$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa File: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (raw, json) Hash identifier: EyyP05+w3I6zJfg1bK7YEVwaO6aHmtM/Fo2uP4RPYlc= Subject key identifier: E6:A4:77:18:AE:22:71:A0:A6:84:F1:82:F1:09:59:07:DA:C4:B1:D4 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1C65 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa Signing time: Mon 30 Sep 2024 16:24:19 +0000 ROA not before: Mon 30 Sep 2024 16:24:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17557 IP address blocks: 113.203.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7269 (0x1c65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 30 16:24:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fad0b3-1dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7d:65:5d:b8:51:18:ec:84:b2:51:3e:ba:4d: 63:80:55:bb:54:bb:a9:c8:16:bb:fa:69:a6:04:cd: 57:d8:dd:7d:48:19:f3:ee:51:72:8d:2b:fe:2f:44: 85:e6:28:74:97:b7:7e:cb:b9:c4:a3:2a:88:25:cd: 28:d9:f2:71:29:39:59:97:12:a8:78:6e:49:4f:35: 2b:b8:24:6c:18:79:dc:af:90:4d:17:e3:b4:6c:27: 87:75:38:83:3c:04:cb:dd:61:6c:df:11:75:ff:0f: f8:36:84:2d:26:fc:5f:e9:ab:a5:88:1c:d5:61:bb: 21:d1:65:60:d3:ae:9a:d9:58:63:14:1d:c4:6b:93: 08:c3:06:66:e7:50:c3:e0:6e:7b:c2:cd:c0:3c:91: 56:8d:18:ab:27:08:6d:0f:30:8c:bf:58:3a:59:65: 3b:21:6c:b1:67:5a:6b:d1:97:0c:58:bb:24:f0:ea: 82:3e:5a:2c:dd:58:f3:e8:ea:ef:ed:6b:22:24:9f: 33:88:91:76:c2:eb:a8:33:29:3f:1e:dd:7b:9e:83: 74:d8:52:5e:48:29:97:ab:60:7f:38:cf:7d:d2:58: 49:f3:df:dc:ed:7f:b3:4c:61:64:92:97:7b:de:87: 12:aa:5b:38:f2:97:13:df:e9:4f:3a:91:b7:0d:c1: ed:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A4:77:18:AE:22:71:A0:A6:84:F1:82:F1:09:59:07:DA:C4:B1:D4 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.206.0/24 Signature Algorithm: sha256WithRSAEncryption 44:8d:c2:16:d7:26:e8:e5:f1:2d:cc:bb:bb:89:b8:49:28:a6: 50:42:b1:2f:87:ab:d0:69:66:51:63:0e:11:30:2e:26:d7:d4: 06:84:53:d5:86:50:fe:4f:db:0c:79:a1:8f:65:e7:55:b4:03: 28:6d:65:20:2e:54:44:88:f2:3c:fe:40:f0:dc:00:b4:eb:de: 44:0e:2c:84:06:97:f0:9d:20:64:fe:45:a7:b3:61:b1:3b:cb: 89:fc:32:1f:86:73:49:b0:d4:3a:59:d3:65:1a:bf:7e:42:ae: 0d:27:69:4f:c8:d6:6f:f4:bb:04:be:1e:21:46:4c:77:b2:17: 2f:78:83:0e:bf:fe:1e:e9:91:6a:b0:87:d2:98:5f:93:fd:b8: b0:7f:c2:f1:b4:01:f0:a2:41:bd:0c:05:b6:8e:1f:c4:bc:5f: 5e:9c:16:41:e5:7c:64:15:3d:1b:f0:db:ba:16:af:ad:f4:c9: bb:98:2b:2f:9c:ca:8f:20:a9:8a:66:54:fe:9d:9c:56:34:ad: b9:59:80:81:15:92:c7:e0:a1:a4:54:ed:0c:81:db:95:d0:8e: c9:b7:34:36:1e:34:ab:b8:cd:c9:b1:8e:21:51:18:5b:9c:72: 1f:f2:c3:c8:3d:bc:c9:37:73:79:f2:87:41:f1:e1:90:5a:ff: 58:53:42:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjQwOTMwMTYyNDE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZDBiMy0xZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH1lXbhRGOyEslE+uk1jgFW7VLupyBa7+mmmBM1X2N19SBnz7lFyjSv+L0SF 5ih0l7d+y7nEoyqIJc0o2fJxKTlZlxKoeG5JTzUruCRsGHncr5BNF+O0bCeHdTiD PATL3WFs3xF1/w/4NoQtJvxf6auliBzVYbsh0WVg066a2VhjFB3Ea5MIwwZm51DD 4G57ws3APJFWjRirJwhtDzCMv1g6WWU7IWyxZ1pr0ZcMWLsk8OqCPlos3Vjz6Orv 7WsiJJ8ziJF2wuuoMyk/Ht17noN02FJeSCmXq2B/OM990lhJ89/c7X+zTGFkkpd7 3ocSqls48pcT3+lPOpG3DcHtpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOakdxiu InGgpoTxgvEJWQfaxLHUMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvMkY5QTdBMTY0 OEZDMTFFQkJBRTA5OTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABxy84wDQYJKoZIhvcNAQELBQADggEBAESNwhbXJujl8S3M u7uJuEkoplBCsS+Hq9BpZlFjDhEwLibX1AaEU9WGUP5P2wx5oY9l51W0AyhtZSAu VESI8jz+QPDcALTr3kQOLIQGl/CdIGT+RaezYbE7y4n8Mh+Gc0mw1DpZ02Uav35C rg0naU/I1m/0uwS+HiFGTHeyFy94gw6//h7pkWqwh9KYX5P9uLB/wvG0AfCiQb0M BbaOH8S8X16cFkHlfGQVPRvw27oWr630ybuYKy+cyo8gqYpmVP6dnFY0rblZgIEV ksfgoaRU7QyB25XQjsm3NDYeNKu4zcmxjiFRGFucch/yw8g9vMk3c3nyh0Hx4ZBa /1hTQl4= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:00 2024 by rpki-client on console-fra.rpki-client.org