$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9B71FEB0593F11EA9F9FA238C4F9AE02.roa File: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (raw, json) Hash identifier: nRD/T47inGKAn9En+tnYlmjaobyb5sc63EuqnAao/uo= Subject key identifier: B5:3D:EE:19:DA:A2:39:E4:69:B5:23:6D:93:B3:61:66:A2:D8:30:83 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 33BD Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9B71FEB0593F11EA9F9FA238C4F9AE02.roa Signing time: Wed 10 Jan 2024 15:10:51 +0000 ROA not before: Wed 10 Jan 2024 15:10:51 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55355 IP address blocks: 175.100.201.0/24 maxlen: 24 175.100.202.0/24 maxlen: 24 175.100.203.0/24 maxlen: 24 175.100.204.0/24 maxlen: 24 175.100.205.0/24 maxlen: 24 175.100.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13245 (0x33bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 10 15:10:51 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659eb37a-a42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:e2:0d:95:01:72:db:65:43:13:9b:36:1e: 8c:18:51:5b:ef:1c:ea:8b:29:f4:6a:f6:7a:cc:96: b6:48:59:97:5b:18:33:75:e6:f7:13:fd:b1:42:6c: de:16:4c:ae:4e:a8:52:cf:9b:5c:ce:c9:20:f3:36: 32:bb:7f:82:13:6c:ed:1b:45:78:6c:68:f4:34:53: 13:35:23:8f:31:3f:60:98:03:c1:1d:8d:a8:68:fc: 11:7a:6a:28:34:e5:56:19:a8:9f:c9:93:16:60:54: f6:e8:66:2b:ec:c5:7a:37:c2:0a:59:39:2d:46:24: 3b:69:ac:2b:74:40:38:8a:63:33:4f:12:41:3e:b9: 3b:0f:41:99:0d:76:3a:6d:28:70:87:f6:60:3d:39: d4:6e:a4:db:c0:90:20:d3:bb:12:c2:a7:15:7d:dd: 7a:cf:29:07:15:1c:7d:b0:28:a4:08:cb:9d:a0:6c: cb:32:6c:1f:90:1a:f7:76:53:56:4d:36:e9:07:25: c0:fb:7a:8a:d5:80:04:c3:3a:f3:3a:a8:7a:0c:66: 47:f1:17:88:3e:5c:47:8d:37:c9:38:86:68:5e:ea: c6:50:71:3c:e0:1f:4f:f6:1d:ff:48:99:da:5b:32: fa:0a:6d:ff:19:d9:08:5b:47:ba:8f:6b:62:25:87: c0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:19:DA:A2:39:E4:69:B5:23:6D:93:B3:61:66:A2:D8:30:83 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9B71FEB0593F11EA9F9FA238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.100.201.0-175.100.205.255 175.100.207.0/24 Signature Algorithm: sha256WithRSAEncryption 85:3b:b8:78:2e:5c:4e:c8:2e:c2:f6:da:7e:b7:7e:a6:ce:7e: 61:66:5b:86:f0:17:7c:39:44:38:64:03:65:80:84:f9:d2:e5: cf:49:e9:42:2a:6a:e8:ad:52:eb:ac:47:71:95:7a:14:09:0b: 17:39:57:ef:49:73:e2:7f:22:3a:ef:aa:79:9a:81:b0:6d:6c: 2a:8c:95:82:24:d8:6c:d4:52:48:f6:72:e7:21:2e:46:09:b1: 2c:0b:fc:df:fd:11:b2:72:0e:57:bc:0c:a4:14:12:f0:c9:c3: e6:94:1d:12:13:69:fd:57:7b:0c:e0:58:b8:0c:76:dc:f2:60: 44:f5:2b:2e:7d:e8:35:36:e1:1b:63:7d:fb:db:6d:d0:fc:4d: 4c:f5:bf:98:9b:17:d2:ec:3b:04:0f:d6:45:c6:80:23:b5:f3: 05:6f:7a:7e:eb:a1:7d:c4:cd:b3:04:c4:50:12:b1:f2:ae:43: bc:6e:19:60:03:50:e1:40:e8:a3:aa:a9:2d:ff:18:15:ac:01: 87:d4:7f:d2:f2:45:a4:91:d6:01:30:f0:eb:9d:ec:31:fc:b3: 55:5e:96:86:3b:4f:53:0b:35:f4:52:50:2f:e5:e3:e8:01:a6: 5d:c6:82:99:81:0b:a1:9c:a8:2f:c4:f2:63:6b:cf:2b:96:7d: 5d:16:c0:13 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICM70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjQwMTEwMTUxMDUxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYjM3YS1hNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu27iDZUBcttlQxObNh6MGFFb7xzqiyn0avZ6zJa2SFmXWxgzdeb3E/2xQmze FkyuTqhSz5tczskg8zYyu3+CE2ztG0V4bGj0NFMTNSOPMT9gmAPBHY2oaPwRemoo NOVWGaifyZMWYFT26GYr7MV6N8IKWTktRiQ7aawrdEA4imMzTxJBPrk7D0GZDXY6 bShwh/ZgPTnUbqTbwJAg07sSwqcVfd16zykHFRx9sCikCMudoGzLMmwfkBr3dlNW TTbpByXA+3qK1YAEwzrzOqh6DGZH8ReIPlxHjTfJOIZoXurGUHE84B9P9h3/SJna WzL6Cm3/GdkIW0e6j2tiJYfAfwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLU97hna ojnkabUjbZOzYWai2DCDMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvOUI3MUZFQjA1 OTNGMTFFQTlGOUZBMjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAK9kyQMEAa9kzAMEAK9kzzANBgkqhkiG9w0BAQsFAAOC AQEAhTu4eC5cTsguwvbafrd+ps5+YWZbhvAXfDlEOGQDZYCE+dLlz0npQipq6K1S 66xHcZV6FAkLFzlX70lz4n8iOu+qeZqBsG1sKoyVgiTYbNRSSPZy5yEuRgmxLAv8 3/0RsnIOV7wMpBQS8MnD5pQdEhNp/Vd7DOBYuAx23PJgRPUrLn3oNTbhG2N9+9tt 0PxNTPW/mJsX0uw7BA/WRcaAI7XzBW96fuuhfcTNswTEUBKx8q5DvG4ZYANQ4UDo o6qpLf8YFawBh9R/0vJFpJHWATDw653sMfyzVV6WhjtPUws19FJQL+Xj6AGmXcaC mYELoZyoL8TyY2vPK5Z9XRbAEw== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:53 2024 by rpki-client on console-ams.rpki-client.org