$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa File: E404430CB0F811E595E0F761C4F9AE02.roa (raw, json) Hash identifier: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw= Subject key identifier: E2:DC:FD:CF:10:14:FB:B7:43:9C:9C:53:2C:ED:C8:6B:1F:5F:EF:D0 Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3408 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa Signing time: Thu 30 May 2024 14:50:12 +0000 ROA not before: Thu 30 May 2024 14:50:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132696 IP address blocks: 202.3.78.0/24 maxlen: 24 2001:df0:214::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13320 (0x3408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 30 14:50:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66589224-b004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ab:54:ff:b7:7a:70:cf:3c:ae:1c:b9:9d:78: c6:ed:77:8d:37:35:80:de:76:a4:57:19:f5:1c:53: 17:53:5b:13:de:8c:44:85:a2:12:2a:f8:98:bc:e0: 0f:11:77:a2:0b:c3:1e:56:b8:09:fc:9a:e3:82:8e: ac:d0:4d:0a:18:9d:cd:41:c6:36:fd:be:4f:6b:65: 51:98:ea:0a:a6:41:12:b1:2a:71:91:b9:a6:45:60: 12:d6:a1:c0:a4:ae:9e:9b:d5:de:2d:64:af:b5:ee: 0e:55:94:34:65:96:a6:a9:f1:0e:3d:de:62:d9:f7: dc:53:9d:73:43:cf:da:30:b7:d5:eb:aa:d5:6f:5a: 14:f9:99:a6:cb:14:8f:a6:1c:3e:7f:ea:48:c3:98: 10:cd:07:75:fc:ad:ad:a1:d7:58:aa:92:01:42:29: 5c:1e:94:69:54:a6:5c:2d:5b:e1:23:d6:21:be:25: dd:00:28:c2:a1:fb:b9:95:8a:69:83:68:80:0d:18: b4:0c:0b:25:80:06:53:ec:a1:62:a2:6c:9c:5d:25: 8d:78:72:2f:b1:50:41:a3:8f:a0:61:6a:e6:aa:f4: 57:93:56:9a:86:cb:ca:c9:ed:15:27:95:14:bb:c5: 27:11:99:74:a2:68:f0:66:5e:a4:96:e0:b8:4b:65: de:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DC:FD:CF:10:14:FB:B7:43:9C:9C:53:2C:ED:C8:6B:1F:5F:EF:D0 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.78.0/24 IPv6: 2001:df0:214::/48 Signature Algorithm: sha256WithRSAEncryption 27:4d:83:e8:3f:fd:20:20:d2:23:9d:ab:c9:eb:37:a4:86:83: e5:87:9c:08:9b:c7:6e:79:0e:22:e7:6b:d0:a0:3b:cc:4c:13: 30:5b:ce:d8:64:7d:25:51:c8:d6:a4:ad:50:59:7b:15:d2:60: cf:41:d8:2a:24:69:54:b6:9c:46:9f:e3:d6:7e:a1:3f:b4:b0: 4d:52:7b:08:4b:25:db:bb:3b:f8:75:b2:62:2a:8b:7f:d5:a1: 0b:eb:25:46:87:9f:db:27:1e:0a:01:1e:6d:20:32:a7:87:b1: 56:f9:7f:a7:88:a8:65:75:44:ca:53:3e:53:3c:9f:0b:61:d7: a7:b8:b9:fa:7c:a3:51:78:16:8a:ef:32:b5:81:9b:31:ae:f1: 6d:ec:10:97:4f:46:a9:69:6d:70:a3:b1:61:0f:8b:80:92:56: 9e:60:5d:28:66:45:69:12:dc:dd:27:51:85:e0:39:ac:0a:7c: 2e:1c:7f:1f:cf:7f:fb:40:68:91:06:01:79:a7:24:48:d1:7e: cd:44:fc:a2:34:d4:96:a1:2d:bc:67:1f:a1:fa:6a:88:19:3c: df:e1:8c:ce:cb:c1:2d:8c:04:3d:c2:90:78:27:4e:13:c2:74: de:f5:da:f0:d0:36:25:5e:c6:4f:1e:d6:27:6d:6e:d9:2b:f1: 44:a7:87:b9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjQwNTMwMTQ1MDEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4OTIyNC1iMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2atU/7d6cM88rhy5nXjG7XeNNzWA3nakVxn1HFMXU1sT3oxEhaISKviYvOAP EXeiC8MeVrgJ/Jrjgo6s0E0KGJ3NQcY2/b5Pa2VRmOoKpkESsSpxkbmmRWAS1qHA pK6em9XeLWSvte4OVZQ0ZZamqfEOPd5i2ffcU51zQ8/aMLfV66rVb1oU+ZmmyxSP phw+f+pIw5gQzQd1/K2toddYqpIBQilcHpRpVKZcLVvhI9YhviXdACjCofu5lYpp g2iADRi0DAslgAZT7KFiomycXSWNeHIvsVBBo4+gYWrmqvRXk1aahsvKye0VJ5UU u8UnEZl0omjwZl6kluC4S2Xe/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOLc/c8Q FPu3Q5ycUyztyGsfX+/QMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlEMUEvQzU5QjAyREExRDcwMTFFMjg2RjE0N0I1MDhCMDJDRDIvRTQwNDQzMENC MEY4MTFFNTk1RTBGNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKA04wDwQCAAIwCQMHACABDfACFDANBgkqhkiG9w0BAQsF AAOCAQEAJ02D6D/9ICDSI52ryes3pIaD5YecCJvHbnkOIudr0KA7zEwTMFvO2GR9 JVHI1qStUFl7FdJgz0HYKiRpVLacRp/j1n6hP7SwTVJ7CEsl27s7+HWyYiqLf9Wh C+slRoef2yceCgEebSAyp4exVvl/p4ioZXVEylM+UzyfC2HXp7i5+nyjUXgWiu8y tYGbMa7xbewQl09GqWltcKOxYQ+LgJJWnmBdKGZFaRLc3SdRheA5rAp8Lhx/H89/ +0BokQYBeackSNF+zUT8ojTUlqEtvGcfofpqiBk83+GMzsvBLYwEPcKQeCdOE8J0 3vXa8NA2JV7GTx7WJ21u2SvxRKeHuQ== -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org