$ rpki-client -vvf rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/CDACEC3686AD11EBBDFD106EC4F9AE02.roa File: CDACEC3686AD11EBBDFD106EC4F9AE02.roa (raw, json) Hash identifier: +b74aWHLRD3nVFpEi7MMX8aEV8GBCMCU5F6fmVweFlQ= Subject key identifier: FE:6A:10:B9:B6:78:03:39:57:36:F4:F8:5E:75:0A:81:D6:35:E1:6A Certificate issuer: /CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB Certificate serial: 0581 Authority key identifier: 27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/CDACEC3686AD11EBBDFD106EC4F9AE02.roa Signing time: Wed 03 Apr 2024 01:02:58 +0000 ROA not before: Wed 03 Apr 2024 01:02:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141989 IP address blocks: 203.8.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB Validity Not Before: Apr 3 01:02:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660caac2-fd22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:42:18:82:cb:1f:a7:2c:38:1a:9f:0b:04: 36:10:97:21:d0:71:5f:97:7d:39:92:2d:c3:5b:a6: 22:78:00:3e:92:18:e7:40:a3:68:c7:a1:75:69:80: 6a:e6:c7:9d:0d:96:de:87:c4:f5:8c:d1:82:56:3e: d3:63:26:c5:cf:d2:0e:be:f0:b8:fe:e0:ba:56:70: 5a:74:2f:06:d3:f7:0f:c1:89:f8:a0:35:69:54:22: 8d:d7:60:f0:97:0a:b5:ff:13:2a:3f:5d:4e:24:f9: 3c:a5:c3:c0:04:d5:2b:d8:1e:97:fd:39:53:5e:6c: e3:17:42:ff:d1:b3:ef:27:44:8d:ba:29:7c:d0:0a: ab:e1:f5:0f:fc:3d:57:fb:4d:8a:61:2c:22:11:68: 88:78:f1:ec:3f:d6:1f:97:69:13:5b:8e:71:8e:fd: 91:7e:58:a5:a7:97:bb:a8:67:40:56:e4:0c:d5:01: 54:69:17:69:4f:b6:31:66:51:ad:10:52:42:9e:56: c4:1b:a8:82:e2:6e:60:4d:25:ae:ae:d2:cf:1e:68: c2:dd:e0:b5:b2:0e:82:a3:61:7d:36:99:74:df:78: de:da:4b:89:7e:92:ec:8b:4e:5b:8f:60:40:bd:e2: 8e:c9:c1:2b:0e:9f:8c:1d:57:e5:eb:a9:a9:14:b4: 14:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6A:10:B9:B6:78:03:39:57:36:F4:F8:5E:75:0A:81:D6:35:E1:6A X509v3 Authority Key Identifier: keyid:27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/CDACEC3686AD11EBBDFD106EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.8.200.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ec:05:be:9b:a0:be:70:12:86:1a:09:d8:80:1b:a7:dd:7e: 09:02:de:5e:8b:fe:e8:44:e8:3b:a1:27:30:21:20:96:84:82: 08:7e:66:da:cd:0f:f6:e0:cb:1b:90:1b:2a:2c:8e:fd:cc:5b: 1b:8a:9b:b7:08:73:54:ad:d7:7d:51:bb:4a:6a:4c:a3:7e:d5: a8:bb:b4:f3:0f:c8:f4:9e:76:9e:5f:14:a9:8c:0b:17:28:21: 44:cd:39:db:a9:79:c1:d1:a0:ca:20:51:49:76:3e:f7:39:1f: d5:8e:34:32:e6:b3:8c:87:65:71:4b:c9:69:78:cd:03:93:38: 41:a4:15:6d:69:c0:2d:e1:2b:7a:94:78:7b:43:38:65:61:0a: f3:2d:81:20:e4:36:13:8a:65:46:a9:0d:12:dd:08:5c:cd:a9: 1e:b0:ea:18:0a:fe:4e:f6:6f:63:13:81:21:34:e2:f3:0e:75: cb:93:7f:36:8d:5e:5a:6d:09:b6:65:a2:30:65:62:43:2c:6c: 7f:c2:df:4c:75:1c:d2:ca:c0:47:e0:6e:e1:e9:7a:8a:6d:7b: a1:17:31:ca:86:65:a6:f6:01:7c:31:fe:29:1e:90:c6:e1:6e: ab:9d:70:d1:2a:c9:ba:d0:6f:54:d2:47:73:98:1a:4d:db:08: 4b:2a:7c:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjExMTAvBgNVBAUTKDI3OTI5NTlCMjVGQkY5RUJEQzkzMzlCQTlDN0QzNTU1 NzI2OTY5QUIwHhcNMjQwNDAzMDEwMjU4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYWFjMi1mZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26lCGILLH6csOBqfCwQ2EJch0HFfl305ki3DW6YieAA+khjnQKNox6F1aYBq 5sedDZbeh8T1jNGCVj7TYybFz9IOvvC4/uC6VnBadC8G0/cPwYn4oDVpVCKN12Dw lwq1/xMqP11OJPk8pcPABNUr2B6X/TlTXmzjF0L/0bPvJ0SNuil80Aqr4fUP/D1X +02KYSwiEWiIePHsP9Yfl2kTW45xjv2Rflilp5e7qGdAVuQM1QFUaRdpT7YxZlGt EFJCnlbEG6iC4m5gTSWurtLPHmjC3eC1sg6Co2F9Npl033je2kuJfpLsi05bj2BA veKOycErDp+MHVfl66mpFLQUFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP5qELm2 eAM5Vzb0+F51CoHWNeFqMB8GA1UdIwQYMBaAFCeSlZsl+/nr3JM5upx9NVVyaWmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2MS85MEI2RjcyRTg2 QUIxMUVCQTkwODYzNTBDNEY5QUUwMi9KNUtWbXlYNy1ldmNrem02bkgwMVZYSnBh YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o1S1ZteVg3LWV2Y2t6bTZuSDAxVlhKcGFhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkyNjEvOTBCNkY3MkU4NkFCMTFFQkE5MDg2MzUwQzRGOUFFMDIvQ0RBQ0VDMzY4 NkFEMTFFQkJERkQxMDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLCMgwDQYJKoZIhvcNAQELBQADggEBACDsBb6boL5wEoYa CdiAG6fdfgkC3l6L/uhE6DuhJzAhIJaEggh+ZtrND/bgyxuQGyosjv3MWxuKm7cI c1St131Ru0pqTKN+1ai7tPMPyPSedp5fFKmMCxcoIUTNOdupecHRoMogUUl2Pvc5 H9WONDLms4yHZXFLyWl4zQOTOEGkFW1pwC3hK3qUeHtDOGVhCvMtgSDkNhOKZUap DRLdCFzNqR6w6hgK/k72b2MTgSE04vMOdcuTfzaNXlptCbZlojBlYkMsbH/C30x1 HNLKwEfgbuHpeopte6EXMcqGZab2AXwx/ikekMbhbqudcNEqybrQb1TSR3OYGk3b CEsqfCI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:44 2024 by rpki-client on console-ams.rpki-client.org