$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa File: 9549EE609A7311EF8A9F432EC4F9AE02.roa (raw, json) Hash identifier: IgBHq82Rbjux5h+sEkd6TyJp0e2koPRitGAA/hC55vc= Subject key identifier: 49:6E:FB:37:2F:60:81:47:E4:A9:5B:E5:88:1D:BC:63:1A:55:54:ED Certificate issuer: /CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Certificate serial: 02 Authority key identifier: 2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa Signing time: Mon 04 Nov 2024 06:11:09 +0000 ROA not before: Mon 04 Nov 2024 06:11:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 7545 IP address blocks: 203.23.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Validity Not Before: Nov 4 06:11:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6728657d-7b4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e5:64:7e:29:4d:fa:f2:56:e3:4f:93:f5:7d: 0f:24:a7:cc:a9:c0:06:12:d4:e5:03:e3:7b:e8:50: 2d:ec:b3:b3:60:c6:91:57:26:1b:f0:ff:b7:a2:10: 22:54:19:b7:8c:ff:82:e2:a3:24:36:79:2b:8c:cc: c1:0a:a3:e3:e5:79:e4:49:1f:6e:b3:14:fa:46:ba: 7a:67:f5:2d:cc:21:15:a4:71:51:60:aa:d1:33:1f: 49:a1:54:26:34:43:e9:80:df:06:70:15:4d:41:ed: b8:86:77:88:c0:af:11:64:2b:bd:12:68:cd:79:60: 48:2c:2e:76:9d:1c:19:cd:72:30:67:63:17:74:5f: f0:53:05:60:b6:93:53:48:d3:a6:66:7c:da:cb:8d: be:df:c5:ab:4d:da:c3:f6:1f:dc:de:1f:41:44:c8: b3:2f:e7:1e:a9:5a:e8:89:d1:22:10:a8:44:cb:96: d8:88:d9:1a:05:78:ea:69:5e:a3:ab:74:bc:40:89: 9a:8d:2b:0e:5e:84:b1:ac:ca:59:6c:d6:44:c3:52: 4b:88:5b:e0:19:3b:b5:2d:44:d4:a0:d8:8f:28:ab: 89:ca:ce:06:8e:43:c8:8c:7e:0a:6c:af:9c:2f:2b: e2:b6:a3:cb:ff:73:c2:9b:d1:97:f1:42:8f:9c:e1: 75:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6E:FB:37:2F:60:81:47:E4:A9:5B:E5:88:1D:BC:63:1A:55:54:ED X509v3 Authority Key Identifier: keyid:2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.36.0/24 Signature Algorithm: sha256WithRSAEncryption 19:b6:b7:59:31:99:89:74:7d:91:58:ee:18:ce:30:d4:9a:ff: 64:ed:91:59:57:ef:26:2c:b5:ec:48:65:11:ab:00:20:1e:86: b2:06:c9:47:31:c2:f9:39:2c:b7:47:b8:57:f0:6b:98:35:92: d1:5c:e0:46:f5:b4:27:aa:a3:5a:2e:b7:97:d5:ee:73:25:1b: 43:7f:64:78:4e:97:52:ed:c0:7b:96:7e:96:91:c2:7c:56:71: 73:29:e8:62:77:8a:bd:ac:44:06:7e:4c:c9:bc:b1:a2:a4:8c: 64:b3:6d:2b:98:4b:33:a2:15:7d:cf:92:92:b1:0f:f5:d8:6a: 7f:fa:e6:50:3d:f1:24:0b:02:cd:4f:ff:1d:e3:35:ea:2a:3e: 79:a5:a0:71:c4:05:1b:9c:2b:b6:73:c9:d0:71:cc:45:d4:e3: b8:10:b9:55:f6:4e:80:f5:a6:8a:9f:4e:79:be:f3:03:8e:b2: 90:fc:cf:fb:27:80:11:ab:17:70:e5:8d:c4:d3:9c:55:6e:7b: 36:88:dc:fa:e7:c4:77:f7:43:7a:de:4a:c9:51:90:26:6e:a9: 81:ac:aa:3d:9c:2c:94:0d:d9:1e:d6:99:14:f3:c2:41:02:d5: 02:fd:5b:5e:9c:4b:73:cc:56:9e:96:b1:d1:1c:fa:0e:91:16: 45:e9:4e:09 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkMxQjExMC8GA1UEBRMoMkNGQjBDRUY2RDE2RDY2NzZFRUEyMTE2NDNFQzhFODVD MjVDRjJGRjAeFw0yNDExMDQwNjExMDlaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Mjg2NTdkLTdiNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDx5WR+KU368lbjT5P1fQ8kp8ypwAYS1OUD43voUC3ss7NgxpFXJhvw/7eiECJU GbeM/4LioyQ2eSuMzMEKo+PleeRJH26zFPpGunpn9S3MIRWkcVFgqtEzH0mhVCY0 Q+mA3wZwFU1B7biGd4jArxFkK70SaM15YEgsLnadHBnNcjBnYxd0X/BTBWC2k1NI 06ZmfNrLjb7fxatN2sP2H9zeH0FEyLMv5x6pWuiJ0SIQqETLltiI2RoFeOppXqOr dLxAiZqNKw5ehLGsylls1kTDUkuIW+AZO7UtRNSg2I8oq4nKzgaOQ8iMfgpsr5wv K+K2o8v/c8Kb0ZfxQo+c4XV3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSW77Ny9g gUfkqVvliB28YxpVVO0wHwYDVR0jBBgwFoAULPsM720W1mdu6iEWQ+yOhcJc8v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2QzFCL0U1NzMwNkNBOUE3 MjExRUY4RUI0MTYyREM0RjlBRTAyL0xQc003MjBXMW1kdTZpRVdRLXlPaGNKYzh2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFBzTTcyMFcxbWR1NmlFV1EteU9oY0pjOHY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkMxQi9FNTczMDZDQTlBNzIxMUVGOEVCNDE2MkRDNEY5QUUwMi85NTQ5RUU2MDlB NzMxMUVGOEE5RjQzMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsXJDANBgkqhkiG9w0BAQsFAAOCAQEAGba3WTGZiXR9kVju GM4w1Jr/ZO2RWVfvJiy17EhlEasAIB6GsgbJRzHC+Tkst0e4V/BrmDWS0VzgRvW0 J6qjWi63l9XucyUbQ39keE6XUu3Ae5Z+lpHCfFZxcynoYneKvaxEBn5MybyxoqSM ZLNtK5hLM6IVfc+SkrEP9dhqf/rmUD3xJAsCzU//HeM16io+eaWgccQFG5wrtnPJ 0HHMRdTjuBC5VfZOgPWmip9Oeb7zA46ykPzP+yeAEasXcOWNxNOcVW57Nojc+ufE d/dDet5KyVGQJm6pgayqPZwslA3ZHtaZFPPCQQLVAv1bXpxLc8xWnpax0Rz6DpEW RelOCQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org