$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D992CDCE2FBC11EB8E017F5CC4F9AE02.roa File: D992CDCE2FBC11EB8E017F5CC4F9AE02.roa (raw, json) Hash identifier: qKRjykDno1daJfQQjFQDgdcngx+c1WC/QlLs58bkJD4= Subject key identifier: BE:6F:23:E2:BA:4A:E2:48:2E:09:69:EF:A5:78:61:7B:B9:6B:95:6E Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 067C Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D992CDCE2FBC11EB8E017F5CC4F9AE02.roa Signing time: Thu 02 May 2024 23:42:57 +0000 ROA not before: Thu 02 May 2024 23:42:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4 Validity Not Before: May 2 23:42:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66342500-6da2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a0:5d:da:33:b3:6f:d0:a5:53:7c:95:ed:6e: 8a:12:2d:4f:af:64:5f:b6:4a:9c:fc:83:b5:90:9b: bd:8e:54:24:f7:0b:64:3d:4d:df:de:a0:c7:a6:0c: dd:f9:fc:7a:91:e0:83:ff:0f:32:75:0f:d6:05:ef: 40:5f:dc:5f:12:88:39:93:aa:26:1e:46:ba:f4:6a: 3d:c7:83:2f:3d:a5:58:c4:29:1f:fd:93:9c:9c:5a: 9f:7a:5f:e6:94:b3:de:b9:83:cf:fa:ce:8a:42:7b: 1f:7e:f6:cc:71:a3:10:33:d8:df:af:84:50:6e:68: a8:dc:33:27:22:a2:65:cf:b2:e4:16:1c:aa:2e:60: 67:55:ad:6a:b8:f9:d4:ba:73:e7:0f:fb:99:45:41: 87:39:56:ec:85:df:2b:36:1a:5a:8e:c7:2e:b2:77: a7:19:26:b1:f6:78:bc:8c:7a:f5:4c:d4:f9:e4:95: de:74:72:9b:2d:87:de:15:ca:13:80:6a:b9:f9:5b: 3f:16:bc:46:36:91:cc:4d:57:91:bf:55:b4:61:1b: 95:c7:20:fb:5e:99:7b:a0:31:37:3d:db:bf:dc:35: 13:8c:fc:d3:77:e3:c6:bc:35:9b:8f:e4:35:79:4c: 84:4f:22:3e:bc:25:45:82:ab:a0:56:70:ed:a2:ee: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6F:23:E2:BA:4A:E2:48:2E:09:69:EF:A5:78:61:7B:B9:6B:95:6E X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D992CDCE2FBC11EB8E017F5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:90:2d:99:d9:af:85:aa:e9:fb:3b:83:54:9f:e7:4e:a6:8f: 1b:02:da:6e:4a:3e:6b:69:f6:31:35:2d:9f:a9:ef:8a:7c:46: 8e:eb:21:e1:32:06:67:49:20:4f:57:dd:91:60:6a:97:75:86: 27:5b:47:bc:3d:1e:5d:39:c3:4d:ff:ed:25:90:c5:3b:20:cb: 0b:bf:b1:09:27:68:c8:45:49:6a:6c:56:54:c4:98:a9:07:47: 24:f3:00:e0:b3:fb:ba:11:35:bd:0f:1e:a7:44:01:43:79:0d: 52:2c:75:4f:47:31:98:d2:33:09:19:ff:52:37:03:19:2d:54: 67:c2:bf:2c:05:de:3d:b6:38:4c:59:e8:10:d8:29:aa:94:bb: da:00:bd:65:bb:17:39:ce:59:35:7a:f9:f1:e9:99:a8:33:c8: 9d:e6:f9:68:2f:38:b6:3b:cb:8c:e7:b8:62:80:7a:93:b1:52: 1b:20:60:af:32:c9:14:e6:a2:c7:fc:36:1e:66:13:b6:a7:96: 3d:fa:e1:8f:38:44:8c:3d:d0:be:9a:44:7c:f1:54:9f:fb:59: 50:16:b3:53:c3:09:13:23:fa:c5:25:3a:6a:10:68:3d:6c:ea: 75:1f:e6:3c:bc:f9:50:1a:6e:26:64:9c:3d:7e:a3:b9:e2:00: 23:b3:b3:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjQwNTAyMjM0MjU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MjUwMC02ZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKBd2jOzb9ClU3yV7W6KEi1Pr2Rftkqc/IO1kJu9jlQk9wtkPU3f3qDHpgzd +fx6keCD/w8ydQ/WBe9AX9xfEog5k6omHka69Go9x4MvPaVYxCkf/ZOcnFqfel/m lLPeuYPP+s6KQnsffvbMcaMQM9jfr4RQbmio3DMnIqJlz7LkFhyqLmBnVa1quPnU unPnD/uZRUGHOVbshd8rNhpajscusnenGSax9ni8jHr1TNT55JXedHKbLYfeFcoT gGq5+Vs/FrxGNpHMTVeRv1W0YRuVxyD7Xpl7oDE3Pdu/3DUTjPzTd+PGvDWbj+Q1 eUyETyI+vCVFgqugVnDtou5QjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL5vI+K6 SuJILglp76V4YXu5a5VuMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvRDk5MkNEQ0Uy RkJDMTFFQjhFMDE3RjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgGMwDQYJKoZIhvcNAQELBQADggEBAFqQLZnZr4Wq6fs7 g1Sf506mjxsC2m5KPmtp9jE1LZ+p74p8Ro7rIeEyBmdJIE9X3ZFgapd1hidbR7w9 Hl05w03/7SWQxTsgywu/sQknaMhFSWpsVlTEmKkHRyTzAOCz+7oRNb0PHqdEAUN5 DVIsdU9HMZjSMwkZ/1I3AxktVGfCvywF3j22OExZ6BDYKaqUu9oAvWW7FznOWTV6 +fHpmagzyJ3m+WgvOLY7y4znuGKAepOxUhsgYK8yyRTmosf8Nh5mE7anlj364Y84 RIw90L6aRHzxVJ/7WVAWs1PDCRMj+sUlOmoQaD1s6nUf5jy8+VAabiZknD1+o7ni ACOzs7s= -----END CERTIFICATE-----Generated at Sun Feb 16 15:05:28 2025 by rpki-client