$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa File: 4B848DCEA6ED11EDA9E80454C4F9AE02.roa (raw, json) Hash identifier: ZBtOF1xT6EKlO+rHUrRBk/pUU05Lr98W+iZWu8Btr6s= Subject key identifier: 23:62:01:07:08:25:B7:C1:AA:C3:27:21:70:1C:4C:7B:E4:B3:1F:3A Certificate issuer: /CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Certificate serial: 21CF Authority key identifier: 1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa Signing time: Sun 31 Dec 2023 16:13:14 +0000 ROA not before: Sun 31 Dec 2023 16:13:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135004 IP address blocks: 202.165.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8655 (0x21cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Validity Not Before: Dec 31 16:13:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6591931a-ac96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a4:b7:7f:4d:7a:3c:ea:94:1b:01:c4:76:23: b2:dc:6a:bd:02:cc:92:9a:a1:b9:1a:32:0b:60:e1: 73:74:30:18:68:8e:75:77:01:fa:f6:c0:13:cd:f9: ac:3d:a8:6d:a7:84:3e:7f:3b:83:ea:cc:03:35:c4: 48:73:fe:d3:46:80:b0:6b:65:e0:8b:c1:09:d8:91: 73:5f:f4:05:d2:bc:7e:5b:d6:f3:0a:7a:26:ba:a7: 00:58:d2:7c:ce:76:63:4b:3c:48:f7:9a:93:bd:be: af:83:ac:52:99:31:a5:47:6d:6e:ec:72:5d:93:ce: 7d:a4:d0:a8:bc:5a:d3:e3:20:62:5a:70:36:d6:09: 1f:52:dc:a0:f5:93:83:a4:13:30:6f:c8:f0:a1:c1: af:7a:97:b8:b5:6a:fa:3d:a2:ed:24:0c:ad:89:ea: 1f:21:50:a9:7a:53:56:d4:c1:bf:55:c0:3e:1d:29: 29:6f:7c:b3:66:18:ae:a4:8b:13:61:80:1b:52:33: 65:87:1c:b6:76:22:b1:50:f3:d8:fc:54:05:9b:92: 69:79:36:d7:ff:d3:a3:4c:60:e6:2b:2e:e9:4f:e4: 6d:c5:d9:ae:cf:53:9f:e9:8c:44:cb:95:0c:e2:a5: b1:8e:f1:db:b1:37:6e:2d:45:62:ab:6d:b7:a2:42: a1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:62:01:07:08:25:B7:C1:AA:C3:27:21:70:1C:4C:7B:E4:B3:1F:3A X509v3 Authority Key Identifier: keyid:1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.165.124.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:fe:d9:3c:2c:08:5e:f4:b9:66:31:74:81:5d:f3:55:80:28: 75:7e:76:15:96:59:ed:4e:0c:2a:50:06:ce:06:f1:ef:18:ba: f0:e0:0c:55:af:81:4f:1c:ae:78:6e:62:2a:c5:d1:6f:7f:a6: ac:b0:d8:de:a3:4a:3e:ea:5c:a2:aa:c3:e9:31:f0:ec:2b:c0: 0c:0f:97:de:99:ae:be:aa:8b:4c:d2:2a:a6:7f:04:5c:76:cc: 2b:83:d2:68:ef:c2:13:84:9e:25:44:04:59:ff:92:ba:7d:7b: 3f:d0:1a:17:f1:c3:32:64:cf:f0:93:94:21:eb:40:7f:aa:8f: 8b:64:b4:2e:58:b7:0d:ee:9a:d1:cc:50:c4:7b:3d:2e:c6:ce: ae:df:68:ca:91:1b:8f:b0:f2:2b:a3:00:eb:8b:30:2a:de:22: fc:fe:56:00:4f:cf:bd:76:ad:6d:a1:d7:17:0a:a3:09:53:77: 27:92:60:1d:be:6e:3c:f4:13:d5:b2:f5:48:10:67:fa:0d:2c: 15:c4:f3:4e:25:eb:7a:54:5f:9b:ec:8a:eb:c4:bf:3d:03:83: 0b:fc:28:83:cc:30:05:22:a0:64:0a:cb:1e:9e:c4:44:50:07: fb:8c:33:06:b7:db:e1:54:c3:b2:5e:7e:e7:fd:34:e3:d0:15: a1:55:7e:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NjMxMTAvBgNVBAUTKDFBOTdDMkY0NzExRjdCQzgwMkUyNjhBQzY2RjExMDg2 MkJFNTc4ODgwHhcNMjMxMjMxMTYxMzE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkxOTMxYS1hYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqS3f016POqUGwHEdiOy3Gq9AsySmqG5GjILYOFzdDAYaI51dwH69sATzfms Pahtp4Q+fzuD6swDNcRIc/7TRoCwa2Xgi8EJ2JFzX/QF0rx+W9bzCnomuqcAWNJ8 znZjSzxI95qTvb6vg6xSmTGlR21u7HJdk859pNCovFrT4yBiWnA21gkfUtyg9ZOD pBMwb8jwocGvepe4tWr6PaLtJAytieofIVCpelNW1MG/VcA+HSkpb3yzZhiupIsT YYAbUjNlhxy2diKxUPPY/FQFm5JpeTbX/9OjTGDmKy7pT+Rtxdmuz1Of6YxEy5UM 4qWxjvHbsTduLUViq223okKhBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNiAQcI JbfBqsMnIXAcTHvksx86MB8GA1UdIwQYMBaAFBqXwvRxH3vIAuJorGbxEIYr5XiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY2My9COEFFRjEzOEE5 NEMxMUU1ODI5MUNBNjdDNEY5QUUwMi9HcGZDOUhFZmU4Z0M0bWlzWnZFUWhpdmxl SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwZkM5SEVmZThnQzRtaXNadkVRaGl2bGVJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NjMvQjhBRUYxMzhBOTRDMTFFNTgyOTFDQTY3QzRGOUFFMDIvNEI4NDhEQ0VB NkVEMTFFREE5RTgwNDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKpXwwDQYJKoZIhvcNAQELBQADggEBABv+2TwsCF70uWYx dIFd81WAKHV+dhWWWe1ODCpQBs4G8e8YuvDgDFWvgU8crnhuYirF0W9/pqyw2N6j Sj7qXKKqw+kx8OwrwAwPl96Zrr6qi0zSKqZ/BFx2zCuD0mjvwhOEniVEBFn/krp9 ez/QGhfxwzJkz/CTlCHrQH+qj4tktC5Ytw3umtHMUMR7PS7Gzq7faMqRG4+w8iuj AOuLMCreIvz+VgBPz712rW2h1xcKowlTdyeSYB2+bjz0E9Wy9UgQZ/oNLBXE804l 63pUX5vsiuvEvz0Dgwv8KIPMMAUioGQKyx6exERQB/uMMwa32+FUw7Jefuf9NOPQ FaFVfok= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org