$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa File: CEEBD0EC32C611ECA639A749C4F9AE02.roa (raw, json) Hash identifier: LoDQWDQDJcH6i4LKOG320IkqdNbR9CauDwoI6P4oGwM= Subject key identifier: 77:5B:F3:EE:FB:F3:10:5C:E9:5B:9D:78:EF:2B:1F:15:65:10:18:9D Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06CE Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:43 +0000 ROA not before: Mon 14 Oct 2024 22:52:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4049 IP address blocks: 202.124.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 14 22:52:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0bb-8052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:43:8e:6e:5c:62:de:94:a4:1f:1a:6d:41: 04:4a:18:31:f2:6c:1f:92:d8:31:2d:3a:18:74:93: 4f:06:d6:5f:7a:19:20:06:a0:45:7a:ef:71:73:68: e4:a2:a3:23:82:32:80:1a:98:5d:09:f0:44:62:78: 9d:3a:1e:d9:8c:18:a9:a2:80:4b:71:73:a1:28:9b: 49:e6:f3:07:ea:81:b7:a8:74:c8:b8:78:4d:7a:61: 42:e3:b2:93:17:a4:9e:2a:83:e5:64:15:dc:9a:b7: 5a:fb:73:d8:cb:a1:7f:4b:fc:f7:72:7c:d1:bb:73: a1:7a:e7:ab:a2:74:0d:3b:dd:d4:cf:bd:9d:9c:da: c4:46:05:3b:59:29:6f:10:23:8f:87:ff:1d:88:19: fd:66:fd:85:57:39:56:9a:69:78:70:1d:b6:47:6b: b6:c5:a3:8a:46:87:d9:e7:b1:76:6c:83:ec:aa:22: 25:5c:df:79:8b:43:c4:45:d3:e0:03:c1:5f:5a:2a: b5:39:10:10:c9:80:67:42:fe:41:83:2f:46:7a:e5: 05:ac:45:ff:26:52:aa:be:46:65:70:76:4b:09:40: 45:c5:63:21:b7:d4:7c:12:e0:f3:c2:b9:d9:43:1f: fa:bc:5b:a0:71:0f:af:b4:20:fd:a6:ab:ac:c9:24: 27:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5B:F3:EE:FB:F3:10:5C:E9:5B:9D:78:EF:2B:1F:15:65:10:18:9D X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.97.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:d2:f7:35:60:8c:51:c4:1d:96:d4:7c:ee:8f:a1:39:31:a2: 1d:9f:33:8d:c9:5e:f3:fd:41:6a:b9:ca:10:84:29:4c:ce:cb: ec:80:cc:4c:93:5f:e6:5b:2e:3e:03:8f:96:93:2e:15:8c:d0: 22:42:9e:09:8e:0e:6e:40:94:76:ad:44:aa:31:c8:d7:47:9d: 87:0f:59:48:cd:b1:5c:ea:06:3f:5f:d3:1c:c6:4d:00:a4:fa: 15:55:a0:dd:6d:70:56:c2:cc:b0:5b:dc:02:a7:eb:30:33:e3: b8:f8:e5:ee:74:1d:9b:64:ca:43:b0:08:87:b6:be:47:69:c1: 11:db:b2:f6:13:98:5b:f7:ca:8c:76:27:46:de:1a:81:10:69: 63:54:5b:f8:4e:54:50:22:5c:28:73:2f:24:29:4c:d4:67:45: a4:a0:0e:95:96:31:5b:69:ad:f8:59:04:08:96:e7:23:d0:fe: f3:50:07:f3:7b:8d:96:27:93:a7:4a:35:cd:82:40:55:0d:f8: fa:e5:79:8b:d9:98:82:78:3c:1a:d8:e3:ad:f5:35:26:60:98: a1:a8:c2:b8:46:7f:59:7a:74:98:f4:0e:26:16:92:2a:91:09: 29:7a:96:8f:bf:4f:66:c2:a1:ab:ed:fc:95:7c:93:70:db:f0: 8c:fb:bd:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiYi04MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsdDjm5cYt6UpB8abUEEShgx8mwfktgxLToYdJNPBtZfehkgBqBFeu9xc2jk oqMjgjKAGphdCfBEYnidOh7ZjBipooBLcXOhKJtJ5vMH6oG3qHTIuHhNemFC47KT F6SeKoPlZBXcmrda+3PYy6F/S/z3cnzRu3OheueronQNO93Uz72dnNrERgU7WSlv ECOPh/8diBn9Zv2FVzlWmml4cB22R2u2xaOKRofZ57F2bIPsqiIlXN95i0PERdPg A8FfWiq1ORAQyYBnQv5Bgy9GeuUFrEX/JlKqvkZlcHZLCUBFxWMht9R8EuDzwrnZ Qx/6vFugcQ+vtCD9pqusySQn2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHdb8+77 8xBc6VudeO8rHxVlEBidMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvQ0VFQkQwRUMz MkM2MTFFQ0E2MzlBNzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKfGEwDQYJKoZIhvcNAQELBQADggEBAE3S9zVgjFHEHZbU fO6PoTkxoh2fM43JXvP9QWq5yhCEKUzOy+yAzEyTX+ZbLj4Dj5aTLhWM0CJCngmO Dm5AlHatRKoxyNdHnYcPWUjNsVzqBj9f0xzGTQCk+hVVoN1tcFbCzLBb3AKn6zAz 47j45e50HZtkykOwCIe2vkdpwRHbsvYTmFv3yox2J0beGoEQaWNUW/hOVFAiXChz LyQpTNRnRaSgDpWWMVtprfhZBAiW5yPQ/vNQB/N7jZYnk6dKNc2CQFUN+PrleYvZ mIJ4PBrY4631NSZgmKGowrhGf1l6dJj0DiYWkiqRCSl6lo+/T2bCoavt/JV8k3Db 8Iz7vTA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:38 2024 by rpki-client on console-ams.rpki-client.org