$ rpki-client -vvf rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/4BD423FE3AF911EC918C643AC4F9AE02.roa File: 4BD423FE3AF911EC918C643AC4F9AE02.roa (raw, json) Hash identifier: NFITE7TJAb/KXxBkyjqQoKIW0rgE3xHfQ2EjzFnf43U= Subject key identifier: 8B:B9:4D:98:37:A7:2C:E6:82:F1:3E:40:66:E5:FE:31:1F:9C:2E:F9 Certificate issuer: /CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Certificate serial: 03C6 Authority key identifier: D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/4BD423FE3AF911EC918C643AC4F9AE02.roa Signing time: Fri 05 Apr 2024 03:05:19 +0000 ROA not before: Fri 05 Apr 2024 03:05:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 2764 IP address blocks: 202.93.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 966 (0x3c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Validity Not Before: Apr 5 03:05:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660f6a6f-f8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:f9:92:d9:a8:09:f5:6f:ea:62:57:4e:02: e3:fd:15:48:7f:6d:90:aa:10:bd:12:f8:b7:19:85: 4e:55:d9:b2:93:35:b2:ff:14:37:c8:85:cd:86:6c: 28:3f:3a:17:13:03:20:e1:0d:fe:c8:0e:a4:31:01: 17:a2:89:32:b3:d7:c9:30:2f:0b:07:b5:64:fb:20: 85:59:70:91:95:7f:ca:94:c3:b1:72:d5:39:0b:9c: ae:75:89:f5:e1:2d:bc:64:48:7e:69:de:8a:2b:cd: df:27:63:ad:64:dc:09:43:68:72:1f:4a:2e:e1:a2: f4:5d:bd:76:fc:98:80:b3:71:9e:76:1e:07:8f:30: cf:74:83:ee:a7:0a:25:73:c7:06:2d:e5:e4:08:a8: 0d:d0:54:43:8a:ff:db:6c:7f:52:9b:05:64:3e:a5: 03:5a:f6:bd:a7:08:7e:bf:a6:5d:09:08:66:f7:3a: b4:96:37:35:10:53:f4:5a:98:66:52:92:b3:37:e9: d2:7a:b7:3b:5a:4c:6e:e7:9b:0b:99:14:2a:59:9e: 1b:34:f7:39:21:10:8a:68:a0:9e:11:83:e2:97:62: 50:61:66:5a:2c:14:98:2e:d5:e8:53:62:62:5a:20: 44:52:8c:8c:13:ad:83:5c:e3:d8:34:ea:35:4f:1d: f2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B9:4D:98:37:A7:2C:E6:82:F1:3E:40:66:E5:FE:31:1F:9C:2E:F9 X509v3 Authority Key Identifier: keyid:D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/4BD423FE3AF911EC918C643AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.93.181.0/24 Signature Algorithm: sha256WithRSAEncryption 34:62:b5:6d:91:53:88:7c:58:fd:22:8c:e2:39:ba:a3:a2:b1: 31:b2:d2:37:0e:47:80:7e:48:18:0b:39:49:1d:f2:c7:e6:14: 84:40:b4:44:72:f1:5e:18:3a:2c:97:f4:d1:7b:e2:1c:45:cb: 6a:78:a4:0b:50:09:d8:c0:bd:34:b5:14:e4:ec:f7:26:50:d1: f1:45:b9:93:55:52:c9:9f:80:eb:46:3e:8b:59:bc:cd:0a:a3: 0f:7b:0e:59:5c:20:e1:f5:d8:62:d3:48:25:9e:e1:d3:f4:27: a2:e3:fa:2f:64:c3:45:2d:a0:3b:73:e0:89:c6:f8:dd:e2:90: f3:c5:8f:77:c0:b5:01:42:86:ca:b5:75:35:59:2b:08:27:7b: 9b:cc:d8:d7:d7:e4:11:0b:ee:3d:69:da:65:2a:92:90:0c:4e: cb:b2:20:3c:86:7f:06:d8:62:07:d8:ad:93:e0:91:6c:27:6d: e7:2b:ff:fe:32:ce:df:6d:7b:57:41:48:b3:4e:94:e3:45:79: af:68:75:da:58:a1:fb:da:b2:f0:89:98:25:05:44:52:ae:0d: 5c:7a:91:fc:b6:bf:e2:45:6a:ae:29:8e:ad:21:2a:df:89:7c: 89:ea:3b:3f:88:d8:67:de:ee:8c:ef:4d:f4:32:03:9b:ad:d3: 12:f4:fe:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEQ0UxMTAvBgNVBAUTKEQ3OUE4Qzc3MDVFMjQxOUVBQjQyOTUzQjZCQzhBNTcy MDZCQUM2MjYwHhcNMjQwNDA1MDMwNTE5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmNmE2Zi1mOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNb5ktmoCfVv6mJXTgLj/RVIf22QqhC9Evi3GYVOVdmykzWy/xQ3yIXNhmwo PzoXEwMg4Q3+yA6kMQEXookys9fJMC8LB7Vk+yCFWXCRlX/KlMOxctU5C5yudYn1 4S28ZEh+ad6KK83fJ2OtZNwJQ2hyH0ou4aL0Xb12/JiAs3Gedh4HjzDPdIPupwol c8cGLeXkCKgN0FRDiv/bbH9SmwVkPqUDWva9pwh+v6ZdCQhm9zq0ljc1EFP0Wphm UpKzN+nSerc7Wkxu55sLmRQqWZ4bNPc5IRCKaKCeEYPil2JQYWZaLBSYLtXoU2Ji WiBEUoyME62DXOPYNOo1Tx3yjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIu5TZg3 pyzmgvE+QGbl/jEfnC75MB8GA1UdIwQYMBaAFNeajHcF4kGeq0KVO2vIpXIGusYm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQURDRS8wRjcyODFCQzNB RjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFaNnJRcFU3YThpbGNnYTZ4 aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE1cU1kd1hpUVo2clFwVTdhOGlsY2dhNnhpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFEQ0UvMEY3MjgxQkMzQUY0MTFFQzg5Q0UwNzJGQzRGOUFFMDIvNEJENDIzRkUz QUY5MTFFQzkxOEM2NDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXbUwDQYJKoZIhvcNAQELBQADggEBADRitW2RU4h8WP0i jOI5uqOisTGy0jcOR4B+SBgLOUkd8sfmFIRAtERy8V4YOiyX9NF74hxFy2p4pAtQ CdjAvTS1FOTs9yZQ0fFFuZNVUsmfgOtGPotZvM0Kow97DllcIOH12GLTSCWe4dP0 J6Lj+i9kw0UtoDtz4InG+N3ikPPFj3fAtQFChsq1dTVZKwgne5vM2NfX5BEL7j1p 2mUqkpAMTsuyIDyGfwbYYgfYrZPgkWwnbecr//4yzt9te1dBSLNOlONFea9oddpY ofvasvCJmCUFRFKuDVx6kfy2v+JFaq4pjq0hKt+JfInqOz+I2Gfe7ozvTfQyA5ut 0xL0/p8= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:04 2024 by rpki-client on console-ams.rpki-client.org