$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/D9BE56E2927D11EFB83ACB5CC4F9AE02.roa File: D9BE56E2927D11EFB83ACB5CC4F9AE02.roa (raw, json) Hash identifier: gD5kq8/HSPW50HYpmldu2HRZWRqRsB+3dXKbKp9PeAQ= Subject key identifier: 04:90:1F:22:E8:C1:AB:90:C9:3A:84:87:CD:82:24:EE:29:4B:30:5F Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: 04 Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/D9BE56E2927D11EFB83ACB5CC4F9AE02.roa Signing time: Fri 25 Oct 2024 03:04:29 +0000 ROA not before: Fri 25 Oct 2024 03:04:29 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 202.0.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Oct 25 03:04:29 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b0abd-1592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:5d:0b:20:c2:04:f5:0a:df:74:77:d5:12: 2f:84:ae:4c:33:55:2d:e9:8f:ba:92:c3:3b:59:53: 55:19:da:30:2a:e8:5a:92:43:95:73:96:e4:ff:75: 41:d9:b7:af:08:3f:c0:fa:65:18:57:a7:69:ec:f4: d7:0c:d2:d6:ce:4d:8e:e0:20:4d:bd:c6:b2:a4:be: 1b:e6:e9:80:be:bd:83:99:40:97:09:81:42:78:b0: 73:c5:cc:5a:a3:d6:de:1e:9e:06:50:77:67:88:46: ee:9c:41:d7:58:39:08:f6:41:a1:77:7b:3a:cc:aa: ca:af:a5:3f:07:56:70:d4:b0:24:6d:d3:51:e7:ce: 1c:99:86:49:33:52:2f:58:67:97:31:b4:cc:0f:8b: 2a:2f:c7:b9:2d:d2:ae:96:2e:79:ef:94:b7:fd:bd: 82:7e:d5:cc:99:d5:f3:20:99:76:cc:fa:aa:60:81: 59:0c:a7:81:fa:bb:de:04:50:9b:6e:80:19:91:c3: 72:b4:08:3a:a8:fa:f3:0b:5e:8f:79:da:d3:ce:57: 07:20:f1:3c:f2:a8:f9:11:a0:01:77:4b:e3:55:97: 69:c5:58:0e:db:38:3d:22:e0:cd:30:de:13:3d:c9: 18:5d:1b:3e:b1:7f:fa:84:86:cc:5d:f4:ed:b0:e1: f7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:90:1F:22:E8:C1:AB:90:C9:3A:84:87:CD:82:24:EE:29:4B:30:5F X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/D9BE56E2927D11EFB83ACB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.70.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:cb:d4:4a:d3:90:c0:de:cc:aa:ec:77:94:15:e4:ba:f7:31: 61:5d:32:11:66:de:8d:2a:89:29:0e:3a:76:36:40:ec:7f:86: 0f:48:27:11:91:c7:79:b3:d0:25:08:19:a4:73:ca:a4:82:2d: 5e:f7:e9:d0:66:58:ea:f8:7f:c8:82:6a:f4:38:d4:2c:5d:38: 91:c1:90:30:ee:32:ae:82:ac:32:8e:a1:cb:a5:c9:96:0f:12: 36:5a:e4:8d:e7:07:86:2e:da:13:2f:51:ed:72:48:7b:ca:10: c5:c8:69:e5:37:91:64:c9:dc:77:30:70:ff:42:7d:df:e4:fb: 3e:b6:dd:3c:53:b5:54:9f:92:1b:22:3b:b8:5b:99:94:79:47: 4d:b6:95:ed:0c:41:d3:7b:5f:4a:22:98:35:75:d9:0d:5f:a9: fd:0f:80:af:73:8b:87:71:3b:3b:3c:7f:07:d5:fd:04:d0:78: 00:f7:26:47:ae:7a:53:0b:00:ad:84:f4:9c:8f:b7:93:ac:9a: cf:1a:dd:39:69:39:60:66:40:7a:bd:b1:08:5f:e2:70:ac:7f: c7:be:25:ee:85:b9:8d:98:33:3a:42:62:1a:13:c6:a6:f0:2a: 7c:4b:02:f5:90:87:1c:e1:bf:4d:0b:52:49:f2:fd:23:e0:81: 5f:71:47:8b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODIwMzExMC8GA1UEBRMoMzFEMjFENUNFRTVGQUNERUYzQzhDMUM4N0QwRDczOTFG OUY3M0FGRjAeFw0yNDEwMjUwMzA0MjlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWIwYWJkLTE1OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIMV0LIMIE9QrfdHfVEi+ErkwzVS3pj7qSwztZU1UZ2jAq6FqSQ5VzluT/dUHZ t68IP8D6ZRhXp2ns9NcM0tbOTY7gIE29xrKkvhvm6YC+vYOZQJcJgUJ4sHPFzFqj 1t4engZQd2eIRu6cQddYOQj2QaF3ezrMqsqvpT8HVnDUsCRt01HnzhyZhkkzUi9Y Z5cxtMwPiyovx7kt0q6WLnnvlLf9vYJ+1cyZ1fMgmXbM+qpggVkMp4H6u94EUJtu gBmRw3K0CDqo+vMLXo952tPOVwcg8TzyqPkRoAF3S+NVl2nFWA7bOD0i4M0w3hM9 yRhdGz6xf/qEhsxd9O2w4fevAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBJAfIujB q5DJOoSHzYIk7ilLMF8wHwYDVR0jBBgwFoAUMdIdXO5frN7zyMHIfQ1zkfn3Ov8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MjAzL0JDNTE1REFBOTI3 QTExRUZCNTY0M0M0RUM0RjlBRTAyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWRJZFhPNWZyTjd6eU1ISWZRMXprZm4zT3Y4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODIwMy9CQzUxNURBQTkyN0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9EOUJFNTZFMjky N0QxMUVGQjgzQUNCNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoARjANBgkqhkiG9w0BAQsFAAOCAQEAbMvUStOQwN7Mqux3 lBXkuvcxYV0yEWbejSqJKQ46djZA7H+GD0gnEZHHebPQJQgZpHPKpIItXvfp0GZY 6vh/yIJq9DjULF04kcGQMO4yroKsMo6hy6XJlg8SNlrkjecHhi7aEy9R7XJIe8oQ xchp5TeRZMncdzBw/0J93+T7PrbdPFO1VJ+SGyI7uFuZlHlHTbaV7QxB03tfSiKY NXXZDV+p/Q+Ar3OLh3E7Ozx/B9X9BNB4APcmR656UwsArYT0nI+3k6yazxrdOWk5 YGZAer2xCF/icKx/x74l7oW5jZgzOkJiGhPGpvAqfEsC9ZCHHOG/TQtSSfL9I+CB X3FHiw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org