$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1827B7E0605411EFA8069323C4F9AE02.roa File: 1827B7E0605411EFA8069323C4F9AE02.roa (raw, json) Hash identifier: f3ZnVyGboZ3Akbin4yXhLknrh3afmJ+B8J3RZmmaopQ= Subject key identifier: 4E:CB:47:C2:2C:C6:4E:A5:B6:B7:45:12:72:74:EC:D2:57:8E:D1:ED Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 3504 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1827B7E0605411EFA8069323C4F9AE02.roa Signing time: Thu 22 Aug 2024 06:59:37 +0000 ROA not before: Thu 22 Aug 2024 06:59:37 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149796 IP address blocks: 203.209.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13572 (0x3504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Aug 22 06:59:37 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c6e1d9-3dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:fb:65:07:e4:fe:02:bc:8f:f6:41:0b:e3: 34:cf:7f:5a:f0:53:94:8d:f4:7c:81:99:ce:ed:85: 67:66:6d:0f:3a:c6:dc:7d:03:69:0b:27:cf:6f:68: 37:37:52:15:94:ca:99:87:69:e3:2a:28:bd:e9:44: 4a:ed:f3:a5:4d:4f:01:3c:4d:7e:34:6c:29:e9:58: d1:17:39:dc:26:cc:90:00:65:23:1d:8b:c9:18:47: 36:47:13:fd:3d:b2:c8:5f:69:73:e0:a0:84:75:39: 04:fa:ca:69:cc:dd:f2:b8:d8:27:68:32:0f:ae:6a: 16:18:6d:00:81:07:2f:29:78:45:f1:fa:b6:75:5a: 38:2c:da:68:2c:f9:b5:7b:71:88:9c:7a:07:e9:36: 43:9e:a1:f3:cb:22:6c:df:32:1e:0a:83:29:1f:3e: 70:ad:2b:44:f6:59:59:4a:a3:a3:d4:9c:83:f4:01: b6:78:fc:5b:c0:55:75:db:5c:27:1a:34:86:a0:d5: 5a:9c:52:86:5a:b0:68:d4:26:1c:b5:fc:b5:a8:e8: 72:10:32:07:19:96:0e:b9:aa:2c:99:99:46:07:ce: 6d:a9:4e:22:32:f2:1b:5d:f3:6b:7c:6a:08:03:8e: 37:73:03:85:50:e1:a2:bf:a0:4a:ca:64:1f:0a:59: 43:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CB:47:C2:2C:C6:4E:A5:B6:B7:45:12:72:74:EC:D2:57:8E:D1:ED X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1827B7E0605411EFA8069323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.209.84.0/24 Signature Algorithm: sha256WithRSAEncryption 10:70:d3:7d:98:24:55:0a:bb:b9:72:69:6d:64:e4:4b:69:3d: 36:a4:ec:b2:fe:b8:1e:40:16:20:9c:a0:42:aa:46:35:fe:d4: 21:44:c1:3b:9e:24:3d:ec:d4:a5:b8:24:e4:be:7a:0f:e9:41: f0:c7:8c:6c:bd:55:49:18:75:5a:47:b9:a8:da:2d:d0:58:42: 4a:76:12:6f:0d:97:a7:89:14:ae:c0:fc:7b:b2:9d:eb:8a:b9: 33:07:27:ad:f7:b3:d2:7b:83:98:e2:49:b3:bc:ee:2c:a0:71: 8a:68:65:74:72:47:16:76:7f:0b:e3:df:36:67:64:93:73:b5: a6:5b:41:5b:99:3a:a1:c1:8b:21:74:45:33:a7:18:a9:03:f9: 42:62:09:fa:9a:45:06:53:4b:f0:f6:fc:2a:c6:3a:42:45:ad: a1:48:48:39:a6:e2:f4:e5:e3:6f:dc:35:5d:74:df:49:00:a0: 9d:f2:44:cd:48:77:a5:b2:b8:c3:d2:20:f1:b4:2b:f8:17:58: 0c:d9:c6:61:19:23:a5:d7:7d:c4:27:13:36:2f:50:c1:ff:c3: 7f:7a:b6:8b:dc:a7:07:df:e3:a4:29:ab:0f:61:c3:23:65:f3: 3b:f3:67:31:10:76:16:b6:e8:23:35:c0:87:9d:95:28:3d:cd: d7:ee:c2:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwODIyMDY1OTM3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM2ZTFkOS0zZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVT7ZQfk/gK8j/ZBC+M0z39a8FOUjfR8gZnO7YVnZm0POsbcfQNpCyfPb2g3 N1IVlMqZh2njKii96URK7fOlTU8BPE1+NGwp6VjRFzncJsyQAGUjHYvJGEc2RxP9 PbLIX2lz4KCEdTkE+sppzN3yuNgnaDIPrmoWGG0AgQcvKXhF8fq2dVo4LNpoLPm1 e3GInHoH6TZDnqHzyyJs3zIeCoMpHz5wrStE9llZSqOj1JyD9AG2ePxbwFV121wn GjSGoNVanFKGWrBo1CYctfy1qOhyEDIHGZYOuaosmZlGB85tqU4iMvIbXfNrfGoI A443cwOFUOGiv6BKymQfCllD6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE7LR8Is xk6ltrdFEnJ07NJXjtHtMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvMTgyN0I3RTA2 MDU0MTFFRkE4MDY5MzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0VQwDQYJKoZIhvcNAQELBQADggEBABBw032YJFUKu7ly aW1k5EtpPTak7LL+uB5AFiCcoEKqRjX+1CFEwTueJD3s1KW4JOS+eg/pQfDHjGy9 VUkYdVpHuajaLdBYQkp2Em8Nl6eJFK7A/HuyneuKuTMHJ633s9J7g5jiSbO87iyg cYpoZXRyRxZ2fwvj3zZnZJNztaZbQVuZOqHBiyF0RTOnGKkD+UJiCfqaRQZTS/D2 /CrGOkJFraFISDmm4vTl42/cNV1030kAoJ3yRM1Id6WyuMPSIPG0K/gXWAzZxmEZ I6XXfcQnEzYvUMH/w396tovcpwff46Qpqw9hwyNl8zvzZzEQdha26CM1wIedlSg9 zdfuwvo= -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:48 2025 by rpki-client