$ rpki-client -vvf rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/493F98CE230111EFB4355F5FC4F9AE02.roa File: 493F98CE230111EFB4355F5FC4F9AE02.roa (raw, json) Hash identifier: UxAygpfGpi/7LbfgcrDHteILaaTojTUKGBKpExRn4ds= Subject key identifier: CC:17:53:0D:B9:E3:72:8A:35:5E:3C:88:87:29:37:61:23:51:D3:03 Certificate issuer: /CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Certificate serial: 02 Authority key identifier: 22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/493F98CE230111EFB4355F5FC4F9AE02.roa Signing time: Wed 05 Jun 2024 06:03:10 +0000 ROA not before: Wed 05 Jun 2024 06:03:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152692 IP address blocks: 202.37.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Validity Not Before: Jun 5 06:03:10 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665fff9e-7276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:36:e1:6c:7b:fe:41:90:85:83:08:e9:43:2c: 4f:19:ed:65:56:17:c6:f6:43:9d:3a:b3:69:54:47: 8b:a0:1c:9a:90:88:f4:a0:eb:b1:15:ab:86:ee:79: c9:58:c2:18:9a:1d:e5:a5:2b:cc:13:78:9a:9a:ba: 9c:26:75:a7:8f:48:38:3d:37:18:f6:0a:d0:78:fc: 69:c9:aa:5c:84:31:87:76:bb:ba:7b:64:5c:e3:14: f8:a5:81:30:39:b9:43:56:da:8f:da:2e:ed:9a:09: c6:69:cf:5b:d1:2d:e8:06:80:b7:c1:f8:4a:ab:7d: 52:6e:13:4b:05:46:a6:52:28:57:d3:3e:eb:a0:b4: 0b:47:81:63:19:dd:06:98:d8:1e:fe:9a:09:eb:ab: b4:6b:97:61:ec:e9:50:f3:d8:62:75:04:39:eb:ed: 34:c6:78:be:d3:7d:6d:b3:d7:52:08:1a:3a:a1:c9: 4a:38:bd:cb:68:38:2d:20:57:39:a6:15:bc:32:b3: 30:c5:dd:f0:88:b5:3c:19:8f:2a:dc:04:0b:b9:b5: 1d:5a:d1:c8:77:cf:e7:06:75:87:5d:29:c2:5f:61: 8a:f6:b0:fe:71:4d:97:bd:ce:31:ee:1b:64:e0:30: dd:a5:b4:ce:65:bb:c6:17:bc:36:6c:31:62:1a:21: eb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:17:53:0D:B9:E3:72:8A:35:5E:3C:88:87:29:37:61:23:51:D3:03 X509v3 Authority Key Identifier: keyid:22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/493F98CE230111EFB4355F5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.235.0/24 Signature Algorithm: sha256WithRSAEncryption 86:f3:85:87:ef:bd:ac:a0:f8:dd:f1:8b:fb:e3:ee:0a:b9:78: 63:8a:4a:1b:92:5e:a7:9d:09:09:c7:47:45:0d:c7:8d:15:73: a6:2b:9c:f6:c3:56:c8:50:de:3c:9a:b7:5f:5d:5c:a0:14:f0: 9e:ac:45:8b:ea:b4:d3:a7:9d:81:87:b7:02:cc:5a:9a:2e:b9: f8:cb:80:d2:43:d6:ca:f1:96:cb:89:78:1f:3e:7d:38:19:28: 64:e7:6f:01:1a:3a:f2:fe:3f:1d:75:23:ab:25:d0:bf:cc:b0: 9b:a2:4d:71:11:f6:b4:91:a4:2e:53:99:a0:ab:b1:07:5a:39: e5:5e:c3:75:49:7c:c6:8f:97:52:a8:c0:6d:0f:89:de:f7:84: aa:32:0b:1f:00:9c:0a:30:37:e0:67:2c:0a:c8:da:47:42:57: 9f:c9:06:bc:61:d2:3a:9a:c3:0e:8f:3c:63:61:6d:ee:a8:63: cf:a4:eb:9c:45:fd:58:43:1f:0f:ee:45:0e:f6:b0:e8:fd:c2: 4d:e8:eb:c2:0f:83:2a:e3:25:a5:6e:65:27:17:72:25:b6:83: de:6f:b4:52:51:d5:e5:39:03:75:c5:b5:75:f3:30:ce:3b:c9: 97:0f:d6:cd:b1:26:eb:94:02:81:85:56:d8:13:9e:f9:22:4d: 21:97:46:5b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REZEQTExMC8GA1UEBRMoMjJBRkQ0Q0REOUM0RjRDMzgzNzYyQjNFOTNFRUNGMUFF NkZGOUQxNjAeFw0yNDA2MDUwNjAzMTBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWZmZjllLTcyNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyNuFse/5BkIWDCOlDLE8Z7WVWF8b2Q506s2lUR4ugHJqQiPSg67EVq4bueclY whiaHeWlK8wTeJqaupwmdaePSDg9Nxj2CtB4/GnJqlyEMYd2u7p7ZFzjFPilgTA5 uUNW2o/aLu2aCcZpz1vRLegGgLfB+EqrfVJuE0sFRqZSKFfTPuugtAtHgWMZ3QaY 2B7+mgnrq7Rrl2Hs6VDz2GJ1BDnr7TTGeL7TfW2z11IIGjqhyUo4vctoOC0gVzmm FbwyszDF3fCItTwZjyrcBAu5tR1a0ch3z+cGdYddKcJfYYr2sP5xTZe9zjHuG2Tg MN2ltM5lu8YXvDZsMWIaIet7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzBdTDbnj coo1XjyIhyk3YSNR0wMwHwYDVR0jBBgwFoAUIq/UzdnE9MODdis+k+7PGub/nRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdERkRBL0FGMkQ1MEU2MjMw MDExRUY5NDVERTM4MkM0RjlBRTAyL0lxX1V6ZG5FOU1PRGRpcy1rLTdQR3ViX25S WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXFfVXpkbkU5TU9EZGlzLWstN1BHdWJfblJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REZEQS9BRjJENTBFNjIzMDAxMUVGOTQ1REUzODJDNEY5QUUwMi80OTNGOThDRTIz MDExMUVGQjQzNTVGNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMol6zANBgkqhkiG9w0BAQsFAAOCAQEAhvOFh++9rKD43fGL ++PuCrl4Y4pKG5Jep50JCcdHRQ3HjRVzpiuc9sNWyFDePJq3X11coBTwnqxFi+q0 06edgYe3Asxami65+MuA0kPWyvGWy4l4Hz59OBkoZOdvARo68v4/HXUjqyXQv8yw m6JNcRH2tJGkLlOZoKuxB1o55V7DdUl8xo+XUqjAbQ+J3veEqjILHwCcCjA34Gcs CsjaR0JXn8kGvGHSOprDDo88Y2Ft7qhjz6TrnEX9WEMfD+5FDvaw6P3CTejrwg+D KuMlpW5lJxdyJbaD3m+0UlHV5TkDdcW1dfMwzjvJlw/WzbEm65QCgYVW2BOe+SJN IZdGWw== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:55 2024 by rpki-client on console-ams.rpki-client.org