$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa File: 19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa (raw, json) Hash identifier: 4qI2WUUHm8+dcoyB7U3qYqYYb9g/5slAkhQLxcA06nE= Subject key identifier: 8B:11:7F:00:06:45:22:A5:03:18:7B:C4:A3:A4:44:2B:A2:CC:01:51 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 269C Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:45 +0000 ROA not before: Wed 10 Apr 2024 16:23:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139710 IP address blocks: 203.213.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9884 (0x269c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70 Validity Not Before: Apr 10 16:23:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd11-c03b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5c:65:e3:e7:b7:e5:4e:5a:87:9c:51:c4:a3: fd:77:37:e1:a8:9c:2f:20:24:cd:dc:d7:1a:53:aa: 8f:5f:db:6f:2c:42:57:e1:9a:2f:c1:19:4c:6a:d6: 16:27:61:82:33:10:61:c0:ea:db:91:d6:4f:4f:15: 44:dd:ff:c2:b3:60:8d:82:68:c1:12:a5:29:c9:4a: 21:73:09:12:2b:41:2a:8a:8b:57:17:80:68:43:2a: 6a:e8:f1:41:79:9a:76:e8:66:2c:11:ed:2c:03:97: cb:6e:f7:20:55:25:48:f6:1d:7e:99:16:80:5d:53: 9f:f1:f1:85:73:f2:05:d8:00:9e:89:f0:f9:2c:e6: 15:04:18:c7:28:79:90:4b:aa:e4:93:80:69:d5:1f: 37:57:26:3d:51:91:c8:89:89:cb:34:3b:09:03:ea: 9b:e4:eb:a5:f8:27:10:e4:d3:a1:cb:dc:63:75:da: d4:f8:3c:d8:0a:b6:da:68:b1:ff:7d:8b:a2:39:d9: 8a:81:49:b3:d4:01:31:48:32:65:e2:9e:d0:b3:95: f3:27:14:e8:d5:51:8a:fb:38:49:f8:31:65:3a:2c: 01:7a:c6:7a:82:ef:a4:b7:6a:d5:01:5e:26:f4:48: b0:c5:bc:dd:02:22:55:bd:30:23:5f:62:90:a4:ef: 11:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:11:7F:00:06:45:22:A5:03:18:7B:C4:A3:A4:44:2B:A2:CC:01:51 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.213.198.0/24 Signature Algorithm: sha256WithRSAEncryption c4:07:c4:cd:bc:eb:dd:fe:ce:12:14:aa:d0:e6:b5:12:7f:f0: 03:ec:04:a4:de:ee:51:c0:71:23:22:80:e8:a5:72:77:66:8d: e9:39:ae:5b:f7:3f:52:6d:1a:7e:bf:62:8a:60:92:c2:17:8d: 13:24:f9:83:48:38:1b:d8:b2:de:1d:9b:0c:3f:d1:2d:73:b2: 2d:8a:7b:69:38:73:0a:c7:b2:68:49:4e:81:f7:4c:96:a1:83: c8:35:fb:fe:59:4f:69:fa:8c:da:c5:1d:43:10:3b:a0:8a:71: 5a:39:70:0d:48:37:c3:fd:bc:0f:d9:bc:57:38:0b:31:11:43: 13:2c:52:7b:93:24:81:9f:01:e6:47:ad:af:36:d4:cc:c6:72: e1:06:ed:3b:98:dd:7c:29:0e:bc:c5:a4:ae:73:dd:b0:18:be: 6d:bc:88:51:37:48:ea:5f:a0:f7:05:38:b2:9a:0d:7e:b0:6a: 3e:74:b5:1d:fc:4d:a8:f7:75:89:bb:4a:d9:01:b3:a0:66:1b: da:e4:c6:b0:6d:f0:30:1f:b2:27:74:1e:eb:68:76:9f:79:8c: 35:b9:22:6f:92:0e:9e:d5:6a:df:ee:22:4e:ea:9b:7b:a6:ed: 59:21:ee:36:af:ff:7f:b9:ae:6d:a5:5b:f0:f7:17:bc:87:4e: 87:88:17:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzQ1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQxMS1jMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Fxl4+e35U5ah5xRxKP9dzfhqJwvICTN3NcaU6qPX9tvLEJX4ZovwRlMatYW J2GCMxBhwOrbkdZPTxVE3f/Cs2CNgmjBEqUpyUohcwkSK0EqiotXF4BoQypq6PFB eZp26GYsEe0sA5fLbvcgVSVI9h1+mRaAXVOf8fGFc/IF2ACeifD5LOYVBBjHKHmQ S6rkk4Bp1R83VyY9UZHIiYnLNDsJA+qb5Oul+CcQ5NOhy9xjddrU+DzYCrbaaLH/ fYuiOdmKgUmz1AExSDJl4p7Qs5XzJxTo1VGK+zhJ+DFlOiwBesZ6gu+kt2rVAV4m 9EiwxbzdAiJVvTAjX2KQpO8R1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIsRfwAG RSKlAxh7xKOkRCuizAFRMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvMTlBM0NEOUU0 QjcwMTFFQzhFOUZDQjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL1cYwDQYJKoZIhvcNAQELBQADggEBAMQHxM28693+zhIU qtDmtRJ/8APsBKTe7lHAcSMigOilcndmjek5rlv3P1JtGn6/YopgksIXjRMk+YNI OBvYst4dmww/0S1zsi2Ke2k4cwrHsmhJToH3TJahg8g1+/5ZT2n6jNrFHUMQO6CK cVo5cA1IN8P9vA/ZvFc4CzERQxMsUnuTJIGfAeZHra821MzGcuEG7TuY3XwpDrzF pK5z3bAYvm28iFE3SOpfoPcFOLKaDX6waj50tR38Taj3dYm7StkBs6BmG9rkxrBt 8DAfsid0Hutodp95jDW5Im+SDp7Vat/uIk7qm3um7Vkh7jav/3+5rm2lW/D3F7yH ToeIF7k= -----END CERTIFICATE-----Generated at Sun Feb 16 20:45:17 2025 by rpki-client