$ rpki-client -vvf rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/CB54BF04390611EF93BAC362C4F9AE02.roa File: CB54BF04390611EF93BAC362C4F9AE02.roa (raw, json) Hash identifier: fo4GXuN7O8uYGc5UdBuNP0Ja0GAivlcbKEYSiRLp828= Subject key identifier: A3:3B:64:D4:5E:98:0D:FD:81:B3:DF:D8:6D:91:8B:D9:93:56:A8:FF Certificate issuer: /CN=A91874B6/serialNumber=EA61183D7F071DAED45564311B8A1A75BDCE70D6 Certificate serial: 04 Authority key identifier: EA:61:18:3D:7F:07:1D:AE:D4:55:64:31:1B:8A:1A:75:BD:CE:70:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mEYPX8HHa7UVWQxG4oadb3OcNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/CB54BF04390611EF93BAC362C4F9AE02.roa Signing time: Wed 03 Jul 2024 06:38:01 +0000 ROA not before: Wed 03 Jul 2024 06:38:01 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198949 IP address blocks: 203.18.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/6mEYPX8HHa7UVWQxG4oadb3OcNY.crl rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/6mEYPX8HHa7UVWQxG4oadb3OcNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mEYPX8HHa7UVWQxG4oadb3OcNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91874B6 Validity Not Before: Jul 3 06:38:01 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6684f1c9-5d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:c7:0f:9b:36:0c:9d:6c:b1:2d:d1:1a:ea: 07:f5:b9:b6:76:5c:09:fa:f4:56:47:e4:ae:80:c2: a0:58:a9:98:91:16:96:5f:af:ef:bc:66:b2:4c:cd: c5:10:a7:92:27:3c:05:fe:0e:e8:5c:e1:10:e4:bf: aa:0a:9e:9e:82:5c:77:f3:e2:01:3a:43:ce:21:6e: ec:1a:d2:a3:93:f1:2b:70:65:89:3b:1d:bf:64:35: 6c:08:b9:d5:df:ec:1f:23:f9:54:6d:ad:7c:ce:07: 9f:fb:5b:a9:18:dd:2c:54:66:b2:3d:30:ed:7f:ac: ef:f0:6d:1c:90:12:1a:d3:bc:50:77:08:df:5b:53: 6c:4d:62:b9:fb:0a:ec:d9:f4:0f:8c:fd:5b:38:09: e9:25:08:5c:43:05:f8:b6:6d:a8:b1:c1:02:3d:b2: fb:e8:63:59:42:44:05:aa:ad:d7:c4:c2:3c:a1:2a: df:2a:f7:da:9c:64:ad:a0:04:d9:4d:00:af:80:ba: e8:9d:6f:2e:dc:0b:65:0c:b1:a1:08:82:47:9f:24: d7:4d:82:c4:dc:5f:19:27:c9:98:f1:2f:73:36:6e: fb:c6:c6:21:13:f0:b8:e6:f0:6d:5d:e5:11:1c:92: 8a:24:98:a5:2c:68:5f:d3:27:af:7c:ff:0e:90:1d: 6e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3B:64:D4:5E:98:0D:FD:81:B3:DF:D8:6D:91:8B:D9:93:56:A8:FF X509v3 Authority Key Identifier: keyid:EA:61:18:3D:7F:07:1D:AE:D4:55:64:31:1B:8A:1A:75:BD:CE:70:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/6mEYPX8HHa7UVWQxG4oadb3OcNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mEYPX8HHa7UVWQxG4oadb3OcNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91874B6/BE8911F4390511EFBF187A4AC4F9AE02/CB54BF04390611EF93BAC362C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.96.0/23 Signature Algorithm: sha256WithRSAEncryption 55:94:d6:70:91:77:ff:e3:17:e6:94:61:1d:7d:5c:6f:25:65: c1:3c:f6:4b:ff:36:5c:cf:b7:91:6d:8e:97:ad:24:36:76:9d: 4e:5e:1a:df:99:18:21:50:71:bb:9f:53:a1:20:fe:6b:74:da: fd:91:f6:b2:b8:b8:28:05:e2:d6:fb:26:cf:4d:ab:65:10:68: 0a:a4:d6:0c:36:88:48:08:e9:39:5b:e1:50:9e:26:89:23:d8: 86:a2:8e:b3:5e:d4:cb:e7:bd:90:7e:68:dd:79:84:12:e7:a9: 57:16:b7:6f:0a:25:90:1f:95:68:40:86:03:70:68:11:6c:c9: e9:3e:d5:d9:84:21:90:c1:f9:4e:dd:be:ee:11:37:bd:a2:b5: e6:e3:25:6b:95:b6:a6:c4:06:c1:24:f4:f3:00:6f:f9:0b:82: 13:df:37:93:21:58:6a:7e:1b:35:25:8d:bb:a8:3c:72:26:98: 3a:e3:73:6b:22:5f:6c:f0:b2:ab:b5:69:5e:58:2d:98:32:4d: e9:bb:4a:21:14:01:b2:a2:b3:7c:bb:39:a9:16:ba:67:85:58: 2b:d0:64:73:d6:6e:41:fc:a5:d0:3b:89:67:a3:fe:bd:e7:c9: fb:a8:1a:aa:3a:e2:34:b4:6b:c6:9c:db:66:05:f0:8d:38:47: 5a:07:e2:85 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzRCNjExMC8GA1UEBRMoRUE2MTE4M0Q3RjA3MURBRUQ0NTU2NDMxMUI4QTFBNzVC RENFNzBENjAeFw0yNDA3MDMwNjM4MDFaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODRmMWM5LTVkODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs0ccPmzYMnWyxLdEa6gf1ubZ2XAn69FZH5K6AwqBYqZiRFpZfr++8ZrJMzcUQ p5InPAX+Duhc4RDkv6oKnp6CXHfz4gE6Q84hbuwa0qOT8StwZYk7Hb9kNWwIudXf 7B8j+VRtrXzOB5/7W6kY3SxUZrI9MO1/rO/wbRyQEhrTvFB3CN9bU2xNYrn7CuzZ 9A+M/Vs4CeklCFxDBfi2baixwQI9svvoY1lCRAWqrdfEwjyhKt8q99qcZK2gBNlN AK+Auuidby7cC2UMsaEIgkefJNdNgsTcXxknyZjxL3M2bvvGxiET8Ljm8G1d5REc kookmKUsaF/TJ698/w6QHW6JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoztk1F6Y Df2Bs9/YbZGL2ZNWqP8wHwYDVR0jBBgwFoAU6mEYPX8HHa7UVWQxG4oadb3OcNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3NEI2L0JFODkxMUY0Mzkw NTExRUZCRjE4N0E0QUM0RjlBRTAyLzZtRVlQWDhISGE3VVZXUXhHNG9hZGIzT2NO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNm1FWVBYOEhIYTdVVldReEc0b2FkYjNPY05ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzRCNi9CRTg5MTFGNDM5MDUxMUVGQkYxODdBNEFDNEY5QUUwMi9DQjU0QkYwNDM5 MDYxMUVGOTNCQUMzNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsSYDANBgkqhkiG9w0BAQsFAAOCAQEAVZTWcJF3/+MX5pRh HX1cbyVlwTz2S/82XM+3kW2Ol60kNnadTl4a35kYIVBxu59ToSD+a3Ta/ZH2sri4 KAXi1vsmz02rZRBoCqTWDDaISAjpOVvhUJ4miSPYhqKOs17Uy+e9kH5o3XmEEuep Vxa3bwolkB+VaECGA3BoEWzJ6T7V2YQhkMH5Tt2+7hE3vaK15uMla5W2psQGwST0 8wBv+QuCE983kyFYan4bNSWNu6g8ciaYOuNzayJfbPCyq7VpXlgtmDJN6btKIRQB sqKzfLs5qRa6Z4VYK9Bkc9ZuQfyl0DuJZ6P+vefJ+6gaqjriNLRrxpzbZgXwjThH WgfihQ== -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:01 2025 by rpki-client