$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa File: 281775F671A711EE85493C7BC4F9AE02.roa (raw, json) Hash identifier: BACyePdfCThTkkGSMdPNsRpHZtdIdBJX2cl+z8bcJWM= Subject key identifier: 8D:D1:7C:C7:26:8A:9D:1D:71:B9:11:23:06:DD:FF:59:72:43:90:5B Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0145 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa Signing time: Mon 03 Jun 2024 06:55:21 +0000 ROA not before: Mon 03 Jun 2024 06:55:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 200017 IP address blocks: 202.134.235.0/24 maxlen: 24 202.134.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 3 06:55:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d68d9-07b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e2:97:25:60:e8:1b:6a:e2:b4:01:8c:09:dc: 1b:c9:f7:42:4f:4b:d0:38:40:11:44:b1:a0:07:3b: 88:65:d7:be:b3:64:40:76:17:87:1f:d5:6a:0c:59: 87:32:1b:6d:3f:34:87:24:eb:26:80:6f:1e:82:70: c1:ec:92:c5:b0:02:5b:0f:ec:c0:d7:9d:af:38:42: db:26:b7:c7:1e:ec:1f:e0:34:81:68:cb:cf:31:32: 41:c0:4d:65:07:93:23:b1:6d:64:99:c3:60:ce:9b: db:0d:92:49:49:b8:49:ad:7b:64:fa:55:c7:1e:ab: 08:0f:1a:7e:0a:42:85:2a:05:8a:9c:71:fc:24:5f: 06:54:49:3c:68:38:e9:44:37:63:31:d2:98:49:a1: a1:68:e7:26:77:f7:68:1a:6c:57:a0:c7:a0:33:98: 80:14:01:4c:56:59:bb:33:fc:db:ea:d5:21:a2:ee: 3c:d6:85:b7:5d:86:93:e3:c3:95:68:d6:ab:53:66: 29:b2:fa:26:66:32:ba:fa:cb:b7:29:55:ca:d4:22: ea:db:f1:75:f3:82:7c:f0:60:3c:4b:34:25:39:85: 45:0d:8b:da:57:32:dc:a5:26:8f:ce:65:9d:4c:f8: 07:4b:67:af:c7:1b:01:be:8d:42:02:93:4a:57:1f: e1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:7C:C7:26:8A:9D:1D:71:B9:11:23:06:DD:FF:59:72:43:90:5B X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/281775F671A711EE85493C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.235.0/24 202.134.238.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:11:a0:b9:32:93:92:05:de:30:a9:a3:11:01:d5:15:a1:e1: a3:a5:59:5c:64:27:e2:aa:a1:61:30:74:83:57:fa:3d:ad:63: 85:de:10:e6:f1:bc:8a:23:38:f2:e1:89:67:79:dc:86:6c:a1: 9b:2a:27:60:8b:0b:4d:29:f6:59:c2:b0:1d:a5:8f:0c:77:3d: 4d:b7:85:7b:89:0b:99:b1:92:ef:d2:48:62:5f:d4:95:b6:52: 74:8e:a7:15:f4:7f:9f:6e:61:22:83:56:f2:3d:91:e4:e3:37: df:42:83:62:b6:15:d2:2c:6e:f8:4a:5a:56:ef:1c:19:2c:0f: bc:37:99:1b:3a:96:d5:82:0c:b2:11:6c:b2:91:b2:62:df:da: 05:20:dd:92:8e:ba:43:bf:c3:2c:4c:90:a4:b6:bf:0d:37:d4: 32:87:64:69:cd:ce:49:2b:d2:60:38:d3:14:6d:65:c1:7e:57: e8:13:cb:9b:da:09:4d:10:74:e0:67:e7:6d:18:64:0a:59:cb: 73:10:9a:4b:93:72:70:c3:bc:52:ad:ef:2e:ca:0b:bb:fd:2d: 1a:6f:be:4e:7c:a0:3c:5f:e2:7c:42:0b:62:46:a6:21:4b:f4: 24:93:e7:92:f4:e0:d9:93:80:d1:99:17:bf:a1:a7:89:2a:9e: ab:78:c9:2b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjQwNjAzMDY1NTIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNjhkOS0wN2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOKXJWDoG2ritAGMCdwbyfdCT0vQOEARRLGgBzuIZde+s2RAdheHH9VqDFmH MhttPzSHJOsmgG8egnDB7JLFsAJbD+zA152vOELbJrfHHuwf4DSBaMvPMTJBwE1l B5MjsW1kmcNgzpvbDZJJSbhJrXtk+lXHHqsIDxp+CkKFKgWKnHH8JF8GVEk8aDjp RDdjMdKYSaGhaOcmd/doGmxXoMegM5iAFAFMVlm7M/zb6tUhou481oW3XYaT48OV aNarU2YpsvomZjK6+su3KVXK1CLq2/F184J88GA8SzQlOYVFDYvaVzLcpSaPzmWd TPgHS2evxxsBvo1CApNKVx/hswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI3RfMcm ip0dcbkRIwbd/1lyQ5BbMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvMjgxNzc1RjY3 MUE3MTFFRTg1NDkzQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKhusDBADKhu4wDQYJKoZIhvcNAQELBQADggEBAC4RoLky k5IF3jCpoxEB1RWh4aOlWVxkJ+KqoWEwdINX+j2tY4XeEObxvIojOPLhiWd53IZs oZsqJ2CLC00p9lnCsB2ljwx3PU23hXuJC5mxku/SSGJf1JW2UnSOpxX0f59uYSKD VvI9keTjN99Cg2K2FdIsbvhKWlbvHBksD7w3mRs6ltWCDLIRbLKRsmLf2gUg3ZKO ukO/wyxMkKS2vw031DKHZGnNzkkr0mA40xRtZcF+V+gTy5vaCU0QdOBn520YZApZ y3MQmkuTcnDDvFKt7y7KC7v9LRpvvk58oDxf4nxCC2JGpiFL9CST55L04NmTgNGZ F7+hp4kqnqt4ySs= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org