$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/FA957D0A80FA11ED9B35954DC4F9AE02.roa File: FA957D0A80FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: cB+yZz7NXLEFl+NAyUDxFvEYEWhBfd/lLd6SEh+qscM= Subject key identifier: FE:0A:8C:0F:AD:15:D8:87:C9:73:74:FC:7B:34:43:C4:76:C1:FD:39 Certificate issuer: /CN=A91F81AD/serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Certificate serial: 01B0 Authority key identifier: A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/FA957D0A80FA11ED9B35954DC4F9AE02.roa Signing time: Fri 27 Sep 2024 02:26:32 +0000 ROA not before: Fri 27 Sep 2024 02:26:32 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7575 IP address blocks: 203.28.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD/serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Validity Not Before: Sep 27 02:26:32 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f617d8-3c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:57:ac:1f:db:c7:3d:09:1f:ef:bd:58:0b: 12:eb:f4:10:a7:6d:3d:e4:c2:aa:f5:57:21:55:ba: a5:40:42:8e:8f:ba:19:00:e2:68:ee:09:37:35:37: 6b:49:dc:51:6f:2c:2d:46:f3:44:23:d6:3e:9f:f7: 56:56:f5:ba:c7:51:d6:85:20:f8:ce:88:37:86:14: 40:c9:54:cb:03:92:ed:6b:a3:4c:9f:fc:de:30:0b: ef:45:2b:b4:5b:a6:cd:a3:28:99:24:9b:ce:47:62: 1b:7a:7a:45:69:c6:2b:ab:32:7f:f1:5b:47:72:42: 01:a9:61:41:8f:04:f9:3e:50:3e:6e:b8:84:e9:3c: c3:6c:9a:f0:d8:30:98:5f:3e:62:35:00:37:1f:dd: a9:a1:92:fa:8b:0e:57:8c:1d:9a:80:82:7a:b7:b8: e1:c0:24:3e:da:5a:95:99:b1:e0:11:40:09:9b:59: a4:85:42:91:c4:83:16:20:fe:3d:9c:d3:d4:8b:bc: f5:53:8b:8f:0e:f5:31:77:e0:82:c1:53:85:63:6b: 98:e4:61:0e:53:0a:83:65:7a:4b:7b:08:66:7e:85: 7c:cc:55:ea:31:ef:a6:b0:28:b0:78:60:2f:45:3d: 71:ba:02:27:a1:d7:79:ed:34:af:ee:80:50:51:4f: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0A:8C:0F:AD:15:D8:87:C9:73:74:FC:7B:34:43:C4:76:C1:FD:39 X509v3 Authority Key Identifier: keyid:A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/FA957D0A80FA11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.79.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:52:fc:47:c0:e3:74:a3:a4:cf:70:68:0a:8a:49:59:d3:dd: ea:7c:4d:91:09:48:85:09:b4:47:18:57:a2:4c:89:84:61:7a: d5:19:a6:ee:6f:cc:f0:67:b7:e9:3a:39:ed:45:ba:c7:bb:1f: 0d:ff:b2:06:ca:5f:af:f3:81:3e:58:fc:09:71:49:b5:eb:e4: 33:e2:6a:6d:da:69:e3:ba:91:e3:93:22:ac:f7:ed:92:50:79: 18:38:d8:49:fd:ca:ea:ef:7b:e2:c8:04:ff:8c:39:96:fe:93: 00:65:1c:63:62:65:84:57:33:db:0e:b0:6c:24:8d:80:27:fc: ee:02:cd:da:bd:3a:dc:3a:8c:42:c0:35:07:9f:ee:7e:a8:d4: 70:bc:92:50:33:a8:5e:ce:82:20:89:f0:97:dc:dc:98:7c:ee: 8d:35:53:8c:6b:15:7c:6e:6a:cf:e0:80:a2:21:c6:40:16:96: 3c:38:00:2d:4c:7a:e1:7d:7c:67:7c:ae:2f:c9:45:b5:d0:7c: 22:c4:cc:eb:13:54:28:b8:68:8a:be:b2:e6:72:f3:17:7f:cd: 23:62:98:42:40:95:6b:15:f7:61:16:b8:3b:ea:3c:17:34:0f: 98:32:1b:50:0a:78:5b:7b:c7:e3:93:00:c6:fe:9e:af:cd:a4: e6:c0:61:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKEE0Q0QzRTY3RDFCMjI0RjMyNTA0N0U5RjVFNDg0QUNE QzRGNjYzRUMwHhcNMjQwOTI3MDIyNjMyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MTdkOC0zYzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOBXrB/bxz0JH++9WAsS6/QQp2095MKq9VchVbqlQEKOj7oZAOJo7gk3NTdr SdxRbywtRvNEI9Y+n/dWVvW6x1HWhSD4zog3hhRAyVTLA5Lta6NMn/zeMAvvRSu0 W6bNoyiZJJvOR2IbenpFacYrqzJ/8VtHckIBqWFBjwT5PlA+briE6TzDbJrw2DCY Xz5iNQA3H92poZL6iw5XjB2agIJ6t7jhwCQ+2lqVmbHgEUAJm1mkhUKRxIMWIP49 nNPUi7z1U4uPDvUxd+CCwVOFY2uY5GEOUwqDZXpLewhmfoV8zFXqMe+msCiweGAv RT1xugInodd57TSv7oBQUU817wIDAQABo4IClTCCApEwHQYDVR0OBBYEFP4KjA+t FdiHyXN0/Hs0Q8R2wf05MB8GA1UdIwQYMBaAFKTNPmfRsiTzJQR+n15ISs3E9mPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80Q0NCMDA5MDJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQTWxCSDZmWGtoS3pjVDJZ LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BNMC1aOUd5SlBNbEJINmZYa2hLemNUMlktdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNENDQjAwOTAyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRkE5NTdEMEE4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHE8wDQYJKoZIhvcNAQELBQADggEBAGxS/EfA43SjpM9w aAqKSVnT3ep8TZEJSIUJtEcYV6JMiYRhetUZpu5vzPBnt+k6Oe1Fuse7Hw3/sgbK X6/zgT5Y/AlxSbXr5DPiam3aaeO6keOTIqz37ZJQeRg42En9yurve+LIBP+MOZb+ kwBlHGNiZYRXM9sOsGwkjYAn/O4Czdq9Otw6jELANQef7n6o1HC8klAzqF7OgiCJ 8Jfc3Jh87o01U4xrFXxuas/ggKIhxkAWljw4AC1MeuF9fGd8ri/JRbXQfCLEzOsT VCi4aIq+suZy8xd/zSNimEJAlWsV92EWuDvqPBc0D5gyG1AKeFt7x+OTAMb+nq/N pObAYT0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:57 2024 by rpki-client on console-ams.rpki-client.org