$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa File: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (raw, json) Hash identifier: nxlYmKdF4e18zRrg6y0DjJDljSmorfdHg/tDKc8O4HY= Subject key identifier: A3:4A:C5:F1:85:F9:67:88:14:75:95:CB:24:AA:AB:50:F2:69:3E:D8 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3281 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa Signing time: Fri 16 Aug 2024 08:35:38 +0000 ROA not before: Fri 16 Aug 2024 08:35:38 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135437 IP address blocks: 203.175.160.0/20 maxlen: 23 203.175.160.0/21 maxlen: 24 203.175.168.0/22 maxlen: 24 203.175.172.0/23 maxlen: 24 203.175.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12929 (0x3281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Aug 16 08:35:38 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66bf0f59-b62b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:6f:08:ac:22:9e:e0:db:c4:57:8d:18:82: b1:21:ff:e7:58:1c:5c:55:b8:e7:61:62:94:b2:b9: 23:43:07:dd:d3:b5:6a:42:99:fe:6f:7e:35:82:1a: c0:a6:ba:7e:e7:d8:d0:85:99:40:cb:0e:ad:a6:a8: ac:22:8b:6c:69:83:67:d7:ba:4c:4c:25:76:6f:d6: e3:eb:50:c5:63:34:a4:02:65:c3:4e:8b:18:50:b3: d5:63:b6:c2:5b:6d:4f:05:11:b4:7d:5b:ea:ab:6f: 1e:ed:d2:99:c7:3b:f9:86:7d:4b:bd:ad:ed:22:77: 8c:55:ce:a8:0c:9c:56:d0:66:4a:12:e3:bc:4c:32: 4e:28:b5:55:b9:59:c5:1c:46:77:21:db:df:d8:21: 4e:c1:0a:bd:9c:f0:ce:b2:59:68:10:cd:30:cd:58: 3c:a3:dc:4f:89:2c:c1:73:f1:1f:14:68:de:5c:13: b2:7d:6e:4c:a0:14:5b:fa:49:cd:46:5d:be:07:ef: 15:0b:4d:83:ae:26:c4:10:4d:4c:ae:d6:99:3e:4a: 5d:04:4b:91:f3:eb:ea:f2:5d:c2:ed:eb:d4:53:a1: 00:e5:19:5e:ca:33:7c:d0:91:2b:db:ee:05:eb:c5: e8:95:29:07:fb:56:f2:0c:41:70:66:bf:63:c6:22: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4A:C5:F1:85:F9:67:88:14:75:95:CB:24:AA:AB:50:F2:69:3E:D8 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.175.160.0/20 Signature Algorithm: sha256WithRSAEncryption 01:82:59:a8:6c:29:51:34:08:59:b7:b9:3d:ad:20:19:51:13: 03:30:08:e4:39:e1:20:81:8f:73:05:01:93:6e:59:e1:a0:90: 4e:7d:7b:49:56:73:5a:20:36:b5:aa:4a:0c:71:8f:9f:9c:2d: 6c:ae:cb:c3:3c:58:ed:4b:ae:ca:24:77:0d:51:a3:8f:da:df: b6:57:b0:60:05:6e:c2:27:c4:ba:ab:20:6f:83:a1:2d:ae:09: e0:74:2e:00:6a:4d:45:b5:47:41:14:b0:e6:56:f4:53:45:5c: da:ad:a0:bc:30:0d:44:99:4a:61:9a:87:22:33:78:24:c9:c9: eb:a9:da:27:31:46:98:45:23:a0:d4:c9:c5:a0:1a:b6:2c:e0: a3:88:2f:a4:e2:23:6b:fb:c1:35:6e:ab:5e:fd:33:78:19:3c: 69:25:fc:f4:21:ae:59:c0:cf:f8:48:58:ab:e0:f6:86:6b:b9: 2c:42:57:94:92:ff:11:3f:81:01:37:d9:96:4e:d6:cb:48:ec: b3:27:e9:a7:31:64:62:46:bd:e5:9f:ed:23:93:0f:70:d7:5a: 72:c7:c1:42:08:e2:c3:11:6a:4f:e9:28:a9:cd:e2:8a:9d:fe: d2:a3:f1:07:2c:02:0c:80:eb:49:02:30:9e:3e:8f:58:ec:be: ed:81:82:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjQwODE2MDgzNTM4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmMGY1OS1iNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmVvCKwinuDbxFeNGIKxIf/nWBxcVbjnYWKUsrkjQwfd07VqQpn+b341ghrA prp+59jQhZlAyw6tpqisIotsaYNn17pMTCV2b9bj61DFYzSkAmXDTosYULPVY7bC W21PBRG0fVvqq28e7dKZxzv5hn1Lva3tIneMVc6oDJxW0GZKEuO8TDJOKLVVuVnF HEZ3Idvf2CFOwQq9nPDOslloEM0wzVg8o9xPiSzBc/EfFGjeXBOyfW5MoBRb+knN Rl2+B+8VC02DribEEE1MrtaZPkpdBEuR8+vq8l3C7evUU6EA5RleyjN80JEr2+4F 68XolSkH+1byDEFwZr9jxiKehQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKNKxfGF +WeIFHWVyySqq1DyaT7YMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NjMvQkZFNTRBNjg4MTVCMTFFMjlCNThBNzNCMzI5MkI1RTgvODM0RDdENTY1 QkFBMTFFRkJBRjIyQjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATLr6AwDQYJKoZIhvcNAQELBQADggEBAAGCWahsKVE0CFm3 uT2tIBlREwMwCOQ54SCBj3MFAZNuWeGgkE59e0lWc1ogNrWqSgxxj5+cLWyuy8M8 WO1Lrsokdw1Ro4/a37ZXsGAFbsInxLqrIG+DoS2uCeB0LgBqTUW1R0EUsOZW9FNF XNqtoLwwDUSZSmGahyIzeCTJyeup2icxRphFI6DUycWgGrYs4KOIL6TiI2v7wTVu q179M3gZPGkl/PQhrlnAz/hIWKvg9oZruSxCV5SS/xE/gQE32ZZO1stI7LMn6acx ZGJGveWf7SOTD3DXWnLHwUII4sMRak/pKKnN4oqd/tKj8QcsAgyA60kCMJ4+j1js vu2BgjY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:05 2024 by rpki-client on console-ams.rpki-client.org