$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6356D604AB1311EC96C57946C4F9AE02.roa File: 6356D604AB1311EC96C57946C4F9AE02.roa (raw, json) Hash identifier: LFqfQsobstIz2OQLg4oEL8hwXkETz4PS3g8QJrpS11E= Subject key identifier: C7:40:E7:98:A9:EE:29:04:CE:1C:43:C1:4B:1C:7E:CE:9E:79:8E:E7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4527 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6356D604AB1311EC96C57946C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:36 +0000 ROA not before: Thu 05 Sep 2024 03:31:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131128 IP address blocks: 202.9.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17703 (0x4527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92618-bf06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fe:24:60:f0:06:45:00:b7:1a:0f:4e:f9:b6: c8:23:e3:9b:96:4d:fa:61:f6:76:9b:16:f1:6b:01: a6:27:0b:37:f0:30:b4:79:60:83:15:b1:e3:0c:60: bf:f4:36:a2:f4:61:c7:ba:f8:4d:33:61:a2:af:e4: 09:85:3d:99:cf:85:45:c3:3b:71:cc:3c:59:de:06: 38:6e:d4:f4:cd:4d:b1:45:a0:f3:69:05:e5:d2:55: 0b:21:c8:30:e5:a3:01:8f:ae:a6:93:ec:01:e0:19: 70:02:08:29:92:0d:ac:e8:70:5b:99:6a:65:1a:3a: 21:d4:36:0d:4c:11:af:92:e0:25:de:ce:71:62:29: 5f:4e:86:98:6b:44:9a:de:05:01:7f:d6:c4:1c:3b: 6a:2b:64:de:df:17:6a:f8:fa:40:3b:1e:93:1c:80: e8:74:cc:0a:08:06:75:b8:69:b6:40:26:9e:4f:30: ce:79:15:ca:54:36:2a:42:7e:ea:be:d1:6d:d1:fb: 3e:45:a3:84:23:7a:50:3f:3b:bf:aa:b7:8a:3b:2d: 31:48:e3:a7:fd:7d:50:4f:8a:2e:59:17:46:fc:cb: 9d:5e:41:21:e2:3a:0e:f6:2a:25:23:5a:7f:09:2a: c4:54:03:fa:a7:ab:f6:dd:a4:b5:c3:43:e6:94:cf: da:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:40:E7:98:A9:EE:29:04:CE:1C:43:C1:4B:1C:7E:CE:9E:79:8E:E7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6356D604AB1311EC96C57946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.84.0/24 Signature Algorithm: sha256WithRSAEncryption a1:af:2c:26:98:4a:ef:82:a7:e9:4f:59:2d:09:9d:f1:3e:41: e9:8c:fc:d3:da:6d:2f:17:38:96:2c:6d:32:1d:5c:97:cc:31: 9a:37:3c:a4:2d:0c:7a:95:1e:79:94:98:8a:72:7c:eb:bb:4e: 5a:04:03:30:4e:29:42:ec:e9:d8:c6:af:60:f6:f0:9d:22:fa: f1:19:15:9d:8f:bc:6e:9a:5c:39:52:f4:64:2d:aa:14:16:e1: 9c:70:54:1f:93:e4:1f:7a:e3:49:27:b2:50:21:a9:48:af:10: a7:69:d5:e2:1f:6b:eb:05:46:0c:a2:7d:2e:43:b1:6a:cc:bb: 6d:33:48:f2:0e:15:ac:59:ab:34:b7:10:34:a9:5d:4c:45:0f: 50:3f:18:41:a0:58:7b:f3:ae:00:be:49:e4:7c:6f:de:14:f3: 15:ae:1a:f7:1f:64:87:c2:2d:de:8c:a8:c8:05:2f:6c:79:f8: 75:a9:3b:b1:38:6b:50:c4:49:5a:5d:0d:a7:0c:d0:68:b7:7d: 20:6c:a6:dc:62:c4:3f:e7:27:99:43:54:d8:9b:f4:ef:cf:cb: b4:87:f5:be:74:80:69:9b:c3:fd:d9:16:6c:56:64:59:54:04: 23:15:b1:cf:2c:47:c2:a6:8a:69:1a:f7:23:17:13:31:f3:98: ae:66:1f:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxOC1iZjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP4kYPAGRQC3Gg9O+bbII+Oblk36YfZ2mxbxawGmJws38DC0eWCDFbHjDGC/ 9Dai9GHHuvhNM2Gir+QJhT2Zz4VFwztxzDxZ3gY4btT0zU2xRaDzaQXl0lULIcgw 5aMBj66mk+wB4BlwAggpkg2s6HBbmWplGjoh1DYNTBGvkuAl3s5xYilfToaYa0Sa 3gUBf9bEHDtqK2Te3xdq+PpAOx6THIDodMwKCAZ1uGm2QCaeTzDOeRXKVDYqQn7q vtFt0fs+RaOEI3pQPzu/qreKOy0xSOOn/X1QT4ouWRdG/MudXkEh4joO9iolI1p/ CSrEVAP6p6v23aS1w0PmlM/ahwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMdA55ip 7ikEzhxDwUscfs6eeY7nMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjM1NkQ2MDRB QjEzMTFFQzk2QzU3OTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKCVQwDQYJKoZIhvcNAQELBQADggEBAKGvLCaYSu+Cp+lP WS0JnfE+QemM/NPabS8XOJYsbTIdXJfMMZo3PKQtDHqVHnmUmIpyfOu7TloEAzBO KULs6djGr2D28J0i+vEZFZ2PvG6aXDlS9GQtqhQW4ZxwVB+T5B9640knslAhqUiv EKdp1eIfa+sFRgyifS5DsWrMu20zSPIOFaxZqzS3EDSpXUxFD1A/GEGgWHvzrgC+ SeR8b94U8xWuGvcfZIfCLd6MqMgFL2x5+HWpO7E4a1DESVpdDacM0Gi3fSBsptxi xD/nJ5lDVNib9O/Py7SH9b50gGmbw/3ZFmxWZFlUBCMVsc8sR8Kmimka9yMXEzHz mK5mH58= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org