$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa File: 95EE2A18A8C511EC8F560C42C4F9AE02.roa (raw, json) Hash identifier: cHyafK4NEU02YzLWx12MG/m7NrgoE2CiLqirP008YZA= Subject key identifier: 66:11:DA:68:2E:04:9B:CF:F5:78:58:21:57:4C:18:A6:1C:61:46:C9 Certificate issuer: /CN=A91A7D50/serialNumber=7FA83F6204045A795622F3EDFE0715CC9158948C Certificate serial: 0333 Authority key identifier: 7F:A8:3F:62:04:04:5A:79:56:22:F3:ED:FE:07:15:CC:91:58:94:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa Signing time: Fri 05 Jul 2024 02:23:52 +0000 ROA not before: Fri 05 Jul 2024 02:23:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45768 IP address blocks: 203.33.180.0/24 maxlen: 24 203.33.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.crl rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7D50/serialNumber=7FA83F6204045A795622F3EDFE0715CC9158948C Validity Not Before: Jul 5 02:23:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66875938-3158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c7:4b:4f:21:67:40:bb:c2:80:5e:62:d7:28: f0:54:6f:76:fe:6a:9b:83:ac:1d:6b:ce:22:0e:db: f9:2e:c3:47:d9:46:42:de:5b:e3:7b:ba:f7:de:c7: 9a:86:5b:36:73:b3:76:59:3e:16:50:55:86:00:0e: bc:ef:35:90:b0:1e:4b:c8:9f:73:e5:88:89:6c:44: 04:1e:d0:1b:3f:e7:32:57:b3:8b:8f:24:82:62:ed: c2:7e:c7:74:d7:0f:97:0f:a0:81:d3:db:3a:ff:3a: 2d:4c:4a:09:2d:bd:24:cd:57:05:11:fc:fa:c8:23: 1b:76:10:98:9a:ad:fc:17:90:d6:af:a8:2e:d3:b7: 88:19:af:7d:21:59:a7:eb:72:d1:1d:cc:d8:ac:4d: ec:e7:13:e0:1d:b5:85:72:13:da:89:69:8f:8e:a5: 5c:1e:17:8f:70:97:bc:24:bb:4d:e5:17:de:a3:56: 2a:2f:0f:33:d7:be:a1:c5:9f:88:a0:b8:9a:c1:6f: 49:02:aa:10:25:8b:68:7d:a9:83:48:88:f0:f0:df: d9:91:6d:a3:0c:bf:9a:cf:09:1c:08:4f:cc:67:ee: 40:11:21:4a:2e:44:7f:11:dd:92:a0:5f:c9:b6:b9: 48:5c:ea:3c:80:8f:db:dd:3e:89:4c:f1:67:1f:40: d7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:11:DA:68:2E:04:9B:CF:F5:78:58:21:57:4C:18:A6:1C:61:46:C9 X509v3 Authority Key Identifier: keyid:7F:A8:3F:62:04:04:5A:79:56:22:F3:ED:FE:07:15:CC:91:58:94:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.180.0/23 Signature Algorithm: sha256WithRSAEncryption b0:55:86:f4:58:15:41:45:7f:3b:9e:43:de:f8:e1:a2:04:7b: 71:b4:e3:09:38:94:99:4a:16:7e:f5:20:86:54:0c:c3:43:10: c7:62:e7:e7:f9:02:15:4a:bd:6b:cf:49:4f:3b:b8:ad:7b:db: 5c:94:05:52:8b:68:66:7f:43:23:33:e7:0d:a5:5c:53:d0:55: f4:cc:c6:ea:a0:f6:a6:1e:f9:49:35:59:9d:62:e3:e1:5c:95: b7:f0:cc:ca:ed:2e:95:3f:23:d8:8e:c6:be:75:b0:e7:99:58: ed:37:5a:80:76:9f:1b:23:6e:25:06:88:07:d6:26:46:a7:5f: 32:b5:ca:68:8f:8c:54:32:2a:22:62:dc:36:d6:90:5c:f0:03: 2e:e5:a4:9c:9f:fe:cf:60:51:33:dc:49:c5:10:38:56:44:ee: 2b:32:96:2e:a0:6c:81:fe:78:27:95:82:dd:d4:d7:90:99:3a: 62:b7:c2:34:03:9e:f9:02:08:e0:59:03:0c:ae:08:02:ac:5f: f9:82:7c:4f:1a:8e:c5:72:ff:a6:d6:ac:47:a5:dd:f7:8b:e4: b3:ad:51:fd:53:3c:83:a5:d1:18:25:03:c4:68:85:ea:18:15: 14:7e:2b:a0:32:6d:42:3e:9e:05:af:78:b4:14:12:61:67:bc: 02:42:7c:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdENTAxMTAvBgNVBAUTKDdGQTgzRjYyMDQwNDVBNzk1NjIyRjNFREZFMDcxNUND OTE1ODk0OEMwHhcNMjQwNzA1MDIyMzUyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3NTkzOC0zMTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MdLTyFnQLvCgF5i1yjwVG92/mqbg6wda84iDtv5LsNH2UZC3lvje7r33sea hls2c7N2WT4WUFWGAA687zWQsB5LyJ9z5YiJbEQEHtAbP+cyV7OLjySCYu3Cfsd0 1w+XD6CB09s6/zotTEoJLb0kzVcFEfz6yCMbdhCYmq38F5DWr6gu07eIGa99IVmn 63LRHczYrE3s5xPgHbWFchPaiWmPjqVcHhePcJe8JLtN5Rfeo1YqLw8z176hxZ+I oLiawW9JAqoQJYtofamDSIjw8N/ZkW2jDL+azwkcCE/MZ+5AESFKLkR/Ed2SoF/J trlIXOo8gI/b3T6JTPFnH0DX6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGYR2mgu BJvP9XhYIVdMGKYcYUbJMB8GA1UdIwQYMBaAFH+oP2IEBFp5ViLz7f4HFcyRWJSM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Q1MC82Q0Q1MjU5ODg0 QTYxMUVDOTJGODlENDRDNEY5QUUwMi9mNmdfWWdRRVdubFdJdlB0X2djVnpKRlls SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y2Z19ZZ1FFV25sV0l2UHRfZ2NWekpGWWxJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdENTAvNkNENTI1OTg4NEE2MTFFQzkyRjg5RDQ0QzRGOUFFMDIvOTVFRTJBMThB OEM1MTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLIbQwDQYJKoZIhvcNAQELBQADggEBALBVhvRYFUFFfzue Q9744aIEe3G04wk4lJlKFn71IIZUDMNDEMdi5+f5AhVKvWvPSU87uK1721yUBVKL aGZ/QyMz5w2lXFPQVfTMxuqg9qYe+Uk1WZ1i4+FclbfwzMrtLpU/I9iOxr51sOeZ WO03WoB2nxsjbiUGiAfWJkanXzK1ymiPjFQyKiJi3DbWkFzwAy7lpJyf/s9gUTPc ScUQOFZE7isyli6gbIH+eCeVgt3U15CZOmK3wjQDnvkCCOBZAwyuCAKsX/mCfE8a jsVy/6bWrEel3feL5LOtUf1TPIOl0RglA8RoheoYFRR+K6AybUI+ngWveLQUEmFn vAJCfDw= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org