$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/3962A56E5E0611EF8CB1F080C4F9AE02.roa File: 3962A56E5E0611EF8CB1F080C4F9AE02.roa (raw, json) Hash identifier: 4xd2mN7Ax5rC2kZFZqcKmtUdp723D1QNJshZsXWgNB8= Subject key identifier: FA:29:14:B2:30:4F:D7:F9:BA:D5:4A:04:9E:7B:54:BE:EB:22:CC:18 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 054B Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/3962A56E5E0611EF8CB1F080C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:15:23 +0000 ROA not before: Tue 03 Sep 2024 01:15:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135676 IP address blocks: 110.164.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Sep 3 01:15:23 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6632a-8fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:d8:0c:32:82:05:84:5c:40:d7:f9:3b:d9: 9f:76:02:f0:11:d4:00:38:b6:e7:aa:1c:64:11:25: 58:2a:8f:36:c2:62:6a:1b:96:36:9b:75:b9:88:c6: 96:26:04:62:c1:f2:01:45:00:95:e2:64:ed:c4:6f: 3c:f3:db:7f:57:32:81:ec:6a:5e:9d:9b:52:62:b2: 20:42:93:30:94:e3:28:bf:2f:01:8d:2f:b4:30:3a: ff:89:46:2c:6f:59:62:04:b6:5d:d2:cd:b1:21:5d: 12:04:85:cc:a4:03:e5:04:8a:e7:4e:8e:7c:51:36: 6e:26:99:83:20:24:28:0c:78:06:73:4a:17:22:eb: 69:30:fb:43:57:9c:60:65:6e:1f:64:14:87:76:18: e0:d1:35:32:b1:0a:93:e5:a0:82:30:99:3c:2e:db: 20:42:e2:8a:51:50:57:8b:7f:62:0e:54:47:a8:0d: c0:ac:df:bb:d7:8e:ef:ea:da:82:95:99:8b:d8:93: 45:ac:0e:26:5d:04:b8:35:2d:39:9b:7e:a9:19:e7: d2:78:a5:97:b2:e8:e4:05:e7:7f:61:c1:6b:0d:55: 8c:51:b7:73:91:a3:56:18:a9:5b:c7:63:13:58:37: 10:97:59:5f:14:6b:47:d0:a0:75:c7:fc:08:74:ee: 9a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:29:14:B2:30:4F:D7:F9:BA:D5:4A:04:9E:7B:54:BE:EB:22:CC:18 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/3962A56E5E0611EF8CB1F080C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.143.0/24 Signature Algorithm: sha256WithRSAEncryption 51:68:58:98:45:f2:67:9f:ad:d4:79:0e:55:0a:29:e1:45:e7: 7a:65:e8:12:73:19:da:fc:fb:85:4a:12:ca:20:f7:cf:c7:30: a0:6e:f6:6a:53:e8:d1:20:9a:ec:ff:8f:0e:1f:0e:2f:b1:6d: 62:1f:18:37:98:ae:18:15:f7:6d:c1:42:62:d8:77:c0:39:f0: 51:39:b0:e3:c2:67:5d:41:ca:88:b3:da:d1:ee:54:9a:ca:03: 61:c1:62:70:cd:d2:bf:94:34:d3:0c:58:08:62:7f:5d:d1:12: b8:1a:80:cd:8b:0f:bc:8a:82:8d:47:41:d4:34:60:78:ef:5b: 38:36:1c:45:7d:b2:e1:d6:69:76:b5:df:1b:f6:41:f7:93:73: 92:1f:5e:d5:04:8f:15:2e:74:84:57:5b:ab:28:26:e0:61:f2: c6:ba:be:78:d4:b4:87:26:18:1d:35:5d:a8:9d:7f:86:48:ae: 47:2b:32:2d:86:32:0d:b4:4f:da:a0:e3:be:bb:5a:5e:75:dd: 92:59:61:65:6f:c0:92:ec:d2:b7:f5:04:80:78:76:65:f6:6c: 25:f1:0d:90:89:27:c8:08:e2:42:2a:12:b4:43:7f:e5:8f:39: 15:55:d2:3b:ff:a3:aa:e2:8b:1b:c9:05:00:f9:6f:c4:62:8b: c2:0e:91:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQwOTAzMDExNTIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMyYS04ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EjYDDKCBYRcQNf5O9mfdgLwEdQAOLbnqhxkESVYKo82wmJqG5Y2m3W5iMaW JgRiwfIBRQCV4mTtxG8889t/VzKB7GpenZtSYrIgQpMwlOMovy8BjS+0MDr/iUYs b1liBLZd0s2xIV0SBIXMpAPlBIrnTo58UTZuJpmDICQoDHgGc0oXIutpMPtDV5xg ZW4fZBSHdhjg0TUysQqT5aCCMJk8LtsgQuKKUVBXi39iDlRHqA3ArN+7147v6tqC lZmL2JNFrA4mXQS4NS05m36pGefSeKWXsujkBed/YcFrDVWMUbdzkaNWGKlbx2MT WDcQl1lfFGtH0KB1x/wIdO6aLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPopFLIw T9f5utVKBJ57VL7rIswYMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvMzk2MkE1NkU1 RTA2MTFFRjhDQjFGMDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABupI8wDQYJKoZIhvcNAQELBQADggEBAFFoWJhF8mefrdR5 DlUKKeFF53pl6BJzGdr8+4VKEsog98/HMKBu9mpT6NEgmuz/jw4fDi+xbWIfGDeY rhgV923BQmLYd8A58FE5sOPCZ11Byoiz2tHuVJrKA2HBYnDN0r+UNNMMWAhif13R ErgagM2LD7yKgo1HQdQ0YHjvWzg2HEV9suHWaXa13xv2QfeTc5IfXtUEjxUudIRX W6soJuBh8sa6vnjUtIcmGB01Xaidf4ZIrkcrMi2GMg20T9qg4767Wl513ZJZYWVv wJLs0rf1BIB4dmX2bCXxDZCJJ8gI4kIqErRDf+WPORVV0jv/o6riixvJBQD5b8Ri i8IOkfk= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org