$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/42724A42D87811E98F4DC832C4F9AE02.roa File: 42724A42D87811E98F4DC832C4F9AE02.roa (raw, json) Hash identifier: g3qXc5xzXRuZuGvrf+0l5unc13/FwmeQdJGJ36GeWJ8= Subject key identifier: E9:45:BF:99:AA:84:A6:FD:CA:F3:52:B1:94:7B:CA:28:2C:C0:4A:1D Certificate issuer: /CN=A91EAE60/serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Certificate serial: 26C8 Authority key identifier: 20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/42724A42D87811E98F4DC832C4F9AE02.roa Signing time: Tue 16 Jul 2024 15:52:23 +0000 ROA not before: Tue 16 Jul 2024 15:52:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45667 IP address blocks: 202.60.206.0/24 maxlen: 24 203.159.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9928 (0x26c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE60/serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Validity Not Before: Jul 16 15:52:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66969736-5a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:62:ea:98:20:3a:05:93:b2:85:1d:54:49: 2b:bf:80:03:49:ff:41:e7:97:a8:ca:7d:88:37:41: 89:28:a2:5a:63:cd:18:9d:90:56:30:ff:3a:3e:1e: 0e:6f:3f:43:46:f9:31:d6:62:1a:41:f9:41:1a:cc: b9:88:7a:e5:6e:c2:59:b0:67:ab:73:05:b6:4c:05: a9:cf:a6:97:c5:bd:90:56:b9:8c:6c:8f:03:3b:05: 75:61:80:86:48:ca:ed:af:ba:e9:c5:5a:80:c8:49: 08:ab:8a:d6:77:92:00:5c:a4:38:05:e7:9f:29:ed: 32:dd:fa:d0:68:92:f0:bf:42:79:9d:8b:1e:97:53: ec:29:b8:da:aa:11:94:e4:a1:12:52:23:d4:be:61: 62:40:54:74:fb:1f:7e:62:1a:4e:4a:b3:e7:16:e5: ed:68:5f:23:95:7f:58:9e:8d:3f:9e:12:7c:28:1a: 17:6d:d0:4b:f4:60:f8:9d:ff:92:b0:03:25:ac:c4: 26:e7:ba:4f:2c:23:80:d4:13:b9:4d:a6:89:3e:02: 88:4f:6b:50:d9:56:96:6a:7c:2c:e2:ce:19:ed:4e: d3:00:9a:6d:39:b4:96:eb:ac:10:f5:ca:bc:ac:af: 34:da:f4:39:ae:20:39:0e:59:e2:bb:d6:ab:f8:6b: 69:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:45:BF:99:AA:84:A6:FD:CA:F3:52:B1:94:7B:CA:28:2C:C0:4A:1D X509v3 Authority Key Identifier: keyid:20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/42724A42D87811E98F4DC832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.206.0/24 203.159.98.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:d8:31:b1:44:ff:0f:72:bf:1d:86:6b:ac:55:56:8d:39:2c: 74:22:b0:7b:8e:36:b6:72:7b:51:eb:39:2e:75:b1:b0:4d:0d: df:1b:e7:7c:65:77:2a:17:5e:25:84:4d:e5:58:b8:2b:87:e3: 90:81:43:30:c0:e3:2f:fa:06:be:f0:6a:70:57:39:c9:46:bb: fe:a7:c8:e3:36:f4:bd:50:0f:e8:7f:b3:e6:b9:8a:c6:3e:79: 99:ff:68:5e:79:4c:db:bd:3d:4c:2b:f4:3e:56:d3:1a:65:13: 24:ec:e7:9a:08:31:b3:69:24:10:56:53:28:96:e9:c6:fc:4e: b3:77:02:ca:4c:5d:45:ad:e9:b7:f2:8e:49:d3:af:66:e2:83: 1f:b9:3b:60:22:d1:71:b0:5b:0a:5d:1e:a5:f7:98:dd:b2:4c: 6e:8e:3a:38:59:e6:c3:17:b3:76:ea:e1:fc:8e:b8:9d:67:9f: 9d:d4:e0:4a:d0:97:39:b1:cb:f2:ea:52:15:03:72:14:d9:ac: 2c:23:e8:35:f5:e3:c9:11:1a:39:c4:98:0e:6a:c8:05:31:22: f5:bd:e1:2d:f1:4a:63:00:d7:c2:22:70:8e:68:13:6a:b7:ff: 93:2a:46:3f:d7:98:d6:6b:27:cf:82:35:82:f3:7e:d4:af:fb: 87:fc:67:e9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFNjAxMTAvBgNVBAUTKDIwMDgzRDRERkE4NDRDNTcyNzU1OEM0Qzc1NkRCMjBE RjgwN0NEODEwHhcNMjQwNzE2MTU1MjIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2OTczNi01YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+9i6pggOgWTsoUdVEkrv4ADSf9B55eoyn2IN0GJKKJaY80YnZBWMP86Ph4O bz9DRvkx1mIaQflBGsy5iHrlbsJZsGercwW2TAWpz6aXxb2QVrmMbI8DOwV1YYCG SMrtr7rpxVqAyEkIq4rWd5IAXKQ4BeefKe0y3frQaJLwv0J5nYsel1PsKbjaqhGU 5KESUiPUvmFiQFR0+x9+YhpOSrPnFuXtaF8jlX9Yno0/nhJ8KBoXbdBL9GD4nf+S sAMlrMQm57pPLCOA1BO5TaaJPgKIT2tQ2VaWanws4s4Z7U7TAJptObSW66wQ9cq8 rK802vQ5riA5Dlniu9ar+GtpjwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOlFv5mq hKb9yvNSsZR7yigswEodMB8GA1UdIwQYMBaAFCAIPU36hExXJ1WMTHVtsg34B82B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUU2MC9GMTk5NjcxMkM3 Q0YxMUU0QjEzQkUxMjFDNEY5QUUwMi9JQWc5VGZxRVRGY25WWXhNZFcyeURmZ0h6 WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBZzlUZnFFVEZjblZZeE1kVzJ5RGZnSHpZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFNjAvRjE5OTY3MTJDN0NGMTFFNEIxM0JFMTIxQzRGOUFFMDIvNDI3MjRBNDJE ODc4MTFFOThGNERDODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKPM4DBADLn2IwDQYJKoZIhvcNAQELBQADggEBABrYMbFE /w9yvx2Ga6xVVo05LHQisHuONrZye1HrOS51sbBNDd8b53xldyoXXiWETeVYuCuH 45CBQzDA4y/6Br7wanBXOclGu/6nyOM29L1QD+h/s+a5isY+eZn/aF55TNu9PUwr 9D5W0xplEyTs55oIMbNpJBBWUyiW6cb8TrN3AspMXUWt6bfyjknTr2bigx+5O2Ai 0XGwWwpdHqX3mN2yTG6OOjhZ5sMXs3bq4fyOuJ1nn53U4ErQlzmxy/LqUhUDchTZ rCwj6DX148kRGjnEmA5qyAUxIvW94S3xSmMA18IicI5oE2q3/5MqRj/XmNZrJ8+C NYLzftSv+4f8Z+k= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org