$ rpki-client -vvf rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa File: 10854F3E516B11EC86C3243EC4F9AE02.roa (raw, json) Hash identifier: OL26pWJP72CidPW/pasZewNbqUAaL+m9GOhNNiqNULM= Subject key identifier: 9C:E9:20:B9:7F:D2:F2:9F:62:66:93:E2:5C:A4:58:15:05:A4:AC:4B Certificate issuer: /CN=A91830A5/serialNumber=EC4AE356CC0232298D3CD9FD20413567DBB7FC25 Certificate serial: 03C4 Authority key identifier: EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa Signing time: Wed 03 Jul 2024 02:04:00 +0000 ROA not before: Wed 03 Jul 2024 02:04:00 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58434 IP address blocks: 203.96.252.0/22 maxlen: 22 203.147.92.0/22 maxlen: 22 2402:2f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.crl rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91830A5/serialNumber=EC4AE356CC0232298D3CD9FD20413567DBB7FC25 Validity Not Before: Jul 3 02:04:00 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6684b18f-d4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c6:d4:29:2b:34:18:51:49:c1:63:de:45:ba: ab:49:c1:45:28:2e:b8:99:a3:f7:98:d2:30:3c:29: af:c8:dc:7c:4c:ee:6f:74:9c:60:a1:da:83:fd:41: 6b:02:56:a5:12:70:01:e3:bf:95:2e:b7:30:6b:27: 27:d8:be:f7:84:86:f4:b4:89:08:f9:a5:15:36:e9: 35:50:e7:83:c1:a2:fb:13:6a:0e:04:03:96:ff:e4: aa:9e:6a:a0:39:65:a1:88:c9:00:d8:23:8e:2b:0c: a6:04:dd:1f:81:82:41:b8:48:a8:de:e0:b7:3e:04: 93:17:0b:53:73:e7:f8:16:f4:4f:b9:83:25:ee:a9: 39:f7:58:6a:30:fe:6c:41:b2:7e:59:1d:ce:b8:15: 9d:27:0e:56:bf:8e:19:fe:74:5c:d7:af:1d:6e:7c: 94:6c:bf:79:c8:67:28:2e:ec:bd:c3:de:32:f3:1c: e1:8e:db:eb:4a:38:21:61:90:46:85:5f:ab:89:2c: 1a:be:58:38:df:e5:d2:c4:a9:c9:ce:5c:7b:8a:9d: e7:2e:f9:4b:4b:e0:e0:b4:b5:df:e1:2e:1e:fd:77: a5:43:ae:8e:7e:f7:03:bd:8f:72:2e:1a:1d:bf:0b: 0a:91:f5:3b:21:27:3b:8e:e8:e7:4b:2c:ce:53:77: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E9:20:B9:7F:D2:F2:9F:62:66:93:E2:5C:A4:58:15:05:A4:AC:4B X509v3 Authority Key Identifier: keyid:EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.96.252.0/22 203.147.92.0/22 IPv6: 2402:2f00::/32 Signature Algorithm: sha256WithRSAEncryption 75:bf:f1:de:f4:63:1c:3a:4d:17:de:a6:37:4b:cf:c3:38:e2: f8:0c:44:14:4f:b5:75:0f:64:02:b2:60:15:47:7e:64:e2:51: 2b:b0:0e:01:69:aa:cd:53:68:0c:cf:ad:1d:7a:36:3e:7e:b7: bf:28:ee:22:a1:13:ed:69:c0:30:12:12:5a:c6:45:fd:d7:63: fd:93:81:36:80:c8:b9:d7:8a:78:94:ab:2c:21:97:21:0f:70: e7:52:10:2a:d0:15:11:88:35:8f:08:31:3b:4f:cf:cc:aa:4f: 69:ae:ce:ab:f8:cb:e1:47:22:cb:a2:3c:97:68:5e:2e:e8:d3: 1e:ac:bd:bc:fb:fe:91:25:cf:d9:ff:eb:2a:1e:df:90:57:c7: 4a:52:e3:ad:ea:1b:ad:10:a6:67:11:22:ff:32:59:0e:6e:3a: 3c:f6:32:9b:28:a8:2b:32:eb:d8:b9:9d:63:ee:c4:b4:e1:be: 9b:80:70:8b:36:cf:98:21:df:7a:0d:0e:5d:ef:03:9d:ac:d1: a1:e9:61:84:ba:0e:93:b6:9f:5b:e1:10:20:4a:9f:7f:15:33: 57:f2:91:0b:2d:03:9e:dd:ea:c7:2e:ea:01:71:62:a0:e1:b6: 1d:81:07:24:ea:11:ee:ec:92:ca:dc:f2:b9:8e:b2:de:19:dd: 7d:89:7a:f6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMwQTUxMTAvBgNVBAUTKEVDNEFFMzU2Q0MwMjMyMjk4RDNDRDlGRDIwNDEzNTY3 REJCN0ZDMjUwHhcNMjQwNzAzMDIwNDAwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0YjE4Zi1kNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cbUKSs0GFFJwWPeRbqrScFFKC64maP3mNIwPCmvyNx8TO5vdJxgodqD/UFr AlalEnAB47+VLrcwaycn2L73hIb0tIkI+aUVNuk1UOeDwaL7E2oOBAOW/+Sqnmqg OWWhiMkA2COOKwymBN0fgYJBuEio3uC3PgSTFwtTc+f4FvRPuYMl7qk591hqMP5s QbJ+WR3OuBWdJw5Wv44Z/nRc168dbnyUbL95yGcoLuy9w94y8xzhjtvrSjghYZBG hV+riSwavlg43+XSxKnJzlx7ip3nLvlLS+DgtLXf4S4e/XelQ66OfvcDvY9yLhod vwsKkfU7ISc7jujnSyzOU3cqDQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJzpILl/ 0vKfYmaT4lykWBUFpKxLMB8GA1UdIwQYMBaAFOxK41bMAjIpjTzZ/SBBNWfbt/wl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzBBNS9EODI0MThGRTUx NjYxMUVDQUQ1NjU4NjdDNEY5QUUwMi83RXJqVnN3Q01pbU5QTm45SUVFMVo5dTNf Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdFcmpWc3dDTWltTlBObjlJRUUxWjl1M19DVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODMwQTUvRDgyNDE4RkU1MTY2MTFFQ0FENTY1ODY3QzRGOUFFMDIvMTA4NTRGM0U1 MTZCMTFFQzg2QzMyNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBALLYPwDBALLk1wwDQQCAAIwBwMFACQCLwAwDQYJKoZIhvcN AQELBQADggEBAHW/8d70Yxw6TRfepjdLz8M44vgMRBRPtXUPZAKyYBVHfmTiUSuw DgFpqs1TaAzPrR16Nj5+t78o7iKhE+1pwDASElrGRf3XY/2TgTaAyLnXiniUqywh lyEPcOdSECrQFRGINY8IMTtPz8yqT2muzqv4y+FHIsuiPJdoXi7o0x6svbz7/pEl z9n/6yoe35BXx0pS463qG60QpmcRIv8yWQ5uOjz2MpsoqCsy69i5nWPuxLThvpuA cIs2z5gh33oNDl3vA52s0aHpYYS6DpO2n1vhECBKn38VM1fykQstA57d6scu6gFx YqDhth2BByTqEe7sksrc8rmOst4Z3X2JevY= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org