$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa File: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE= Subject key identifier: C8:69:E8:55:16:CA:EB:F6:3D:EB:E6:6C:2B:FA:74:C2:B4:63:19:92 Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3423 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa Signing time: Mon 28 Oct 2024 15:10:51 +0000 ROA not before: Mon 28 Oct 2024 15:10:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45254 IP address blocks: 203.153.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13347 (0x3423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Oct 28 15:10:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671fa97b-f0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:29:e5:e8:57:52:37:bb:46:32:c5:c3:64:7c: 24:b1:ad:c7:5e:43:c5:5d:3f:dd:5a:5b:a9:d3:8e: d5:e5:f1:ee:60:0c:88:0a:03:5f:4d:ff:04:c4:bc: 24:3e:a2:a6:69:e3:54:74:53:a7:82:6b:68:be:34: b2:4b:a8:a0:e4:fb:9c:c1:c6:cc:34:f5:63:13:ae: e6:ed:86:0f:f1:c7:27:df:1b:c7:e7:71:93:6d:90: 4b:76:29:e5:cf:26:03:b9:51:d7:a6:e8:4c:a7:5f: 4b:8e:ba:1f:9f:a9:64:2e:6d:97:37:50:c0:c9:70: 1d:c2:59:26:80:87:4f:d1:ff:52:88:2b:ae:c2:fc: 2b:3b:cf:e0:f3:76:9a:c9:06:6f:81:20:47:00:e8: 57:4f:9a:41:9b:0e:d8:06:3f:02:ba:75:48:22:cc: a7:28:a8:d6:14:99:91:a8:38:ce:88:e3:66:65:0f: cc:b8:19:60:20:18:09:a2:5f:9c:0d:50:15:7e:cb: f6:c4:b9:fe:d5:fd:9b:49:2f:d1:9a:f8:d1:a2:d4: f1:7e:b2:ed:a1:7d:56:90:84:a5:57:8c:c2:68:7c: 73:63:56:f6:54:a2:6a:ea:97:a5:b3:51:9b:c7:56: 6a:ca:42:07:37:42:23:3a:45:92:cf:99:df:a5:f5: 62:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:69:E8:55:16:CA:EB:F6:3D:EB:E6:6C:2B:FA:74:C2:B4:63:19:92 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.153.187.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:e5:b1:12:22:b2:f6:e6:04:d7:04:13:99:99:ed:29:7c:55: 5f:7a:7d:8d:bc:51:47:c5:75:40:ce:a2:d2:37:ef:9d:fc:59: 86:3e:c1:4e:79:c2:26:4a:65:55:77:b2:a4:91:d6:89:03:4a: 75:11:1e:79:ac:24:70:fb:3a:58:49:82:95:68:14:2d:1f:e9: e8:ca:7e:f8:79:0f:ef:8b:39:b3:74:a0:39:c6:62:bf:94:3e: 10:12:89:83:74:23:49:6b:46:7a:a5:66:a0:f8:88:d1:52:df: e9:40:1e:f1:40:bc:e8:21:61:57:da:2c:5a:f7:3a:18:b0:98: 05:8e:a3:f0:a3:6a:2b:d6:d9:b3:f6:d6:1e:30:3d:af:80:88: 7c:c4:7c:2e:46:0c:b2:d6:54:1c:94:09:53:31:45:c5:c9:60: f0:e5:ff:23:0d:db:de:4b:35:a2:f1:f3:c1:00:87:57:df:95: 42:0b:c6:b1:2c:b8:38:da:15:24:97:cf:27:f5:39:10:ed:11: b6:78:83:bb:2d:11:ec:9c:32:b9:3e:84:ae:ac:28:cc:e4:8d: a1:96:51:f7:36:5e:ac:5f:31:bd:b4:6d:2b:be:26:e9:a4:30: 01:01:a5:58:4a:ac:a1:f7:f8:02:6e:d5:62:a8:41:61:88:50: 8d:1b:ff:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjQxMDI4MTUxMDUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmYTk3Yi1mMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyinl6FdSN7tGMsXDZHwksa3HXkPFXT/dWlup047V5fHuYAyICgNfTf8ExLwk PqKmaeNUdFOngmtovjSyS6ig5PucwcbMNPVjE67m7YYP8ccn3xvH53GTbZBLdinl zyYDuVHXpuhMp19Ljrofn6lkLm2XN1DAyXAdwlkmgIdP0f9SiCuuwvwrO8/g83aa yQZvgSBHAOhXT5pBmw7YBj8CunVIIsynKKjWFJmRqDjOiONmZQ/MuBlgIBgJol+c DVAVfsv2xLn+1f2bSS/RmvjRotTxfrLtoX1WkISlV4zCaHxzY1b2VKJq6pels1Gb x1ZqykIHN0IjOkWSz5nfpfViOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMhp6FUW yuv2PevmbCv6dMK0YxmSMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEQUUvRkVGQkNDOEUxRDhGMTFFMkI1NEE3REVGMDhCMDJDRDIvMjI5RjI3QUNG RUE0MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmbswDQYJKoZIhvcNAQELBQADggEBAAzlsRIisvbmBNcE E5mZ7Sl8VV96fY28UUfFdUDOotI37538WYY+wU55wiZKZVV3sqSR1okDSnURHnms JHD7OlhJgpVoFC0f6ejKfvh5D++LObN0oDnGYr+UPhASiYN0I0lrRnqlZqD4iNFS 3+lAHvFAvOghYVfaLFr3OhiwmAWOo/CjaivW2bP21h4wPa+AiHzEfC5GDLLWVByU CVMxRcXJYPDl/yMN295LNaLx88EAh1fflUILxrEsuDjaFSSXzyf1ORDtEbZ4g7st EeycMrk+hK6sKMzkjaGWUfc2XqxfMb20bSu+JumkMAEBpVhKrKH3+AJu1WKoQWGI UI0b/6k= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org