$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/63FFD6349A6611EEA0301E57C4F9AE02.roa File: 63FFD6349A6611EEA0301E57C4F9AE02.roa (raw, json) Hash identifier: z8HOz+dcoFFCcCFSoZRS4fGtZxXcsHPetEWPBXuLWp4= Subject key identifier: 13:B4:A4:3F:94:AD:E8:C9:8D:92:BD:0D:BB:9A:1E:79:F3:2C:81:45 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0147 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/63FFD6349A6611EEA0301E57C4F9AE02.roa Signing time: Mon 03 Jun 2024 06:55:23 +0000 ROA not before: Mon 03 Jun 2024 06:55:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 23679 IP address blocks: 202.134.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550 Validity Not Before: Jun 3 06:55:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d68db-9229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:52:ed:bc:d4:0d:6d:d5:af:15:fb:eb:37: 1a:a3:b7:fe:47:b2:7d:06:7e:d2:e3:18:f0:9d:25: 9c:9a:f4:f1:12:2a:07:06:7a:88:d2:7a:89:62:1b: 81:73:d2:29:91:a9:0a:67:62:60:45:f5:df:50:1e: b3:2a:2e:fd:6b:71:08:75:cf:47:70:e1:bc:e8:6c: 79:38:4e:eb:ae:f5:02:ee:97:8a:e1:2a:33:bc:cc: 2f:27:d3:57:35:55:47:57:dc:f0:2d:79:47:31:9a: a2:7c:93:3f:f1:b9:6d:71:ea:e6:ef:b6:76:6b:6a: 5d:4b:7f:81:8c:31:ba:e9:df:aa:fb:ef:76:22:be: 7a:c6:9c:8e:9f:af:b7:ab:d9:b2:e9:5d:76:38:76: fa:15:12:2e:76:93:4f:d4:dc:e1:67:bf:b7:33:6a: bd:70:cf:bf:9a:e2:21:52:fc:b1:b1:27:3f:e2:a5: 06:26:ce:2b:00:b4:83:e9:d5:86:aa:22:34:a8:f4: 42:96:db:91:a5:2a:8d:1f:ac:5a:34:2f:cf:65:60: 7f:69:2f:7e:f8:77:0a:22:e2:09:89:f5:49:fc:38: e8:4e:8d:db:4a:32:f4:be:3a:a0:2b:46:f6:07:be: 03:84:9e:d0:7d:fa:89:56:37:35:dc:62:7f:2a:c9: b8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B4:A4:3F:94:AD:E8:C9:8D:92:BD:0D:BB:9A:1E:79:F3:2C:81:45 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/63FFD6349A6611EEA0301E57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.236.0/24 Signature Algorithm: sha256WithRSAEncryption 61:e7:49:f9:54:ef:98:d3:1a:f0:6a:c5:40:3c:c5:16:9f:de: 70:b4:ce:6a:3a:c0:f7:27:40:71:38:25:47:bc:1d:dd:7f:39: 4b:bc:ac:c3:a1:96:71:9d:f3:22:e5:0e:1f:f0:ee:52:66:c0: 3f:ac:e9:35:2b:28:3e:ad:63:69:92:48:ad:33:2d:2a:23:cc: 43:86:b1:e2:8b:68:cc:33:a7:a6:47:26:24:63:fd:74:3b:c2: ec:4d:ba:30:2a:b5:fe:8b:f5:6f:2a:2c:df:62:61:3e:26:e0: 73:9f:32:9f:91:6a:b5:71:76:d0:74:38:5e:75:80:54:2c:cd: 29:a4:bf:e1:55:bd:00:a9:86:28:5e:dd:1e:cd:42:6a:e7:df: 35:28:fc:4e:ed:54:b1:01:90:c7:eb:5c:7b:85:9e:30:34:61: 7d:f6:04:b5:a4:17:e1:ad:5b:08:3b:bf:1f:08:16:8e:3f:5d: f9:4f:2f:d2:ea:dd:08:0c:ee:b4:5a:cd:bd:9e:47:6d:85:96: 2f:c6:3b:e4:f6:27:a1:50:aa:a1:cd:d1:4c:5d:98:05:86:df: a0:8a:c6:8c:b2:dd:12:97:74:1e:8e:4c:3c:fa:c5:58:fb:60: f6:e6:ff:6d:4e:d3:b3:65:29:32:d3:37:89:d1:2d:c1:08:e1: 9c:97:cb:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjQwNjAzMDY1NTIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNjhkYi05MjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxVS7bzUDW3VrxX76zcao7f+R7J9Bn7S4xjwnSWcmvTxEioHBnqI0nqJYhuB c9IpkakKZ2JgRfXfUB6zKi79a3EIdc9HcOG86Gx5OE7rrvUC7peK4SozvMwvJ9NX NVVHV9zwLXlHMZqifJM/8bltcerm77Z2a2pdS3+BjDG66d+q++92Ir56xpyOn6+3 q9my6V12OHb6FRIudpNP1NzhZ7+3M2q9cM+/muIhUvyxsSc/4qUGJs4rALSD6dWG qiI0qPRCltuRpSqNH6xaNC/PZWB/aS9++HcKIuIJifVJ/DjoTo3bSjL0vjqgK0b2 B74DhJ7QffqJVjc13GJ/Ksm4oQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBO0pD+U rejJjZK9DbuaHnnzLIFFMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvNjNGRkQ2MzQ5 QTY2MTFFRUEwMzAxRTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhuwwDQYJKoZIhvcNAQELBQADggEBAGHnSflU75jTGvBq xUA8xRaf3nC0zmo6wPcnQHE4JUe8Hd1/OUu8rMOhlnGd8yLlDh/w7lJmwD+s6TUr KD6tY2mSSK0zLSojzEOGseKLaMwzp6ZHJiRj/XQ7wuxNujAqtf6L9W8qLN9iYT4m 4HOfMp+RarVxdtB0OF51gFQszSmkv+FVvQCphihe3R7NQmrn3zUo/E7tVLEBkMfr XHuFnjA0YX32BLWkF+GtWwg7vx8IFo4/XflPL9Lq3QgM7rRazb2eR22Fli/GO+T2 J6FQqqHN0UxdmAWG36CKxoyy3RKXdB6OTDz6xVj7YPbm/21O07NlKTLTN4nRLcEI 4ZyXy4w= -----END CERTIFICATE-----Generated at Sun Feb 16 21:10:29 2025 by rpki-client