$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa File: 4B82FA441A8611ECB908E939C4F9AE02.roa (raw, json) Hash identifier: s9ompX+CCM1BRWG5qcbuq6MfN+m/cuQTViMjb9Qf0GI= Subject key identifier: 77:FF:C2:A9:F2:AF:D5:00:A1:0B:9D:C4:CC:2C:00:E1:DC:BA:FB:5F Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0A22 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa Signing time: Mon 18 Mar 2024 20:49:04 +0000 ROA not before: Mon 18 Mar 2024 20:49:04 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136552 IP address blocks: 210.24.100.0/22 maxlen: 24 2400:1700:200::/48 maxlen: 48 2400:1700:210::/48 maxlen: 48 2400:1700:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Mar 18 20:49:04 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f8a8c0-cc50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:57:3d:fe:21:76:3f:c2:dd:c0:c5:75:f2:ae: 02:35:03:00:c4:00:b5:b2:9d:5b:f1:17:b7:c3:e0: b0:02:d7:51:70:a8:6f:de:14:21:78:28:c4:47:ac: b5:2f:7b:ef:b7:c0:c0:21:23:37:9f:0a:52:4d:1e: 6e:57:79:62:ae:68:f9:0f:fe:4f:8e:32:00:aa:d1: 7f:72:b6:d4:05:25:db:3f:d4:83:ba:4f:e6:2a:5b: c0:bf:7b:7b:9b:a1:b0:6f:c3:0b:f7:b7:7d:3c:81: b5:0e:de:b1:ea:00:42:f0:b2:37:d7:b8:fa:38:26: e5:1e:cb:a3:56:d1:db:c3:96:4f:b6:0d:66:61:ad: 5b:44:b8:78:d6:5e:d4:67:02:34:2c:a7:22:01:60: 20:fa:d0:81:92:d4:53:7a:e9:d4:e8:ab:02:92:c2: f1:65:a2:42:47:a1:31:b3:6b:d1:25:86:a6:83:21: d0:1c:07:24:78:40:23:30:30:cc:74:3c:b8:4e:d3: a9:77:64:05:46:94:ef:30:31:ac:31:f5:c2:f2:21: 54:af:e9:da:6f:cb:10:59:4b:12:47:0e:dd:bf:8f: ed:df:e2:f7:b6:43:32:d7:42:dd:fb:5f:de:54:73: e7:60:39:94:ba:15:f6:b0:1b:9f:7d:b9:b9:de:9d: cb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FF:C2:A9:F2:AF:D5:00:A1:0B:9D:C4:CC:2C:00:E1:DC:BA:FB:5F X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.24.100.0/22 IPv6: 2400:1700:200::/48 2400:1700:210::/47 Signature Algorithm: sha256WithRSAEncryption 51:af:e7:89:76:cf:3d:80:4d:02:dc:a2:9a:35:f4:df:0d:eb: 1f:80:17:e1:32:1a:79:40:c3:95:b9:ef:af:e1:83:d0:a7:0d: 98:1a:66:89:67:63:1c:53:43:c7:16:59:0c:ba:98:e0:5e:f5: 0e:18:0b:01:de:8b:67:51:f1:8d:c8:90:06:99:fc:e5:d3:42: b4:38:b3:ab:66:5a:54:76:e0:82:0e:dd:45:2b:1d:1e:53:f6: 4f:bc:60:af:e0:8f:83:d8:2e:a1:19:08:e1:df:97:4a:f8:18: 7f:72:e3:21:70:99:ea:42:1d:1b:80:ec:8b:26:c6:76:4a:ba: b1:5c:46:19:ac:33:e2:14:0f:5f:5d:0c:98:3d:98:93:1f:b5: ab:9c:d5:ac:db:8c:3c:c0:38:ac:3c:f9:e2:c5:7c:72:97:de: 3c:a2:6f:cc:6c:14:c0:bd:52:fd:e4:42:fa:33:53:4f:b0:2e: 5d:88:e6:86:1f:2e:99:2f:e1:c4:ce:9c:f8:00:48:c2:bf:e7: f5:33:f3:a4:30:1e:88:39:44:81:79:ba:62:23:2d:ed:95:8b: 5c:c3:e7:fb:a8:2c:4d:79:d4:3d:58:f0:52:9b:07:e3:bb:e4: 7f:1c:b6:78:6a:2c:c1:0e:07:e5:f3:38:d7:c7:fe:34:04:01: 81:5d:12:04 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjQwMzE4MjA0OTA0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4YThjMC1jYzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVc9/iF2P8LdwMV18q4CNQMAxAC1sp1b8Re3w+CwAtdRcKhv3hQheCjER6y1 L3vvt8DAISM3nwpSTR5uV3lirmj5D/5PjjIAqtF/crbUBSXbP9SDuk/mKlvAv3t7 m6Gwb8ML97d9PIG1Dt6x6gBC8LI317j6OCblHsujVtHbw5ZPtg1mYa1bRLh41l7U ZwI0LKciAWAg+tCBktRTeunU6KsCksLxZaJCR6Exs2vRJYamgyHQHAckeEAjMDDM dDy4TtOpd2QFRpTvMDGsMfXC8iFUr+nab8sQWUsSRw7dv4/t3+L3tkMy10Ld+1/e VHPnYDmUuhX2sBuffbm53p3LIQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFHf/wqny r9UAoQudxMwsAOHcuvtfMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQjU3NzNBQUM1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvNEI4MkZBNDQx QTg2MTFFQ0I5MDhFOTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBALSGGQwGAQCAAIwEgMHACQAFwACAAMHASQAFwACEDANBgkq hkiG9w0BAQsFAAOCAQEAUa/niXbPPYBNAtyimjX03w3rH4AX4TIaeUDDlbnvr+GD 0KcNmBpmiWdjHFNDxxZZDLqY4F71DhgLAd6LZ1HxjciQBpn85dNCtDizq2ZaVHbg gg7dRSsdHlP2T7xgr+CPg9guoRkI4d+XSvgYf3LjIXCZ6kIdG4DsiybGdkq6sVxG Gawz4hQPX10MmD2Ykx+1q5zVrNuMPMA4rDz54sV8cpfePKJvzGwUwL1S/eRC+jNT T7AuXYjmhh8umS/hxM6c+ABIwr/n9TPzpDAeiDlEgXm6YiMt7ZWLXMPn+6gsTXnU PVjwUpsH47vkfxy2eGoswQ4H5fM418f+NAQBgV0SBA== -----END CERTIFICATE-----Generated at Thu May 16 21:45:28 2024 by rpki-client on console-fra.rpki-client.org