$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa File: 8A5017E27C3C11EE90BF4044C4F9AE02.roa (raw, json) Hash identifier: 2lj1uUsrRYPyJxpfjrOuYSX+mKrdmUUXbJ/4lkcFuLY= Subject key identifier: 10:7F:AA:19:78:56:93:97:D9:F5:BF:F2:E9:6E:A1:B4:10:E7:42:63 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0144 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa Signing time: Mon 03 Jun 2024 06:55:21 +0000 ROA not before: Mon 03 Jun 2024 06:55:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 199925 IP address blocks: 202.134.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 3 06:55:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d68d8-4cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fd:0c:e9:5a:81:5e:14:c3:ba:76:e5:1f:6f: c6:f2:51:48:1e:34:54:87:14:ab:29:47:1f:20:e6: 82:d6:b3:df:a8:f4:15:c1:14:df:ae:10:4c:92:00: a3:28:fb:75:42:0a:8d:ba:8d:49:29:6a:66:93:99: 98:a9:94:5f:fa:4d:57:d1:ca:d3:70:95:26:da:32: d2:1f:a5:95:3f:00:ba:16:bf:8e:46:c8:d4:47:95: d5:34:bd:b2:91:c7:24:69:cf:8f:15:5c:67:82:ed: 7f:e1:11:cf:47:1d:4a:4d:cd:78:9f:a8:42:1a:89: 4b:81:e9:ee:b6:63:73:30:e7:35:44:50:82:0f:4a: 99:9d:37:f2:97:a7:15:dd:4b:1f:a9:01:2e:e6:9f: 42:5b:ae:c8:34:88:6e:bb:35:56:d3:fa:f1:55:97: 00:ce:74:46:25:34:b2:6f:4a:f2:e7:d4:a3:42:ba: d4:40:bb:1f:a9:12:50:bc:dc:c7:17:e3:12:8f:72: ba:ad:2d:03:c5:1c:00:c2:44:a2:6d:88:cb:43:ad: 70:be:54:fc:e1:71:6a:e8:9d:28:58:45:8f:fe:e6: 3a:47:85:99:64:f9:d6:a0:b5:45:31:c3:2a:3b:74: 94:78:50:75:e8:eb:14:e2:da:16:c5:ff:9e:40:e7: 75:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7F:AA:19:78:56:93:97:D9:F5:BF:F2:E9:6E:A1:B4:10:E7:42:63 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.233.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:0d:d4:0b:b8:fb:f1:ef:67:3f:b9:7f:4b:ea:fc:f3:e0:6f: 1d:6e:75:e3:88:8c:db:84:fb:e7:3c:b0:65:2c:b3:66:f4:06: 20:94:fa:03:89:2e:3b:e6:3f:92:c9:5b:d8:69:f5:47:89:21: 27:54:a9:f8:95:ad:78:5e:80:4d:77:3d:52:91:c0:bd:b7:8d: cf:0f:a8:e4:87:30:50:a4:19:9e:0f:e0:e8:e2:b9:b2:40:de: 92:ae:60:cf:f2:d2:03:7b:85:a1:d7:b5:48:f7:61:f9:48:c5: fc:c7:9b:ad:2f:42:91:ba:69:6c:ea:76:9b:57:ec:66:44:94: 6c:30:45:50:6c:c0:10:90:92:e7:53:e1:e6:f8:61:3e:49:51: cb:42:0f:91:b8:b6:ff:ea:34:ea:1b:01:3c:5b:2d:b6:0c:ab: d3:b7:33:2b:6d:7d:fa:57:f7:a2:d9:cc:81:bb:9b:87:26:ba: e5:39:f8:67:e1:1d:32:4e:88:ad:62:ad:6a:a6:67:2e:83:7a: 33:42:11:b3:8e:57:9e:9c:2d:d2:c3:b3:cc:08:6a:11:f0:96: b8:5e:b1:2b:b5:e7:f5:c1:12:98:6a:a4:83:53:44:fb:d6:f5: 06:0c:0e:32:3a:9b:03:8d:82:9c:b9:a4:2b:81:1c:9b:be:a4: 2b:39:6e:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjQwNjAzMDY1NTIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNjhkOC00Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv0M6VqBXhTDunblH2/G8lFIHjRUhxSrKUcfIOaC1rPfqPQVwRTfrhBMkgCj KPt1QgqNuo1JKWpmk5mYqZRf+k1X0crTcJUm2jLSH6WVPwC6Fr+ORsjUR5XVNL2y kcckac+PFVxngu1/4RHPRx1KTc14n6hCGolLgenutmNzMOc1RFCCD0qZnTfyl6cV 3UsfqQEu5p9CW67INIhuuzVW0/rxVZcAznRGJTSyb0ry59SjQrrUQLsfqRJQvNzH F+MSj3K6rS0DxRwAwkSibYjLQ61wvlT84XFq6J0oWEWP/uY6R4WZZPnWoLVFMcMq O3SUeFB16OsU4toWxf+eQOd1OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBB/qhl4 VpOX2fW/8uluobQQ50JjMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOEE1MDE3RTI3 QzNDMTFFRTkwQkY0MDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhukwDQYJKoZIhvcNAQELBQADggEBAJsN1Au4+/HvZz+5 f0vq/PPgbx1udeOIjNuE++c8sGUss2b0BiCU+gOJLjvmP5LJW9hp9UeJISdUqfiV rXhegE13PVKRwL23jc8PqOSHMFCkGZ4P4OjiubJA3pKuYM/y0gN7haHXtUj3YflI xfzHm60vQpG6aWzqdptX7GZElGwwRVBswBCQkudT4eb4YT5JUctCD5G4tv/qNOob ATxbLbYMq9O3MyttffpX96LZzIG7m4cmuuU5+GfhHTJOiK1irWqmZy6DejNCEbOO V56cLdLDs8wIahHwlrhesSu15/XBEphqpINTRPvW9QYMDjI6mwONgpy5pCuBHJu+ pCs5bkw= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org