$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa File: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (raw, json) Hash identifier: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw= Subject key identifier: 59:FE:F6:64:55:40:1A:EE:41:86:F0:05:17:84:D7:9A:48:6D:0C:69 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0952 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa Signing time: Wed 16 Oct 2024 20:39:02 +0000 ROA not before: Wed 16 Oct 2024 20:39:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 203.210.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Oct 16 20:39:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67102466-4643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b2:54:c0:88:8c:46:b1:90:ac:1c:3c:e9:45: 29:f5:b8:f3:e1:35:79:68:10:78:aa:31:74:d9:c3: 35:85:bd:b0:37:0c:9a:ed:8e:bf:61:be:00:16:7c: 7a:ed:34:b0:7a:e7:8c:ae:77:8d:e8:a3:41:6e:bd: fb:3f:d6:2b:76:03:d1:a8:4e:a9:b9:d4:f4:35:b5: b9:0f:36:68:a5:6d:18:26:f5:a9:02:e7:cc:1b:97: 13:fd:66:4f:3f:61:ef:35:f4:43:c9:c9:ca:c0:3f: 76:5e:7f:24:b1:64:1d:ff:a1:d5:b6:c3:63:b8:a5: fd:3f:f8:22:4f:09:ef:52:22:7c:c1:f8:4f:0b:d5: 13:c3:78:04:6c:c8:27:e5:cb:b4:28:96:6b:ee:0c: 86:c0:f8:32:a1:31:44:67:a1:ad:62:2a:2f:f1:0b: 81:bb:b1:e2:85:7a:ce:6e:23:9b:e0:54:e8:94:1f: ce:d0:c2:b6:6e:bd:95:15:1b:6e:39:5c:3d:1f:79: 8c:02:c4:97:b9:18:b7:97:40:f2:a9:ac:78:01:a8: 21:39:0b:a5:ae:43:1b:6e:b9:78:f3:66:b0:65:65: be:21:f9:2b:c4:9a:a2:a8:95:41:6a:dc:88:9f:15: f1:96:7d:9f:72:db:be:72:1d:34:53:16:91:54:9b: 7b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FE:F6:64:55:40:1A:EE:41:86:F0:05:17:84:D7:9A:48:6D:0C:69 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.210.75.0/24 Signature Algorithm: sha256WithRSAEncryption ad:70:6d:8f:ce:25:1b:2e:ab:c7:89:7c:40:01:3d:0d:79:b1: 29:9c:86:31:34:34:65:0e:d0:56:ae:3e:f3:ab:cb:ec:8f:e2: 28:db:e4:bf:bc:5e:77:a1:d3:45:d2:38:f2:68:6a:a2:9c:b8: 62:dd:d7:55:93:ec:04:b3:38:55:5f:c9:31:00:35:b0:17:22: b1:8d:46:f9:83:b0:44:c1:5a:0e:35:73:ae:d5:a0:85:a8:be: 04:7c:66:7c:9e:01:b4:8f:93:3a:75:c7:05:b0:61:0f:ee:8a: ae:00:22:6d:20:5b:2f:9f:26:da:7e:07:73:51:62:7a:ec:01: 75:a3:e1:f9:40:ac:c0:f3:f2:e2:01:93:67:78:f5:e8:44:86: 6c:d1:fd:6b:05:77:4d:98:32:e0:47:5a:af:19:0a:67:a9:1c: c5:2c:5b:d3:ba:02:de:14:6b:61:14:ed:69:d0:74:16:5c:4b: f6:df:69:e5:92:87:d0:7a:bb:44:f2:ab:86:12:09:56:ca:f7: 66:1b:dd:cc:72:fe:b7:e7:72:36:80:55:24:12:14:a1:f3:fe: 43:2c:a3:b9:fd:d8:3f:72:00:c2:ee:c3:95:75:e1:a3:57:cc: 61:74:65:c7:a9:0d:94:31:fe:27:83:5e:16:3f:98:f4:f5:5e: 20:88:af:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjQxMDE2MjAzOTAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwMjQ2Ni00NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bJUwIiMRrGQrBw86UUp9bjz4TV5aBB4qjF02cM1hb2wNwya7Y6/Yb4AFnx6 7TSweueMrneN6KNBbr37P9YrdgPRqE6pudT0NbW5DzZopW0YJvWpAufMG5cT/WZP P2HvNfRDycnKwD92Xn8ksWQd/6HVtsNjuKX9P/giTwnvUiJ8wfhPC9UTw3gEbMgn 5cu0KJZr7gyGwPgyoTFEZ6GtYiov8QuBu7HihXrObiOb4FTolB/O0MK2br2VFRtu OVw9H3mMAsSXuRi3l0Dyqax4AaghOQulrkMbbrl482awZWW+IfkrxJqiqJVBatyI nxXxln2fctu+ch00UxaRVJt7tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFn+9mRV QBruQYbwBReE15pIbQxpMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NjYvNjIzQ0Q2RTQ4NEYzMTFFQUIxRkJCQjE4QzRGOUFFMDIvQ0U3REE5MUE4 QzA5MTFFQUFGRjZDRDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0kswDQYJKoZIhvcNAQELBQADggEBAK1wbY/OJRsuq8eJ fEABPQ15sSmchjE0NGUO0FauPvOry+yP4ijb5L+8Xneh00XSOPJoaqKcuGLd11WT 7ASzOFVfyTEANbAXIrGNRvmDsETBWg41c67VoIWovgR8ZnyeAbSPkzp1xwWwYQ/u iq4AIm0gWy+fJtp+B3NRYnrsAXWj4flArMDz8uIBk2d49ehEhmzR/WsFd02YMuBH Wq8ZCmepHMUsW9O6At4Ua2EU7WnQdBZcS/bfaeWSh9B6u0Tyq4YSCVbK92Yb3cxy /rfncjaAVSQSFKHz/kMso7n92D9yAMLuw5V14aNXzGF0ZcepDZQx/ieDXhY/mPT1 XiCIr1U= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:44 2024 by rpki-client on console-fra.rpki-client.org