$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/009FA5F0397C11EF9EC42850C4F9AE02.roa File: 009FA5F0397C11EF9EC42850C4F9AE02.roa (raw, json) Hash identifier: BUdadXM84LZqg6dcPh4b0sJ5Cd4Jg9PJnJrm+wRnwP8= Subject key identifier: 0A:E4:75:B0:EF:3B:29:52:AF:31:74:35:49:20:C6:8B:7B:8D:D6:3A Certificate issuer: /CN=A91F9FCC/serialNumber=E01002B37C26B9709915267666F44900C0131E2E Certificate serial: 0700 Authority key identifier: E0:10:02:B3:7C:26:B9:70:99:15:26:76:66:F4:49:00:C0:13:1E:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BACs3wmuXCZFSZ2ZvRJAMATHi4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/009FA5F0397C11EF9EC42850C4F9AE02.roa Signing time: Thu 08 Aug 2024 22:10:21 +0000 ROA not before: Thu 08 Aug 2024 22:10:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 2914 IP address blocks: 117.120.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/4BACs3wmuXCZFSZ2ZvRJAMATHi4.crl rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/4BACs3wmuXCZFSZ2ZvRJAMATHi4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BACs3wmuXCZFSZ2ZvRJAMATHi4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Oct 2024 21:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FCC/serialNumber=E01002B37C26B9709915267666F44900C0131E2E Validity Not Before: Aug 8 22:10:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b5424d-d828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:56:42:7b:28:aa:6d:29:fb:c4:e7:57:79:ad: 13:18:4c:53:d6:52:0a:f5:1c:75:e8:16:24:c5:ed: 14:73:d2:c0:fd:41:c2:84:bb:73:6a:21:e5:f0:bb: 75:39:72:04:c2:5b:6d:48:2b:60:c4:58:a1:62:77: 9a:7a:a3:62:c6:1e:8f:5d:06:73:6f:b5:37:04:e8: 42:73:cd:cb:ba:9d:a3:d5:cd:d4:3e:a8:ab:e4:b2: 2a:e4:43:fa:56:95:70:c1:97:df:f3:b6:07:d4:7f: 80:eb:f6:6f:65:08:f9:72:bc:c0:00:f1:a3:7f:d6: a1:ac:cc:9e:4f:d4:e7:3b:75:da:87:ab:ad:b0:e1: 09:31:4c:69:22:55:8a:3a:5d:d1:75:af:3c:99:73: 26:22:aa:76:ed:33:58:7c:e2:a3:0b:55:96:ac:00: 48:cb:1a:64:05:be:78:6b:3c:3d:1c:a8:cf:47:3d: ba:84:f1:bb:d5:10:7a:05:bb:06:f8:0d:c3:5e:da: d0:da:09:a6:6d:0d:6c:a4:bd:32:ea:95:33:8b:fb: d4:13:2a:a8:a8:6c:62:9a:4d:36:04:c8:52:3c:ec: 81:fe:04:a8:be:ff:75:72:07:5e:a5:a6:d8:ac:0c: 6b:6c:3d:96:47:f1:25:fa:e3:e1:13:40:de:b5:9b: 72:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E4:75:B0:EF:3B:29:52:AF:31:74:35:49:20:C6:8B:7B:8D:D6:3A X509v3 Authority Key Identifier: keyid:E0:10:02:B3:7C:26:B9:70:99:15:26:76:66:F4:49:00:C0:13:1E:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/4BACs3wmuXCZFSZ2ZvRJAMATHi4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BACs3wmuXCZFSZ2ZvRJAMATHi4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/009FA5F0397C11EF9EC42850C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.120.0.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:d3:cb:16:73:51:ea:b1:45:4b:90:4a:d5:2a:c2:14:d4:86: 46:9e:6e:09:19:86:3d:23:52:c4:43:5d:fb:b4:13:10:37:dc: cc:b5:1a:e5:f4:44:f9:67:22:db:9a:2b:b2:d8:3b:ac:33:4a: f5:c7:d2:ba:4e:f3:84:d8:8d:bf:10:a3:ee:cb:e9:52:f9:2e: 24:cf:4b:86:b7:4d:44:f8:a0:61:df:41:c0:e9:a8:74:98:68: 72:12:c2:ad:b2:3e:3f:3f:92:fe:a9:8e:8e:48:cc:7a:b4:b2: e1:50:11:46:ca:fa:a5:8d:c4:4b:71:1f:25:dc:ab:bf:a7:2e: d8:67:e1:b1:e4:9b:9c:43:da:60:9c:a7:80:c8:7c:cc:78:62: d3:2c:b1:c6:38:8d:c0:ca:d6:86:a1:d2:30:f6:b7:a1:20:b3: ad:08:fb:f2:21:7f:d8:2c:e5:10:2d:cc:2c:1e:75:f6:f6:20: 4a:61:8f:2b:2e:92:9e:72:5a:31:96:94:80:90:87:6c:c3:dd: 14:f9:9e:e1:63:fd:65:11:10:22:70:65:d6:3e:4c:e1:42:0e: 1c:b4:b6:32:55:d8:4a:fb:23:68:00:f0:c9:db:87:43:61:a5: 57:8c:a2:e4:6c:83:60:3a:d7:89:81:5d:af:5a:d1:7c:aa:2f: 52:9f:56:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQ0MxMTAvBgNVBAUTKEUwMTAwMkIzN0MyNkI5NzA5OTE1MjY3NjY2RjQ0OTAw QzAxMzFFMkUwHhcNMjQwODA4MjIxMDIxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1NDI0ZC1kODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FZCeyiqbSn7xOdXea0TGExT1lIK9Rx16BYkxe0Uc9LA/UHChLtzaiHl8Lt1 OXIEwlttSCtgxFihYneaeqNixh6PXQZzb7U3BOhCc83Lup2j1c3UPqir5LIq5EP6 VpVwwZff87YH1H+A6/ZvZQj5crzAAPGjf9ahrMyeT9TnO3Xah6utsOEJMUxpIlWK Ol3Rda88mXMmIqp27TNYfOKjC1WWrABIyxpkBb54azw9HKjPRz26hPG71RB6BbsG +A3DXtrQ2gmmbQ1spL0y6pUzi/vUEyqoqGximk02BMhSPOyB/gSovv91cgdepabY rAxrbD2WR/El+uPhE0DetZtykQIDAQABo4IClTCCApEwHQYDVR0OBBYEFArkdbDv OylSrzF0NUkgxot7jdY6MB8GA1UdIwQYMBaAFOAQArN8JrlwmRUmdmb0SQDAEx4u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZDQy8yMkNENzlERTBE Q0MxMUVCQjgxQkE0MzFDNEY5QUUwMi80QkFDczN3bXVYQ1pGU1oyWnZSSkFNQVRI aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQUNzM3dtdVhDWkZTWjJadlJKQU1BVEhpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlGQ0MvMjJDRDc5REUwRENDMTFFQkI4MUJBNDMxQzRGOUFFMDIvMDA5RkE1RjAz OTdDMTFFRjlFQzQyODUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1eAAwDQYJKoZIhvcNAQELBQADggEBAGzTyxZzUeqxRUuQ StUqwhTUhkaebgkZhj0jUsRDXfu0ExA33My1GuX0RPlnItuaK7LYO6wzSvXH0rpO 84TYjb8Qo+7L6VL5LiTPS4a3TUT4oGHfQcDpqHSYaHISwq2yPj8/kv6pjo5IzHq0 suFQEUbK+qWNxEtxHyXcq7+nLthn4bHkm5xD2mCcp4DIfMx4YtMsscY4jcDK1oah 0jD2t6Egs60I+/Ihf9gs5RAtzCwedfb2IEphjysukp5yWjGWlICQh2zD3RT5nuFj /WURECJwZdY+TOFCDhy0tjJV2Er7I2gA8Mnbh0NhpVeMouRsg2A614mBXa9a0Xyq L1KfVuo= -----END CERTIFICATE-----Generated at Wed Oct 16 22:31:42 2024 by rpki-client on console-ams.rpki-client.org