$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa File: 88252000B55C11ECA9565039C4F9AE02.roa (raw, json) Hash identifier: HhWjwCFdQRRVcs2pmGUyTbg15QmPYboR4SfRLX6NELY= Subject key identifier: 9F:10:D7:9E:28:78:C5:BF:66:44:9C:12:AB:09:F2:9A:71:AC:78:6D Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 07FC Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa Signing time: Thu 04 Jan 2024 21:59:23 +0000 ROA not before: Thu 04 Jan 2024 21:59:23 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132070 IP address blocks: 101.234.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Jan 4 21:59:23 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65972a3b-2841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:16:c0:74:1c:0b:29:e7:3f:2e:57:09:22:df: e4:cf:9f:4e:0a:40:fb:fe:4b:7b:35:f9:5b:46:38: 18:1b:ef:19:47:1e:f0:a5:99:0c:20:e7:40:ef:48: c5:7b:1e:11:26:40:3e:1d:4b:29:b5:cb:e5:d4:dc: d2:5f:96:91:e8:45:cd:a4:67:a4:93:68:18:61:73: e3:7a:55:e2:ac:bb:c9:e8:ef:8b:be:14:7d:04:36: 8c:f7:d0:1a:2a:4d:1d:b9:3e:b9:a5:fe:fe:f2:42: 31:71:71:77:18:85:aa:2f:78:6e:6e:e4:72:57:d9: 1d:8d:c8:ea:a1:e5:7c:10:f9:13:61:c2:19:78:f6: ea:b0:4e:da:13:66:cf:bf:dc:20:31:32:8d:ce:2e: 02:9e:58:e6:ae:fc:6b:85:80:95:32:89:58:95:c1: 14:31:0a:94:36:7a:9c:8c:cb:d1:9d:12:83:cd:55: 1f:a5:da:31:8c:5e:4f:ef:14:ba:ad:bd:9a:f3:03: 2f:ea:a1:22:22:6d:ac:9d:2f:9d:1e:29:c9:ba:c7: 19:4e:ef:64:a4:12:c8:a1:f2:f6:f5:ca:72:c5:a3: b7:84:cf:d0:c7:53:ee:9a:ca:64:54:cd:a5:15:c0: 18:1b:cc:9b:a1:50:6b:76:01:22:76:89:00:81:9f: 1b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:10:D7:9E:28:78:C5:BF:66:44:9C:12:AB:09:F2:9A:71:AC:78:6D X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.164.0/24 Signature Algorithm: sha256WithRSAEncryption ac:02:d5:25:77:0d:8d:b5:65:07:93:6e:e0:d7:8b:92:69:1d: 40:fa:a0:a2:e7:64:84:c2:78:9b:02:66:7a:a4:3c:7b:75:a4: cd:01:36:34:d0:93:f3:7d:7b:74:4a:fd:c0:90:ef:50:7f:6d: 3e:c7:02:c0:00:23:89:db:0f:35:ca:4d:bc:96:e0:c5:8e:97: 4f:fc:72:20:1d:40:11:7f:ef:2b:e8:2e:dc:b5:78:57:17:89: ea:a3:9f:d1:82:db:86:30:ce:12:bf:2c:67:12:3b:48:a8:f8: 84:03:c7:0c:98:ce:cf:9c:8c:6a:24:29:98:5b:84:3f:83:26: 90:fe:64:58:d1:f2:16:36:86:49:94:0b:ed:8c:fd:45:3a:81: 3d:cc:8c:aa:de:bb:d7:68:12:d5:87:2d:12:75:b6:70:eb:c1: be:88:25:48:90:48:82:dc:a9:23:55:27:8f:11:4e:a6:53:30: 02:57:28:dd:1d:31:11:f4:c0:ba:0b:06:76:5f:b8:25:b9:2a: 88:bf:96:c7:6b:cb:fe:49:0a:c2:f8:6a:7d:ec:09:6a:31:bc: 53:5d:ae:95:cc:87:b0:28:d2:ce:c4:ad:7b:55:a1:14:7f:a4: da:49:fe:fb:b9:65:d2:08:05:84:c1:5b:26:9e:db:74:ce:fd: a3:cd:42:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjQwMTA0MjE1OTIzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3MmEzYi0yODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhbAdBwLKec/LlcJIt/kz59OCkD7/kt7NflbRjgYG+8ZRx7wpZkMIOdA70jF ex4RJkA+HUsptcvl1NzSX5aR6EXNpGekk2gYYXPjelXirLvJ6O+LvhR9BDaM99Aa Kk0duT65pf7+8kIxcXF3GIWqL3hubuRyV9kdjcjqoeV8EPkTYcIZePbqsE7aE2bP v9wgMTKNzi4CnljmrvxrhYCVMolYlcEUMQqUNnqcjMvRnRKDzVUfpdoxjF5P7xS6 rb2a8wMv6qEiIm2snS+dHinJuscZTu9kpBLIofL29cpyxaO3hM/Qx1PumspkVM2l FcAYG8yboVBrdgEidokAgZ8blQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ8Q154o eMW/ZkScEqsJ8ppxrHhtMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU0NkUvMENENDFEQThCNzZBMTFFQTgxNEY1MDg0QzRGOUFFMDIvODgyNTIwMDBC NTVDMTFFQ0E5NTY1MDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABl6qQwDQYJKoZIhvcNAQELBQADggEBAKwC1SV3DY21ZQeT buDXi5JpHUD6oKLnZITCeJsCZnqkPHt1pM0BNjTQk/N9e3RK/cCQ71B/bT7HAsAA I4nbDzXKTbyW4MWOl0/8ciAdQBF/7yvoLty1eFcXieqjn9GC24YwzhK/LGcSO0io +IQDxwyYzs+cjGokKZhbhD+DJpD+ZFjR8hY2hkmUC+2M/UU6gT3MjKreu9doEtWH LRJ1tnDrwb6IJUiQSILcqSNVJ48RTqZTMAJXKN0dMRH0wLoLBnZfuCW5Koi/lsdr y/5JCsL4an3sCWoxvFNdrpXMh7Ao0s7ErXtVoRR/pNpJ/vu5ZdIIBYTBWyae23TO /aPNQts= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org