$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa File: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (raw, json) Hash identifier: OSzx+tHbv8GS0QRL7lJHUONIT8BBObbjKgYazgGJOB4= Subject key identifier: 30:9D:0C:2D:6C:95:84:6D:B9:16:83:AC:DA:46:2D:72:64:57:9E:80 Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0A2A Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa Signing time: Mon 18 Nov 2024 05:04:27 +0000 ROA not before: Mon 18 Nov 2024 05:04:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 4913 IP address blocks: 203.88.86.0/24 maxlen: 24 203.88.87.0/24 maxlen: 24 203.88.88.0/24 maxlen: 24 203.88.89.0/24 maxlen: 24 203.88.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2602 (0xa2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Nov 18 05:04:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=673acadb-d8f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:04:66:a3:16:90:fb:a7:2f:f7:31:db:34:74: a3:44:a2:b9:2c:45:32:cf:74:6c:9e:4e:e6:d6:77: 3d:c4:74:72:36:13:ce:68:99:20:a2:9e:de:f0:b2: 05:5d:8e:a1:6b:24:fd:d6:fd:df:40:4a:cf:bb:e7: 2a:a4:47:c7:a0:1f:fb:34:0a:98:28:13:92:a7:c0: 80:bb:49:0c:8c:2c:37:48:fa:90:ea:64:f0:6f:79: 3e:5a:fd:9f:62:e0:39:57:5f:91:8c:7b:fb:3d:d0: 6b:28:c6:81:a1:75:fd:f3:d8:3b:da:97:2f:ae:8e: bf:6a:f1:5c:2b:09:ae:a2:3f:4d:53:62:76:33:b6: 80:7c:81:60:d8:f5:9c:ae:d1:d8:56:ad:86:d6:06: 15:91:d5:07:6b:50:53:f6:41:cc:e4:91:48:20:8e: ac:c0:53:73:a9:fe:60:8d:65:58:d3:0a:9a:ad:b7: f5:f5:1d:45:ca:25:79:15:9f:61:16:7e:99:e3:c1: 84:b2:10:e5:36:79:a0:fd:31:64:6e:a6:54:22:f3: 43:47:ab:93:f5:43:6b:a7:87:91:35:68:36:2b:7d: 2b:54:12:d8:87:dc:4a:2a:69:ec:c1:7f:3c:ca:8a: 94:26:80:9f:e3:ac:a4:4c:f2:00:ce:28:68:b0:b9: b5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9D:0C:2D:6C:95:84:6D:B9:16:83:AC:DA:46:2D:72:64:57:9E:80 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.88.86.0-203.88.90.255 Signature Algorithm: sha256WithRSAEncryption a1:da:93:af:cf:3d:6f:ea:33:cc:15:05:4e:30:56:b7:c4:2f: 36:fd:b0:50:47:3a:77:76:e2:03:c6:1b:9a:16:88:ec:96:b7: c2:f4:59:76:f3:7b:50:f3:94:ab:b8:0e:ca:4e:45:95:ba:f7: ab:cc:e3:31:43:ef:15:9d:c7:c4:08:38:77:c2:a8:ce:18:b4: e6:fd:b1:d2:c6:12:d1:83:a4:4d:65:ac:c0:36:fc:a7:e0:1e: e4:60:60:ea:e8:68:19:40:87:6f:64:ae:cd:05:91:87:96:b1: cd:f4:39:46:11:7b:01:a2:6f:08:de:f0:b8:77:61:4d:8c:19: 3f:3a:37:5c:eb:64:7a:fd:a1:1e:ad:bc:a9:9d:0a:32:f9:f6: 71:01:1b:15:bf:3a:1c:94:9f:e7:f5:09:9d:7e:42:cd:eb:6f: 33:27:42:1c:f3:e6:f3:fe:b2:4f:eb:fe:3d:7a:59:a4:39:fb: ae:c0:26:93:ac:12:d6:67:af:6d:da:09:8a:6e:16:51:69:cf: 3a:8d:19:83:cd:6a:6f:34:54:b2:f7:f0:36:03:c4:1a:43:d4: e8:91:64:df:4a:34:c0:54:f4:ce:8f:52:90:d0:9d:d5:1f:26: c0:ac:45:21:dc:47:51:df:6d:50:df:18:8a:8f:34:70:4e:a5: 30:f4:01:da -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjQxMTE4MDUwNDI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhY2FkYi1kOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QRmoxaQ+6cv9zHbNHSjRKK5LEUyz3Rsnk7m1nc9xHRyNhPOaJkgop7e8LIF XY6hayT91v3fQErPu+cqpEfHoB/7NAqYKBOSp8CAu0kMjCw3SPqQ6mTwb3k+Wv2f YuA5V1+RjHv7PdBrKMaBoXX989g72pcvro6/avFcKwmuoj9NU2J2M7aAfIFg2PWc rtHYVq2G1gYVkdUHa1BT9kHM5JFIII6swFNzqf5gjWVY0wqarbf19R1FyiV5FZ9h Fn6Z48GEshDlNnmg/TFkbqZUIvNDR6uT9UNrp4eRNWg2K30rVBLYh9xKKmnswX88 yoqUJoCf46ykTPIAzihosLm1AwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDCdDC1s lYRtuRaDrNpGLXJkV56AMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMjcvRjM4ODg3NjY2RjNBMTFFQTk4NDAxMzNEQzRGOUFFMDIvOTVCRDlEOTBB NTZBMTFFRkE1QUJEQzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEActYVgMEAMtYWjANBgkqhkiG9w0BAQsFAAOCAQEAodqT r889b+ozzBUFTjBWt8QvNv2wUEc6d3biA8YbmhaI7Ja3wvRZdvN7UPOUq7gOyk5F lbr3q8zjMUPvFZ3HxAg4d8Kozhi05v2x0sYS0YOkTWWswDb8p+Ae5GBg6uhoGUCH b2SuzQWRh5axzfQ5RhF7AaJvCN7wuHdhTYwZPzo3XOtkev2hHq28qZ0KMvn2cQEb Fb86HJSf5/UJnX5CzetvMydCHPPm8/6yT+v+PXpZpDn7rsAmk6wS1mevbdoJim4W UWnPOo0Zg81qbzRUsvfwNgPEGkPU6JFk30o0wFT0zo9SkNCd1R8mwKxFIdxHUd9t UN8Yio80cE6lMPQB2g== -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:14 2024 by rpki-client on console-ams.rpki-client.org