$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa File: CEEBD0EC32C611ECA639A749C4F9AE02.roa (raw, json) Hash identifier: kZCI4nH8sDsuaHAosn3dF9Fe9+XtFL6j4KF2Neo7CJU= Subject key identifier: CB:AC:C5:67:C2:E3:6B:93:F4:E6:F2:25:8C:08:85:71:F6:85:5F:14 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 05B6 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:30 +0000 ROA not before: Wed 04 Oct 2023 23:41:30 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4049 IP address blocks: 202.124.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1462 (0x5b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 4 23:41:30 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df829-a82f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:bd:a2:19:86:3e:f2:1a:8e:3d:e3:fd:27: 61:18:e1:9b:69:37:42:e5:de:51:07:bb:a2:01:47: 5c:03:10:d4:bf:cf:00:88:20:73:dc:47:1f:b6:1a: c4:3c:8f:c5:6f:e4:f3:e7:65:0b:17:f6:68:7b:d9: 45:70:65:ea:71:39:52:9f:81:8d:17:3b:81:35:5f: 54:6b:56:27:db:ae:25:8d:16:3e:17:6a:16:55:df: 65:c3:3f:46:94:c5:84:c0:3c:db:0c:64:50:50:4d: 6c:25:eb:fa:b6:08:da:3d:bb:6c:08:25:1e:1f:c9: 1d:af:93:2a:95:36:d4:61:f5:fe:30:43:c3:2e:1a: f8:ae:8c:3d:dc:73:05:29:ce:38:1d:9e:fc:c2:0b: 39:41:4c:9f:79:56:89:22:c7:2a:93:0a:92:70:47: 43:5a:de:11:2f:fd:15:f9:a0:32:c0:81:49:0f:7a: 81:5d:5b:13:0a:fc:c9:f5:fb:da:2c:e2:8b:aa:63: 2a:b9:9d:80:88:80:0b:f9:35:6e:f6:66:59:c9:d3: 6e:9f:2f:37:fd:63:82:11:e6:33:61:98:1e:ef:3b: d2:37:9b:f8:06:6c:00:9f:15:77:6c:83:5a:08:c2: 7c:fa:b6:62:fb:22:8d:6b:3f:36:f1:33:95:56:85: e6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AC:C5:67:C2:E3:6B:93:F4:E6:F2:25:8C:08:85:71:F6:85:5F:14 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/CEEBD0EC32C611ECA639A749C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.97.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:52:58:48:ff:26:fd:be:36:0c:84:24:07:3f:20:6e:d6:27: 26:97:b2:73:88:1b:5f:6c:69:af:93:da:90:c5:01:01:02:ce: a6:91:2a:da:51:b3:3b:b0:36:8f:84:51:a3:4c:88:87:d1:27: 3e:8c:a9:1c:62:86:f2:17:33:c1:ea:01:34:3c:ce:db:1e:c6: 5b:76:66:7e:e4:df:f0:35:1d:32:17:f9:88:18:46:c1:7d:76: 0f:c8:43:a1:34:8f:11:55:60:84:7d:65:03:da:22:f7:7a:26: e3:c3:1a:86:a3:f5:3b:e3:7f:00:b0:96:bf:d9:75:57:66:bd: 0c:1b:22:c9:cc:38:b1:1e:2b:a7:c8:64:58:52:7e:1a:81:b2: e1:e9:a0:67:26:95:d1:a5:06:e1:af:d6:b7:50:89:2f:05:3c: e4:7a:89:b2:d3:c0:bd:5d:0f:93:ee:ea:04:27:aa:9a:a9:34: 09:96:11:78:3a:94:0c:cb:aa:9c:73:63:55:5c:0e:d1:a3:bd: 1c:9a:21:49:fc:ab:fd:57:f9:fd:c3:34:7b:3e:f4:85:44:40: 95:2f:24:4b:f8:7e:cf:7a:a5:b4:4e:23:c3:ce:8c:95:9a:23: f0:67:81:4b:9c:5b:eb:15:66:55:ec:0d:7e:2e:73:57:72:d3: 54:cb:13:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjMxMDA0MjM0MTMwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgyOS1hODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaW9ohmGPvIajj3j/SdhGOGbaTdC5d5RB7uiAUdcAxDUv88AiCBz3EcfthrE PI/Fb+Tz52ULF/Zoe9lFcGXqcTlSn4GNFzuBNV9Ua1Yn264ljRY+F2oWVd9lwz9G lMWEwDzbDGRQUE1sJev6tgjaPbtsCCUeH8kdr5MqlTbUYfX+MEPDLhr4row93HMF Kc44HZ78wgs5QUyfeVaJIscqkwqScEdDWt4RL/0V+aAywIFJD3qBXVsTCvzJ9fva LOKLqmMquZ2AiIAL+TVu9mZZydNuny83/WOCEeYzYZge7zvSN5v4BmwAnxV3bINa CMJ8+rZi+yKNaz828TOVVoXmMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMusxWfC 42uT9ObyJYwIhXH2hV8UMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvQ0VFQkQwRUMz MkM2MTFFQ0E2MzlBNzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKfGEwDQYJKoZIhvcNAQELBQADggEBAI9SWEj/Jv2+NgyE JAc/IG7WJyaXsnOIG19saa+T2pDFAQECzqaRKtpRszuwNo+EUaNMiIfRJz6MqRxi hvIXM8HqATQ8ztsexlt2Zn7k3/A1HTIX+YgYRsF9dg/IQ6E0jxFVYIR9ZQPaIvd6 JuPDGoaj9TvjfwCwlr/ZdVdmvQwbIsnMOLEeK6fIZFhSfhqBsuHpoGcmldGlBuGv 1rdQiS8FPOR6ibLTwL1dD5Pu6gQnqpqpNAmWEXg6lAzLqpxzY1VcDtGjvRyaIUn8 q/1X+f3DNHs+9IVEQJUvJEv4fs96pbROI8POjJWaI/BngUucW+sVZlXsDX4uc1dy 01TLE8E= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org