$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa File: 2DDB3932FF4711EDA9459E3DC4F9AE02.roa (raw, json) Hash identifier: S9orSF/SA+1jJMFTdvWFlE7rC4BhJzueXE/ToaNYW+I= Subject key identifier: 58:D3:F4:87:D6:1F:15:32:40:46:89:F7:FE:C8:8E:D6:2E:73:17:1C Certificate issuer: /CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Certificate serial: 57 Authority key identifier: 26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa Signing time: Wed 01 Nov 2023 06:37:09 +0000 ROA not before: Wed 01 Nov 2023 06:37:09 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 131201 IP address blocks: 202.50.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Validity Not Before: Nov 1 06:37:09 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541f214-e63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f1:43:ce:ee:86:53:7b:86:7d:d5:c7:4d:cd: af:3c:eb:d9:39:8b:88:39:07:36:7e:8c:3b:33:f0: 2b:a9:d1:b6:b8:bd:8e:15:aa:19:de:d3:fc:9e:5e: 12:5f:aa:5b:82:35:c3:47:3d:b9:87:37:c9:98:5f: ea:21:93:76:73:58:25:d1:c8:b4:bf:17:8c:a9:08: d4:8f:fe:3d:94:a2:d6:c5:1f:85:b5:2a:72:9e:5e: cc:7e:02:ec:54:c2:0d:4d:09:9e:de:ea:b9:03:77: 6b:19:da:66:17:0d:f9:fe:8b:bf:68:4e:c9:3a:3b: 15:32:ec:a1:7e:db:83:87:d6:81:a3:35:6c:e9:fd: c0:49:8b:08:c6:47:9c:60:74:49:ee:6a:80:d5:05: 4c:3f:f7:5b:07:31:40:ea:98:b6:01:c0:03:95:0b: 75:98:e7:38:c1:14:a6:13:dc:b9:64:2c:25:65:e2: eb:d7:49:c9:a9:8b:d7:c2:13:7c:15:f7:01:29:d7: 86:92:2c:55:cc:63:d3:16:05:d5:e1:34:6b:2c:26: 12:4f:64:f3:06:45:64:07:9e:a3:65:fe:ed:97:12: 79:49:f2:38:c6:c5:16:64:e1:b9:e0:8d:b0:51:0e: 0e:0a:00:a1:9d:24:b1:58:4e:9f:ee:30:f0:1f:f7: 63:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D3:F4:87:D6:1F:15:32:40:46:89:F7:FE:C8:8E:D6:2E:73:17:1C X509v3 Authority Key Identifier: keyid:26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.117.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:0e:64:48:fa:5e:b0:1a:ae:d2:09:0b:90:36:96:dc:c3:71: 0d:0b:d8:f7:99:2d:89:fe:39:9b:48:59:3a:14:e2:6a:d9:0b: 17:d6:16:0e:7d:36:78:ac:22:8e:a0:06:6c:5b:56:0c:31:49: 15:39:b3:dd:7b:19:ce:cb:da:2e:09:0f:f1:7c:c2:37:e6:75: 31:e0:20:40:4f:c5:78:d6:d9:3a:e5:92:0c:63:14:76:15:b5: fc:f8:3b:94:eb:fa:b7:66:66:29:81:66:fc:49:5e:b2:43:7f: e6:77:60:5d:2b:f1:a4:5a:dd:af:a0:2d:bc:cf:94:b2:e1:9f: 8e:03:d9:37:a1:6c:9d:c8:20:27:21:53:ad:82:3a:76:9f:06: d4:8c:ae:5b:64:b3:6c:6b:d7:d9:1b:5e:27:c7:22:11:37:16: d3:ee:08:31:48:c8:42:65:96:47:66:5b:a1:ff:7d:5b:9e:7e: ea:03:71:aa:be:b4:e8:3c:99:29:db:48:da:e6:1e:f2:c6:7b: c4:c0:c6:42:9a:a0:c7:91:4c:25:bd:49:ef:3e:d9:05:45:d2: 14:24:9e:0e:93:1a:cb:fd:7c:3a:34:1f:54:c1:1e:ed:59:d5: e5:f5:c9:93:31:75:9f:be:cf:0b:53:83:63:8b:50:b2:26:56: 44:4a:97:e1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDVFQzExMC8GA1UEBRMoMjZCMkM4NDYyRkVBMURBNTE0MTY2QjVCMTM5MEFEMEND Mjc3QTVBODAeFw0yMzExMDEwNjM3MDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDFmMjE0LWU2M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw8UPO7oZTe4Z91cdNza8869k5i4g5BzZ+jDsz8Cup0ba4vY4Vqhne0/yeXhJf qluCNcNHPbmHN8mYX+ohk3ZzWCXRyLS/F4ypCNSP/j2UotbFH4W1KnKeXsx+AuxU wg1NCZ7e6rkDd2sZ2mYXDfn+i79oTsk6OxUy7KF+24OH1oGjNWzp/cBJiwjGR5xg dEnuaoDVBUw/91sHMUDqmLYBwAOVC3WY5zjBFKYT3LlkLCVl4uvXScmpi9fCE3wV 9wEp14aSLFXMY9MWBdXhNGssJhJPZPMGRWQHnqNl/u2XEnlJ8jjGxRZk4bngjbBR Dg4KAKGdJLFYTp/uMPAf92M3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWNP0h9Yf FTJARon3/siO1i5zFxwwHwYDVR0jBBgwFoAUJrLIRi/qHaUUFmtbE5CtDMJ3pagw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURENUVDLzA1MzE1REVFRkRE QjExRURBMDMyQkY0MkM0RjlBRTAyL0pyTElSaV9xSGFVVUZtdGJFNUN0RE1KM3Bh Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSnJMSVJpX3FIYVVVRm10YkU1Q3RETUozcGFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFQy8wNTMxNURFRUZEREIxMUVEQTAzMkJGNDJDNEY5QUUwMi8yRERCMzkzMkZG NDcxMUVEQTk0NTlFM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoydTANBgkqhkiG9w0BAQsFAAOCAQEAPg5kSPpesBqu0gkL kDaW3MNxDQvY95ktif45m0hZOhTiatkLF9YWDn02eKwijqAGbFtWDDFJFTmz3XsZ zsvaLgkP8XzCN+Z1MeAgQE/FeNbZOuWSDGMUdhW1/Pg7lOv6t2ZmKYFm/EleskN/ 5ndgXSvxpFrdr6AtvM+UsuGfjgPZN6FsncggJyFTrYI6dp8G1IyuW2SzbGvX2Rte J8ciETcW0+4IMUjIQmWWR2Zbof99W55+6gNxqr606DyZKdtI2uYe8sZ7xMDGQpqg x5FMJb1J7z7ZBUXSFCSeDpMay/18OjQfVMEe7VnV5fXJkzF1n77PC1ODY4tQsiZW REqX4Q== -----END CERTIFICATE-----Generated at Fri May 17 08:52:54 2024 by rpki-client on console-ams.rpki-client.org