$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa File: 00E626A4A57611EF98285E5FC4F9AE02.roa (raw, json) Hash identifier: ebTeaPrWBlAg+bHK7CkBFu5kiy7GaQn9QlJ0VdT4JzQ= Subject key identifier: EA:A5:C3:95:19:AE:6C:5A:C5:44:68:BB:F2:6F:1B:10:C5:DD:E6:07 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0108 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa Signing time: Mon 18 Nov 2024 06:26:11 +0000 ROA not before: Mon 18 Nov 2024 06:26:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 209242 IP address blocks: 203.6.66.0/24 maxlen: 24 203.6.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Nov 18 06:26:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=673ade03-c0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:be:28:54:a8:02:66:6f:73:4c:99:88:de:c9: 68:38:73:d5:1d:61:97:fa:1b:1c:18:85:21:9a:e0: d4:f5:32:b1:10:25:93:12:49:51:e7:6f:a4:94:59: 50:ef:16:f4:4d:ce:5a:14:66:25:5c:21:f0:9d:05: 72:f6:13:bb:87:62:1d:bf:06:cb:77:02:6b:bc:4f: 0a:ae:57:ed:6a:42:53:85:46:8e:e4:58:a6:9d:87: 70:e3:9e:ec:57:92:a0:17:b0:d3:05:e9:48:d6:00: 7b:61:b1:c5:5d:0e:1f:2c:ae:ee:fe:d7:ea:87:37: 0d:d0:6c:98:b9:9c:37:37:7e:0b:00:d4:9f:cd:3f: 5f:79:c7:03:fb:81:e8:65:36:9b:40:ad:62:58:c7: 69:7e:35:ed:e9:09:71:2b:2e:3a:ce:dc:96:ba:f7: 22:c1:a6:cf:c3:28:96:7b:f3:3c:d6:5c:6e:ea:dc: 2c:bd:96:7a:06:78:c1:bf:81:20:b3:14:01:ba:41: 46:73:3e:d7:88:75:24:6d:49:33:74:29:de:35:e0: 01:95:c0:c3:92:6f:89:6b:c5:08:5b:11:17:18:1b: 47:06:06:f0:31:b8:69:42:95:05:f1:44:29:ba:a5: 6b:66:ce:74:93:db:a3:83:66:04:a6:25:03:d1:a5: e1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A5:C3:95:19:AE:6C:5A:C5:44:68:BB:F2:6F:1B:10:C5:DD:E6:07 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.66.0/24 203.6.74.0/24 Signature Algorithm: sha256WithRSAEncryption 83:53:78:97:fc:c6:59:f1:72:a3:44:d8:b8:4b:7e:3e:88:ca: 32:3c:2b:9f:9c:d8:14:61:ac:5e:58:f8:02:6d:7f:13:79:0d: 0a:41:10:62:44:0c:65:32:c3:26:2b:91:fb:7c:5e:d7:0f:70: b2:14:c5:46:95:fb:dc:9d:61:a0:ea:4a:14:53:0f:07:54:0c: 6e:10:e8:e6:5f:36:eb:2d:83:2c:2a:a7:54:d8:df:3a:88:9f: a3:6f:9e:db:8d:4c:91:73:e3:8d:5a:75:20:0e:aa:10:0c:1d: 47:8b:f3:d1:91:23:58:cc:9b:99:3b:14:b4:83:91:a2:2d:25: df:a7:2f:5f:0c:b7:d0:16:12:9a:5a:48:68:4a:78:fc:66:87: 30:64:96:57:23:58:32:85:59:50:8b:54:38:32:bc:32:9a:5e: d6:8e:23:68:0b:6d:88:ed:67:2a:39:43:b6:8e:21:7a:ef:d5: 66:cf:e0:2c:60:79:d0:b6:87:fd:cd:10:07:0e:91:9e:cd:fe: 27:ad:f6:2c:b1:5a:10:93:d0:4d:05:3a:ee:fe:ee:ea:fc:d7: ce:5a:21:09:72:c6:9c:31:42:4c:18:5b:c9:fc:8a:54:cf:a3: 80:07:1d:d2:cb:9d:31:d4:a9:ed:0e:dc:ec:2d:39:de:ad:79: 63:6a:eb:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjQxMTE4MDYyNjExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhZGUwMy1jMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb4oVKgCZm9zTJmI3sloOHPVHWGX+hscGIUhmuDU9TKxECWTEklR52+klFlQ 7xb0Tc5aFGYlXCHwnQVy9hO7h2IdvwbLdwJrvE8KrlftakJThUaO5FimnYdw457s V5KgF7DTBelI1gB7YbHFXQ4fLK7u/tfqhzcN0GyYuZw3N34LANSfzT9feccD+4Ho ZTabQK1iWMdpfjXt6QlxKy46ztyWuvciwabPwyiWe/M81lxu6twsvZZ6BnjBv4Eg sxQBukFGcz7XiHUkbUkzdCneNeABlcDDkm+Ja8UIWxEXGBtHBgbwMbhpQpUF8UQp uqVrZs50k9ujg2YEpiUD0aXhqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOqlw5UZ rmxaxURou/JvGxDF3eYHMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvMDBFNjI2QTRB NTc2MTFFRjk4Mjg1RTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLBkIDBADLBkowDQYJKoZIhvcNAQELBQADggEBAINTeJf8 xlnxcqNE2LhLfj6IyjI8K5+c2BRhrF5Y+AJtfxN5DQpBEGJEDGUywyYrkft8XtcP cLIUxUaV+9ydYaDqShRTDwdUDG4Q6OZfNustgywqp1TY3zqIn6NvntuNTJFz441a dSAOqhAMHUeL89GRI1jMm5k7FLSDkaItJd+nL18Mt9AWEppaSGhKePxmhzBkllcj WDKFWVCLVDgyvDKaXtaOI2gLbYjtZyo5Q7aOIXrv1WbP4CxgedC2h/3NEAcOkZ7N /iet9iyxWhCT0E0FOu7+7ur8185aIQlyxpwxQkwYW8n8ilTPo4AHHdLLnTHUqe0O 3OwtOd6teWNq6z8= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org