$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa File: 7273624619B511EC98D2A883C4F9AE02.roa (raw, json) Hash identifier: 4vfDTErE/YPzBBb/tkZtFZYbjVLXj35WS7FwgFIIRDc= Subject key identifier: E0:11:1D:73:77:F7:1A:10:A7:15:C6:60:CA:61:92:61:60:42:F0:34 Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 043D Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa Signing time: Wed 19 Jun 2024 02:53:42 +0000 ROA not before: Wed 19 Jun 2024 02:53:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 19905 IP address blocks: 202.49.96.0/24 maxlen: 24 202.49.97.0/24 maxlen: 24 202.49.98.0/24 maxlen: 24 202.49.99.0/24 maxlen: 24 202.49.100.0/24 maxlen: 24 202.49.101.0/24 maxlen: 24 202.49.102.0/24 maxlen: 24 202.49.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931 Validity Not Before: Jun 19 02:53:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66724836-990f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:c1:d8:88:ef:48:e0:06:fe:75:83:0d:0a: 10:57:d9:a4:b8:05:6f:d1:ee:f4:3f:1c:58:c1:cf: 2f:86:21:56:87:04:1a:b6:bf:8d:c9:e5:41:34:2a: 74:93:9b:8f:21:f7:53:d0:62:ea:b1:26:d4:6c:33: 47:3b:58:82:7b:a0:b2:f0:67:99:85:4c:7b:1f:c5: 6c:21:b0:90:02:aa:0d:bd:b5:f1:be:b6:20:dd:7f: 4d:55:a3:d4:91:a3:6f:2d:7a:3a:9e:52:4e:df:9d: e6:4c:9d:7a:25:06:fa:b7:df:90:70:3c:19:21:22: 8c:ba:b8:ec:98:49:05:59:0e:c5:a9:71:41:7f:42: 07:59:82:d4:8b:ab:9c:61:c7:6f:19:fb:26:d7:3d: 54:ff:61:ea:f8:bd:15:fb:36:8f:e3:d8:87:36:4d: 07:44:20:b8:2d:d7:58:e4:29:70:41:46:5c:a0:b5: f6:ac:5f:8f:de:0b:81:18:ed:49:ef:fa:10:f7:3e: 5e:90:f3:ed:3c:72:17:38:50:19:34:ea:30:5e:25: ea:d3:6b:90:16:af:87:09:d8:05:e8:e9:84:cb:72: 39:1e:c5:85:0c:a0:92:f1:dc:e7:3d:0e:31:8f:0c: 73:d8:b2:a6:32:e5:04:18:28:0f:00:b2:a4:3d:b2: bc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:11:1D:73:77:F7:1A:10:A7:15:C6:60:CA:61:92:61:60:42:F0:34 X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption 84:09:20:e0:f7:70:46:52:d9:cf:4e:13:88:45:a0:4c:ed:5b: 87:8c:40:2a:f8:57:81:e3:44:44:dc:bb:7f:cb:16:d4:5b:77: f1:fb:bf:b7:c4:e2:4f:b7:17:0c:0e:84:c7:47:b0:0e:e6:a7: a3:b1:fe:40:7d:0c:fb:1d:fe:99:c6:4e:6f:48:2a:fa:c6:e7: b1:ef:c2:b6:0e:1c:f6:42:2b:56:11:9d:fe:3b:74:a0:54:bd: 14:80:70:4b:26:38:c5:0f:90:f0:b4:85:0e:63:96:13:6b:36: e4:c0:80:d4:0c:e2:8a:93:ac:96:eb:8d:37:a6:7e:f3:ca:86: dd:f5:48:4e:40:ab:30:45:19:f5:3e:c4:a4:1a:71:65:31:34: 48:83:50:30:ba:5f:7f:d4:84:f2:76:cb:83:51:c4:db:aa:f2: 13:a2:b1:f7:67:8c:87:dc:f1:92:17:90:2c:db:24:1a:75:7b: 37:b4:1e:e7:70:b5:cb:ff:ec:5a:dc:cd:96:9c:05:5c:c3:7d: 08:5c:a3:bd:0e:8c:0c:5b:78:de:5c:a7:b8:56:4f:94:6e:5d: 86:1d:9c:28:60:98:be:95:5e:a5:7f:8a:76:e3:fd:aa:70:20: a5:4a:99:3f:16:e3:0a:65:87:01:2c:c4:77:e3:7e:7c:bf:73: 18:e5:c4:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjQwNjE5MDI1MzQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyNDgzNi05OTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf/B2IjvSOAG/nWDDQoQV9mkuAVv0e70PxxYwc8vhiFWhwQatr+NyeVBNCp0 k5uPIfdT0GLqsSbUbDNHO1iCe6Cy8GeZhUx7H8VsIbCQAqoNvbXxvrYg3X9NVaPU kaNvLXo6nlJO353mTJ16JQb6t9+QcDwZISKMurjsmEkFWQ7FqXFBf0IHWYLUi6uc YcdvGfsm1z1U/2Hq+L0V+zaP49iHNk0HRCC4LddY5ClwQUZcoLX2rF+P3guBGO1J 7/oQ9z5ekPPtPHIXOFAZNOowXiXq02uQFq+HCdgF6OmEy3I5HsWFDKCS8dznPQ4x jwxz2LKmMuUEGCgPALKkPbK8HwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOARHXN3 9xoQpxXGYMphkmFgQvA0MB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvNzI3MzYyNDYx OUI1MTFFQzk4RDJBODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMWAwDQYJKoZIhvcNAQELBQADggEBAIQJIOD3cEZS2c9O E4hFoEztW4eMQCr4V4HjRETcu3/LFtRbd/H7v7fE4k+3FwwOhMdHsA7mp6Ox/kB9 DPsd/pnGTm9IKvrG57HvwrYOHPZCK1YRnf47dKBUvRSAcEsmOMUPkPC0hQ5jlhNr NuTAgNQM4oqTrJbrjTemfvPKht31SE5AqzBFGfU+xKQacWUxNEiDUDC6X3/UhPJ2 y4NRxNuq8hOisfdnjIfc8ZIXkCzbJBp1eze0Hudwtcv/7FrczZacBVzDfQhco70O jAxbeN5cp7hWT5RuXYYdnChgmL6VXqV/inbj/apwIKVKmT8W4wplhwEsxHfjfny/ cxjlxA8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:10 2025 by rpki-client