$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F3E0FDF6DBFD11EC8712B20BC4F9AE02.roa File: F3E0FDF6DBFD11EC8712B20BC4F9AE02.roa (raw, json) Hash identifier: xjhxD6tTXCaXswo/1bfxdP1QrT6IsHKmsLWeR3qJ11k= Subject key identifier: 0B:D4:45:ED:51:F9:F1:A4:62:A9:C0:3F:FA:B3:F1:44:60:BE:35:3B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4667 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F3E0FDF6DBFD11EC8712B20BC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:16 +0000 ROA not before: Thu 05 Sep 2024 03:36:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55310 IP address blocks: 202.9.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18023 (0x4667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9272f-758d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4d:f4:71:e3:8f:97:8e:99:4b:4e:b9:09:62: d6:b5:58:d3:79:fb:b9:68:99:58:b4:ce:6e:73:06: b6:fc:48:fd:f7:1a:2e:a1:b8:ea:5a:98:20:df:19: 8a:b6:aa:16:e8:1f:af:42:f6:92:35:ec:47:19:f6: 07:ed:99:a4:48:ec:68:7a:a4:4b:79:98:3c:90:f2: 5f:74:b8:00:87:d6:ab:e6:d9:63:cd:13:4f:7f:c2: 0a:df:bd:8b:f6:1d:5c:c4:4b:3a:6a:20:91:30:b5: 3f:d0:9d:1a:8d:7f:fa:6c:83:b6:b8:a7:99:44:a0: ef:11:6a:4d:eb:d0:b2:90:93:be:d3:89:5d:bc:b7: 60:15:a9:82:c2:9e:97:c4:54:55:3a:e5:90:c6:bb: c4:11:38:ac:8e:4d:a0:41:94:b1:79:1d:42:35:98: c4:df:f3:a6:e2:60:e4:b1:66:e8:02:2c:51:53:47: b1:38:2b:19:b4:00:bc:9f:aa:8b:42:fa:a1:03:fc: 22:63:08:2c:16:29:7c:60:98:1d:99:46:1c:01:95: 3e:99:12:49:9a:12:67:70:0e:c4:44:23:d2:6b:6c: 33:02:75:8e:64:0f:09:f1:88:3f:e0:d4:35:d1:0d: 03:80:28:d5:41:9a:b4:2b:73:dd:e4:d6:ab:52:79: 16:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D4:45:ED:51:F9:F1:A4:62:A9:C0:3F:FA:B3:F1:44:60:BE:35:3B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F3E0FDF6DBFD11EC8712B20BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.79.0/24 Signature Algorithm: sha256WithRSAEncryption a8:fa:ba:0e:d9:8b:a9:9e:ad:61:f0:0d:15:0b:f2:59:29:e3: aa:e1:a0:2d:d5:8d:92:8a:a7:b0:a9:22:5d:a1:97:6f:5c:b6: a9:1d:00:96:ad:2d:7f:56:40:a3:c6:17:8a:6b:6a:dd:17:a7: 80:b1:ad:d6:ad:71:1e:f3:66:23:1b:c3:18:a1:d4:7e:fe:e6: cc:56:25:2e:99:be:4a:a2:fb:98:f6:0c:fa:29:2d:c1:3d:4e: b9:3e:e8:c9:b7:1e:ce:92:20:0e:9f:6d:cd:02:88:b8:04:be: dc:7a:e3:f9:94:3d:76:76:50:20:de:ca:92:1b:10:bc:4f:96: 01:9e:ad:55:d0:a9:58:9f:20:f4:57:39:29:c1:90:47:4b:53: e9:99:88:59:19:54:62:3b:d8:45:cd:44:2f:7d:8c:c0:1e:5c: 1f:70:42:66:0f:08:e9:9a:6e:af:c8:e4:0c:15:a5:eb:f4:c2: d8:c8:fd:6c:71:71:ca:4c:21:2f:ad:f3:14:d9:91:1f:af:2e: 5e:82:d3:84:6a:95:dd:a8:e4:37:7e:44:2d:19:2f:12:3d:de: 67:a3:0b:7a:54:68:03:52:0b:4a:0d:3f:1f:df:76:84:2d:5d: c5:ee:47:2b:30:4d:e6:70:2d:0c:05:7c:12:35:08:5f:bb:a0: e4:6e:de:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyZi03NThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArk30ceOPl46ZS065CWLWtVjTefu5aJlYtM5ucwa2/Ej99xouobjqWpgg3xmK tqoW6B+vQvaSNexHGfYH7ZmkSOxoeqRLeZg8kPJfdLgAh9ar5tljzRNPf8IK372L 9h1cxEs6aiCRMLU/0J0ajX/6bIO2uKeZRKDvEWpN69CykJO+04ldvLdgFamCwp6X xFRVOuWQxrvEETisjk2gQZSxeR1CNZjE3/Om4mDksWboAixRU0exOCsZtAC8n6qL QvqhA/wiYwgsFil8YJgdmUYcAZU+mRJJmhJncA7ERCPSa2wzAnWOZA8J8Yg/4NQ1 0Q0DgCjVQZq0K3Pd5NarUnkWowIDAQABo4IClTCCApEwHQYDVR0OBBYEFAvURe1R +fGkYqnAP/qz8URgvjU7MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRjNFMEZERjZE QkZEMTFFQzg3MTJCMjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKCU8wDQYJKoZIhvcNAQELBQADggEBAKj6ug7Zi6merWHw DRUL8lkp46rhoC3VjZKKp7CpIl2hl29ctqkdAJatLX9WQKPGF4prat0Xp4Cxrdat cR7zZiMbwxih1H7+5sxWJS6Zvkqi+5j2DPopLcE9Trk+6Mm3Hs6SIA6fbc0CiLgE vtx64/mUPXZ2UCDeypIbELxPlgGerVXQqVifIPRXOSnBkEdLU+mZiFkZVGI72EXN RC99jMAeXB9wQmYPCOmabq/I5AwVpev0wtjI/WxxccpMIS+t8xTZkR+vLl6C04Rq ld2o5Dd+RC0ZLxI93mejC3pUaANSC0oNPx/fdoQtXcXuRyswTeZwLQwFfBI1CF+7 oORu3l4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org