$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8D943848ABDC11EC8C02DB82C4F9AE02.roa File: 8D943848ABDC11EC8C02DB82C4F9AE02.roa (raw, json) Hash identifier: WkiwcmujU16Xhnbm6aOVfg2WaevkIuyi+X+Vnj1CVVg= Subject key identifier: 5B:AC:69:4C:B8:6C:75:49:E9:BE:89:6C:3B:80:66:4D:0F:9B:AD:89 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 465B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8D943848ABDC11EC8C02DB82C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:05 +0000 ROA not before: Thu 05 Sep 2024 03:36:05 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45556 IP address blocks: 203.161.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18011 (0x465b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:05 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92724-5241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:92:03:16:87:94:cd:18:b0:6e:6e:db:ab:ac: 94:3c:37:77:ce:9d:0f:09:c8:92:7d:13:7a:67:46: ed:8b:7c:ae:7a:e0:35:db:b0:b0:66:3d:d8:4f:f9: 4a:75:9a:72:ab:6c:0f:83:f3:27:9e:f3:06:65:2e: 55:f1:2a:ce:8f:bd:82:d0:fc:5f:97:e1:61:18:15: 29:7d:e9:ac:2c:4a:2d:97:c0:88:89:ba:48:6d:fd: 03:81:49:bb:8e:5b:00:1a:ec:cd:5f:53:41:1f:b8: 79:07:6f:a9:24:71:4d:6f:64:2f:d5:d9:7d:22:f2: 2c:87:3b:23:15:04:40:5d:90:72:33:d4:2d:8a:9d: 2b:05:6e:21:94:8d:5c:fc:c7:ad:0e:99:38:10:b9: e7:72:f3:a6:5d:56:b5:bf:03:e0:71:e1:b6:a3:f6: af:a6:27:26:78:b9:d9:7f:45:2d:5c:03:0e:c4:13: 7c:f0:4e:ad:16:f1:56:fa:10:7d:70:de:2c:b6:b6: 4a:eb:05:1e:51:2c:bc:d9:43:c5:6a:91:bf:8c:9d: 25:2a:12:02:fe:ab:ec:f1:3c:30:c9:7f:01:7f:12: 55:1b:40:5e:53:e3:4b:9b:94:5c:68:d7:cd:5f:0a: 64:52:0a:af:65:62:bf:92:51:13:c5:90:9d:9a:44: ed:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AC:69:4C:B8:6C:75:49:E9:BE:89:6C:3B:80:66:4D:0F:9B:AD:89 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8D943848ABDC11EC8C02DB82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.161.178.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:2e:06:fe:88:b2:05:dd:e5:cb:b8:1c:54:a6:1f:ac:5c:a7: 40:d7:2c:78:e0:3b:03:71:ff:6b:fa:ed:f9:e3:e1:8c:c1:6d: 0a:bc:a9:5a:7b:c3:81:e4:66:4e:32:11:d1:13:2a:b2:71:18: db:64:45:7b:86:9a:7f:92:f2:d6:4c:9f:6b:6a:cf:df:10:1c: ca:a3:de:5e:0c:b4:22:db:9f:58:e5:c0:e6:43:75:9d:7d:43: a0:68:ac:97:e9:f4:e8:31:9b:d1:4c:cd:51:55:ca:1e:3f:da: 5c:5f:ed:68:f4:96:aa:fe:6a:54:81:4b:7f:71:f6:f7:80:0a: e1:27:91:80:3b:fb:e2:ad:fa:ee:8f:56:ad:f8:53:e0:0b:16: 1e:ce:2a:82:7f:aa:4b:3f:0f:08:2e:d6:22:c5:4c:3b:7e:94: e4:79:c7:5a:e4:cb:9b:b7:e7:fb:3d:52:a4:2f:d3:52:39:3e: 25:23:12:7d:39:1d:ea:20:7e:41:8d:c9:14:39:af:aa:e9:35: c2:26:31:41:4b:c1:46:81:f5:78:49:67:f1:15:ad:f8:a6:52: 6b:35:88:40:ee:92:e2:95:d2:0a:85:22:c0:2c:55:48:20:d5: 6f:93:56:35:04:3a:db:ca:c7:64:91:ae:86:5a:31:6a:00:d3: f1:6d:f0:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjA1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyNC01MjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZIDFoeUzRiwbm7bq6yUPDd3zp0PCciSfRN6Z0bti3yueuA127CwZj3YT/lK dZpyq2wPg/MnnvMGZS5V8SrOj72C0Pxfl+FhGBUpfemsLEotl8CIibpIbf0DgUm7 jlsAGuzNX1NBH7h5B2+pJHFNb2Qv1dl9IvIshzsjFQRAXZByM9Qtip0rBW4hlI1c /MetDpk4ELnncvOmXVa1vwPgceG2o/avpicmeLnZf0UtXAMOxBN88E6tFvFW+hB9 cN4strZK6wUeUSy82UPFapG/jJ0lKhIC/qvs8TwwyX8BfxJVG0BeU+NLm5RcaNfN XwpkUgqvZWK/klETxZCdmkTtxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFusaUy4 bHVJ6b6JbDuAZk0Pm62JMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEQ5NDM4NDhB QkRDMTFFQzhDMDJEQjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLobIwDQYJKoZIhvcNAQELBQADggEBAI8uBv6IsgXd5cu4 HFSmH6xcp0DXLHjgOwNx/2v67fnj4YzBbQq8qVp7w4HkZk4yEdETKrJxGNtkRXuG mn+S8tZMn2tqz98QHMqj3l4MtCLbn1jlwOZDdZ19Q6BorJfp9Ogxm9FMzVFVyh4/ 2lxf7Wj0lqr+alSBS39x9veACuEnkYA7++Kt+u6PVq34U+ALFh7OKoJ/qks/Dwgu 1iLFTDt+lOR5x1rky5u35/s9UqQv01I5PiUjEn05HeogfkGNyRQ5r6rpNcImMUFL wUaB9XhJZ/EVrfimUms1iEDukuKV0gqFIsAsVUgg1W+TVjUEOtvKx2SRroZaMWoA 0/Ft8Lk= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org