$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa File: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (raw, json) Hash identifier: M696+5UFpF5kX1zKZ1iE9zRBar+hYBuMMv70MsqSzFc= Subject key identifier: B8:EE:8C:DB:27:DA:50:38:6D:E6:B8:73:9C:3D:FC:2E:2F:B0:2D:0D Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DB8 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:41 +0000 ROA not before: Thu 28 Dec 2023 18:56:41 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 15224 IP address blocks: 202.42.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:41 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4e9-49a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:52:e6:58:9b:ab:72:0f:1a:24:a9:fd:d5:05: 3e:f9:cf:cf:04:40:81:6f:62:7b:c3:4f:3b:19:34: 20:a5:4e:67:e2:1f:fe:26:64:66:7a:fd:76:d3:26: b5:76:29:8d:02:14:28:50:44:0b:c3:14:96:d2:53: 53:ff:18:14:d1:e2:67:7d:e4:97:90:22:c3:97:78: f0:fd:da:1e:03:cb:a0:04:6c:58:38:70:04:f8:ac: 7e:8b:b0:1a:d9:cf:3f:4d:25:be:e0:88:36:98:b4: fd:f4:52:5e:a0:58:17:0d:99:e3:48:22:83:ac:90: fa:29:53:25:da:e9:0d:1c:f0:ff:f2:63:74:bf:97: ce:18:53:e4:86:74:4c:ed:b3:3a:98:a7:59:96:ba: dc:c8:79:08:2b:4b:e5:cd:20:5a:77:1b:f1:59:39: 96:74:7c:6d:23:24:61:57:9d:35:5f:57:c6:20:ce: e3:9f:28:3c:6e:03:ae:8b:49:67:8d:6a:a1:84:2d: 46:8a:bf:64:38:2f:4e:d1:9d:94:c8:76:a2:79:9c: 32:27:fd:3c:40:03:c0:88:0c:0c:62:fc:b1:a2:30: 1a:23:0b:63:49:68:b2:89:69:66:3e:f8:87:b3:00: c5:79:d6:e1:b0:26:96:ba:39:be:2f:2c:57:2e:be: b0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EE:8C:DB:27:DA:50:38:6D:E6:B8:73:9C:3D:FC:2E:2F:B0:2D:0D X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/8B0EC9621D0611EDBAB65333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.42.38.0/24 Signature Algorithm: sha256WithRSAEncryption a6:0d:0f:2f:71:14:2f:f4:e5:4c:9a:c7:04:2b:8a:0b:c3:6c: 1c:69:14:9b:d5:f2:96:ec:72:13:ee:bf:9e:b5:35:56:59:43: 53:c5:d1:5d:d7:e1:36:23:56:c2:ec:7c:e8:b2:6f:86:6a:c2: 54:97:65:48:6c:1b:a0:b8:93:f0:6d:74:fe:8d:6b:22:1b:e8: 8b:1a:43:fa:d2:82:ec:42:05:22:73:7e:64:1e:82:e4:f9:4d: 52:45:ca:68:e7:77:ae:4e:d3:1f:bd:ee:95:01:9e:1e:2c:81: 47:8e:80:1a:3c:58:ad:f5:5c:c5:3b:68:e3:b1:4e:8d:e4:cd: 72:bd:de:43:1f:53:de:76:01:14:e2:c1:f5:a4:16:99:e3:45: e0:e5:81:9c:27:58:39:ce:be:84:3f:07:97:f4:96:6f:76:cc: 9a:0b:95:db:cf:bf:16:4b:2c:07:6d:63:1d:a1:84:55:3f:db: 59:76:e4:5a:2f:11:1b:6d:b8:fe:43:f3:2b:52:9a:30:0a:cd: 5f:b9:fc:1b:1f:d0:da:2e:34:d5:bc:03:b1:b7:af:a0:12:3b: 63:43:49:b1:ec:85:ef:7a:b1:a7:a8:cd:06:a0:b9:10:a0:c4: b3:16:13:1a:0c:b6:05:79:cc:75:e9:39:5d:6c:61:87:f8:13: 88:f2:de:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjQxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlOS00OWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lLmWJurcg8aJKn91QU++c/PBECBb2J7w087GTQgpU5n4h/+JmRmev120ya1 dimNAhQoUEQLwxSW0lNT/xgU0eJnfeSXkCLDl3jw/doeA8ugBGxYOHAE+Kx+i7Aa 2c8/TSW+4Ig2mLT99FJeoFgXDZnjSCKDrJD6KVMl2ukNHPD/8mN0v5fOGFPkhnRM 7bM6mKdZlrrcyHkIK0vlzSBadxvxWTmWdHxtIyRhV501X1fGIM7jnyg8bgOui0ln jWqhhC1Gir9kOC9O0Z2UyHaieZwyJ/08QAPAiAwMYvyxojAaIwtjSWiyiWlmPviH swDFedbhsCaWujm+LyxXLr6wTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLjujNsn 2lA4bea4c5w9/C4vsC0NMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvOEIwRUM5NjIx RDA2MTFFREJBQjY1MzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKiYwDQYJKoZIhvcNAQELBQADggEBAKYNDy9xFC/05Uya xwQrigvDbBxpFJvV8pbschPuv561NVZZQ1PF0V3X4TYjVsLsfOiyb4ZqwlSXZUhs G6C4k/BtdP6NayIb6IsaQ/rSguxCBSJzfmQeguT5TVJFymjnd65O0x+97pUBnh4s gUeOgBo8WK31XMU7aOOxTo3kzXK93kMfU952ARTiwfWkFpnjReDlgZwnWDnOvoQ/ B5f0lm92zJoLldvPvxZLLAdtYx2hhFU/21l25FovERttuP5D8ytSmjAKzV+5/Bsf 0NouNNW8A7G3r6ASO2NDSbHshe96saeozQaguRCgxLMWExoMtgV5zHXpOV1sYYf4 E4jy3o8= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:25 2024 by rpki-client on console-fra.rpki-client.org