$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/8FCF722626C911EE9F1A0917C4F9AE02.roa File: 8FCF722626C911EE9F1A0917C4F9AE02.roa (raw, json) Hash identifier: qejGSJs6cPmwpEoFNORTx2hIhyRLer5JBQ2gW4em5wk= Subject key identifier: E4:2F:12:57:AA:49:3A:E3:E4:E9:5D:3E:D8:D8:86:E1:23:3F:4E:8A Certificate issuer: /CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Certificate serial: 0264 Authority key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/8FCF722626C911EE9F1A0917C4F9AE02.roa Signing time: Mon 03 Jun 2024 04:32:31 +0000 ROA not before: Mon 03 Jun 2024 04:32:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134507 IP address blocks: 203.175.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Validity Not Before: Jun 3 04:32:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d475f-3900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1d:a0:2a:f7:0b:39:62:4c:38:d7:b5:fd:ff: 02:e0:66:60:9f:9e:02:82:e3:cc:23:04:51:c0:df: b4:8a:57:de:6b:e2:ec:d9:88:dc:57:bd:82:58:29: 24:0b:74:ed:eb:3d:86:70:72:6c:37:cd:99:eb:a8: c5:d6:f6:c0:b3:aa:d1:f2:50:2b:3f:62:84:1f:45: 2f:65:1e:38:ff:61:c1:73:f0:65:91:f3:00:8b:93: 20:a5:8f:d0:ba:45:fe:99:81:5f:62:8d:10:43:55: 68:6d:7c:ae:0c:77:e8:41:07:1d:16:f9:2b:79:37: 79:d3:76:09:51:dd:f8:33:6a:6a:62:6d:f3:a7:ad: 62:29:d0:31:b5:e1:62:76:09:3c:4a:bb:b7:90:e7: fd:d4:ad:70:7b:31:56:b8:83:07:f7:f7:d9:c2:84: 8a:5f:cc:99:02:75:13:89:75:4d:10:2f:8f:7c:34: 2e:fc:31:38:bf:04:43:91:57:3d:1d:e3:37:dc:c5: f3:d8:36:32:b4:85:b4:b8:c2:56:f1:b4:92:ab:50: 3d:4e:eb:3e:35:8d:2b:43:84:18:63:e4:30:49:8c: 9c:7c:8d:3e:c8:ce:ec:89:51:7e:bc:aa:88:51:23: d0:ae:a5:31:69:61:2b:ca:7b:64:26:98:cb:16:b3: 2e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2F:12:57:AA:49:3A:E3:E4:E9:5D:3E:D8:D8:86:E1:23:3F:4E:8A X509v3 Authority Key Identifier: keyid:02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/8FCF722626C911EE9F1A0917C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.175.178.0/24 Signature Algorithm: sha256WithRSAEncryption 52:8a:ad:0d:0a:7e:a9:62:b9:3c:9d:4f:60:d4:94:d0:94:7b: f4:54:5f:d2:f3:69:55:98:b2:b5:0a:4c:32:e1:c3:78:b2:7a: 2b:ff:be:9b:18:ab:03:21:f4:21:c3:81:89:1c:ef:cd:da:82: 09:41:ad:f0:06:ab:56:27:ed:f3:33:54:36:bd:d3:ac:a6:c2: ba:74:9a:70:7d:f8:62:93:7d:55:19:a3:33:d3:e5:31:af:6b: 31:1d:44:7b:cd:2f:ff:2a:db:b5:f5:e4:46:6e:ba:d7:3d:0c: 8e:88:ac:fd:74:8c:d5:be:c1:22:9d:69:9b:06:aa:03:12:2f: ec:a5:bd:bd:e6:8e:c4:11:62:84:95:95:d1:5f:06:25:26:a1: ff:54:dd:55:42:23:bd:24:3b:b9:76:70:4a:fb:01:01:f2:12: 55:62:48:9f:51:26:34:54:58:a0:45:b2:4b:8d:2f:58:f8:3d: d8:37:b1:24:55:d1:2d:69:73:b1:69:80:84:63:bf:eb:a3:16: 55:e4:5f:3c:58:ec:3e:e3:10:25:04:d3:94:05:1e:86:6f:fd: e0:c6:d6:84:0a:f5:f4:89:95:20:3e:c4:b6:b6:a0:e8:6f:7d: e3:e3:72:9b:da:17:ab:85:f6:4d:3f:d7:14:25:8b:75:e8:08: 2c:92:b8:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxMDgxMTAvBgNVBAUTKDAyQkI5N0ZEOEIxRjYyMEUwMkExRTJDQURCNTlENjU2 RjAxQURBNDUwHhcNMjQwNjAzMDQzMjMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNDc1Zi0zOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx2gKvcLOWJMONe1/f8C4GZgn54CguPMIwRRwN+0ilfea+Ls2YjcV72CWCkk C3Tt6z2GcHJsN82Z66jF1vbAs6rR8lArP2KEH0UvZR44/2HBc/BlkfMAi5MgpY/Q ukX+mYFfYo0QQ1VobXyuDHfoQQcdFvkreTd503YJUd34M2pqYm3zp61iKdAxteFi dgk8Sru3kOf91K1wezFWuIMH9/fZwoSKX8yZAnUTiXVNEC+PfDQu/DE4vwRDkVc9 HeM33MXz2DYytIW0uMJW8bSSq1A9Tus+NY0rQ4QYY+QwSYycfI0+yM7siVF+vKqI USPQrqUxaWEryntkJpjLFrMuDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOQvEleq STrj5OldPtjYhuEjP06KMB8GA1UdIwQYMBaAFAK7l/2LH2IOAqHiyttZ1lbwGtpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTEwOC9FM0IwNDZDQ0Qw MUMxMUVDQjM1NEFGMjRDNEY5QUUwMi9BcnVYX1lzZllnNENvZUxLMjFuV1Z2QWEy a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FydVhfWXNmWWc0Q29lTEsyMW5XVnZBYTJrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUxMDgvRTNCMDQ2Q0NEMDFDMTFFQ0IzNTRBRjI0QzRGOUFFMDIvOEZDRjcyMjYy NkM5MTFFRTlGMUEwOTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLr7IwDQYJKoZIhvcNAQELBQADggEBAFKKrQ0KfqliuTyd T2DUlNCUe/RUX9LzaVWYsrUKTDLhw3iyeiv/vpsYqwMh9CHDgYkc783agglBrfAG q1Yn7fMzVDa906ymwrp0mnB9+GKTfVUZozPT5TGvazEdRHvNL/8q27X15EZuutc9 DI6IrP10jNW+wSKdaZsGqgMSL+ylvb3mjsQRYoSVldFfBiUmof9U3VVCI70kO7l2 cEr7AQHyElViSJ9RJjRUWKBFskuNL1j4Pdg3sSRV0S1pc7FpgIRjv+ujFlXkXzxY 7D7jECUE05QFHoZv/eDG1oQK9fSJlSA+xLa2oOhvfePjcpvaF6uF9k0/1xQli3Xo CCySuFM= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org