$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa File: 25414F2653C111EFAFCEBF4BC4F9AE02.roa (raw, json) Hash identifier: jMt+zPSdsH4GLtGoNnFENbcQ9dEXXEWL0+DSZgg74rs= Subject key identifier: 98:4C:BD:7C:BB:AB:C9:66:83:B4:67:C3:F8:6E:50:8D:93:4B:02:E3 Certificate issuer: /CN=A91BD6D4/serialNumber=6528A61459599C060197EB59A9FC78E665849755 Certificate serial: 21 Authority key identifier: 65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa Signing time: Fri 27 Sep 2024 06:30:28 +0000 ROA not before: Fri 27 Sep 2024 06:30:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58713 IP address blocks: 203.28.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD6D4/serialNumber=6528A61459599C060197EB59A9FC78E665849755 Validity Not Before: Sep 27 06:30:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f65104-5838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:ca:a8:89:1b:0a:75:64:c9:88:4e:53:a5: 00:45:59:09:b8:c3:ba:2b:b1:3a:ef:d0:81:3d:0a: 54:1e:84:76:a0:32:ce:7e:ca:04:4d:ef:fd:e3:a3: c0:1a:d6:6d:7d:33:15:7c:97:df:05:2d:76:a4:58: 54:37:79:47:f7:d9:f1:0a:55:cb:3e:59:82:86:97: d7:66:5d:99:df:d0:27:8c:a1:6e:af:f3:6b:6d:6a: 3f:44:b3:33:d4:d7:fd:0e:cb:f9:ac:b0:7a:68:37: 15:38:9b:89:93:3e:92:e4:94:ec:02:ba:55:32:1e: 22:7b:e6:d2:86:6c:d6:d7:36:06:2b:73:e9:3e:63: 08:c5:f8:1a:b5:7c:ad:af:59:e7:48:eb:4e:c0:b8: 8e:1a:4f:4e:37:d5:a8:86:5e:54:67:ce:76:90:c8: be:98:d8:f7:fe:e8:5e:11:df:af:79:12:91:b8:d1: 29:1c:0e:b4:4b:07:90:d9:0f:c0:15:dc:ff:9d:49: 7f:a8:31:43:03:58:35:b8:53:09:3c:ca:bb:49:64: 61:b6:31:32:9b:87:89:3f:95:b7:07:6a:e0:85:3a: 5d:96:40:c1:a6:a7:5d:d1:eb:8d:eb:f4:9d:76:5d: fe:9f:c6:65:3b:aa:7c:be:ee:3a:c4:15:4d:95:29: 9b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4C:BD:7C:BB:AB:C9:66:83:B4:67:C3:F8:6E:50:8D:93:4B:02:E3 X509v3 Authority Key Identifier: keyid:65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.22.0/24 Signature Algorithm: sha256WithRSAEncryption a3:d6:38:2f:cb:04:d8:82:fd:9f:a3:be:6c:36:a6:8c:df:a3: 45:c4:c1:4a:da:57:c8:e9:32:70:cc:bf:fa:5b:2d:b1:ec:42: a3:5b:84:1f:6d:4f:e5:8d:06:a8:f8:af:73:a0:24:cc:ab:f9: 11:8f:d9:5a:93:06:e0:ae:8b:aa:51:1e:22:ef:4a:24:3a:9a: b2:d0:31:16:9a:28:da:b6:c3:86:70:cf:5b:b6:55:3b:fe:bc: 36:26:f3:07:3e:3b:43:a7:cf:d7:f2:cb:24:02:a8:f3:5a:2b: 23:09:f2:0e:23:cb:05:06:4a:b9:b6:7d:2c:a9:d1:1b:31:62: 4c:82:13:7a:4e:b8:8f:00:83:86:f7:5f:27:74:03:4f:2e:ad: fe:61:a0:a6:c9:a1:84:dd:7a:a1:16:54:27:21:e7:fc:cb:d4: 60:37:23:4f:a5:44:3d:9f:9d:4c:8c:8b:3c:e5:ce:09:bc:3f: 12:5d:b2:75:ce:54:50:3d:52:2c:4e:53:b1:70:e9:77:d0:00: 1d:e4:1d:fd:f2:d9:96:2f:00:32:92:7a:37:5e:5d:ef:34:09: 70:ff:de:25:12:e5:50:17:ea:29:ef:0f:27:45:00:de:cf:93: 6f:16:76:52:7e:3c:ce:1c:ab:75:72:26:a6:0b:50:9d:11:23: 00:5a:a7:c7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDZENDExMC8GA1UEBRMoNjUyOEE2MTQ1OTU5OUMwNjAxOTdFQjU5QTlGQzc4RTY2 NTg0OTc1NTAeFw0yNDA5MjcwNjMwMjhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjY1MTA0LTU4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXI8qoiRsKdWTJiE5TpQBFWQm4w7orsTrv0IE9ClQehHagMs5+ygRN7/3jo8Aa 1m19MxV8l98FLXakWFQ3eUf32fEKVcs+WYKGl9dmXZnf0CeMoW6v82ttaj9EszPU 1/0Oy/mssHpoNxU4m4mTPpLklOwCulUyHiJ75tKGbNbXNgYrc+k+YwjF+Bq1fK2v WedI607AuI4aT0431aiGXlRnznaQyL6Y2Pf+6F4R3695EpG40SkcDrRLB5DZD8AV 3P+dSX+oMUMDWDW4Uwk8yrtJZGG2MTKbh4k/lbcHauCFOl2WQMGmp13R643r9J12 Xf6fxmU7qny+7jrEFU2VKZufAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmEy9fLur yWaDtGfD+G5QjZNLAuMwHwYDVR0jBBgwFoAUZSimFFlZnAYBl+tZqfx45mWEl1Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJENkQ0L0IzNDFFMDMwNTM4 RDExRUY4MjQwMEIxQ0M0RjlBRTAyL1pTaW1GRmxabkFZQmwtdFpxZng0NW1XRWwx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlNpbUZGbFpuQVlCbC10WnFmeDQ1bVdFbDFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDZENC9CMzQxRTAzMDUzOEQxMUVGODI0MDBCMUNDNEY5QUUwMi8yNTQxNEYyNjUz QzExMUVGQUZDRUJGNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMscFjANBgkqhkiG9w0BAQsFAAOCAQEAo9Y4L8sE2IL9n6O+ bDamjN+jRcTBStpXyOkycMy/+lstsexCo1uEH21P5Y0GqPivc6AkzKv5EY/ZWpMG 4K6LqlEeIu9KJDqastAxFpoo2rbDhnDPW7ZVO/68NibzBz47Q6fP1/LLJAKo81or IwnyDiPLBQZKubZ9LKnRGzFiTIITek64jwCDhvdfJ3QDTy6t/mGgpsmhhN16oRZU JyHn/MvUYDcjT6VEPZ+dTIyLPOXOCbw/El2ydc5UUD1SLE5TsXDpd9AAHeQd/fLZ li8AMpJ6N15d7zQJcP/eJRLlUBfqKe8PJ0UA3s+TbxZ2Un48zhyrdXImpgtQnREj AFqnxw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org