAjAUsQ0WepuiIJm2aLsOClbSXWucu5Lf13XUk4Qn3hWmLMgrqxgYoEru0 SZnHGOUxhNB9+L6m8JLi3QiDqeYepgbXrjDiuzAEbMhzWBDzZkimHd8i7ZCvndUN ioUr9VfsY+7Y2qZQsPHqJlFJ6MIZbnIcecGg+4epkybRUAzOygJzSKGSUUJfqEJy PW7ObTqf8jWEWYPQLLYAaehbO8h6UPGVOvqcWNY9mFZhnQ0kZI5J5P2ocHUgFOMB 2yxyt4I= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:44 2024 by rpki-client on console-fra.rpki-client.org