$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa File: 8489DCB2DD1111EA9D8EEB74C4F9AE02.roa (raw, json) Hash identifier: D1KjUMFofudRUwWJUdVjvjvnmajrctF+9yB2FinXDPs= Subject key identifier: 1A:2B:27:31:C3:A5:6D:FF:05:32:B4:C5:D3:95:07:60:0E:69:5A:90 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1797 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:30 +0000 ROA not before: Tue 20 Feb 2024 17:55:30 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 23877 IP address blocks: 202.80.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6039 (0x1797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:30 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e792-22a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:df:74:c2:93:89:bc:0e:b0:ca:94:df:62:04: 0c:d2:8b:c4:da:2e:44:30:26:2f:ed:d3:25:33:61: 2f:06:3f:ca:12:4e:e5:2f:a4:e8:80:3e:6e:64:d9: a3:99:a2:db:29:f6:1a:35:2c:88:f7:14:8e:a8:5d: a8:7a:3c:1a:43:31:e5:98:ee:4d:2f:3f:e0:0c:ac: 6e:38:87:41:31:3e:90:fd:a5:9c:e2:3e:c8:5c:09: af:1e:df:76:2d:1b:de:1f:c3:1d:fd:d1:de:54:fa: 12:32:b8:30:c2:70:bf:ff:fc:3a:72:e3:83:3d:97: c2:d3:52:0b:e2:84:73:6a:74:fc:de:70:ec:0c:76: b5:46:03:72:d9:7f:38:79:e1:8e:b9:33:ea:23:c5: 95:e0:1d:d8:d5:6a:e1:fc:01:e1:18:c5:d5:d3:f1: ad:74:78:1c:bd:88:73:ec:61:3e:a9:c7:3b:b3:41: c2:52:15:87:cf:be:f1:4a:25:ef:9f:9f:f8:18:48: a6:a8:ae:1a:11:bb:a4:b7:46:b7:d5:59:30:f1:99: 76:cc:6c:18:73:80:65:75:a5:35:f8:4b:a1:5f:35: 2b:7f:4d:ee:5d:d0:28:f3:08:82:e0:ac:7e:c8:93: 28:c2:68:81:85:03:8d:96:d7:a0:16:77:cb:24:fb: c9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2B:27:31:C3:A5:6D:FF:05:32:B4:C5:D3:95:07:60:0E:69:5A:90 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.183.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e4:27:f0:2e:9c:b8:45:ac:5e:d1:86:43:7d:6a:d3:c3:da: 15:1c:29:19:47:82:e6:36:b6:c3:d9:52:ca:95:82:73:a6:c0: 5a:94:dd:12:6f:73:e8:ba:49:5b:1a:5f:b1:ec:aa:87:1c:32: 6f:95:cc:26:3f:48:83:b1:19:cf:70:8e:44:dc:64:89:4b:36: 16:e6:db:f1:d5:00:a9:20:98:ca:7f:b8:10:a2:1c:c3:bb:cf: ce:f6:76:b6:7d:46:bf:19:71:ee:26:17:a1:55:72:e7:4f:d9: 9e:a9:f2:84:24:0f:de:37:11:9c:1e:dd:55:f9:46:ec:f5:8c: 16:71:17:1c:2e:1b:df:b2:af:b7:a8:a1:47:6b:bd:dc:c6:59: d5:1b:8e:6e:d1:ca:b5:f0:f1:e0:f5:3b:ad:8f:09:b9:60:aa: 99:c4:ec:9c:5e:c9:b8:4a:4d:28:a0:3a:c0:14:47:c6:e7:fc: b9:6b:00:6e:a6:79:2b:50:c1:44:02:09:42:12:50:4d:0a:d8: ac:42:4b:7b:84:0d:8b:45:97:03:87:d9:cf:20:57:88:b3:d1: 56:99:4a:fc:6d:10:09:1a:bc:28:43:85:3b:ff:3b:8a:55:f7: 30:23:c7:e3:48:10:1c:40:ea:19:d7:56:63:d4:30:7d:ab:cc: 3a:df:91:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTMwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5Mi0yMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t90wpOJvA6wypTfYgQM0ovE2i5EMCYv7dMlM2EvBj/KEk7lL6TogD5uZNmj maLbKfYaNSyI9xSOqF2oejwaQzHlmO5NLz/gDKxuOIdBMT6Q/aWc4j7IXAmvHt92 LRveH8Md/dHeVPoSMrgwwnC///w6cuODPZfC01IL4oRzanT83nDsDHa1RgNy2X84 eeGOuTPqI8WV4B3Y1Wrh/AHhGMXV0/GtdHgcvYhz7GE+qcc7s0HCUhWHz77xSiXv n5/4GEimqK4aEbukt0a31Vkw8Zl2zGwYc4BldaU1+EuhXzUrf03uXdAo8wiC4Kx+ yJMowmiBhQONltegFnfLJPvJkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBorJzHD pW3/BTK0xdOVB2AOaVqQMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvODQ4OURDQjJE RDExMTFFQTlEOEVFQjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKULcwDQYJKoZIhvcNAQELBQADggEBAJbkJ/AunLhFrF7R hkN9atPD2hUcKRlHguY2tsPZUsqVgnOmwFqU3RJvc+i6SVsaX7HsqoccMm+VzCY/ SIOxGc9wjkTcZIlLNhbm2/HVAKkgmMp/uBCiHMO7z872drZ9Rr8Zce4mF6FVcudP 2Z6p8oQkD943EZwe3VX5Ruz1jBZxFxwuG9+yr7eooUdrvdzGWdUbjm7RyrXw8eD1 O62PCblgqpnE7JxeybhKTSigOsAUR8bn/LlrAG6meStQwUQCCUISUE0K2KxCS3uE DYtFlwOH2c8gV4iz0VaZSvxtEAkavChDhTv/O4pV9zAjx+NIEBxA6hnXVmPUMH2r zDrfkRU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org