$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa File: B9C587ACA61911EFAD319873C4F9AE02.roa (raw, json) Hash identifier: FWF5hZSTsh6AqLo74MANuPN8ZipQfzUnj3NigwRNmhA= Subject key identifier: 7A:C6:7A:82:AC:C1:32:F7:43:12:C4:05:DB:36:E9:C9:F2:EE:F7:C4 Certificate issuer: /CN=A91A55C9/serialNumber=7839A1FC0174024BCBA84D012D3EC4CA4679AC71 Certificate serial: 8F Authority key identifier: 78:39:A1:FC:01:74:02:4B:CB:A8:4D:01:2D:3E:C4:CA:46:79:AC:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa Signing time: Tue 19 Nov 2024 01:58:09 +0000 ROA not before: Tue 19 Nov 2024 01:58:09 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 203.3.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.crl rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9 Validity Not Before: Nov 19 01:58:09 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=673bf0b1-c1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:00:3e:ec:19:83:15:b5:72:10:ab:7e:3d:c8: c5:a1:94:52:13:32:14:39:11:eb:3b:af:a7:2b:6f: ac:ba:b8:36:49:84:ba:dc:79:b9:17:4b:f5:02:f2: fb:15:26:65:8d:36:63:a9:bf:b8:3d:99:d9:69:08: a6:6a:1c:e4:0c:f1:6c:1e:75:b1:75:da:a0:ca:2a: c9:76:0c:19:6e:97:ec:48:77:74:76:e9:45:db:95: 0b:87:f7:9e:ea:8c:cd:1c:62:b1:0c:2d:be:3c:09: d0:3c:18:e1:8b:a1:25:d7:39:7a:2d:3a:65:5f:5e: 57:2c:fc:97:3d:9e:88:7d:c0:82:31:59:c2:73:55: c0:4a:03:2c:60:16:11:c6:a7:66:ba:36:36:69:de: c0:8d:d5:3f:e3:cc:31:cd:91:ef:3a:92:5c:3b:f1: 4f:a4:62:50:2e:66:64:37:ff:0a:c7:42:cf:42:64: dd:ac:f4:67:18:83:b8:fb:99:82:0e:16:0f:69:97: 84:1a:fa:dd:0f:b4:f4:78:4c:e8:01:ae:6f:45:29: 7f:3e:9c:96:83:ce:c1:4e:6c:90:1d:d3:fe:68:98: d5:45:22:d3:b3:cd:c4:76:24:d3:bd:39:42:39:db: 6a:4a:68:c5:fb:de:cf:7f:52:35:de:da:5b:f6:20: b7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C6:7A:82:AC:C1:32:F7:43:12:C4:05:DB:36:E9:C9:F2:EE:F7:C4 X509v3 Authority Key Identifier: keyid:78:39:A1:FC:01:74:02:4B:CB:A8:4D:01:2D:3E:C4:CA:46:79:AC:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.236.0/24 Signature Algorithm: sha256WithRSAEncryption 54:83:16:80:ab:9b:2a:74:5b:03:63:88:3b:38:20:a1:2f:63: e7:42:42:22:a8:01:75:1f:5b:9a:83:f8:21:e6:33:a4:73:f0: 65:00:ea:05:36:cb:d6:ac:c3:76:09:89:8d:3c:14:a8:01:34: b3:f5:cb:61:9a:48:82:c2:f8:e7:9d:14:db:36:0b:28:92:a3: 2b:e9:29:08:14:49:39:19:a7:50:a5:50:13:b6:49:af:7e:56: 8a:ed:20:07:a7:fb:44:94:ed:06:30:cd:56:8e:2c:54:c8:49: 75:d7:db:85:9d:05:cf:a3:4f:3c:ec:59:ff:50:fe:a3:4f:0c: 44:df:8b:42:a5:52:f2:0f:67:f9:d4:5c:6e:86:05:b5:f5:8f: e9:1b:4f:5f:73:d3:12:94:d0:1b:62:c9:53:4a:cb:e5:2e:52: 5c:dd:ec:76:d3:4a:f7:33:bc:e4:15:c6:60:a7:13:f7:84:e7: 0b:72:f7:21:bb:b0:7d:84:1a:ad:45:e7:91:54:2a:cc:f3:f2: 33:8c:82:50:75:40:e4:82:03:cb:1c:27:74:b6:c8:5a:d2:dd: a3:a2:89:f2:e8:f0:6e:8e:b4:29:73:87:fc:65:74:34:d7:b2: 58:04:df:18:e1:6b:ed:0f:bc:86:b2:93:bd:8c:26:f2:e5:86: 9d:0e:7a:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKDc4MzlBMUZDMDE3NDAyNEJDQkE4NEQwMTJEM0VDNENB NDY3OUFDNzEwHhcNMjQxMTE5MDE1ODA5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiZjBiMS1jMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gA+7BmDFbVyEKt+PcjFoZRSEzIUORHrO6+nK2+surg2SYS63Hm5F0v1AvL7 FSZljTZjqb+4PZnZaQimahzkDPFsHnWxddqgyirJdgwZbpfsSHd0dulF25ULh/ee 6ozNHGKxDC2+PAnQPBjhi6El1zl6LTplX15XLPyXPZ6IfcCCMVnCc1XASgMsYBYR xqdmujY2ad7AjdU/48wxzZHvOpJcO/FPpGJQLmZkN/8Kx0LPQmTdrPRnGIO4+5mC DhYPaZeEGvrdD7T0eEzoAa5vRSl/PpyWg87BTmyQHdP+aJjVRSLTs83EdiTTvTlC OdtqSmjF+97Pf1I13tpb9iC3FwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHrGeoKs wTL3QxLEBds26cny7vfEMB8GA1UdIwQYMBaAFHg5ofwBdAJLy6hNAS0+xMpGeaxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS84ODJGMjMyMEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi9lRG1oX0FGMEFrdkxxRTBCTFQ3RXlrWjVy SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VEbWhfQUYwQWt2THFFMEJMVDdFeWtaNXJIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvODgyRjIzMjBDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvQjlDNTg3QUNB NjE5MTFFRkFEMzE5ODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA+wwDQYJKoZIhvcNAQELBQADggEBAFSDFoCrmyp0WwNj iDs4IKEvY+dCQiKoAXUfW5qD+CHmM6Rz8GUA6gU2y9asw3YJiY08FKgBNLP1y2Ga SILC+OedFNs2CyiSoyvpKQgUSTkZp1ClUBO2Sa9+VortIAen+0SU7QYwzVaOLFTI SXXX24WdBc+jTzzsWf9Q/qNPDETfi0KlUvIPZ/nUXG6GBbX1j+kbT19z0xKU0Bti yVNKy+UuUlzd7HbTSvczvOQVxmCnE/eE5wty9yG7sH2EGq1F55FUKszz8jOMglB1 QOSCA8scJ3S2yFrS3aOiifLo8G6OtClzh/xldDTXslgE3xjha+0PvIayk72MJvLl hp0Oeig= -----END CERTIFICATE-----Generated at Sun Feb 16 15:47:39 2025 by rpki-client