$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/E903A70A471611EE8AD7F245C4F9AE02.roa File: E903A70A471611EE8AD7F245C4F9AE02.roa (raw, json) Hash identifier: cn+GyDtljadi99wufnVTKHgNWHT0CvU1BrPUEPjCByQ= Subject key identifier: 52:15:CF:39:F4:12:F0:98:F6:37:D7:D8:20:5B:B5:27:0D:DB:60:0D Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0146 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/E903A70A471611EE8AD7F245C4F9AE02.roa Signing time: Mon 03 Jun 2024 06:55:23 +0000 ROA not before: Mon 03 Jun 2024 06:55:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 216414 IP address blocks: 202.126.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 3 06:55:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d68da-1f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:ec:b4:8b:14:c5:d0:81:43:c7:83:a3:2a: 43:f5:a9:ca:fa:fe:c2:71:85:4f:c7:04:a1:b2:27: eb:44:f3:41:f9:2a:a5:8d:19:60:d4:fd:da:cd:a2: d4:b5:20:41:39:85:0c:7c:cb:be:4a:8e:39:42:d7: cd:f2:4e:fb:50:75:6b:62:70:6b:d0:8c:56:d4:c2: 32:82:40:99:1e:25:30:0b:4c:4d:f5:39:6d:f4:8f: 0a:8c:a5:35:2f:5c:d8:c1:b2:37:cf:0b:2e:01:da: f5:07:0d:02:a5:21:fb:b9:99:40:07:cb:af:f7:d1: f4:3b:51:7b:08:e9:16:ec:65:83:31:fc:fe:06:2d: 00:73:17:92:7e:30:ab:c7:6f:2a:53:e2:d3:57:4f: d4:6a:9a:6b:01:83:4d:e1:8e:b1:f0:35:5b:ae:9c: 56:04:96:5d:04:44:f6:b6:57:c5:65:73:90:fe:a7: c0:05:48:2b:3b:10:a3:e7:b7:23:6d:a8:87:24:d4: 53:cc:43:87:d3:af:d5:34:f8:18:1f:3d:15:7d:86: 4d:2d:f6:e0:63:ce:20:80:00:15:d5:ae:98:34:57: 2d:6d:fc:d6:de:43:af:10:bd:d8:2c:af:22:e4:d2: 9f:e9:6f:0c:9f:0d:8a:eb:aa:88:87:62:c0:e0:89: a3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:15:CF:39:F4:12:F0:98:F6:37:D7:D8:20:5B:B5:27:0D:DB:60:0D X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/E903A70A471611EE8AD7F245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.126.106.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:bf:63:29:4a:fd:19:25:ce:26:64:ae:2b:b6:c8:f6:bf:28: 36:bf:3d:aa:50:1e:d3:2e:93:f0:a8:74:22:af:9f:71:68:1b: a4:55:c0:3a:3d:4c:cc:e2:5e:c3:d4:40:d8:97:dd:c0:c9:c5: e8:ee:56:21:13:55:23:77:ec:a8:68:27:ae:e7:f4:2b:9c:94: 98:b7:d6:b5:ed:f9:4d:d3:ee:60:77:04:7e:7b:a6:d5:b3:34: 95:6c:08:21:a2:72:49:1a:79:bf:71:f9:89:60:17:e0:1f:7c: 52:ad:fc:df:fc:14:b7:bc:ea:b1:68:85:41:25:69:dc:1f:4b: f5:7d:d7:5b:7a:94:e4:e3:0b:fd:e3:2b:fc:bf:f9:bf:6d:6e: 2f:e9:c0:18:91:7c:55:34:01:f8:b7:21:e0:14:cb:49:6a:3a: 41:89:db:72:c6:54:6e:e1:0f:51:63:6f:e7:ee:60:73:ca:1b: 68:4c:27:64:df:dc:ab:bf:36:40:38:d1:cd:c6:63:d4:f6:66: ab:d3:1e:18:46:03:4f:c0:1d:77:89:a9:68:3b:48:b4:5a:64: 22:de:f1:a8:f9:25:90:84:99:ce:c7:b0:5d:5a:0c:be:25:eb: 26:66:5a:09:bf:cd:03:c4:96:76:97:8d:b4:dc:44:39:0a:1c: 33:36:62:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjQwNjAzMDY1NTIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNjhkYS0xZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmrstIsUxdCBQ8eDoypD9anK+v7CcYVPxwShsifrRPNB+SqljRlg1P3azaLU tSBBOYUMfMu+So45QtfN8k77UHVrYnBr0IxW1MIygkCZHiUwC0xN9Tlt9I8KjKU1 L1zYwbI3zwsuAdr1Bw0CpSH7uZlAB8uv99H0O1F7COkW7GWDMfz+Bi0AcxeSfjCr x28qU+LTV0/UapprAYNN4Y6x8DVbrpxWBJZdBET2tlfFZXOQ/qfABUgrOxCj57cj baiHJNRTzEOH06/VNPgYHz0VfYZNLfbgY84ggAAV1a6YNFctbfzW3kOvEL3YLK8i 5NKf6W8Mnw2K66qIh2LA4ImjdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFIVzzn0 EvCY9jfX2CBbtScN22ANMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvRTkwM0E3MEE0 NzE2MTFFRThBRDdGMjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKfmowDQYJKoZIhvcNAQELBQADggEBAEu/YylK/RklziZk riu2yPa/KDa/PapQHtMuk/CodCKvn3FoG6RVwDo9TMziXsPUQNiX3cDJxejuViET VSN37KhoJ67n9CuclJi31rXt+U3T7mB3BH57ptWzNJVsCCGickkaeb9x+YlgF+Af fFKt/N/8FLe86rFohUEladwfS/V911t6lOTjC/3jK/y/+b9tbi/pwBiRfFU0Afi3 IeAUy0lqOkGJ23LGVG7hD1Fjb+fuYHPKG2hMJ2Tf3Ku/NkA40c3GY9T2ZqvTHhhG A0/AHXeJqWg7SLRaZCLe8aj5JZCEmc7HsF1aDL4l6yZmWgm/zQPElnaXjbTcRDkK HDM2YrM= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org