$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa File: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (raw, json) Hash identifier: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg= Subject key identifier: EE:AB:21:54:BB:C6:AB:45:97:06:55:48:FC:0F:C1:60:4F:A2:31:2A Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 07A1 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa Signing time: Tue 10 Sep 2024 05:07:23 +0000 ROA not before: Tue 10 Sep 2024 05:07:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133159 IP address blocks: 203.56.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Sep 10 05:07:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66dfd40b-8976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:65:e3:23:71:cd:47:ae:ca:8a:e2:b3:40:13: ee:b2:d2:23:c6:3d:da:92:65:f6:71:d8:e8:38:ca: 32:74:34:13:f0:fa:e3:9e:20:a8:6c:7e:9c:93:23: fd:7c:44:a3:c9:84:7c:e7:9b:82:05:ad:0b:95:dc: bb:d1:fc:79:04:20:e8:70:d0:05:33:92:e5:f5:bd: ed:aa:62:8e:66:02:6a:f5:ba:04:5e:d6:0f:c4:46: 8b:27:d5:c2:46:3a:ca:9f:97:90:31:ad:d9:5a:cd: a3:d6:0a:50:6d:f3:60:c1:71:5a:83:d8:0e:dd:ef: ff:12:02:a3:e8:61:45:ba:9c:c9:bc:da:9b:d4:bc: e9:97:b1:e3:57:2b:f0:ba:14:0f:ea:65:cd:c6:43: 0e:56:40:01:54:76:a2:ea:d5:9c:68:6c:b2:a3:ea: 19:6d:d4:12:1c:0f:6a:ee:bc:94:84:01:f6:ce:5c: c7:87:fd:ef:2d:44:7a:ed:9b:91:ae:d2:7c:78:7c: d0:01:49:5b:e0:12:86:e3:ee:cf:9b:8e:89:7a:6f: b5:8e:6b:4e:30:c5:a6:c0:15:54:ed:db:50:46:bd: 88:6a:81:d6:d9:ac:c3:ee:27:a4:96:61:fe:bf:18: d3:9e:3a:4c:f2:24:66:8c:82:35:d2:f5:07:0c:66: 80:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AB:21:54:BB:C6:AB:45:97:06:55:48:FC:0F:C1:60:4F:A2:31:2A X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.35.0/24 Signature Algorithm: sha256WithRSAEncryption 93:92:4f:28:9f:da:04:43:b0:4e:12:40:87:a6:23:7e:03:3f: 76:dd:d2:ce:e7:44:2c:cd:63:b6:66:51:86:91:16:7a:d5:21: 5b:d5:6a:4f:80:4b:12:e6:c1:f3:df:7f:d4:c6:27:3e:ca:19: 4d:9b:e4:af:ea:be:e4:00:79:66:c0:cb:cc:6b:e0:c9:80:5c: 66:5b:5a:1d:4d:bd:fc:ab:2e:44:8b:51:c8:d5:2c:63:8a:49: 41:1b:68:12:bb:af:c7:ed:3e:2e:09:3d:11:a0:c8:b2:36:fa: 2e:77:72:8d:2b:62:43:9e:af:eb:33:42:24:dc:40:a5:7a:a3: 69:ce:30:3e:18:a6:58:d0:57:cf:8b:0e:83:4c:75:df:e9:b9: c0:d1:bb:d6:e1:b8:c9:55:86:14:5e:2c:03:ee:6a:53:3c:e1: e2:77:5a:78:f7:11:b2:26:1e:7f:05:11:d2:84:09:4e:09:fe: 86:52:32:93:b9:e1:50:c5:56:85:6d:f5:24:21:c5:ad:28:b2: b7:26:45:a3:cb:43:4e:ef:f9:59:df:1a:26:16:ca:a6:d7:af: 99:a5:64:e8:6c:a5:82:aa:c7:49:37:ec:f7:42:71:5f:c0:dc: 63:22:87:98:b1:b7:d1:19:e2:d2:5c:75:46:75:9e:c2:0c:38: 92:ec:91:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjQwOTEwMDUwNzIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRmZDQwYi04OTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mXjI3HNR67KiuKzQBPustIjxj3akmX2cdjoOMoydDQT8PrjniCobH6ckyP9 fESjyYR855uCBa0Lldy70fx5BCDocNAFM5Ll9b3tqmKOZgJq9boEXtYPxEaLJ9XC RjrKn5eQMa3ZWs2j1gpQbfNgwXFag9gO3e//EgKj6GFFupzJvNqb1Lzpl7HjVyvw uhQP6mXNxkMOVkABVHai6tWcaGyyo+oZbdQSHA9q7ryUhAH2zlzHh/3vLUR67ZuR rtJ8eHzQAUlb4BKG4+7Pm46Jem+1jmtOMMWmwBVU7dtQRr2IaoHW2azD7ieklmH+ vxjTnjpM8iRmjII10vUHDGaAewIDAQABo4IClTCCApEwHQYDVR0OBBYEFO6rIVS7 xqtFlwZVSPwPwWBPojEqMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvOTA2N0Y2NzQ2 RjMyMTFFRjhGNUVGQjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLOCMwDQYJKoZIhvcNAQELBQADggEBAJOSTyif2gRDsE4S QIemI34DP3bd0s7nRCzNY7ZmUYaRFnrVIVvVak+ASxLmwfPff9TGJz7KGU2b5K/q vuQAeWbAy8xr4MmAXGZbWh1NvfyrLkSLUcjVLGOKSUEbaBK7r8ftPi4JPRGgyLI2 +i53co0rYkOer+szQiTcQKV6o2nOMD4YpljQV8+LDoNMdd/pucDRu9bhuMlVhhRe LAPualM84eJ3Wnj3EbImHn8FEdKECU4J/oZSMpO54VDFVoVt9SQhxa0osrcmRaPL Q07v+VnfGiYWyqbXr5mlZOhspYKqx0k37PdCcV/A3GMih5ixt9EZ4tJcdUZ1nsIM OJLskQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org