$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa File: 2A40C41C6EC511ED9672CB40C4F9AE02.roa (raw, json) Hash identifier: DV9Gdp3YkASaDfgSFkYwRK6BKaUQSr3ziC7H6K89rT8= Subject key identifier: FF:8C:C5:E0:1B:44:EC:3A:5B:DF:46:51:6B:ED:76:5F:17:8E:30:4C Certificate issuer: /CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Certificate serial: 0139 Authority key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa Signing time: Sat 29 Jun 2024 04:55:32 +0000 ROA not before: Sat 29 Jun 2024 04:55:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17765 IP address blocks: 203.4.188.0/23 maxlen: 24 203.4.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Validity Not Before: Jun 29 04:55:32 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f93c4-30bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8f:f0:26:e7:63:be:60:07:2f:69:72:7b:5c: 65:d0:a0:2a:39:92:64:cc:bb:7d:e9:15:e4:98:a6: 90:87:b0:82:88:e8:e1:29:5e:9a:0a:26:17:5f:4a: c6:a6:3e:ed:3e:7d:79:25:d3:c9:3e:7b:bc:b5:8e: ca:84:2c:30:f4:4e:e1:91:c4:21:28:09:1a:d0:9c: e6:70:20:00:cf:53:b2:17:ef:f9:5c:b3:f3:12:b1: d1:8b:64:b5:5d:ac:4d:7e:75:58:3c:e9:18:63:ca: b5:c2:c7:94:0d:5b:48:c2:49:7c:95:45:47:8a:93: 50:e6:2c:31:bf:2e:8d:15:80:b1:69:c3:63:50:56: 0d:c0:9c:0c:36:98:04:27:df:84:36:7c:ea:45:79: 2d:3b:50:90:2c:bd:bd:15:d6:2b:eb:e1:77:4a:83: a7:de:7d:cc:32:1f:f9:4f:a1:62:5e:6a:e2:d2:ef: d4:4d:33:00:c6:f0:93:ce:9c:bb:12:f3:bf:1e:be: e0:42:80:7e:14:c9:30:9c:37:6c:08:0d:00:c7:3b: da:06:d2:34:83:51:be:43:5c:fd:79:2f:dd:85:a6: 37:88:05:14:d1:7c:ce:2d:10:4c:1e:20:9d:1c:ae: 8c:8e:cd:47:35:f5:d1:33:17:d6:27:08:4e:26:7f: 01:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8C:C5:E0:1B:44:EC:3A:5B:DF:46:51:6B:ED:76:5F:17:8E:30:4C X509v3 Authority Key Identifier: keyid:8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.188.0/22 Signature Algorithm: sha256WithRSAEncryption 51:67:f9:70:d7:e5:ce:5b:d6:ae:72:2b:6c:25:be:39:b3:10: 8b:d6:39:06:39:a8:fa:4c:b3:3c:53:19:b7:45:b3:0d:20:66: 34:8e:1e:3e:28:67:51:7e:ff:8b:82:75:d0:93:5e:bf:7f:17: 66:06:a6:6a:2a:37:48:0d:79:c9:a2:cf:24:d2:84:33:69:b3: 8f:1d:91:4e:bd:65:92:df:b7:1d:2e:83:aa:ca:c5:74:cf:4b: 7f:c8:ee:0a:98:fe:17:56:33:06:ba:33:80:14:10:e7:43:24: a1:e3:b2:f3:7e:93:1a:a0:f6:c8:29:3a:8c:74:5d:96:aa:da: d8:2e:0e:97:a2:e4:a0:ec:f8:c8:11:04:cd:4c:ce:50:44:5f: 28:59:dc:69:a2:29:0c:1c:2a:0d:24:bc:fe:19:75:3f:ef:78: 94:bc:16:d1:8f:b1:d5:74:59:17:9d:e6:78:63:34:08:57:15: 3b:42:cf:fd:2d:cc:60:ab:6e:4d:5e:81:fd:b0:cd:6d:32:9f: 8d:7d:31:c2:36:19:f6:17:a1:80:56:aa:97:df:f2:49:59:29: 9d:aa:b7:b8:52:57:18:5b:70:a5:7a:59:99:32:cc:8c:a4:2c: 2d:48:86:ee:86:e7:18:01:39:f3:d3:b2:ff:e4:e6:f2:5a:a9: c3:37:39:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM0RkExMTAvBgNVBAUTKDhBRjdEOEI4NjRGRDkwNDUyRkZENkRFOTNCNTE0NTZD NzlFRkIzQzcwHhcNMjQwNjI5MDQ1NTMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmOTNjNC0zMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34/wJudjvmAHL2lye1xl0KAqOZJkzLt96RXkmKaQh7CCiOjhKV6aCiYXX0rG pj7tPn15JdPJPnu8tY7KhCww9E7hkcQhKAka0JzmcCAAz1OyF+/5XLPzErHRi2S1 XaxNfnVYPOkYY8q1wseUDVtIwkl8lUVHipNQ5iwxvy6NFYCxacNjUFYNwJwMNpgE J9+ENnzqRXktO1CQLL29FdYr6+F3SoOn3n3MMh/5T6FiXmri0u/UTTMAxvCTzpy7 EvO/Hr7gQoB+FMkwnDdsCA0AxzvaBtI0g1G+Q1z9eS/dhaY3iAUU0XzOLRBMHiCd HK6Mjs1HNfXRMxfWJwhOJn8BEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP+MxeAb ROw6W99GUWvtdl8XjjBMMB8GA1UdIwQYMBaAFIr32Lhk/ZBFL/1t6TtRRWx577PH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzRGQS8zN0NCODc5ODZD OEIxMUVEODdBRkY1NzFDNEY5QUUwMi9pdmZZdUdUOWtFVXZfVzNwTzFGRmJIbnZz OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l2Zll1R1Q5a0VVdl9XM3BPMUZGYkhudnM4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM0RkEvMzdDQjg3OTg2QzhCMTFFRDg3QUZGNTcxQzRGOUFFMDIvMkE0MEM0MUM2 RUM1MTFFRDk2NzJDQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLBLwwDQYJKoZIhvcNAQELBQADggEBAFFn+XDX5c5b1q5y K2wlvjmzEIvWOQY5qPpMszxTGbdFsw0gZjSOHj4oZ1F+/4uCddCTXr9/F2YGpmoq N0gNecmizyTShDNps48dkU69ZZLftx0ug6rKxXTPS3/I7gqY/hdWMwa6M4AUEOdD JKHjsvN+kxqg9sgpOox0XZaq2tguDpei5KDs+MgRBM1MzlBEXyhZ3GmiKQwcKg0k vP4ZdT/veJS8FtGPsdV0WRed5nhjNAhXFTtCz/0tzGCrbk1egf2wzW0yn419McI2 GfYXoYBWqpff8klZKZ2qt7hSVxhbcKV6WZkyzIykLC1Ihu6G5xgBOfPTsv/k5vJa qcM3OUY= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:03 2024 by rpki-client on console-fra.rpki-client.org