$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa File: A3601D70C2A511EBB2025B36C4F9AE02.roa (raw, json) Hash identifier: y0DwpoBfHHEL957f/ttZlyeIHwIEba7rVVTz2uU5AGY= Subject key identifier: E6:76:2C:55:B5:FF:DC:3F:5F:C7:74:96:BA:AC:95:7D:70:EF:A2:54 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34ED Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa Signing time: Mon 22 Jul 2024 14:40:40 +0000 ROA not before: Mon 22 Jul 2024 14:40:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55760 IP address blocks: 203.188.16.0/20 maxlen: 21 203.188.48.0/20 maxlen: 22 203.209.48.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Jul 22 14:40:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669e6f68-f871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:24:62:82:73:98:ae:b0:78:1a:bf:b9:6d: df:ab:88:b5:e1:26:ad:8b:e3:ed:ff:d4:6a:37:f3: 1f:5d:13:a3:31:63:38:7b:06:04:19:33:95:7a:53: a2:06:bd:e4:9e:8d:0a:7d:42:1a:f4:87:2b:bd:e8: a5:11:ac:f8:1d:dc:ae:25:12:f1:b1:dd:5b:b2:a0: d8:a8:41:25:b9:51:4a:4d:6f:a4:a3:0f:3e:7a:3a: e2:6f:48:13:85:8d:88:de:05:43:f0:ae:83:73:4a: 03:2c:d9:74:e5:82:c7:6c:00:6b:29:5b:66:20:00: 9b:98:ee:bb:fa:68:83:52:7f:0b:d2:f4:98:a4:31: ef:f2:8a:c8:b7:f9:71:15:48:60:d2:30:2a:38:3f: 08:31:8f:46:d5:f9:b5:31:1e:d9:e4:20:6e:3b:97: f6:53:82:18:7f:fd:fa:c1:11:3e:14:b1:19:f1:2d: 4c:54:f1:fb:81:28:46:37:04:9b:5c:d4:b1:76:da: 82:43:54:4f:b4:20:c7:cb:80:ba:f8:36:de:e5:e2: 93:53:49:0a:55:f7:d7:48:99:19:09:f2:a5:d7:0d: 6b:39:0c:2b:14:ae:73:e0:14:8d:4f:5e:42:d3:40: fc:13:32:2d:4f:51:df:98:61:4c:bf:bf:10:ed:12: cb:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:76:2C:55:B5:FF:DC:3F:5F:C7:74:96:BA:AC:95:7D:70:EF:A2:54 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.188.16.0/20 203.188.48.0/20 203.209.48.0/21 Signature Algorithm: sha256WithRSAEncryption ae:f9:50:61:a3:db:36:fe:be:24:22:17:bb:f3:61:20:75:59: d7:91:3b:46:20:90:7c:7b:8e:74:04:1c:60:13:47:b4:e2:ed: 39:54:b5:df:68:4c:e9:ee:89:4e:0f:67:31:4a:4a:73:15:45: 34:fc:98:62:83:51:b4:45:b0:86:15:15:e8:03:5f:03:0a:c6: 9b:af:9c:29:b3:9a:70:0e:48:1d:cc:d9:a9:6a:28:e4:1e:be: 5f:16:63:b5:df:dc:3a:9a:91:a6:b7:68:25:6d:d5:67:db:b4: 77:4b:f0:cf:62:6a:79:d1:55:17:43:43:ad:b5:5b:f8:60:60: d9:32:c1:2b:bd:82:63:3a:5c:4d:d6:ea:e1:81:7c:6f:8e:ff: 36:33:ac:62:a7:50:e5:36:d1:a8:91:7c:a4:24:f0:2a:9a:cf: a2:a3:a4:a0:d4:f1:a4:94:68:bb:3b:61:67:94:a4:90:3a:ce: 49:9b:57:2a:46:78:3d:c6:02:15:91:b6:2e:8e:f0:1a:54:bc: 93:c6:55:61:07:db:72:de:d3:27:fa:a4:3b:22:95:56:7d:ca: 8c:fa:e5:ea:82:1d:38:99:7d:81:96:90:5e:cd:25:25:69:64: 60:bf:da:dd:76:d1:71:42:4d:75:d5:31:93:a1:aa:e8:00:f3: a3:22:70:c6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllNmY2OC1mODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNMkYoJzmK6weBq/uW3fq4i14Sati+Pt/9RqN/MfXROjMWM4ewYEGTOVelOi Br3kno0KfUIa9IcrveilEaz4HdyuJRLxsd1bsqDYqEEluVFKTW+kow8+ejrib0gT hY2I3gVD8K6Dc0oDLNl05YLHbABrKVtmIACbmO67+miDUn8L0vSYpDHv8orIt/lx FUhg0jAqOD8IMY9G1fm1MR7Z5CBuO5f2U4IYf/36wRE+FLEZ8S1MVPH7gShGNwSb XNSxdtqCQ1RPtCDHy4C6+Dbe5eKTU0kKVffXSJkZCfKl1w1rOQwrFK5z4BSNT15C 00D8EzItT1HfmGFMv78Q7RLLawIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOZ2LFW1 /9w/X8d0lrqslX1w76JUMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvQTM2MDFENzBD MkE1MTFFQkIyMDI1QjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBATLvBADBATLvDADBAPL0TAwDQYJKoZIhvcNAQELBQADggEB AK75UGGj2zb+viQiF7vzYSB1WdeRO0YgkHx7jnQEHGATR7Ti7TlUtd9oTOnuiU4P ZzFKSnMVRTT8mGKDUbRFsIYVFegDXwMKxpuvnCmzmnAOSB3M2alqKOQevl8WY7Xf 3Dqakaa3aCVt1WfbtHdL8M9iannRVRdDQ621W/hgYNkywSu9gmM6XE3W6uGBfG+O /zYzrGKnUOU20aiRfKQk8Cqaz6KjpKDU8aSUaLs7YWeUpJA6zkmbVypGeD3GAhWR ti6O8BpUvJPGVWEH23Le0yf6pDsilVZ9yoz65eqCHTiZfYGWkF7NJSVpZGC/2t12 0XFCTXXVMZOhqugA86MicMY= -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:14 2025 by rpki-client