$ rpki-client -vvf rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa File: AFB65238AFDC11EAB3910C71C4F9AE02.roa (raw, json) Hash identifier: EBO15MW174X/0lG9Tyg/d0MIdJqeD9aANY0+I0S/im0= Subject key identifier: 7E:41:6B:36:C8:74:A7:F9:00:91:86:76:17:E9:01:A2:82:5A:3A:CF Certificate issuer: /CN=A91B933A/serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Certificate serial: 240B Authority key identifier: 6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa Signing time: Wed 06 Dec 2023 16:22:35 +0000 ROA not before: Wed 06 Dec 2023 16:22:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 23657 IP address blocks: 202.4.44.0/24 maxlen: 24 202.4.45.0/24 maxlen: 24 202.4.46.0/24 maxlen: 24 202.4.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9227 (0x240b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B933A/serialNumber=6E8EA1E3240C0BB3D13B4D275C6C0326A568EC87 Validity Not Before: Dec 6 16:22:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65709fca-9af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:39:2d:cc:b7:1f:67:e9:29:8c:85:81:3e:c3: 3a:40:01:fa:3a:29:e9:06:0b:ac:8e:30:c5:c3:da: e6:fb:d3:e8:66:62:79:cc:58:60:6e:95:fe:8b:d5: d8:ef:6f:5e:4c:42:43:a4:3e:7a:74:08:98:b8:30: 82:31:dd:93:6c:5f:a6:e7:29:5e:d0:c0:4a:b8:36: c8:7a:26:c8:6a:10:ed:e6:1f:98:3a:a9:c0:69:90: e4:1c:e7:5f:40:2e:26:0a:b2:6b:5a:36:75:ea:d2: c3:5b:de:e7:90:54:d6:8d:93:87:da:d9:4b:6b:a7: 4a:b9:c7:a5:34:0d:7d:d7:ea:84:c9:94:8f:39:32: d4:66:5b:7a:17:4d:5d:25:60:bf:64:61:79:a2:2f: 93:a7:85:27:b6:e0:03:02:a5:10:e0:4a:b8:be:77: df:72:85:75:84:e6:f8:b0:39:ea:33:a7:e0:d0:26: 3f:6e:6f:b8:81:cb:ed:72:c3:83:11:cd:05:0c:eb: 26:b1:64:ce:7b:ca:39:25:91:3e:ac:29:06:61:0c: 6b:ef:01:97:48:d2:39:3c:cb:a7:fb:54:4f:82:a8: 42:71:45:80:88:66:4f:95:a4:ae:c6:9e:3e:13:66: 9b:d9:e9:2c:f8:8c:82:44:62:c2:d9:c5:81:df:1f: 05:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:41:6B:36:C8:74:A7:F9:00:91:86:76:17:E9:01:A2:82:5A:3A:CF X509v3 Authority Key Identifier: keyid:6E:8E:A1:E3:24:0C:0B:B3:D1:3B:4D:27:5C:6C:03:26:A5:68:EC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/bo6h4yQMC7PRO00nXGwDJqVo7Ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bo6h4yQMC7PRO00nXGwDJqVo7Ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B933A/53FE1EFA2B6411E58A2F0754C4F9AE02/AFB65238AFDC11EAB3910C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.44.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:a4:70:83:ca:99:09:08:c6:21:ea:51:1e:98:be:74:c0:52: f7:89:33:7c:ad:76:6a:b5:d9:64:30:57:41:1e:a1:dd:1b:56: 87:f8:9b:dd:da:e6:c9:7e:b1:fc:48:a8:c3:40:3a:11:62:5e: c8:9c:be:f7:41:47:37:b2:29:bd:b5:0e:82:eb:be:ea:52:4f: 18:e7:5d:47:98:d8:c4:89:8c:70:03:4b:31:0d:3e:d4:88:8a: 75:4a:ef:e6:2d:18:c8:4b:7e:47:4d:1b:63:7a:4d:21:9c:a7: 90:af:aa:e4:bf:b5:c4:ef:10:07:67:04:7e:fa:83:74:30:67: 8b:04:fc:71:c1:ed:3d:12:39:04:40:65:dd:3f:04:2d:6d:ee: 6e:ad:fd:49:cf:1d:22:e5:47:bd:2c:e2:11:6a:3b:50:50:e1: b9:30:c5:25:bd:fb:aa:5b:3b:6e:b4:bb:01:05:54:b8:3c:95: 61:0e:74:01:a7:38:29:45:49:a8:67:70:8d:0c:68:9b:35:57: 18:3c:db:1f:d5:51:b3:08:72:87:63:05:f8:69:59:2d:bb:ef: b0:a0:1a:4c:fc:60:d7:79:62:90:89:42:11:0a:6a:e1:d7:35: ef:70:8f:d7:64:8d:02:50:4c:c4:8d:b4:9f:18:c2:58:b9:12: fa:e9:e7:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkzM0ExMTAvBgNVBAUTKDZFOEVBMUUzMjQwQzBCQjNEMTNCNEQyNzVDNkMwMzI2 QTU2OEVDODcwHhcNMjMxMjA2MTYyMjM1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwOWZjYS05YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TktzLcfZ+kpjIWBPsM6QAH6OinpBgusjjDFw9rm+9PoZmJ5zFhgbpX+i9XY 729eTEJDpD56dAiYuDCCMd2TbF+m5yle0MBKuDbIeibIahDt5h+YOqnAaZDkHOdf QC4mCrJrWjZ16tLDW97nkFTWjZOH2tlLa6dKucelNA191+qEyZSPOTLUZlt6F01d JWC/ZGF5oi+Tp4UntuADAqUQ4Eq4vnffcoV1hOb4sDnqM6fg0CY/bm+4gcvtcsOD Ec0FDOsmsWTOe8o5JZE+rCkGYQxr7wGXSNI5PMun+1RPgqhCcUWAiGZPlaSuxp4+ E2ab2eks+IyCRGLC2cWB3x8FQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH5BazbI dKf5AJGGdhfpAaKCWjrPMB8GA1UdIwQYMBaAFG6OoeMkDAuz0TtNJ1xsAyalaOyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTMzQS81M0ZFMUVGQTJC NjQxMUU1OEEyRjA3NTRDNEY5QUUwMi9ibzZoNHlRTUM3UFJPMDBuWEd3REpxVm83 SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JvNmg0eVFNQzdQUk8wMG5YR3dESnFWbzdJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkzM0EvNTNGRTFFRkEyQjY0MTFFNThBMkYwNzU0QzRGOUFFMDIvQUZCNjUyMzhB RkRDMTFFQUIzOTEwQzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKBCwwDQYJKoZIhvcNAQELBQADggEBAI2kcIPKmQkIxiHq UR6YvnTAUveJM3ytdmq12WQwV0Eeod0bVof4m93a5sl+sfxIqMNAOhFiXsicvvdB RzeyKb21DoLrvupSTxjnXUeY2MSJjHADSzENPtSIinVK7+YtGMhLfkdNG2N6TSGc p5CvquS/tcTvEAdnBH76g3QwZ4sE/HHB7T0SOQRAZd0/BC1t7m6t/UnPHSLlR70s 4hFqO1BQ4bkwxSW9+6pbO260uwEFVLg8lWEOdAGnOClFSahncI0MaJs1Vxg82x/V UbMIcodjBfhpWS2777CgGkz8YNd5YpCJQhEKauHXNe9wj9dkjQJQTMSNtJ8Ywli5 Evrp51c= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org