$ rpki-client -vvf rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/433F089AE49A11EB85874B74C4F9AE02.roa File: 433F089AE49A11EB85874B74C4F9AE02.roa (raw, json) Hash identifier: 20iP3pEYmx1LQftxITgL2F8BGz/7YfseYms8iV/1g3Q= Subject key identifier: E8:35:01:7F:D0:DD:E7:C7:B9:2B:4D:51:6E:BB:18:9F:99:01:E3:5C Certificate issuer: /CN=A91415FB/serialNumber=37D3374985F3BAA82D0BE04C6D87A3A035E20DEA Certificate serial: 1882 Authority key identifier: 37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/433F089AE49A11EB85874B74C4F9AE02.roa Signing time: Wed 28 Feb 2024 16:54:52 +0000 ROA not before: Wed 28 Feb 2024 16:54:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 131607 IP address blocks: 202.5.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.crl rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6274 (0x1882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415FB/serialNumber=37D3374985F3BAA82D0BE04C6D87A3A035E20DEA Validity Not Before: Feb 28 16:54:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65df655b-b726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c5:78:89:cc:5c:ed:c2:0c:0d:c7:61:d0:92: 5a:f7:dc:7c:0c:00:2b:c0:13:98:35:5d:eb:9f:73: db:62:a3:52:fb:17:7b:23:75:f5:df:70:20:d6:8d: 90:76:b1:47:78:ca:52:17:b6:9b:b1:66:0b:12:ce: a9:96:a8:f9:e2:59:99:f0:db:9a:48:e2:c2:85:95: c1:3b:76:5b:c2:ad:b9:63:6b:bb:72:d8:d1:81:a9: 98:67:67:9a:4f:11:11:fd:de:68:16:db:75:31:7e: 0d:51:f7:e2:5d:73:71:a0:15:32:fc:65:bc:34:4e: 18:59:5d:6c:88:a9:2f:d3:74:e8:41:54:e6:38:f6: e1:f5:8a:67:75:b5:84:1e:0d:90:94:8c:3c:95:10: 6a:e4:67:8f:74:8f:2b:e3:b2:cc:ae:4a:97:e0:5d: b5:7f:da:31:cc:31:21:2c:c6:9b:41:c0:a8:d2:e8: a3:e9:0f:88:68:b0:ad:99:d4:6a:ad:5e:b1:43:ad: cd:7e:8d:a5:01:2b:cd:7e:d8:8e:43:ca:ab:2f:49: 31:b8:b6:a7:f5:61:e5:8a:79:3d:eb:eb:d7:96:ad: c5:27:67:80:02:00:7f:71:3e:05:18:dc:80:85:e7: cc:27:07:12:a9:0c:67:da:a8:e3:30:e6:87:2f:ef: 04:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:35:01:7F:D0:DD:E7:C7:B9:2B:4D:51:6E:BB:18:9F:99:01:E3:5C X509v3 Authority Key Identifier: keyid:37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/433F089AE49A11EB85874B74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.5.224.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:dd:a7:d2:1d:3d:7b:4a:29:a6:11:67:7e:9f:bb:aa:bc:b3: cc:05:49:88:af:8a:66:fd:42:02:0c:05:53:10:21:4a:2d:de: 8f:64:e6:1b:6c:60:ac:02:d0:ed:54:ca:cc:32:16:f2:78:56: 05:b9:2f:d7:9e:7a:64:bd:ef:4e:4b:8c:5b:b1:6b:a4:06:53: bb:4f:fd:33:91:66:3a:52:b4:99:e1:2f:25:39:a2:6f:09:bc: 15:23:ba:8e:80:66:26:12:26:b3:f2:ea:0e:42:e4:2d:53:03: a0:62:59:e0:57:52:b7:21:6a:1e:41:3f:98:aa:88:0a:b1:3d: 4c:96:84:42:59:eb:07:de:c7:24:78:ab:35:8f:88:11:dc:15: b4:88:45:77:28:a8:2d:82:dc:44:f2:e2:3a:ba:5f:17:58:85: 5d:ca:bc:2e:50:24:5d:c0:22:58:67:f8:d5:0c:6e:74:62:7a: b4:d7:a7:28:9a:b1:f6:e3:05:32:4d:cf:77:97:bf:3f:17:e8: c9:1c:55:5a:db:94:99:43:6e:d0:69:b3:95:7f:49:40:58:f9: 9b:6e:56:55:c1:82:91:3d:23:5f:ca:40:93:15:72:73:19:dd: 66:ec:10:6a:1f:4d:fb:30:26:e9:3b:1b:fe:64:74:86:96:d1: ec:c7:eb:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1RkIxMTAvBgNVBAUTKDM3RDMzNzQ5ODVGM0JBQTgyRDBCRTA0QzZEODdBM0Ew MzVFMjBERUEwHhcNMjQwMjI4MTY1NDUxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNjU1Yi1iNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cV4icxc7cIMDcdh0JJa99x8DAArwBOYNV3rn3PbYqNS+xd7I3X133Ag1o2Q drFHeMpSF7absWYLEs6plqj54lmZ8NuaSOLChZXBO3Zbwq25Y2u7ctjRgamYZ2ea TxER/d5oFtt1MX4NUffiXXNxoBUy/GW8NE4YWV1siKkv03ToQVTmOPbh9YpndbWE Hg2QlIw8lRBq5GePdI8r47LMrkqX4F21f9oxzDEhLMabQcCo0uij6Q+IaLCtmdRq rV6xQ63Nfo2lASvNftiOQ8qrL0kxuLan9WHlink96+vXlq3FJ2eAAgB/cT4FGNyA hefMJwcSqQxn2qjjMOaHL+8EPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOg1AX/Q 3efHuStNUW67GJ+ZAeNcMB8GA1UdIwQYMBaAFDfTN0mF87qoLQvgTG2Ho6A14g3q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTVGQi83RjQ4ODk2ODcz NUQxMUU3ODhEQTRGMTRDNEY5QUUwMi9OOU0zU1lYenVxZ3RDLUJNYlllam9EWGlE ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL045TTNTWVh6dXFndEMtQk1iWWVqb0RYaURlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE1RkIvN0Y0ODg5Njg3MzVEMTFFNzg4REE0RjE0QzRGOUFFMDIvNDMzRjA4OUFF NDlBMTFFQjg1ODc0Qjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKBeAwDQYJKoZIhvcNAQELBQADggEBAA/dp9IdPXtKKaYR Z36fu6q8s8wFSYivimb9QgIMBVMQIUot3o9k5htsYKwC0O1UyswyFvJ4VgW5L9ee emS9705LjFuxa6QGU7tP/TORZjpStJnhLyU5om8JvBUjuo6AZiYSJrPy6g5C5C1T A6BiWeBXUrchah5BP5iqiAqxPUyWhEJZ6wfexyR4qzWPiBHcFbSIRXcoqC2C3ETy 4jq6XxdYhV3KvC5QJF3AIlhn+NUMbnRierTXpyiasfbjBTJNz3eXvz8X6MkcVVrb lJlDbtBps5V/SUBY+ZtuVlXBgpE9I1/KQJMVcnMZ3WbsEGofTfswJuk7G/5kdIaW 0ezH6w0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org