$ rpki-client -vvf rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa File: 9AEE04EAA30C11EFB8323D14C4F9AE02.roa (raw, json) Hash identifier: CPi02y7OafcXkgb9VVseAE7oZRDlXJZ3/Z4BzqOI2qs= Subject key identifier: 1D:71:F2:46:06:91:06:7B:09:6B:4D:47:3B:54:98:37:55:1B:6B:1B Certificate issuer: /CN=A916F7BE/serialNumber=0F9AA8DE53F085EE865A1E3DD2A2344E2130AF14 Certificate serial: 08 Authority key identifier: 0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa Signing time: Fri 15 Nov 2024 04:46:41 +0000 ROA not before: Fri 15 Nov 2024 04:46:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 8075 IP address blocks: 202.91.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F7BE/serialNumber=0F9AA8DE53F085EE865A1E3DD2A2344E2130AF14 Validity Not Before: Nov 15 04:46:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6736d230-0dc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6b:fe:c6:66:c1:bc:58:92:82:30:cd:84:3b: c6:6b:6e:d7:94:f0:26:21:5c:e0:b3:6f:36:e3:74: 76:6e:22:d9:76:55:9c:5e:7e:e0:c9:77:0d:df:3c: 32:b7:a3:a4:f5:04:77:99:d1:ab:3b:0d:e9:13:ce: 14:fe:ec:ec:eb:59:73:d9:d0:bc:61:d7:f5:7a:95: 82:e9:14:91:e9:ee:e3:db:58:4a:28:a1:61:f6:a1: 70:f3:94:c7:4f:bc:d6:7e:4d:86:fc:59:a9:3d:f1: 1f:35:c1:2e:50:c5:37:09:56:2d:32:ce:f8:9c:8f: 34:24:35:84:93:8c:f8:15:2e:d4:dd:11:78:c3:c1: 89:47:d1:40:f7:77:49:2e:cb:cd:7e:5d:b2:f8:2e: 00:36:98:a2:25:0e:f7:b8:36:37:e9:06:6a:1f:81: d0:87:46:36:e3:17:9a:f2:ca:05:2c:33:00:f7:37: bc:09:20:45:24:25:b1:55:15:db:90:ad:5d:9c:3f: 53:3d:c0:f1:75:44:ac:ae:4e:f0:5a:0e:49:be:76: 42:02:50:2e:fa:92:d4:4d:95:ba:dd:ac:bb:7b:8a: 1b:17:05:05:78:59:a1:98:b2:12:d7:e8:1a:bc:19: 2b:5e:3f:79:b2:3d:48:37:dc:c4:69:ea:04:35:65: 1a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:71:F2:46:06:91:06:7B:09:6B:4D:47:3B:54:98:37:55:1B:6B:1B X509v3 Authority Key Identifier: keyid:0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.91.132.0/22 Signature Algorithm: sha256WithRSAEncryption 73:be:3d:02:2e:04:da:a8:89:61:06:1c:dc:53:f9:f7:1b:84: 47:f3:8c:38:c6:2d:80:e1:40:42:54:d5:b0:74:de:09:13:63: 0a:55:45:71:57:a0:b5:d0:a1:2d:e6:08:65:f9:a1:ce:fc:fd: 73:a1:df:7f:a8:7c:18:a5:10:49:89:68:92:d4:7b:65:f2:17: 1b:c8:a9:ac:7d:ee:51:0e:d6:41:c3:6f:d9:2f:96:7b:3c:65: c2:33:cc:2e:f2:69:d2:26:a1:bb:84:d5:3b:57:a6:f7:08:f8: ee:9c:a4:26:e4:51:43:61:25:ff:5c:60:11:e0:93:aa:cb:39: 60:14:34:09:ed:fb:71:1f:9a:38:6c:7a:3d:f3:0d:5f:a7:55: 3d:fc:90:ac:b6:4b:b0:36:b1:3d:8b:eb:6b:00:e6:12:c7:aa: 3a:1e:8f:26:86:fa:5c:fb:cc:da:c5:b9:cd:59:71:9a:a2:09: 70:a4:77:b9:87:04:91:84:45:89:7b:ba:7c:70:50:df:11:82: 93:7b:70:c3:15:fa:33:0a:94:16:50:93:c3:19:5a:83:8b:6b: f0:37:b5:23:af:74:aa:47:f9:52:e1:cb:f3:55:04:95:57:15: d8:02:ae:27:80:8a:3d:83:a6:d8:ca:8c:8e:45:6b:de:ba:5c: 0c:8f:ee:11 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RjdCRTExMC8GA1UEBRMoMEY5QUE4REU1M0YwODVFRTg2NUExRTNERDJBMjM0NEUy MTMwQUYxNDAeFw0yNDExMTUwNDQ2NDFaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzZkMjMwLTBkYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCka/7GZsG8WJKCMM2EO8ZrbteU8CYhXOCzbzbjdHZuItl2VZxefuDJdw3fPDK3 o6T1BHeZ0as7DekTzhT+7OzrWXPZ0Lxh1/V6lYLpFJHp7uPbWEoooWH2oXDzlMdP vNZ+TYb8Wak98R81wS5QxTcJVi0yzvicjzQkNYSTjPgVLtTdEXjDwYlH0UD3d0ku y81+XbL4LgA2mKIlDve4NjfpBmofgdCHRjbjF5ryygUsMwD3N7wJIEUkJbFVFduQ rV2cP1M9wPF1RKyuTvBaDkm+dkICUC76ktRNlbrdrLt7ihsXBQV4WaGYshLX6Bq8 GSteP3myPUg33MRp6gQ1ZRqrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHXHyRgaR BnsJa01HO1SYN1UbaxswHwYDVR0jBBgwFoAUD5qo3lPwhe6GWh490qI0TiEwrxQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGN0JFLzA5Q0UzMjY0OUNG RTExRUY4RUVDOTA0QUM0RjlBRTAyL0Q1cW8zbFB3aGU2R1doNDkwcUkwVGlFd3J4 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDVxbzNsUHdoZTZHV2g0OTBxSTBUaUV3cnhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjdCRS8wOUNFMzI2NDlDRkUxMUVGOEVFQzkwNEFDNEY5QUUwMi85QUVFMDRFQUEz MEMxMUVGQjgzMjNEMTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAspbhDANBgkqhkiG9w0BAQsFAAOCAQEAc749Ai4E2qiJYQYc 3FP59xuER/OMOMYtgOFAQlTVsHTeCRNjClVFcVegtdChLeYIZfmhzvz9c6Hff6h8 GKUQSYloktR7ZfIXG8iprH3uUQ7WQcNv2S+WezxlwjPMLvJp0iahu4TVO1em9wj4 7pykJuRRQ2El/1xgEeCTqss5YBQ0Ce37cR+aOGx6PfMNX6dVPfyQrLZLsDaxPYvr awDmEseqOh6PJob6XPvM2sW5zVlxmqIJcKR3uYcEkYRFiXu6fHBQ3xGCk3twwxX6 MwqUFlCTwxlag4tr8De1I690qkf5UuHL81UElVcV2AKuJ4CKPYOm2MqMjkVr3rpc DI/uEQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org