$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa File: F2DC6FDA590111EE965F2E48C4F9AE02.roa (raw, json) Hash identifier: wCnwV3IknWg2UI9wgIAczXf1nfZYYJA94t1tvzalvT0= Subject key identifier: 40:25:77:42:23:49:63:3B:04:CA:2F:B7:B0:FA:21:A4:EB:F0:DD:2C Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 17A7 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:45 +0000 ROA not before: Tue 20 Feb 2024 17:55:45 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 9787 IP address blocks: 218.100.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6055 (0x17a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:45 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e7a0-a65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:73:c9:d1:c3:65:7c:b0:5d:60:20:c0:8e:b5: 7f:0b:70:31:b2:cf:f8:e2:83:07:bd:53:07:03:02: 7b:35:40:0a:e2:b4:01:1f:cd:06:26:5d:a6:14:57: 1d:8c:2b:55:e3:14:82:f6:d0:3d:b0:09:9f:79:5b: 3e:e0:b5:f9:88:d7:d2:cf:c4:16:9a:f0:ef:3f:55: 31:85:30:7a:0c:f9:2b:07:22:34:f6:d5:7d:8c:4f: b3:6c:da:87:93:20:86:06:98:12:30:ee:64:73:f0: 4b:57:29:06:c4:e5:73:e0:89:c9:65:76:fe:f3:61: 5c:c3:7b:e1:cb:e6:c4:43:c9:85:80:f3:d8:8e:5d: f4:2a:92:15:82:3a:b1:6a:5e:9a:de:75:58:1a:aa: 23:f7:f4:53:20:b3:06:ad:11:dc:57:3c:e8:f9:2f: 78:b8:d5:d6:39:b0:e1:bf:3a:45:79:58:15:82:6f: f5:20:16:af:30:a5:7b:8c:70:b3:16:99:c5:93:97: 92:51:3f:63:83:f7:9f:f8:0d:21:c6:d5:c3:99:28: 0b:66:a2:0e:0f:dc:27:66:c9:80:8f:a9:70:5a:15: 8c:0d:d7:9d:ae:7f:71:71:30:d3:17:ff:83:f2:b0: a6:53:51:68:a6:54:91:4d:00:74:c2:69:fe:b2:26: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:25:77:42:23:49:63:3B:04:CA:2F:B7:B0:FA:21:A4:EB:F0:DD:2C X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.100.80.0/24 Signature Algorithm: sha256WithRSAEncryption 36:e6:43:6e:07:68:08:11:ff:a4:08:64:f4:9a:99:b2:e9:70: 64:f0:3f:90:3f:50:fd:1a:af:23:a1:be:e9:9e:b7:33:d4:35: 0e:ff:dd:da:8e:99:fc:b4:cb:e6:59:3e:e2:32:ad:1d:04:c0: b3:f8:50:42:ec:f7:14:5b:57:ed:40:56:f4:e0:1d:e7:39:6d: b1:ea:b5:70:ec:cc:63:24:fe:26:1e:df:7c:4e:4c:22:1d:32: c6:4a:ec:63:1e:cb:23:f6:dd:72:f4:1b:3b:9e:8a:03:37:8a: 54:6a:3f:6f:04:b5:0d:dd:e4:72:54:5b:15:d6:51:66:0d:7a: 65:ec:2f:79:1c:e5:e0:33:19:0e:dd:79:ea:f1:51:93:24:75: 89:ae:6a:06:9a:9f:97:e3:cf:bf:ee:8d:e7:1c:68:75:4a:ef: ac:d3:ec:3f:46:c5:fc:87:cb:98:f8:6a:d5:9b:b4:3a:51:d0: db:70:55:7e:5d:2c:d0:21:06:ee:16:e2:97:0b:ae:08:1a:ea: 6d:55:b7:27:2c:cc:d9:14:6e:2d:23:6a:ab:50:59:39:79:89: 65:50:bc:1d:34:08:ef:ce:dd:1b:11:51:73:fb:10:e3:bf:35: 4d:18:38:b8:42:bf:29:45:17:d5:99:c3:64:33:ff:a3:41:09: 5d:51:83:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTQ1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTdhMC1hNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03PJ0cNlfLBdYCDAjrV/C3Axss/44oMHvVMHAwJ7NUAK4rQBH80GJl2mFFcd jCtV4xSC9tA9sAmfeVs+4LX5iNfSz8QWmvDvP1UxhTB6DPkrByI09tV9jE+zbNqH kyCGBpgSMO5kc/BLVykGxOVz4InJZXb+82Fcw3vhy+bEQ8mFgPPYjl30KpIVgjqx al6a3nVYGqoj9/RTILMGrRHcVzzo+S94uNXWObDhvzpFeVgVgm/1IBavMKV7jHCz FpnFk5eSUT9jg/ef+A0hxtXDmSgLZqIOD9wnZsmAj6lwWhWMDdedrn9xcTDTF/+D 8rCmU1FoplSRTQB0wmn+sia7IwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEAld0Ij SWM7BMovt7D6IaTr8N0sMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvRjJEQzZGREE1 OTAxMTFFRTk2NUYyRTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaZFAwDQYJKoZIhvcNAQELBQADggEBADbmQ24HaAgR/6QI ZPSambLpcGTwP5A/UP0aryOhvumetzPUNQ7/3dqOmfy0y+ZZPuIyrR0EwLP4UELs 9xRbV+1AVvTgHec5bbHqtXDszGMk/iYe33xOTCIdMsZK7GMeyyP23XL0GzueigM3 ilRqP28EtQ3d5HJUWxXWUWYNemXsL3kc5eAzGQ7deerxUZMkdYmuagaan5fjz7/u jeccaHVK76zT7D9GxfyHy5j4atWbtDpR0NtwVX5dLNAhBu4W4pcLrgga6m1Vtycs zNkUbi0jaqtQWTl5iWVQvB00CO/O3RsRUXP7EOO/NU0YOLhCvylFF9WZw2Qz/6NB CV1Rg7I= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org