$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/B3883EE61A8C11ECBD6CCF18C4F9AE02.roa File: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (raw, json) Hash identifier: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g= Subject key identifier: FF:81:69:25:F5:09:0C:B4:D0:6A:5E:AA:F0:56:66:81:7A:34:C3:7E Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0467 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/B3883EE61A8C11ECBD6CCF18C4F9AE02.roa Signing time: Thu 05 Sep 2024 01:03:30 +0000 ROA not before: Thu 05 Sep 2024 01:03:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136204 IP address blocks: 123.100.228.0/24 maxlen: 24 123.100.229.0/24 maxlen: 24 123.100.230.0/24 maxlen: 24 123.100.231.0/24 maxlen: 24 202.157.178.0/24 maxlen: 24 203.142.9.0/24 maxlen: 24 2405:70c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Sep 5 01:03:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d90361-feec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:da:b6:d5:dc:78:76:d3:e7:36:da:62:d5: a9:92:7c:cc:0a:d3:f6:99:66:ee:af:3d:69:f5:f6: 8f:bd:6b:e2:fe:42:6a:91:62:2f:7d:73:83:2f:e0: 92:6f:a4:c4:01:69:55:94:05:03:77:cb:90:bd:4d: ca:64:85:d6:73:b8:a9:49:2d:16:cb:c0:f0:02:6d: 8a:a6:5a:3f:b8:91:98:1a:dc:9e:4b:68:d2:98:f7: b4:64:63:31:0a:b4:9c:7a:41:ff:4a:1d:68:a3:0c: 51:40:6e:a5:ac:59:63:29:1a:4a:3d:da:f4:3b:25: c1:a0:d6:d5:dc:77:ab:fe:66:cf:d5:cf:be:cb:46: 2d:60:21:7c:eb:5a:3d:b1:3a:93:7e:6a:60:80:8f: c0:0a:62:e6:3b:1c:69:72:7c:1c:10:5d:ff:ae:48: bb:ea:ba:9a:22:ce:16:f6:69:3b:96:ee:47:16:7d: ea:5b:2b:f9:91:51:e3:0e:19:a3:6f:02:39:54:4d: 60:25:09:2f:e3:eb:e5:52:7c:a1:d9:7e:b6:75:f3: 2d:17:5d:b2:19:f9:d9:eb:ba:4a:95:55:72:c9:f9: 48:88:15:9e:4f:4f:ad:85:49:35:ed:48:33:e3:7e: fb:cd:5a:62:9a:1e:14:df:7f:78:e0:b0:2c:da:88: 4e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:81:69:25:F5:09:0C:B4:D0:6A:5E:AA:F0:56:66:81:7A:34:C3:7E X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/B3883EE61A8C11ECBD6CCF18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.228.0/22 202.157.178.0/24 203.142.9.0/24 IPv6: 2405:70c0::/32 Signature Algorithm: sha256WithRSAEncryption 40:0b:12:74:fe:cb:5a:3c:ce:ca:a7:e9:f3:f3:12:5d:9f:61: db:9e:5d:be:8c:6c:2f:2a:ba:8b:4c:e7:22:70:57:f8:4e:20: da:7a:5c:fb:f6:c3:24:c4:c1:9d:30:31:ee:27:47:65:c9:fd: 9c:48:e7:6b:7e:23:f1:36:e6:0a:04:de:70:4c:b5:0e:a6:4d: 7a:ed:9c:f4:5f:ee:b9:49:bb:2d:a8:93:3c:4e:b2:79:cf:4f: bb:7a:9a:5e:68:1f:ea:d9:e1:49:f1:63:cc:2a:2b:e5:72:02: c4:f5:9e:10:cb:74:4a:51:bb:fd:8d:44:e8:8f:c8:0d:55:f7: 86:a9:8d:f9:65:e6:31:46:85:16:a3:13:e7:ec:fb:66:db:87: 77:b1:2b:d5:23:bd:fd:95:15:28:84:cf:75:69:8d:c1:8f:b6: 69:d5:b8:7b:68:76:54:e2:9c:fc:b8:13:5c:e4:1f:9a:19:c1: 47:14:36:96:05:ac:62:67:4b:23:f5:ab:d1:54:45:3b:54:74: 3b:71:3b:41:3a:d4:41:45:02:95:66:83:a5:f6:64:bc:e9:9e: 91:39:92:af:54:05:ab:51:6e:72:a2:1b:e7:84:74:b0:50:6f: 5b:dc:0e:62:b3:a7:63:cb:95:25:cf:95:31:25:6f:c0:ff:d4: 86:b7:09:91 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjQwOTA1MDEwMzMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MDM2MS1mZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPHattXceHbT5zbaYtWpknzMCtP2mWburz1p9faPvWvi/kJqkWIvfXODL+CS b6TEAWlVlAUDd8uQvU3KZIXWc7ipSS0Wy8DwAm2Kplo/uJGYGtyeS2jSmPe0ZGMx CrScekH/Sh1oowxRQG6lrFljKRpKPdr0OyXBoNbV3Her/mbP1c++y0YtYCF861o9 sTqTfmpggI/ACmLmOxxpcnwcEF3/rki76rqaIs4W9mk7lu5HFn3qWyv5kVHjDhmj bwI5VE1gJQkv4+vlUnyh2X62dfMtF12yGfnZ67pKlVVyyflIiBWeT0+thUk17Ugz 4377zVpimh4U33944LAs2ohOSwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFP+BaSX1 CQy00GpeqvBWZoF6NMN+MB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk0MUIvNjlGNkI3REUxQTgzMTFFQzhDOTIyMjI5QzRGOUFFMDIvQjM4ODNFRTYx QThDMTFFQ0JENkNDRjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJ7ZOQDBADKnbIDBADLjgkwDQQCAAIwBwMFACQFcMAwDQYJ KoZIhvcNAQELBQADggEBAEALEnT+y1o8zsqn6fPzEl2fYdueXb6MbC8quotM5yJw V/hOINp6XPv2wyTEwZ0wMe4nR2XJ/ZxI52t+I/E25goE3nBMtQ6mTXrtnPRf7rlJ uy2okzxOsnnPT7t6ml5oH+rZ4UnxY8wqK+VyAsT1nhDLdEpRu/2NROiPyA1V94ap jfll5jFGhRajE+fs+2bbh3exK9Ujvf2VFSiEz3VpjcGPtmnVuHtodlTinPy4E1zk H5oZwUcUNpYFrGJnSyP1q9FURTtUdDtxO0E61EFFApVmg6X2ZLzpnpE5kq9UBatR bnKiG+eEdLBQb1vcDmKzp2PLlSXPlTElb8D/1Ia3CZE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org