$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/3F32B394825511EF9EAD7768C4F9AE02.roa File: 3F32B394825511EF9EAD7768C4F9AE02.roa (raw, json) Hash identifier: QvdRINKOYSlpEVfGT2bl6rscnNKBhyf/TTvbyDd2nQU= Subject key identifier: 8F:82:6F:B3:9F:24:5B:94:43:6B:34:14:E6:6E:A5:E3:F7:23:F5:77 Certificate issuer: /CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245 Certificate serial: D9 Authority key identifier: 3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/3F32B394825511EF9EAD7768C4F9AE02.roa Signing time: Fri 04 Oct 2024 13:33:32 +0000 ROA not before: Fri 04 Oct 2024 13:33:32 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138212 IP address blocks: 203.99.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE09C/serialNumber=3C69B9B601D2C9F2A3915A6FFBCA3DAD62E99245 Validity Not Before: Oct 4 13:33:32 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66ffeeab-b9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:ac:68:9e:19:d8:9c:ef:18:cb:d0:6e:2a: 6c:de:fb:b5:ab:43:c0:4f:52:cc:21:53:86:95:2c: 27:ab:b5:a7:b8:c1:c2:4e:81:df:15:46:0f:37:42: 96:48:36:68:f5:2e:62:a2:5c:3f:fa:69:c7:74:c3: 41:a9:e9:59:be:82:60:32:ec:4a:1b:04:98:5f:05: 16:39:27:c7:ab:da:db:28:db:25:75:b4:8d:95:1a: 8f:b4:04:f4:0f:b8:1d:b3:d9:a3:35:a8:b7:a1:49: a7:bc:79:0a:25:5a:3a:4e:4c:5e:9e:e0:34:fb:39: 91:8b:97:47:29:e7:99:87:83:14:7c:72:e1:b8:f5: 6c:72:9f:db:89:5b:45:b0:a8:25:48:fa:2a:fa:ba: b4:32:9b:31:36:f0:e7:5b:07:7d:4e:e8:1f:19:78: 2e:b4:86:44:84:b1:06:d0:0f:f1:72:29:f5:04:9a: 52:40:66:bf:54:b2:ab:ac:a3:fa:da:9f:f0:70:f1: b6:d6:ff:0c:58:66:61:31:9c:7e:7c:9e:fa:70:49: f0:83:85:7f:1a:59:a0:a6:bf:a6:35:57:a7:5f:d8: d4:74:f3:5d:4a:6c:fa:1c:de:54:d3:0d:cb:cc:bb: 30:ac:b0:0d:67:0b:c7:71:94:5e:ee:8b:ee:9e:5d: 83:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:82:6F:B3:9F:24:5B:94:43:6B:34:14:E6:6E:A5:E3:F7:23:F5:77 X509v3 Authority Key Identifier: keyid:3C:69:B9:B6:01:D2:C9:F2:A3:91:5A:6F:FB:CA:3D:AD:62:E9:92:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/PGm5tgHSyfKjkVpv-8o9rWLpkkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGm5tgHSyfKjkVpv-8o9rWLpkkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE09C/EEF762C0907511EE87D26680C4F9AE02/3F32B394825511EF9EAD7768C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.144.0/24 Signature Algorithm: sha256WithRSAEncryption 64:52:90:5f:c6:00:cc:1b:87:bc:d6:97:11:e8:a8:43:a9:c2: fa:31:ae:20:72:51:a5:a0:5d:84:ef:cb:6d:9a:8a:b6:a3:91: fe:f0:ec:fb:ef:29:2e:42:35:ee:b4:da:39:0b:19:0d:ca:6c: bf:69:b3:47:7c:2e:64:28:e7:9e:03:5a:dd:25:d6:e8:6e:84: 26:f1:ae:9e:a3:3c:0b:fc:51:b7:17:b4:18:0b:33:22:3e:b7: 53:26:2b:f5:0c:22:a0:3c:cf:7c:6d:cc:11:07:7c:eb:3c:76: 3b:b5:36:fc:9d:fb:34:3b:77:18:7b:e5:9a:5c:29:61:c2:92: 16:ee:1b:96:ff:a6:ff:32:cf:0b:39:ba:16:9a:29:8d:8c:72: 82:c2:ab:6c:32:fe:8f:79:8b:7f:dd:ca:09:a7:da:96:4d:69: 7b:77:2c:45:0d:e7:24:29:04:16:70:e4:26:32:7c:66:b7:cb: 28:54:70:61:cc:b2:91:56:b0:45:ec:c3:ae:a0:2f:cb:85:b3: b9:03:57:dd:45:0b:03:ce:74:a4:b4:c6:d1:a2:a0:93:1f:3e: b5:f1:f0:16:bc:e4:3f:28:33:e0:3c:7d:e4:7b:35:e9:06:08: 91:d9:2d:92:45:a6:5c:2e:ae:0b:08:ea:7b:20:62:cf:27:a3: 15:ae:5e:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOUMxMTAvBgNVBAUTKDNDNjlCOUI2MDFEMkM5RjJBMzkxNUE2RkZCQ0EzREFE NjJFOTkyNDUwHhcNMjQxMDA0MTMzMzMyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZmZWVhYi1iOWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ISsaJ4Z2JzvGMvQbips3vu1q0PAT1LMIVOGlSwnq7WnuMHCToHfFUYPN0KW SDZo9S5iolw/+mnHdMNBqelZvoJgMuxKGwSYXwUWOSfHq9rbKNsldbSNlRqPtAT0 D7gds9mjNai3oUmnvHkKJVo6TkxenuA0+zmRi5dHKeeZh4MUfHLhuPVscp/biVtF sKglSPoq+rq0MpsxNvDnWwd9TugfGXgutIZEhLEG0A/xcin1BJpSQGa/VLKrrKP6 2p/wcPG21v8MWGZhMZx+fJ76cEnwg4V/Glmgpr+mNVenX9jUdPNdSmz6HN5U0w3L zLswrLANZwvHcZRe7ovunl2D9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFI+Cb7Of JFuUQ2s0FOZupeP3I/V3MB8GA1UdIwQYMBaAFDxpubYB0snyo5Fab/vKPa1i6ZJF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5Qy9FRUY3NjJDMDkw NzUxMUVFODdEMjY2ODBDNEY5QUUwMi9QR201dGdIU3lmS2prVnB2LThvOXJXTHBr a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHbTV0Z0hTeWZLamtWcHYtOG85cldMcGtrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOUMvRUVGNzYyQzA5MDc1MTFFRTg3RDI2NjgwQzRGOUFFMDIvM0YzMkIzOTQ4 MjU1MTFFRjlFQUQ3NzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLY5AwDQYJKoZIhvcNAQELBQADggEBAGRSkF/GAMwbh7zW lxHoqEOpwvoxriByUaWgXYTvy22airajkf7w7PvvKS5CNe602jkLGQ3KbL9ps0d8 LmQo554DWt0l1uhuhCbxrp6jPAv8UbcXtBgLMyI+t1MmK/UMIqA8z3xtzBEHfOs8 dju1Nvyd+zQ7dxh75ZpcKWHCkhbuG5b/pv8yzws5uhaaKY2McoLCq2wy/o95i3/d ygmn2pZNaXt3LEUN5yQpBBZw5CYyfGa3yyhUcGHMspFWsEXsw66gL8uFs7kDV91F CwPOdKS0xtGioJMfPrXx8Ba85D8oM+A8feR7NekGCJHZLZJFplwurgsI6nsgYs8n oxWuXiQ= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org