$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/905F258E24F211EEA0863328C4F9AE02.roa File: 905F258E24F211EEA0863328C4F9AE02.roa (raw, json) Hash identifier: vI4wCN8zHHpUwDdSCVBVfzEnFZc2gVGdk5XoB213poc= Subject key identifier: 9B:24:C6:5B:A1:39:73:07:C2:1C:B2:61:5B:AF:3B:E0:BA:02:F2:A8 Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 044E Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/905F258E24F211EEA0863328C4F9AE02.roa Signing time: Tue 13 Feb 2024 01:53:56 +0000 ROA not before: Tue 13 Feb 2024 01:53:56 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45396 IP address blocks: 203.9.179.0/24 maxlen: 24 203.9.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 13 01:53:56 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cacbb4-1c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:c7:18:18:70:3b:50:0e:51:57:e5:87:4c: 09:70:53:3d:59:9e:72:e6:37:9d:a9:85:a5:44:d1: 69:33:53:da:7a:ac:63:05:8f:f5:4c:e3:0b:c4:dc: 71:3e:88:b4:e7:5f:5c:c1:3c:49:d5:65:0d:3c:2d: 6f:f8:94:eb:19:ac:47:66:b9:3f:0c:1c:e5:64:f9: 2b:fe:07:84:e9:41:af:ff:c6:52:39:34:ab:75:be: ce:25:ce:39:e3:ec:aa:97:a8:3f:8e:9e:d6:0a:b5: 37:80:cd:4c:ba:cf:34:04:5c:21:17:9d:02:93:4a: 1c:3f:0e:44:fd:f1:b1:ba:27:15:32:44:f3:e3:d1: 53:f6:6a:60:95:fd:38:c8:c0:2e:72:65:6d:96:ba: 5e:cf:ce:f8:2f:0b:f3:64:eb:29:8e:aa:18:9f:48: 06:db:6a:b1:05:ff:04:93:81:90:c7:f9:50:ca:56: e7:be:46:fa:3f:9c:fd:ab:d1:2c:74:36:c9:5b:93: 20:84:20:7d:82:79:8c:10:e6:dc:95:b2:b1:b2:e0: 08:46:b2:87:23:62:ec:71:bf:05:73:94:be:18:d6: f6:49:12:12:aa:63:3c:51:97:b9:44:c6:be:54:3a: 88:54:8c:97:c6:02:c9:8d:0b:22:02:3d:26:ce:fa: 73:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:24:C6:5B:A1:39:73:07:C2:1C:B2:61:5B:AF:3B:E0:BA:02:F2:A8 X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/905F258E24F211EEA0863328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.179.0/24 203.9.181.0/24 Signature Algorithm: sha256WithRSAEncryption d0:2e:27:bb:b8:4f:d7:2c:84:1e:a8:2e:db:2e:f9:2d:1b:a4: cb:4a:56:c6:28:da:f3:8c:f4:9a:10:aa:f8:2a:75:9c:62:1f: 0d:68:c7:66:ee:57:6f:bb:d6:3f:c3:64:eb:df:89:67:5a:b1: 46:f5:9d:d5:4e:73:2f:3f:0f:e5:dd:57:08:75:38:0e:8c:c4: 70:1c:38:bf:8d:84:4c:86:80:86:e4:70:45:5f:f3:33:93:ea: 4e:8a:ae:58:b0:01:1b:94:0d:bc:98:89:c6:1c:34:d9:46:4f: 47:65:ba:78:32:ad:31:98:4c:cf:88:38:8e:41:68:87:d7:e7: c3:0f:a1:13:a1:2c:7b:48:7e:3e:cc:9e:fd:86:d8:5f:6b:12: 6b:c4:a5:60:09:5c:71:56:f3:14:82:a7:df:c8:4e:24:89:ca: 06:b3:54:11:27:bc:e8:f9:e6:96:55:85:4c:35:17:83:0d:e6: 6c:41:9d:8c:c5:7a:fc:af:54:f5:9f:59:e4:33:3b:a0:a1:ff: f7:f4:ff:65:29:28:53:67:13:27:60:a6:2e:9f:57:c1:03:8e: 5e:fb:b5:00:6f:c4:2f:53:8c:ca:8a:b9:ad:f9:c9:0d:04:2e: 44:e2:cb:48:0f:58:4d:24:12:0c:df:53:4d:ef:6e:bc:6f:c7: ad:3e:89:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjQwMjEzMDE1MzU2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhY2JiNC0xYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3THGBhwO1AOUVflh0wJcFM9WZ5y5jedqYWlRNFpM1PaeqxjBY/1TOMLxNxx Poi0519cwTxJ1WUNPC1v+JTrGaxHZrk/DBzlZPkr/geE6UGv/8ZSOTSrdb7OJc45 4+yql6g/jp7WCrU3gM1Mus80BFwhF50Ck0ocPw5E/fGxuicVMkTz49FT9mpglf04 yMAucmVtlrpez874LwvzZOspjqoYn0gG22qxBf8Ek4GQx/lQylbnvkb6P5z9q9Es dDbJW5MghCB9gnmMEObclbKxsuAIRrKHI2Lscb8Fc5S+GNb2SRISqmM8UZe5RMa+ VDqIVIyXxgLJjQsiAj0mzvpzEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJskxluh OXMHwhyyYVuvO+C6AvKoMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvOTA1RjI1OEUy NEYyMTFFRUEwODYzMzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLCbMDBADLCbUwDQYJKoZIhvcNAQELBQADggEBANAuJ7u4 T9cshB6oLtsu+S0bpMtKVsYo2vOM9JoQqvgqdZxiHw1ox2buV2+71j/DZOvfiWda sUb1ndVOcy8/D+XdVwh1OA6MxHAcOL+NhEyGgIbkcEVf8zOT6k6KrliwARuUDbyY icYcNNlGT0dlungyrTGYTM+IOI5BaIfX58MPoROhLHtIfj7Mnv2G2F9rEmvEpWAJ XHFW8xSCp9/ITiSJygazVBEnvOj55pZVhUw1F4MN5mxBnYzFevyvVPWfWeQzO6Ch //f0/2UpKFNnEydgpi6fV8EDjl77tQBvxC9TjMqKua35yQ0ELkTiy0gPWE0kEgzf U03vbrxvx60+iWQ= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org