$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa File: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8= Subject key identifier: 47:CA:A3:DE:3A:54:94:29:AA:01:F7:B2:94:E1:9B:C6:A8:04:0B:BB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3422 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa Signing time: Mon 28 Oct 2024 15:10:50 +0000 ROA not before: Mon 28 Oct 2024 15:10:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 24299 IP address blocks: 202.43.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13346 (0x3422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Oct 28 15:10:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671fa97a-6f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:12:80:70:f4:b4:b6:28:a7:ac:68:db:ac: ca:c4:69:3b:69:14:2e:c7:5a:b2:dc:22:bc:11:fa: d2:65:2f:94:36:28:71:54:7b:13:57:c7:e2:c1:c7: 41:fd:59:13:05:7b:b9:2c:79:44:7c:df:73:78:72: 90:eb:b8:f8:c4:95:f1:28:3f:55:09:86:72:67:01: fc:d3:fa:2b:b0:e4:4a:d0:e4:24:82:3e:16:2a:97: 02:19:f4:af:d9:6d:9c:40:78:4b:2d:49:3d:31:39: ac:26:cc:e8:06:e6:6c:55:bd:ab:bd:a3:ee:03:2d: ec:94:8c:fe:7d:b5:f6:3f:6b:a1:7e:69:b2:c1:34: 52:89:20:d6:51:fd:20:91:7f:04:41:8a:d3:1c:af: ba:6d:b3:b0:81:2b:4a:e9:bd:c6:29:83:a9:00:6e: 76:c2:1f:ce:0f:ab:86:99:de:54:b5:6e:e9:86:36: 5e:5b:92:cb:14:74:54:1c:26:6e:2e:ed:f2:bc:06: 3d:85:5b:4b:da:2f:82:a9:3a:fa:b7:44:60:bf:16: 4d:af:1f:29:29:05:3a:bf:1a:82:a8:4a:e4:d5:9e: 92:14:a2:4d:83:d0:c2:40:c1:de:15:5e:48:4e:50: a5:12:16:56:e5:fd:24:27:f6:6f:82:c9:21:10:d1: 50:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CA:A3:DE:3A:54:94:29:AA:01:F7:B2:94:E1:9B:C6:A8:04:0B:BB X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/220E32CEFEA411EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.32.0/20 Signature Algorithm: sha256WithRSAEncryption 85:08:25:a8:cc:50:41:5f:fb:b9:53:6e:f0:3d:ba:e6:0b:fe: d1:4e:f7:b1:67:e9:c4:40:e1:f6:01:b7:2e:cd:4f:46:66:a2: f1:09:eb:0e:fc:f5:6f:92:de:87:81:5b:49:36:1b:b0:c2:2d: 7a:5b:d5:9d:b2:26:c9:3c:f8:c9:a7:94:b9:ec:75:4e:84:ca: 0d:f2:64:98:d8:96:13:1d:e7:1e:91:8b:6a:8b:44:21:16:f8: f2:48:f7:75:77:05:5d:67:f5:38:a9:b7:10:5e:8d:07:c9:45: f5:a1:68:4d:5e:73:86:f9:20:53:66:8d:25:49:fc:cc:7d:3e: 62:9a:9b:27:7d:c3:11:79:11:91:4a:34:83:b2:1d:18:43:24: 69:e1:d3:d8:82:b0:94:5e:3e:59:e2:6c:7f:db:13:0c:f2:4f: 49:b1:9f:58:26:1f:37:04:6f:e6:8b:88:83:d1:ea:9d:1b:25: 8f:32:c0:a4:51:1f:08:37:83:7d:f9:ea:db:78:67:3e:5f:3f: ed:4b:c1:d2:b1:5d:50:00:6e:31:40:55:fe:f2:43:ea:ee:bc: 6f:ec:df:83:f5:09:36:a9:21:4e:da:e6:c3:17:14:27:f5:17: ff:f7:9e:a4:03:b1:66:58:0c:c7:fc:e5:2c:b7:49:07:80:0a: e3:f2:45:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjQxMDI4MTUxMDUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmYTk3YS02ZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWMSgHD0tLYop6xo26zKxGk7aRQux1qy3CK8EfrSZS+UNihxVHsTV8fiwcdB /VkTBXu5LHlEfN9zeHKQ67j4xJXxKD9VCYZyZwH80/orsORK0OQkgj4WKpcCGfSv 2W2cQHhLLUk9MTmsJszoBuZsVb2rvaPuAy3slIz+fbX2P2uhfmmywTRSiSDWUf0g kX8EQYrTHK+6bbOwgStK6b3GKYOpAG52wh/OD6uGmd5UtW7phjZeW5LLFHRUHCZu Lu3yvAY9hVtL2i+CqTr6t0RgvxZNrx8pKQU6vxqCqErk1Z6SFKJNg9DCQMHeFV5I TlClEhZW5f0kJ/ZvgskhENFQLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfKo946 VJQpqgH3spThm8aoBAu7MB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEQUUvRkVGQkNDOEUxRDhGMTFFMkI1NEE3REVGMDhCMDJDRDIvMjIwRTMyQ0VG RUE0MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKKyAwDQYJKoZIhvcNAQELBQADggEBAIUIJajMUEFf+7lT bvA9uuYL/tFO97Fn6cRA4fYBty7NT0ZmovEJ6w789W+S3oeBW0k2G7DCLXpb1Z2y Jsk8+MmnlLnsdU6Eyg3yZJjYlhMd5x6Ri2qLRCEW+PJI93V3BV1n9TiptxBejQfJ RfWhaE1ec4b5IFNmjSVJ/Mx9PmKamyd9wxF5EZFKNIOyHRhDJGnh09iCsJRePlni bH/bEwzyT0mxn1gmHzcEb+aLiIPR6p0bJY8ywKRRHwg3g3356tt4Zz5fP+1LwdKx XVAAbjFAVf7yQ+ruvG/s34P1CTapIU7a5sMXFCf1F//3nqQDsWZYDMf85Sy3SQeA CuPyRZQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org