$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa File: 638149B88C2C11EBBB3B260BC4F9AE02.roa (raw, json) Hash identifier: wo4sZk/2tDxvhuf03EBqImJmU7Tr8UCXxl6x1i7v+YA= Subject key identifier: F4:A5:67:04:A5:2C:73:4B:B9:48:9C:49:62:75:8B:8B:BD:D5:0B:5A Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 06C4 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa Signing time: Thu 28 Mar 2024 23:01:52 +0000 ROA not before: Thu 28 Mar 2024 23:01:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136557 IP address blocks: 203.28.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Mar 28 23:01:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605f6e0-cbd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:66:e2:a8:a7:a6:25:a8:96:d4:0a:da:30:27: 85:75:d5:c8:6e:7f:b4:6e:2d:4b:8a:18:3f:74:a0: e1:46:d1:3c:8a:4e:bc:98:76:e1:82:48:c3:49:a3: be:9e:5d:34:1c:1a:c8:53:1a:4b:20:b3:dc:8a:dc: 75:40:50:28:8d:05:1a:f3:1b:22:2c:55:35:d6:8a: bf:cd:bb:68:15:dd:16:4a:7b:05:87:bd:b2:d9:cc: 22:71:c2:6f:85:ec:0f:cc:14:6a:d8:1f:e5:59:36: d5:5c:68:26:79:38:d9:6b:3a:db:d5:ca:0b:f6:34: f6:86:c4:bb:c6:b2:1a:d1:91:80:1a:51:8f:b4:de: 73:ac:2c:d9:53:82:25:ae:d0:a6:9e:bc:bf:4e:42: e2:33:f4:e1:63:85:5e:3c:d9:3e:02:09:48:a3:3d: 8f:44:b0:af:09:28:76:2b:11:b5:43:51:91:d4:e5: 44:8c:40:e1:33:19:f1:10:e4:4b:84:85:27:02:03: 5b:bc:4a:eb:48:62:cc:a2:a9:21:1d:89:5b:4c:c5: 6f:62:4f:be:af:e8:f7:68:46:48:78:b7:da:45:b1: 6b:ab:4c:d5:c1:cd:5b:93:a1:a0:c9:63:46:ad:06: f1:df:c8:16:aa:d1:8d:88:0e:5e:a3:33:22:b3:b6: c3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A5:67:04:A5:2C:73:4B:B9:48:9C:49:62:75:8B:8B:BD:D5:0B:5A X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.238.0/24 Signature Algorithm: sha256WithRSAEncryption 53:1d:13:21:c0:67:87:ea:75:96:84:65:08:b6:84:87:71:30: 87:93:c5:1a:65:a0:f5:bb:35:95:17:34:b2:50:12:7c:3e:35: ae:1d:71:29:51:14:54:20:47:79:45:9a:f0:a9:db:b1:dd:49: 48:fe:19:74:2d:49:32:f3:ef:6e:72:55:f9:b0:f3:bc:20:40: c9:1f:86:f3:77:60:86:38:7c:42:29:82:52:fb:e1:5b:8f:5d: 0d:41:92:c6:1e:a2:b5:a7:96:16:4f:06:a4:bd:bd:02:0a:86: a3:c9:f0:9c:38:21:43:08:53:cb:1d:07:16:3a:a1:9d:8a:86: 72:d3:99:16:89:34:97:a2:f6:7d:25:a5:4a:05:2a:4d:9c:f9: c9:4c:b4:ce:88:bf:df:dd:df:6d:4c:16:16:b7:81:61:4e:2b: 3f:2c:ef:63:a0:6c:33:ce:5b:dd:35:77:2f:29:ac:a8:68:3f: ce:78:b3:f2:87:79:2e:99:44:1c:5b:2c:9a:89:12:70:ee:73: c6:2d:17:ee:09:58:0f:83:05:7b:9b:83:02:4f:71:fd:ad:b2: d5:3d:72:25:e2:c6:01:a6:dc:55:84:a0:97:d2:61:08:ee:49: f9:1e:b5:9c:92:60:47:68:a0:95:77:b7:9c:ef:1c:dd:58:57: 00:59:19:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjQwMzI4MjMwMTUyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZjZlMC1jYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mbiqKemJaiW1AraMCeFddXIbn+0bi1Lihg/dKDhRtE8ik68mHbhgkjDSaO+ nl00HBrIUxpLILPcitx1QFAojQUa8xsiLFU11oq/zbtoFd0WSnsFh72y2cwiccJv hewPzBRq2B/lWTbVXGgmeTjZazrb1coL9jT2hsS7xrIa0ZGAGlGPtN5zrCzZU4Il rtCmnry/TkLiM/ThY4VePNk+AglIoz2PRLCvCSh2KxG1Q1GR1OVEjEDhMxnxEORL hIUnAgNbvErrSGLMoqkhHYlbTMVvYk++r+j3aEZIeLfaRbFrq0zVwc1bk6GgyWNG rQbx38gWqtGNiA5eozMis7bDdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPSlZwSl LHNLuUicSWJ1i4u91QtaMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvNjM4MTQ5Qjg4 QzJDMTFFQkJCM0IyNjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHO4wDQYJKoZIhvcNAQELBQADggEBAFMdEyHAZ4fqdZaE ZQi2hIdxMIeTxRploPW7NZUXNLJQEnw+Na4dcSlRFFQgR3lFmvCp27HdSUj+GXQt STLz725yVfmw87wgQMkfhvN3YIY4fEIpglL74VuPXQ1BksYeorWnlhZPBqS9vQIK hqPJ8Jw4IUMIU8sdBxY6oZ2KhnLTmRaJNJei9n0lpUoFKk2c+clMtM6Iv9/d321M Fha3gWFOKz8s72OgbDPOW901dy8prKhoP854s/KHeS6ZRBxbLJqJEnDuc8YtF+4J WA+DBXubgwJPcf2tstU9ciXixgGm3FWEoJfSYQjuSfketZySYEdooJV3t5zvHN1Y VwBZGSw= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:02 2024 by rpki-client on console-ams.rpki-client.org