$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa File: 805A2E74660311EF90397033C4F9AE02.roa (raw, json) Hash identifier: rPnc+aLwa+d5IwykOHXYF2wZIOiKCdYANiQw09gw2p4= Subject key identifier: 1B:30:9D:5E:24:A8:EE:BA:68:4F:C4:67:36:58:81:25:87:55:F4:71 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: EA Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa Signing time: Thu 29 Aug 2024 12:37:50 +0000 ROA not before: Thu 29 Aug 2024 12:37:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 17473 IP address blocks: 203.24.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Aug 29 12:37:50 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66d06b9d-f599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d6:d5:00:39:f9:11:07:53:d3:a0:08:db:64: 97:0c:e5:10:e4:e9:5e:fc:5d:14:4b:df:d0:f4:e6: 98:8f:a1:53:2c:d0:e6:98:b8:98:84:41:d2:e5:83: 76:a7:b0:12:ef:87:56:5f:69:3e:99:58:c0:9e:66: cc:a5:34:0e:49:8f:fe:0f:b9:41:13:bd:4a:62:1e: 53:eb:54:18:1f:70:b5:e1:ee:e9:9e:db:c0:88:5a: 00:f9:38:c3:f4:60:f0:3d:65:e4:73:f6:d5:e9:58: ca:e1:bd:2f:5a:72:67:24:ce:d4:ef:af:64:6b:aa: 51:b0:a5:1b:e3:ef:bf:69:db:9b:6d:41:ef:74:64: 42:cd:e8:55:ac:17:d7:ad:c9:de:0f:f6:f7:d6:87: 30:92:01:75:59:95:99:fe:4b:d2:8b:c0:d8:a0:9f: d1:78:36:b7:a8:a6:c2:9b:2a:7a:fd:51:34:c5:65: 47:b3:72:11:34:ec:fe:91:b3:d1:20:06:d8:f3:f6: 7a:43:e5:95:af:21:b4:98:57:3d:63:fd:27:62:20: 10:2e:76:7c:ae:2d:1b:05:2f:51:96:37:73:8a:a6: 9d:f5:4a:a1:41:92:da:47:5e:79:6a:03:44:38:3d: 1d:20:9b:f1:50:a4:38:47:24:89:96:85:61:cb:19: 6c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:30:9D:5E:24:A8:EE:BA:68:4F:C4:67:36:58:81:25:87:55:F4:71 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.26.0/24 Signature Algorithm: sha256WithRSAEncryption 28:f0:57:19:b6:3b:97:09:6e:07:6e:7a:28:55:90:9b:57:22: f2:30:5b:a1:a9:91:17:96:25:55:83:2b:8e:fd:26:5d:3c:05: 34:ef:ba:9d:86:6e:94:79:b3:11:62:26:e3:57:59:2f:97:0d: 4c:44:ed:30:c4:99:ba:e6:07:eb:51:58:c4:ed:35:b1:14:d1: c3:3b:5f:02:4b:0f:58:c3:6b:f5:11:19:d3:00:3a:09:6d:ee: 0e:d9:e9:0a:a9:d9:b1:2c:d5:13:27:16:54:a6:d9:62:2f:fe: fa:a1:dd:f4:5d:03:7b:9d:6b:62:cd:81:5b:09:de:4b:3d:2f: 2d:7e:56:0e:fa:b3:cb:21:af:ff:9d:1c:e3:9a:1c:b3:34:bf: fb:9f:0c:72:c5:40:e4:07:44:f9:fd:fb:e2:20:cc:23:93:26: 49:5e:f4:c2:87:45:44:bb:ba:10:9c:16:59:87:38:a9:47:e3: 90:96:32:0b:66:04:e5:80:af:a4:5f:0a:28:27:56:a1:af:5b: a0:9e:0e:61:6d:a7:64:46:ec:c4:0e:dd:b4:b0:27:76:20:4c: 16:e4:d5:1e:75:1c:21:d3:f5:2a:aa:6e:ad:9c:59:6b:d0:91: 96:8d:e9:08:8d:ad:bc:d3:74:c0:d3:b0:28:4e:9e:03:1d:6f: 80:90:6a:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjQwODI5MTIzNzUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmQwNmI5ZC1mNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tbVADn5EQdT06AI22SXDOUQ5Ole/F0US9/Q9OaYj6FTLNDmmLiYhEHS5YN2 p7AS74dWX2k+mVjAnmbMpTQOSY/+D7lBE71KYh5T61QYH3C14e7pntvAiFoA+TjD 9GDwPWXkc/bV6VjK4b0vWnJnJM7U769ka6pRsKUb4++/adubbUHvdGRCzehVrBfX rcneD/b31ocwkgF1WZWZ/kvSi8DYoJ/ReDa3qKbCmyp6/VE0xWVHs3IRNOz+kbPR IAbY8/Z6Q+WVryG0mFc9Y/0nYiAQLnZ8ri0bBS9Rljdziqad9UqhQZLaR155agNE OD0dIJvxUKQ4RySJloVhyxlsOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBswnV4k qO66aE/EZzZYgSWHVfRxMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThEMjIvM0Y3RDY4QThGREU1MTFFRDg3ODQxNzcwQzRGOUFFMDIvODA1QTJFNzQ2 NjAzMTFFRjkwMzk3MDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGBowDQYJKoZIhvcNAQELBQADggEBACjwVxm2O5cJbgdu eihVkJtXIvIwW6GpkReWJVWDK479Jl08BTTvup2GbpR5sxFiJuNXWS+XDUxE7TDE mbrmB+tRWMTtNbEU0cM7XwJLD1jDa/URGdMAOglt7g7Z6Qqp2bEs1RMnFlSm2WIv /vqh3fRdA3uda2LNgVsJ3ks9Ly1+Vg76s8shr/+dHOOaHLM0v/ufDHLFQOQHRPn9 ++IgzCOTJkle9MKHRUS7uhCcFlmHOKlH45CWMgtmBOWAr6RfCignVqGvW6CeDmFt p2RG7MQO3bSwJ3YgTBbk1R51HCHT9Sqqbq2cWWvQkZaN6QiNrbzTdMDTsChOngMd b4CQamY= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org