$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa File: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (raw, json) Hash identifier: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs= Subject key identifier: F6:67:62:EC:06:BD:58:F9:AD:C9:7B:D6:56:15:90:C7:A7:60:E0:7D Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0B33 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:16 +0000 ROA not before: Wed 06 Nov 2024 19:08:16 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45485 IP address blocks: 203.194.252.0/24 maxlen: 24 203.194.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Nov 6 19:08:16 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bbea0-5b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:fe:f8:d7:2f:04:d0:b0:dc:97:43:69:05: 59:50:41:7f:ec:92:30:30:04:c9:b3:cb:27:4c:bb: 39:de:c0:6c:8b:cd:c5:b2:fb:73:94:4c:1e:c9:36: 7b:1a:8d:78:41:d1:2f:e5:65:60:24:ff:29:a5:46: 73:71:33:87:79:f0:c4:fb:b0:5d:d6:01:de:ef:7e: b4:34:8f:59:cf:79:25:cb:2d:bf:96:15:94:0d:65: 5e:34:80:71:fd:47:a0:80:60:48:0f:1d:6f:b0:32: 92:f7:f0:3c:6f:76:cf:ed:02:01:bc:3a:e1:06:b1: 23:5e:8c:dc:95:f2:e2:3b:61:63:56:82:d7:3d:c6: f3:e6:c2:7b:79:79:24:65:0d:4f:68:5d:c3:7f:a7: e6:41:49:00:eb:07:7f:a4:cb:b1:92:fd:a3:4c:c3: 22:de:aa:ad:6c:a1:e1:2b:f9:6a:bd:1b:fa:74:46: 29:ee:0c:14:7e:31:dc:7c:3d:cb:da:67:af:d5:25: 51:6a:c9:99:73:8b:d2:16:f4:57:17:1e:c9:38:6f: 58:3c:3b:78:7e:02:a7:16:ae:90:c5:9d:b7:52:d3: 8e:17:27:8a:52:40:b3:51:0e:51:7c:03:be:e9:ab: cd:d0:6f:a3:85:1e:64:63:43:7e:12:14:b4:04:6a: 2b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:67:62:EC:06:BD:58:F9:AD:C9:7B:D6:56:15:90:C7:A7:60:E0:7D X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.194.252.0/23 Signature Algorithm: sha256WithRSAEncryption a7:80:4f:45:64:80:81:32:a3:d3:b2:14:c8:bc:be:49:11:9a: 59:c4:d0:15:3b:cb:d0:91:c8:07:5b:f8:d9:00:8a:87:29:a6: ea:0d:79:7e:c3:b7:71:e4:75:d9:80:7f:fa:16:93:0c:16:47: 8f:ca:7a:04:18:f7:49:a0:f7:0b:88:88:da:eb:5f:eb:a3:19: 3e:ba:b1:7d:41:c5:ef:03:38:2c:e4:51:4d:b4:28:7a:b7:65: b5:dd:6a:e3:2a:a5:19:9c:b6:8f:af:9b:34:24:70:fb:16:99: 1f:d3:6f:3d:5c:07:5a:53:1d:79:62:53:e4:cc:e9:75:59:73: d0:94:bc:93:4f:5d:b8:e0:23:d9:60:0b:f9:bc:f3:84:ec:cd: 6a:91:dc:05:c0:38:e5:12:cc:72:5f:ca:3f:16:a0:d4:ae:56: 1a:a2:2f:34:8b:f6:c5:f8:87:54:a9:a9:65:73:6b:6c:7d:26: 8d:e4:c3:e2:68:58:05:d5:5e:88:5f:d5:22:17:41:3b:17:03: dd:8e:c3:c4:8d:b9:33:d5:4c:ca:98:76:b7:69:0e:e7:d2:ac: 63:4e:ca:69:47:ad:5d:7c:75:6f:06:f8:c5:d9:ab:fd:26:72: ca:fd:be:2a:db:36:46:cb:77:1e:6b:6d:18:b2:83:85:3b:a5: d4:c0:24:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjQxMTA2MTkwODE2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmVhMC01YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLH++NcvBNCw3JdDaQVZUEF/7JIwMATJs8snTLs53sBsi83FsvtzlEweyTZ7 Go14QdEv5WVgJP8ppUZzcTOHefDE+7Bd1gHe7360NI9Zz3klyy2/lhWUDWVeNIBx /UeggGBIDx1vsDKS9/A8b3bP7QIBvDrhBrEjXozclfLiO2FjVoLXPcbz5sJ7eXkk ZQ1PaF3Df6fmQUkA6wd/pMuxkv2jTMMi3qqtbKHhK/lqvRv6dEYp7gwUfjHcfD3L 2mev1SVRasmZc4vSFvRXFx7JOG9YPDt4fgKnFq6QxZ23UtOOFyeKUkCzUQ5RfAO+ 6avN0G+jhR5kY0N+EhS0BGorWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPZnYuwG vVj5rcl71lYVkMenYOB9MB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA5QkYvRDEzREExRDQyREZDMTFFQUJDMUI2QjgyQzRGOUFFMDIvRUM0QUIwNEFB QTU1MTFFQUJDRUJERTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLwvwwDQYJKoZIhvcNAQELBQADggEBAKeAT0VkgIEyo9Oy FMi8vkkRmlnE0BU7y9CRyAdb+NkAiocppuoNeX7Dt3HkddmAf/oWkwwWR4/KegQY 90mg9wuIiNrrX+ujGT66sX1Bxe8DOCzkUU20KHq3ZbXdauMqpRmcto+vmzQkcPsW mR/Tbz1cB1pTHXliU+TM6XVZc9CUvJNPXbjgI9lgC/m884TszWqR3AXAOOUSzHJf yj8WoNSuVhqiLzSL9sX4h1SpqWVza2x9Jo3kw+JoWAXVXohf1SIXQTsXA92Ow8SN uTPVTMqYdrdpDufSrGNOymlHrV18dW8G+MXZq/0mcsr9virbNkbLdx5rbRiyg4U7 pdTAJJc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org