$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa File: 9F0BF8AE48C711ECAA1A222EC4F9AE02.roa (raw, json) Hash identifier: fKt/7MCkOPI2Jnu4+1LUGUA8pX+r5jKnzR9IUADBIGw= Subject key identifier: 20:97:E8:41:71:8E:A5:FD:A6:6C:D3:77:1E:51:13:2D:6E:70:35:6E Certificate issuer: /CN=A91B9B37/serialNumber=47388826B81CEBCB5D58EBA41039160D247BC17F Certificate serial: 03F6 Authority key identifier: 47:38:88:26:B8:1C:EB:CB:5D:58:EB:A4:10:39:16:0D:24:7B:C1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa Signing time: Tue 01 Oct 2024 00:44:12 +0000 ROA not before: Tue 01 Oct 2024 00:44:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45768 IP address blocks: 202.129.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.crl rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B37/serialNumber=47388826B81CEBCB5D58EBA41039160D247BC17F Validity Not Before: Oct 1 00:44:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb45dc-ad27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7b:80:c6:48:55:6f:fb:f5:40:13:00:3a:87: 92:4b:55:d2:4f:0e:67:fd:fe:93:11:dc:c5:bf:5f: 67:15:29:8e:99:d3:81:e5:05:a4:b1:69:8e:93:1b: 0a:b2:f0:38:ab:9a:42:13:9f:92:c7:41:36:0c:de: 72:6c:b6:a8:0a:df:5f:a6:76:c4:09:2c:ef:59:3c: ec:52:90:73:93:f8:72:2c:96:51:fd:9f:62:a3:09: b5:28:77:e8:a2:cd:01:a9:09:a9:5d:09:9c:53:35: fa:48:73:2f:88:3f:86:44:8f:61:a9:07:12:07:e5: df:ce:3e:83:b3:fe:c2:9b:49:f5:d8:ba:b4:95:a3: f9:73:66:d2:c6:34:5c:d1:15:53:6d:f5:58:20:fd: e6:ad:f1:da:5f:d1:9d:63:71:f6:2c:96:73:97:53: c6:d3:d7:ee:23:04:34:3f:ee:34:e5:52:b2:7e:d0: 15:9c:a5:d2:f5:cf:01:11:8c:d5:a9:90:07:d8:cd: e9:dc:36:c6:68:f2:06:d9:16:fb:08:7b:77:ea:89: 7d:df:7b:dd:aa:e9:8a:fe:bd:f9:8d:2c:3e:1b:92: 25:f6:93:65:68:59:1e:39:a3:a0:e0:be:77:27:a8: d0:25:8c:87:72:1c:cd:0a:93:d5:dd:90:57:93:72: 43:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:97:E8:41:71:8E:A5:FD:A6:6C:D3:77:1E:51:13:2D:6E:70:35:6E X509v3 Authority Key Identifier: keyid:47:38:88:26:B8:1C:EB:CB:5D:58:EB:A4:10:39:16:0D:24:7B:C1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.252.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:8e:37:0d:49:94:aa:34:84:b5:a3:f0:cc:89:bd:66:da:92: 67:f3:10:c8:20:84:18:7e:7f:06:c6:99:48:f5:a8:5c:30:84: 6c:52:60:b3:3d:ed:3e:1f:ea:07:57:2d:c7:9b:9b:97:19:ed: b0:da:2a:61:60:02:9b:33:cd:ac:ad:d6:26:50:6d:d7:1a:06: 40:45:5b:13:a2:89:e2:67:a2:fa:94:72:44:19:0c:ee:14:8e: d2:6d:da:02:d1:12:7f:d6:00:08:86:3c:83:f0:4c:e1:f9:ce: 96:da:b0:7e:83:93:00:93:a0:82:19:f0:3c:a0:9d:bc:4c:3a: 37:5f:fd:b5:4c:3b:0a:f4:4c:17:ef:bf:99:71:6e:eb:7c:51: 95:15:cf:15:b8:76:84:51:02:9c:94:46:30:33:9d:31:f7:55: 5a:8a:3e:91:35:5a:48:5b:1a:d1:f9:e9:4d:41:f6:da:5c:a0: b5:c0:6e:15:04:6f:42:1e:5e:37:32:01:d4:30:3c:d5:bc:d9: 93:94:f2:3f:a8:7f:dd:9c:f3:9d:e6:10:8c:d4:8e:16:5c:09: 32:d6:41:12:b3:5f:63:a1:d1:ef:82:42:bc:d1:23:97:87:9b: 02:c7:79:c6:a9:90:f1:e4:96:0b:fe:97:77:9a:c6:a9:e6:7e: c4:37:5c:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMzcxMTAvBgNVBAUTKDQ3Mzg4ODI2QjgxQ0VCQ0I1RDU4RUJBNDEwMzkxNjBE MjQ3QkMxN0YwHhcNMjQxMDAxMDA0NDEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiNDVkYy1hZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XuAxkhVb/v1QBMAOoeSS1XSTw5n/f6TEdzFv19nFSmOmdOB5QWksWmOkxsK svA4q5pCE5+Sx0E2DN5ybLaoCt9fpnbECSzvWTzsUpBzk/hyLJZR/Z9iowm1KHfo os0BqQmpXQmcUzX6SHMviD+GRI9hqQcSB+Xfzj6Ds/7Cm0n12Lq0laP5c2bSxjRc 0RVTbfVYIP3mrfHaX9GdY3H2LJZzl1PG09fuIwQ0P+405VKyftAVnKXS9c8BEYzV qZAH2M3p3DbGaPIG2Rb7CHt36ol933vdqumK/r35jSw+G5Il9pNlaFkeOaOg4L53 J6jQJYyHchzNCpPV3ZBXk3JD2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCCX6EFx jqX9pmzTdx5REy1ucDVuMB8GA1UdIwQYMBaAFEc4iCa4HOvLXVjrpBA5Fg0ke8F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIzNy85QzM5QkUxNjQ4 QzQxMUVDOTRFMTJEODVDNEY5QUUwMi9SemlJSnJnYzY4dGRXT3VrRURrV0RTUjd3 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6aUlKcmdjNjh0ZFdPdWtFRGtXRFNSN3dYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMzcvOUMzOUJFMTY0OEM0MTFFQzk0RTEyRDg1QzRGOUFFMDIvOUYwQkY4QUU0 OEM3MTFFQ0FBMUEyMjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgfwwDQYJKoZIhvcNAQELBQADggEBAA2ONw1JlKo0hLWj 8MyJvWbakmfzEMgghBh+fwbGmUj1qFwwhGxSYLM97T4f6gdXLcebm5cZ7bDaKmFg Apszzayt1iZQbdcaBkBFWxOiieJnovqUckQZDO4UjtJt2gLREn/WAAiGPIPwTOH5 zpbasH6DkwCToIIZ8DygnbxMOjdf/bVMOwr0TBfvv5lxbut8UZUVzxW4doRRApyU RjAznTH3VVqKPpE1WkhbGtH56U1B9tpcoLXAbhUEb0IeXjcyAdQwPNW82ZOU8j+o f92c853mEIzUjhZcCTLWQRKzX2Oh0e+CQrzRI5eHmwLHecapkPHklgv+l3eaxqnm fsQ3XBA= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org