$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/376BD314140C11EF81F9F16FC4F9AE02.roa File: 376BD314140C11EF81F9F16FC4F9AE02.roa (raw, json) Hash identifier: dvgnecPRdAmdJphsKToWrUqIXyISXGNq/pgl9dPW6ho= Subject key identifier: 3D:97:78:98:B2:BC:5B:61:2E:50:81:C5:72:F3:5A:83:73:69:99:B5 Certificate issuer: /CN=A91ADF45/serialNumber=984C9E177E2E6B37E4A260AB234CE547E0CD9ABC Certificate serial: 0E Authority key identifier: 98:4C:9E:17:7E:2E:6B:37:E4:A2:60:AB:23:4C:E5:47:E0:CD:9A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mEyeF34uazfkomCrI0zlR-DNmrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/376BD314140C11EF81F9F16FC4F9AE02.roa Signing time: Fri 17 May 2024 05:14:15 +0000 ROA not before: Fri 17 May 2024 05:14:15 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 396982 IP address blocks: 203.17.4.0/24 maxlen: 24 203.17.95.0/24 maxlen: 24 2001:df0:421::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/mEyeF34uazfkomCrI0zlR-DNmrw.crl rsync://rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/mEyeF34uazfkomCrI0zlR-DNmrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mEyeF34uazfkomCrI0zlR-DNmrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADF45/serialNumber=984C9E177E2E6B37E4A260AB234CE547E0CD9ABC Validity Not Before: May 17 05:14:15 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6646e7a7-9213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:17:cd:c7:4e:5d:1b:50:6f:18:5b:52:1a:6c: 21:30:3c:ea:6d:3d:c0:02:57:53:5e:de:02:63:04: b9:3a:c4:01:11:ae:0b:ce:e4:ce:f7:ec:fc:41:32: 68:1d:0f:b2:45:dd:39:86:f3:09:67:e4:40:e3:57: 5d:5a:ff:ec:d3:77:9c:b1:1c:0e:ce:e2:5d:46:cf: ae:45:a3:1f:25:e7:6b:bf:6a:8d:a9:dd:55:ec:30: 04:db:da:ad:8e:9d:18:72:11:ca:01:9d:c6:72:2b: ca:a1:e5:e7:33:f1:11:21:6b:d2:47:f7:c2:d2:c8: f3:de:61:53:90:47:e0:df:ad:f3:fd:da:e3:f0:0f: a8:26:2c:35:e2:85:9e:c9:48:fa:74:24:86:2f:55: a5:7c:d0:37:bc:26:e7:2e:09:97:20:6e:41:f2:50: 60:e8:52:3a:f1:1f:29:5d:c9:c7:bc:40:ff:f5:ab: 14:8b:08:1d:63:12:3b:65:6d:fd:24:1c:bc:ba:a9: c9:e0:5e:24:7f:c6:8b:25:06:1c:d4:cc:6a:a4:c2: 5d:e7:ca:36:3d:37:21:dd:7e:9e:ce:a1:d7:eb:0a: c2:bd:5e:f3:a4:cb:08:35:f1:bc:32:eb:f7:1e:bb: bb:11:32:bc:82:63:14:0a:ee:50:49:9b:3f:c7:df: c0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:97:78:98:B2:BC:5B:61:2E:50:81:C5:72:F3:5A:83:73:69:99:B5 X509v3 Authority Key Identifier: keyid:98:4C:9E:17:7E:2E:6B:37:E4:A2:60:AB:23:4C:E5:47:E0:CD:9A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/mEyeF34uazfkomCrI0zlR-DNmrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mEyeF34uazfkomCrI0zlR-DNmrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADF45/B5B3F6C4140811EFB9D2075AC4F9AE02/376BD314140C11EF81F9F16FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.17.4.0/24 203.17.95.0/24 IPv6: 2001:df0:421::/48 Signature Algorithm: sha256WithRSAEncryption 6c:b6:48:8b:73:7d:74:a5:6c:71:89:0d:3a:23:f2:3e:93:49: 58:b4:b4:b1:5a:f2:51:25:3c:8e:95:55:a5:25:f8:a8:d7:f5: 7b:12:2c:1d:04:23:dd:f5:35:a9:34:d3:49:1d:63:97:57:83: fc:6d:d9:b5:c5:61:73:ad:17:d6:11:ee:35:48:7b:d8:1d:28: 53:ac:38:fa:d2:ba:23:08:99:b8:4b:1d:61:66:38:8c:aa:83: eb:3b:39:26:47:0d:03:16:42:50:d8:17:1d:cd:0c:69:ff:07: ac:48:e5:9b:9c:89:fd:c9:7d:72:c1:90:65:6b:37:03:28:85: 78:5f:82:7b:12:9b:c6:85:e1:fe:bc:d7:d5:ec:f1:a3:6e:0e: 44:98:83:9e:f8:68:4f:2c:67:43:67:32:82:fd:96:5c:c5:d9: 84:d2:3a:be:68:84:d5:21:64:f1:7e:71:d7:f9:43:15:5a:39: 92:9a:d8:99:76:22:a2:6e:20:56:ba:e4:25:c3:70:00:ef:cb: 10:8f:c9:e5:db:99:81:68:db:62:c3:73:e2:5f:19:f0:40:bf: a8:7f:ee:09:bf:d8:d7:52:01:43:1b:ba:99:a9:e6:79:0f:eb: 8f:4c:69:e5:37:45:55:a6:67:dc:91:42:02:89:e7:14:ab:b9: 86:aa:85:96 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB REY0NTExMC8GA1UEBRMoOTg0QzlFMTc3RTJFNkIzN0U0QTI2MEFCMjM0Q0U1NDdF MENEOUFCQzAeFw0yNDA1MTcwNTE0MTVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDZlN2E3LTkyMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsF83HTl0bUG8YW1IabCEwPOptPcACV1Ne3gJjBLk6xAERrgvO5M737PxBMmgd D7JF3TmG8wln5EDjV11a/+zTd5yxHA7O4l1Gz65Fox8l52u/ao2p3VXsMATb2q2O nRhyEcoBncZyK8qh5ecz8REha9JH98LSyPPeYVOQR+DfrfP92uPwD6gmLDXihZ7J SPp0JIYvVaV80De8JucuCZcgbkHyUGDoUjrxHyldyce8QP/1qxSLCB1jEjtlbf0k HLy6qcngXiR/xoslBhzUzGqkwl3nyjY9NyHdfp7OodfrCsK9XvOkywg18bwy6/ce u7sRMryCYxQK7lBJmz/H38DxAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUPZd4mLK8 W2EuUIHFcvNag3NpmbUwHwYDVR0jBBgwFoAUmEyeF34uazfkomCrI0zlR+DNmrww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFERjQ1L0I1QjNGNkM0MTQw ODExRUZCOUQyMDc1QUM0RjlBRTAyL21FeWVGMzR1YXpma29tQ3JJMHpsUi1ETm1y dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUV5ZUYzNHVhemZrb21DckkwemxSLURObXJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REY0NS9CNUIzRjZDNDE0MDgxMUVGQjlEMjA3NUFDNEY5QUUwMi8zNzZCRDMxNDE0 MEMxMUVGODFGOUYxNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAMsRBAMEAMsRXzAPBAIAAjAJAwcAIAEN8AQhMA0GCSqGSIb3 DQEBCwUAA4IBAQBstkiLc310pWxxiQ06I/I+k0lYtLSxWvJRJTyOlVWlJfio1/V7 EiwdBCPd9TWpNNNJHWOXV4P8bdm1xWFzrRfWEe41SHvYHShTrDj60rojCJm4Sx1h ZjiMqoPrOzkmRw0DFkJQ2BcdzQxp/wesSOWbnIn9yX1ywZBlazcDKIV4X4J7EpvG heH+vNfV7PGjbg5EmIOe+GhPLGdDZzKC/ZZcxdmE0jq+aITVIWTxfnHX+UMVWjmS mtiZdiKibiBWuuQlw3AA78sQj8nl25mBaNtiw3PiXxnwQL+of+4Jv9jXUgFDG7qZ qeZ5D+uPTGnlN0VVpmfckUICiecUq7mGqoWW -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:27 2024 by rpki-client on console-ams.rpki-client.org