$ rpki-client -vvf rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa File: 2D58477CEC7A11EEBAE5E319C4F9AE02.roa (raw, json) Hash identifier: JwlADxU15y3Ux/pBiI3TitQwzPcxeHG3v1ZhXPEpRug= Subject key identifier: 98:AC:1E:95:F3:A2:16:4B:E5:C0:81:E6:7F:33:6F:AA:1A:30:25:9B Certificate issuer: /CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Certificate serial: 342C Authority key identifier: B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa Signing time: Wed 06 Nov 2024 15:00:46 +0000 ROA not before: Wed 06 Nov 2024 15:00:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 209242 IP address blocks: 202.37.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13356 (0x342c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Validity Not Before: Nov 6 15:00:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672b849d-4300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:93:b3:38:4c:03:d1:89:d1:12:88:f0:9b:fd: b4:13:74:5e:d0:ab:27:fc:ae:89:22:27:12:6e:a5: 40:ca:ee:96:01:55:9f:08:bf:38:75:2b:15:ac:73: 56:27:31:9d:cc:6c:42:ee:f6:cd:01:c7:28:2e:1e: 5e:e4:1a:bd:28:64:0b:dd:94:12:56:11:df:03:46: e1:ba:f5:82:b6:a1:1e:08:8c:e2:7b:01:ef:20:f1: 94:55:b3:71:b5:87:ac:af:23:01:3e:0b:73:b9:a6: d4:2b:0e:7b:94:fe:a3:15:a8:cd:47:c2:6d:34:5a: b3:ee:54:2a:1b:00:eb:fb:3a:97:d7:fd:4b:cb:1b: c8:74:93:35:3d:08:c2:be:b5:a1:ff:e3:f6:39:fa: bc:ed:ba:aa:f4:cf:80:18:61:e0:b7:90:99:c4:b5: 75:84:68:f1:74:37:39:46:49:73:a7:df:77:cd:34: 1b:e6:bb:cc:bf:f1:eb:fa:25:da:1a:e0:78:3a:bd: 5e:dd:06:63:26:d6:aa:93:fd:5d:58:f7:c9:7e:93: 8a:bf:48:20:07:70:d9:b0:fd:09:8a:25:6d:23:c5: 9c:a6:76:fc:92:92:26:40:49:a6:b9:dc:de:56:ca: 82:4a:a3:4f:6a:ff:85:50:07:0e:ce:3f:56:94:0e: 3f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AC:1E:95:F3:A2:16:4B:E5:C0:81:E6:7F:33:6F:AA:1A:30:25:9B X509v3 Authority Key Identifier: keyid:B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.197.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:a8:79:39:f6:fa:3c:da:8f:f2:8a:86:a5:14:ff:3b:0d:f0: 33:37:c3:ca:99:9d:3c:70:43:87:8a:58:b5:a7:bf:07:5a:ed: bf:92:9e:3c:1d:bd:3e:19:fb:a6:80:2b:4f:54:db:0e:6e:ca: 3a:24:47:70:e2:af:a8:17:99:ee:80:fc:ce:d0:64:3f:d9:f6: 15:e4:22:89:c6:0e:f8:37:ff:c7:9f:de:35:2f:a8:ce:ad:97: a6:ca:c7:18:64:5b:41:ce:30:f1:9b:99:b7:ef:42:de:0c:06: fe:ce:59:b3:88:f3:ad:24:e4:dc:0c:d7:7d:4d:3b:c9:35:b1: eb:47:2e:f9:fd:10:da:d2:3b:01:dd:c5:41:3d:f0:92:28:47: be:b2:a9:9a:a1:50:26:8c:66:1f:b7:0c:a8:c5:61:23:59:69: 65:e3:52:57:20:e4:16:d1:7c:f7:6a:5e:25:31:18:5e:2a:6d: 27:88:30:38:72:f8:82:00:8a:50:cb:4a:fa:fd:0c:be:54:2a: 75:f2:68:5a:8c:cc:f4:23:57:75:03:3f:6d:98:ab:67:20:5f: c7:d9:68:66:c3:fd:0c:b4:4c:6c:eb:2c:16:d0:0e:ef:1b:57: 02:bf:6d:4e:e3:2e:d1:21:85:83:e0:e6:28:3a:1d:1a:af:d2: 5f:be:e1:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzRDIxMTAvBgNVBAUTKEIxQUNGQjg1MTQ5Qjg2QTExMDE1RDYwMTgxMEUzMTRG Njk0OEMxQ0YwHhcNMjQxMTA2MTUwMDQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiODQ5ZC00MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5OzOEwD0YnREojwm/20E3Re0Ksn/K6JIicSbqVAyu6WAVWfCL84dSsVrHNW JzGdzGxC7vbNAccoLh5e5Bq9KGQL3ZQSVhHfA0bhuvWCtqEeCIziewHvIPGUVbNx tYesryMBPgtzuabUKw57lP6jFajNR8JtNFqz7lQqGwDr+zqX1/1LyxvIdJM1PQjC vrWh/+P2Ofq87bqq9M+AGGHgt5CZxLV1hGjxdDc5Rklzp993zTQb5rvMv/Hr+iXa GuB4Or1e3QZjJtaqk/1dWPfJfpOKv0ggB3DZsP0JiiVtI8Wcpnb8kpImQEmmudze VsqCSqNPav+FUAcOzj9WlA4/YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJisHpXz ohZL5cCB5n8zb6oaMCWbMB8GA1UdIwQYMBaAFLGs+4UUm4ahEBXWAYEOMU9pSMHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODNEMi8xOUM1NUY2QzFE OEIxMUUyOTBDNTc4RTUwOEIwMkNEMi9zYXo3aFJTYmhxRVFGZFlCZ1E0eFQybEl3 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhejdoUlNiaHFFUUZkWUJnUTR4VDJsSXdjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgzRDIvMTlDNTVGNkMxRDhCMTFFMjkwQzU3OEU1MDhCMDJDRDIvMkQ1ODQ3N0NF QzdBMTFFRUJBRTVFMzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJcUwDQYJKoZIhvcNAQELBQADggEBAG6oeTn2+jzaj/KK hqUU/zsN8DM3w8qZnTxwQ4eKWLWnvwda7b+SnjwdvT4Z+6aAK09U2w5uyjokR3Di r6gXme6A/M7QZD/Z9hXkIonGDvg3/8ef3jUvqM6tl6bKxxhkW0HOMPGbmbfvQt4M Bv7OWbOI860k5NwM131NO8k1setHLvn9ENrSOwHdxUE98JIoR76yqZqhUCaMZh+3 DKjFYSNZaWXjUlcg5BbRfPdqXiUxGF4qbSeIMDhy+IIAilDLSvr9DL5UKnXyaFqM zPQjV3UDP22Yq2cgX8fZaGbD/Qy0TGzrLBbQDu8bVwK/bU7jLtEhhYPg5ig6HRqv 0l++4Zw= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:09 2024 by rpki-client on console-ams.rpki-client.org