$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa File: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (raw, json) Hash identifier: vZeR0lcw46VwexcvwfLFeQsC9FFvQP0E+PgN5RwjHko= Subject key identifier: E4:CA:84:BD:5F:DE:57:7F:F3:1D:0D:E6:D9:4C:C8:EA:B3:17:86:22 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: 02 Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa Signing time: Sun 08 Sep 2024 10:22:45 +0000 ROA not before: Sun 08 Sep 2024 10:22:45 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 23863 IP address blocks: 203.24.166.0/24 maxlen: 24 203.30.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Sep 8 10:22:45 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66dd7af5-1d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cb:9f:ba:71:cd:b3:d2:89:b3:35:92:7c:d2: 62:1c:21:a6:bc:bf:8f:30:07:1b:2e:c8:48:b8:b5: 93:7b:f3:98:e4:43:0c:f6:5e:e4:91:b2:ab:1b:50: 6e:61:58:32:59:30:a9:73:a4:f0:14:0e:49:65:e4: 26:06:d0:70:09:73:c0:51:5c:ee:ab:c2:38:76:5b: 74:0f:ff:63:62:8c:99:ef:3f:9e:1a:56:6a:8e:eb: 54:4d:0e:0a:67:18:ab:c1:58:d1:e1:15:8f:67:d3: 76:46:2d:e9:8e:81:e3:28:9f:11:7c:6f:37:e3:2e: c9:19:d3:65:fe:22:0a:80:3a:1f:5b:04:73:16:6d: a5:c6:9f:a4:7e:e8:2c:41:84:e7:39:7c:cc:3b:9b: c9:eb:22:34:dc:37:30:61:bd:6b:f4:ff:43:a8:9b: f7:2d:f8:25:be:f2:96:1c:df:9a:87:b7:3d:21:1f: d7:bc:9d:a7:35:3a:db:f3:24:b1:bf:63:fb:67:3b: e8:5e:bb:a7:16:32:99:fc:44:86:ff:ca:da:e2:40: 67:e5:b4:0a:a1:7e:16:53:14:30:0b:56:b9:67:fb: 4d:45:da:a9:9a:f1:33:91:17:c6:39:e5:65:fc:e3: e4:97:87:50:92:1c:2f:76:52:40:30:55:11:ae:91: dd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CA:84:BD:5F:DE:57:7F:F3:1D:0D:E6:D9:4C:C8:EA:B3:17:86:22 X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.166.0/24 203.30.79.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ff:24:fe:58:c5:a8:d1:58:68:57:26:60:d2:78:87:3c:e3: fa:05:cc:c0:25:73:26:49:81:eb:37:5c:fc:25:12:20:87:73: 57:e1:e7:5c:ca:e5:f0:d0:ef:a1:d5:92:4f:af:51:b2:89:ec: f8:e9:6a:c9:73:b8:42:e0:16:6e:65:c2:c5:cf:03:55:f0:65: 88:8d:30:33:75:73:1b:13:1d:a6:73:65:f2:1d:be:eb:a1:44: a1:f6:d6:6d:f2:16:3e:6d:ee:6e:ca:b0:25:48:d9:9a:98:74: c6:43:07:a9:41:08:91:b4:62:48:80:72:e5:27:60:94:02:3f: 93:c5:5d:82:31:5a:76:76:f2:e4:6e:eb:2b:ec:71:2b:81:e7: 9f:6f:29:76:95:2f:b2:79:83:25:6e:ba:01:1a:72:51:45:be: 49:f4:ee:62:28:e2:18:f8:25:58:7b:80:4e:be:da:f1:14:6c: ef:6f:69:c4:1b:b8:7c:71:ba:67:ea:52:3a:80:7b:74:11:b5: 53:82:0c:a1:9f:75:de:7b:e1:80:c9:c6:04:c2:d9:f4:88:a8: 5e:a0:b8:23:5e:71:2c:f5:ae:63:b2:73:77:91:38:94:c8:2f: 0c:e6:5d:54:12:6d:1f:f1:c9:79:65:f6:82:9b:05:cd:ba:32: 20:59:1a:f3 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTg5RjExMC8GA1UEBRMoNDMxQjBBNDgzNUZDRjY5NkIzRUNEMzM1OTI1QThFMTM2 MTBDRDEzNzAeFw0yNDA5MDgxMDIyNDVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGQ3YWY1LTFkM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdy5+6cc2z0omzNZJ80mIcIaa8v48wBxsuyEi4tZN785jkQwz2XuSRsqsbUG5h WDJZMKlzpPAUDkll5CYG0HAJc8BRXO6rwjh2W3QP/2NijJnvP54aVmqO61RNDgpn GKvBWNHhFY9n03ZGLemOgeMonxF8bzfjLskZ02X+IgqAOh9bBHMWbaXGn6R+6CxB hOc5fMw7m8nrIjTcNzBhvWv0/0Oom/ct+CW+8pYc35qHtz0hH9e8nac1OtvzJLG/ Y/tnO+heu6cWMpn8RIb/ytriQGfltAqhfhZTFDALVrln+01F2qma8TORF8Y55WX8 4+SXh1CSHC92UkAwVRGukd0DAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU5MqEvV/e V3/zHQ3m2UzI6rMXhiIwHwYDVR0jBBgwFoAUQxsKSDX89paz7NM1klqOE2EM0Tcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFODlGL0FGRkQyMTcwNkRD QjExRUY5QjM5Qjg2NUM0RjlBRTAyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBU Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXhzS1NEWDg5cGF6N05NMWtscU9FMkVNMFRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi80OUFEQjQ0QzZE Q0MxMUVGOEJFMkE1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMsYpgMEAMseTzANBgkqhkiG9w0BAQsFAAOCAQEAMP8k/ljF qNFYaFcmYNJ4hzzj+gXMwCVzJkmB6zdc/CUSIIdzV+HnXMrl8NDvodWST69Rsons +OlqyXO4QuAWbmXCxc8DVfBliI0wM3VzGxMdpnNl8h2+66FEofbWbfIWPm3ubsqw JUjZmph0xkMHqUEIkbRiSIBy5SdglAI/k8VdgjFadnby5G7rK+xxK4Hnn28pdpUv snmDJW66ARpyUUW+SfTuYijiGPglWHuATr7a8RRs729pxBu4fHG6Z+pSOoB7dBG1 U4IMoZ913nvhgMnGBMLZ9IioXqC4I15xLPWuY7Jzd5E4lMgvDOZdVBJtH/HJeWX2 gpsFzboyIFka8w== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org