$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa File: A2939A381CB711EF8F98240CC4F9AE02.roa (raw, json) Hash identifier: AIIOALhmpVgtbG/Y3VLxrUnP8fQ71eZKv8RmFzdHCHY= Subject key identifier: A0:A7:C3:23:69:77:73:55:94:D0:D7:32:D4:BC:D0:3B:B6:BD:BC:DF Certificate issuer: /CN=A91B4E11/serialNumber=B794F99733EEFC3FA0003F688F64C9C3539266B5 Certificate serial: 03 Authority key identifier: B7:94:F9:97:33:EE:FC:3F:A0:00:3F:68:8F:64:C9:C3:53:92:66:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa Signing time: Tue 28 May 2024 06:00:50 +0000 ROA not before: Tue 28 May 2024 06:00:50 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152852 IP address blocks: 202.61.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.crl rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4E11/serialNumber=B794F99733EEFC3FA0003F688F64C9C3539266B5 Validity Not Before: May 28 06:00:50 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66557312-26c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:56:c7:c7:ed:50:6e:3f:67:19:6b:ea:33:2b: 8f:de:86:ca:83:b5:18:07:b4:ae:48:c5:0d:b6:42: 77:a3:cb:58:33:92:cd:2e:70:91:2c:3e:d8:97:3a: cf:91:36:7e:62:ac:6f:fc:80:ee:6d:53:da:e2:cb: 3c:35:cd:86:99:71:03:86:4e:3e:ae:b1:c7:69:36: ec:91:a0:b1:0d:1c:5c:d5:64:22:d2:91:53:bf:6f: 74:9c:bb:30:2f:cc:18:e6:b5:97:02:bd:e4:f7:dc: 58:38:e4:02:2a:19:4a:87:0b:2d:31:78:5d:ef:0d: 3a:34:56:72:38:fd:af:73:d9:a2:04:c7:4f:cc:66: b4:a7:4c:c2:fc:f6:f2:ab:9b:fb:66:c6:a7:ca:5b: 35:88:f7:4b:29:a2:cd:3f:42:ff:44:91:e2:2f:78: 6c:e9:72:02:00:35:c8:8f:f9:e7:2a:b7:40:af:3f: 12:3e:f3:d1:7f:46:21:fa:7d:15:f1:2b:e4:73:49: ae:3c:fb:2a:97:95:b0:86:13:8e:55:7b:47:7d:e5: 16:71:07:63:3e:20:09:69:d5:80:f8:80:e8:ee:e4: 50:04:72:8c:af:c0:1c:5b:8c:68:08:6f:5a:17:8e: a5:55:c1:94:62:d4:73:1c:1d:86:08:8d:ba:6b:89: 06:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A7:C3:23:69:77:73:55:94:D0:D7:32:D4:BC:D0:3B:B6:BD:BC:DF X509v3 Authority Key Identifier: keyid:B7:94:F9:97:33:EE:FC:3F:A0:00:3F:68:8F:64:C9:C3:53:92:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.61.118.0/24 Signature Algorithm: sha256WithRSAEncryption 70:8b:bf:e2:94:27:9a:5e:30:76:da:1e:12:31:f6:56:90:8c: a1:ec:3b:93:6b:15:da:b8:b9:87:37:37:6a:ce:3b:1f:77:09: 18:38:a2:be:b5:ce:4f:b1:0a:93:41:35:4f:89:99:81:ff:06: 92:04:60:f9:d6:83:7a:e6:8b:69:7f:1b:e3:54:f1:c5:43:1e: e6:88:97:47:2a:4f:36:dc:3c:e0:7d:19:fc:c4:a0:34:b0:49: f2:e9:6b:e2:b6:f6:e1:5c:7f:30:25:cf:66:32:76:69:94:a9: b2:99:10:be:6c:9e:6c:38:58:a8:75:62:aa:60:16:bf:1b:e2: b9:6c:9c:8c:df:d0:66:37:26:6b:f3:06:66:dc:ad:e3:37:41: b3:79:22:9d:30:23:63:0f:fa:6e:50:5a:3e:9a:c4:d9:5d:10: ac:7e:73:99:99:1f:35:13:cf:b2:ce:c7:3d:b4:21:72:e3:4a: 82:84:96:24:e3:3c:f0:86:38:48:10:1d:e1:3a:1b:c3:96:cb: c1:76:b4:ca:1b:20:b8:d3:3c:3e:80:e0:dd:01:b6:25:21:77: b0:f5:c0:f8:bb:6f:b0:e6:9b:4b:0f:72:ca:5e:65:5f:94:f0: 7c:d1:9d:96:f5:24:0d:4a:18:e1:90:12:28:27:67:8b:5e:b5: f3:b2:df:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NEUxMTExMC8GA1UEBRMoQjc5NEY5OTczM0VFRkMzRkEwMDAzRjY4OEY2NEM5QzM1 MzkyNjZCNTAeFw0yNDA1MjgwNjAwNTBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTU3MzEyLTI2YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8VsfH7VBuP2cZa+ozK4/ehsqDtRgHtK5IxQ22Qnejy1gzks0ucJEsPtiXOs+R Nn5irG/8gO5tU9riyzw1zYaZcQOGTj6uscdpNuyRoLENHFzVZCLSkVO/b3ScuzAv zBjmtZcCveT33Fg45AIqGUqHCy0xeF3vDTo0VnI4/a9z2aIEx0/MZrSnTML89vKr m/tmxqfKWzWI90spos0/Qv9EkeIveGzpcgIANciP+ecqt0CvPxI+89F/RiH6fRXx K+RzSa48+yqXlbCGE45Ve0d95RZxB2M+IAlp1YD4gOju5FAEcoyvwBxbjGgIb1oX jqVVwZRi1HMcHYYIjbpriQYvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoKfDI2l3 c1WU0Ncy1LzQO7a9vN8wHwYDVR0jBBgwFoAUt5T5lzPu/D+gAD9oj2TJw1OSZrUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0RTExLzdCQ0Y4MTI4MUNB ODExRUZBNTAzMEI0REM0RjlBRTAyL3Q1VDVselB1X0QtZ0FEOW9qMlRKdzFPU1py VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDVUNWx6UHVfRC1nQUQ5b2oyVEp3MU9TWnJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEUxMS83QkNGODEyODFDQTgxMUVGQTUwMzBCNERDNEY5QUUwMi9BMjkzOUEzODFD QjcxMUVGOEY5ODI0MENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMo9djANBgkqhkiG9w0BAQsFAAOCAQEAcIu/4pQnml4wdtoe EjH2VpCMoew7k2sV2ri5hzc3as47H3cJGDiivrXOT7EKk0E1T4mZgf8GkgRg+daD euaLaX8b41TxxUMe5oiXRypPNtw84H0Z/MSgNLBJ8ulr4rb24Vx/MCXPZjJ2aZSp spkQvmyebDhYqHViqmAWvxviuWycjN/QZjcma/MGZtyt4zdBs3kinTAjYw/6blBa PprE2V0QrH5zmZkfNRPPss7HPbQhcuNKgoSWJOM88IY4SBAd4Tobw5bLwXa0yhsg uNM8PoDg3QG2JSF3sPXA+LtvsOabSw9yyl5lX5TwfNGdlvUkDUoY4ZASKCdni161 87LfAA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:20 2024 by rpki-client on console-ams.rpki-client.org