$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/CC8E710C347011EF9F04CE66C4F9AE02.roa File: CC8E710C347011EF9F04CE66C4F9AE02.roa (raw, json) Hash identifier: urtUAIwb+zR0u7Kbr6u1BvZ02jJcyaKAix72zb6Od6c= Subject key identifier: 68:F5:AF:4C:19:D7:63:46:E8:D2:2A:BA:B9:23:99:82:24:AD:08:6C Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: 02 Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/CC8E710C347011EF9F04CE66C4F9AE02.roa Signing time: Thu 27 Jun 2024 10:34:15 +0000 ROA not before: Thu 27 Jun 2024 10:34:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152731 IP address blocks: 202.50.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: Jun 27 10:34:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=667d4026-ccd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2d:55:6d:29:50:7b:09:02:c1:8b:a8:48:fb: ad:8f:30:7e:fd:95:5f:5c:3e:07:a8:6a:ac:4a:5e: 7d:ed:4b:c6:33:6d:96:e9:2f:77:6f:0f:c9:26:56: 34:04:d8:42:c3:ac:b7:58:8d:54:7f:02:1e:18:10: 17:e3:1a:27:b2:15:17:c9:f6:9f:43:75:44:10:5c: 7d:d5:04:eb:5f:9f:d3:4f:2a:88:4b:97:7a:da:91: 70:a6:fb:79:55:d7:1f:1c:63:47:3a:78:d3:b9:79: 7a:25:4c:cd:83:d3:73:9a:43:18:3c:05:fa:98:42: 3b:51:96:ec:15:94:8f:48:a9:cd:2c:a0:27:4c:83: d5:6b:4a:ef:9c:50:e0:3c:95:b4:76:07:61:bf:d2: 7d:d7:1c:ad:ce:c7:0f:36:27:d8:df:77:c4:36:90: e0:9f:f7:20:fb:8d:fd:68:83:e0:2e:83:95:18:9f: 2b:48:2c:f7:03:c1:ee:67:18:58:32:7c:2c:e9:ce: d3:f6:b4:9d:b5:b6:91:15:73:21:98:a8:59:5c:36: ed:13:2c:b4:e3:fc:a1:25:fc:4f:6e:3c:89:be:c5: 31:1b:0b:4e:a1:3f:df:4f:50:59:ee:5a:e7:76:e0: a7:93:44:42:46:fd:68:66:e7:cb:35:4d:04:f6:5a: 24:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F5:AF:4C:19:D7:63:46:E8:D2:2A:BA:B9:23:99:82:24:AD:08:6C X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/CC8E710C347011EF9F04CE66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.129.0/24 Signature Algorithm: sha256WithRSAEncryption 40:4e:de:41:05:8a:19:df:18:3f:5a:db:9e:f9:0f:e5:ec:bc: 43:13:81:cf:64:f8:56:0b:1f:45:6d:1a:05:87:d5:19:f0:b4: 88:c5:2a:74:7f:af:17:e1:1a:b7:57:24:90:dc:bd:35:a4:27: 17:41:fe:ea:f6:9e:e1:9d:9f:ce:d4:69:1d:9b:4e:dd:83:b6: 96:0f:83:c9:9a:c9:6d:1d:92:e9:4a:e7:ac:6d:a0:72:77:8a: 54:fc:0b:76:4b:e1:08:50:9d:96:70:4e:55:f2:51:6f:07:77: 02:dd:80:9e:6e:47:25:ed:e2:7d:fb:4c:16:89:8c:3e:5d:01: aa:d9:63:01:24:d3:70:3e:56:8b:a1:7b:d6:db:d7:b0:1a:cc: 97:e2:56:b9:fc:31:b7:24:15:e3:13:99:10:01:8e:2d:08:fd: e8:ba:9f:0a:4b:83:ea:79:68:b5:0c:7d:91:96:c8:d6:7b:55: f3:dd:24:a9:7d:1a:32:ad:bb:97:cc:ac:4d:bd:78:b6:06:30: 3f:88:61:05:2e:7a:68:02:8d:7c:db:fa:63:b1:56:fc:f9:53: b3:06:dc:80:43:7f:f7:a1:3e:13:90:b4:e8:13:15:b0:33:55: 49:d6:a7:fc:d7:d8:07:b9:09:42:46:09:00:64:21:9e:dd:8c: a8:3d:e6:53 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTRFMjExMC8GA1UEBRMoNjAxQUEzRkQ0NzcwQkZDNjlBRjI0MDZGMkU4MEVEMDhF N0RDNkI0MzAeFw0yNDA2MjcxMDM0MTVaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2N2Q0MDI2LWNjZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvLVVtKVB7CQLBi6hI+62PMH79lV9cPgeoaqxKXn3tS8YzbZbpL3dvD8kmVjQE 2ELDrLdYjVR/Ah4YEBfjGieyFRfJ9p9DdUQQXH3VBOtfn9NPKohLl3rakXCm+3lV 1x8cY0c6eNO5eXolTM2D03OaQxg8BfqYQjtRluwVlI9Iqc0soCdMg9VrSu+cUOA8 lbR2B2G/0n3XHK3Oxw82J9jfd8Q2kOCf9yD7jf1og+Aug5UYnytILPcDwe5nGFgy fCzpztP2tJ21tpEVcyGYqFlcNu0TLLTj/KEl/E9uPIm+xTEbC06hP99PUFnuWud2 4KeTREJG/Whm58s1TQT2WiQBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaPWvTBnX Y0bo0iq6uSOZgiStCGwwHwYDVR0jBBgwFoAUYBqj/Udwv8aa8kBvLoDtCOfca0Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NEUyLzczRUJFNkEyMzQ2 RjExRUY5N0NBNzU0NkM0RjlBRTAyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2Ew TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUJxal9VZHd2OGFhOGtCdkxvRHRDT2ZjYTBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTRFMi83M0VCRTZBMjM0NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9DQzhFNzEwQzM0 NzAxMUVGOUYwNENFNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoygTANBgkqhkiG9w0BAQsFAAOCAQEAQE7eQQWKGd8YP1rb nvkP5ey8QxOBz2T4VgsfRW0aBYfVGfC0iMUqdH+vF+Eat1ckkNy9NaQnF0H+6vae 4Z2fztRpHZtO3YO2lg+DyZrJbR2S6UrnrG2gcneKVPwLdkvhCFCdlnBOVfJRbwd3 At2Anm5HJe3ifftMFomMPl0BqtljASTTcD5Wi6F71tvXsBrMl+JWufwxtyQV4xOZ EAGOLQj96LqfCkuD6nlotQx9kZbI1ntV890kqX0aMq27l8ysTb14tgYwP4hhBS56 aAKNfNv6Y7FW/PlTswbcgEN/96E+E5C06BMVsDNVSdan/NfYB7kJQkYJAGQhnt2M qD3mUw== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:26 2024 by rpki-client on console-ams.rpki-client.org