$ rpki-client -vvf rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/1F8578820CD611EFAFFA4E63C4F9AE02.roa File: 1F8578820CD611EFAFFA4E63C4F9AE02.roa (raw, json) Hash identifier: qtbfR0x/5UY4CkSkKuQYQ4omwTLQ4lQFRWPZ9AkPdDA= Subject key identifier: C3:4F:80:A3:7E:CF:47:26:B0:7D:A7:9D:FA:DC:96:E6:99:81:73:C9 Certificate issuer: /CN=A91D176D/serialNumber=AA0178EA78511A15B1470EBFC0C5721A70E2769F Certificate serial: 4D Authority key identifier: AA:01:78:EA:78:51:1A:15:B1:47:0E:BF:C0:C5:72:1A:70:E2:76:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgF46nhRGhWxRw6_wMVyGnDidp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/1F8578820CD611EFAFFA4E63C4F9AE02.roa Signing time: Wed 08 May 2024 00:58:47 +0000 ROA not before: Wed 08 May 2024 00:58:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 23979 IP address blocks: 203.84.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/qgF46nhRGhWxRw6_wMVyGnDidp8.crl rsync://rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/qgF46nhRGhWxRw6_wMVyGnDidp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgF46nhRGhWxRw6_wMVyGnDidp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D176D/serialNumber=AA0178EA78511A15B1470EBFC0C5721A70E2769F Validity Not Before: May 8 00:58:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=663ace46-bfc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f7:e9:51:c5:4d:1d:0c:0d:70:52:55:fe:2d: a9:8b:45:47:fc:62:9f:ae:0e:9a:df:7f:44:8e:3b: 63:29:23:1a:02:2f:ee:13:c2:67:75:77:c2:f2:fd: 76:75:cf:07:4f:26:4f:6d:21:84:ad:b2:da:01:b0: 98:0e:1e:7a:17:94:40:6e:69:7b:e3:43:25:42:f6: 1d:0b:2b:25:e7:ea:60:5f:6c:47:9d:6b:5f:8f:bf: 5f:d2:37:a3:df:82:57:35:62:1f:e8:58:4e:1f:24: 3f:b8:5d:b8:ac:68:31:50:bf:3a:09:01:d2:11:72: e7:0d:41:45:ef:f4:e2:f3:a6:56:7f:ed:16:27:6a: e7:56:c8:d4:33:b7:02:2f:f2:34:6d:ee:d6:0f:23: fa:de:75:07:23:ad:04:c8:15:8a:55:28:1d:34:05: 10:3f:d2:af:f6:70:4e:7c:64:89:80:4a:d0:e9:9b: 79:bd:4b:11:f2:f0:d2:9e:68:6a:9c:12:4b:03:b3: b7:4e:af:2d:00:24:f8:ce:51:be:34:d1:c8:92:6d: 5a:5a:39:c3:a0:59:e9:50:67:88:1f:fd:94:28:96: 35:71:27:87:6f:8c:3d:82:26:76:3d:b7:c5:36:b5: 3e:b0:7c:b5:f5:5a:55:73:68:62:18:0f:33:af:b5: ff:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:4F:80:A3:7E:CF:47:26:B0:7D:A7:9D:FA:DC:96:E6:99:81:73:C9 X509v3 Authority Key Identifier: keyid:AA:01:78:EA:78:51:1A:15:B1:47:0E:BF:C0:C5:72:1A:70:E2:76:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/qgF46nhRGhWxRw6_wMVyGnDidp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgF46nhRGhWxRw6_wMVyGnDidp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D176D/F02A35E8A91411EEB2712D3FC4F9AE02/1F8578820CD611EFAFFA4E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.84.131.0/24 Signature Algorithm: sha256WithRSAEncryption a5:1b:ee:cb:c0:d4:37:8d:42:76:4f:cc:33:f3:c0:87:a6:94: a5:a4:38:67:71:d9:c5:aa:61:0e:31:6b:bb:b7:d2:98:0d:1d: b7:83:f4:86:41:c9:b5:9c:01:e2:39:2b:f1:12:61:f1:db:d6: 8c:ec:93:c1:11:0b:c4:83:5b:f7:b0:50:9a:89:49:5a:01:cd: cc:03:b3:b1:fd:9c:30:e3:2f:31:65:2c:c0:11:0c:e2:85:1b: 4d:d2:00:63:96:2e:6c:c6:c7:52:99:c7:a4:98:37:d2:b3:ab: a4:7d:03:1f:ba:0c:33:f6:34:79:10:06:8f:82:f8:60:26:9f: ad:d4:bb:17:11:f2:a6:55:4d:b6:ef:13:36:6b:75:1a:e4:52: aa:8e:55:36:bb:1d:ed:b0:c7:61:1f:37:4d:cc:f2:84:57:88: d6:65:67:2d:16:c9:65:3a:95:64:04:50:51:30:f4:ee:c7:35: b2:e2:b7:bb:ba:5e:3e:64:48:b2:6c:e2:ce:09:fb:c7:2e:ef: d1:80:61:d8:9a:46:9b:67:5a:63:18:e7:6f:c5:5a:d7:4a:11: ac:97:ef:c6:e5:ae:2f:12:7c:fe:ff:46:c3:9a:01:a5:46:09: 56:2a:11:9b:50:72:16:5d:90:5f:eb:45:39:82:9b:55:28:a2: 43:59:eb:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MTc2RDExMC8GA1UEBRMoQUEwMTc4RUE3ODUxMUExNUIxNDcwRUJGQzBDNTcyMUE3 MEUyNzY5RjAeFw0yNDA1MDgwMDU4NDZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2FjZTQ2LWJmYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw9+lRxU0dDA1wUlX+LamLRUf8Yp+uDprff0SOO2MpIxoCL+4Twmd1d8Ly/XZ1 zwdPJk9tIYStstoBsJgOHnoXlEBuaXvjQyVC9h0LKyXn6mBfbEeda1+Pv1/SN6Pf glc1Yh/oWE4fJD+4XbisaDFQvzoJAdIRcucNQUXv9OLzplZ/7RYnaudWyNQztwIv 8jRt7tYPI/redQcjrQTIFYpVKB00BRA/0q/2cE58ZImAStDpm3m9SxHy8NKeaGqc EksDs7dOry0AJPjOUb400ciSbVpaOcOgWelQZ4gf/ZQoljVxJ4dvjD2CJnY9t8U2 tT6wfLX1WlVzaGIYDzOvtf9VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUw0+Ao37P Ryawfaed+tyW5pmBc8kwHwYDVR0jBBgwFoAUqgF46nhRGhWxRw6/wMVyGnDidp8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxNzZEL0YwMkEzNUU4QTkx NDExRUVCMjcxMkQzRkM0RjlBRTAyL3FnRjQ2bmhSR2hXeFJ3Nl93TVZ5R25EaWRw OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWdGNDZuaFJHaFd4Unc2X3dNVnlHbkRpZHA4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTc2RC9GMDJBMzVFOEE5MTQxMUVFQjI3MTJEM0ZDNEY5QUUwMi8xRjg1Nzg4MjBD RDYxMUVGQUZGQTRFNjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMtUgzANBgkqhkiG9w0BAQsFAAOCAQEApRvuy8DUN41Cdk/M M/PAh6aUpaQ4Z3HZxaphDjFru7fSmA0dt4P0hkHJtZwB4jkr8RJh8dvWjOyTwREL xINb97BQmolJWgHNzAOzsf2cMOMvMWUswBEM4oUbTdIAY5YubMbHUpnHpJg30rOr pH0DH7oMM/Y0eRAGj4L4YCafrdS7FxHyplVNtu8TNmt1GuRSqo5VNrsd7bDHYR83 TczyhFeI1mVnLRbJZTqVZARQUTD07sc1suK3u7pePmRIsmzizgn7xy7v0YBh2JpG m2daYxjnb8Va10oRrJfvxuWuLxJ8/v9Gw5oBpUYJVioRm1ByFl2QX+tFOYKbVSii Q1nrnA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org