$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa File: 5ED417AE869011EEA9011A36C4F9AE02.roa (raw, json) Hash identifier: G380Ha8QJtSqiTvn7fBNSb9egYZP9g7joO+n3Qn27+g= Subject key identifier: 57:8E:E2:05:A0:B7:8E:1C:B8:3F:3D:D8:95:A1:4A:96:2F:73:E8:CC Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 04 Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa Signing time: Sun 19 Nov 2023 04:02:17 +0000 ROA not before: Sun 19 Nov 2023 04:02:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152115 IP address blocks: 203.145.38.0/24 maxlen: 24 2001:df3:26c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: Nov 19 04:02:17 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=655988c9-8c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6d:fc:62:1b:9d:89:1c:64:27:70:36:48:fb: ed:58:19:6f:09:7f:6e:b2:b9:7f:eb:43:0b:cd:ec: 3e:10:06:a5:ca:a0:9b:14:58:e5:ad:85:ac:82:2a: 00:ca:cc:b0:7e:fd:33:af:86:9f:cf:37:bb:0b:d5: 52:09:d0:cf:d7:7d:19:da:ab:32:88:de:5f:32:6d: 90:15:7a:a3:97:9c:67:fd:72:f1:0e:a1:c8:5e:f6: 0f:8c:bb:c7:1a:91:bd:71:0d:2d:58:fb:24:78:9a: e7:bb:e5:7d:1c:93:6d:2a:dc:21:cd:4b:61:0d:f5: dd:62:38:27:4c:9f:4d:e9:3f:59:47:06:1c:b9:dd: 17:8b:0f:8c:88:f2:53:35:75:3e:f2:02:df:de:2f: 0a:f1:f2:69:46:47:c8:48:65:6d:81:dd:5a:c8:ba: a4:fc:49:15:de:e8:67:97:e2:c5:5c:8b:43:2f:dc: 35:19:40:fd:0a:ab:6d:23:42:83:a1:4f:f3:c8:85: d5:4d:3e:1c:88:02:fa:8f:7e:66:a0:da:c3:6a:38: ae:40:f4:96:58:47:03:8c:de:f1:49:c2:9d:be:91: 14:5f:6a:c8:87:7a:d3:81:c3:0d:fd:9f:0e:a3:2a: 26:68:93:a2:52:a4:b9:aa:06:0b:8f:b0:d8:4c:75: 87:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8E:E2:05:A0:B7:8E:1C:B8:3F:3D:D8:95:A1:4A:96:2F:73:E8:CC X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.38.0/24 IPv6: 2001:df3:26c0::/48 Signature Algorithm: sha256WithRSAEncryption 2d:87:92:ab:f4:be:2b:b8:f5:eb:01:37:a6:4b:09:6a:33:9c: f3:99:a5:56:a8:12:7b:02:f8:d1:b6:78:f7:5e:4f:99:e0:b2: 78:1f:c8:f6:74:1b:7b:4f:cb:df:1c:50:5f:64:76:94:ca:af: b4:81:91:ed:87:2c:52:14:4f:ab:93:42:54:8a:ba:b1:80:9e: 68:66:c2:aa:f3:ab:43:11:91:5d:89:60:ea:c3:9f:72:a3:be: 7f:6a:05:f4:07:ff:45:f2:8f:9b:72:f1:88:28:a4:99:05:31: 62:2b:f6:1d:58:f6:72:2a:6f:99:75:9b:38:ca:1a:e4:48:d5: 39:8a:e5:f5:28:8c:e4:ec:ca:57:83:46:58:c3:00:2e:3e:57: b9:7c:cf:69:2d:8e:b8:a6:aa:45:cf:88:93:fb:9c:eb:9d:ac: 2d:73:66:e8:9b:3c:ab:4d:d8:92:06:db:5d:7d:b4:9f:af:88: da:11:a0:13:49:98:89:52:e1:de:e7:fc:72:03:e7:e1:07:6d: bc:fb:84:26:b8:0c:54:6e:8e:89:85:a5:66:7c:b5:64:9a:66: 16:0c:e1:3e:8b:68:a7:03:85:a0:c2:7b:65:13:cd:9f:90:25: 44:13:65:52:07:3a:b6:3e:83:2a:35:cb:3f:16:20:28:da:27: 9e:c5:88:81 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QkNERDExMC8GA1UEBRMoOUU0MkIxRjY5MTQ2MEUyODQ2RkE3MUYwNkRDODlCRjJD NzQxREI5QTAeFw0yMzExMTkwNDAyMTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTk4OGM5LThjMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcbfxiG52JHGQncDZI++1YGW8Jf26yuX/rQwvN7D4QBqXKoJsUWOWthayCKgDK zLB+/TOvhp/PN7sL1VIJ0M/XfRnaqzKI3l8ybZAVeqOXnGf9cvEOoche9g+Mu8ca kb1xDS1Y+yR4mue75X0ck20q3CHNS2EN9d1iOCdMn03pP1lHBhy53ReLD4yI8lM1 dT7yAt/eLwrx8mlGR8hIZW2B3VrIuqT8SRXe6GeX4sVci0Mv3DUZQP0Kq20jQoOh T/PIhdVNPhyIAvqPfmag2sNqOK5A9JZYRwOM3vFJwp2+kRRfasiHetOBww39nw6j KiZok6JSpLmqBguPsNhMdYfVAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUV47iBaC3 jhy4Pz3YlaFKli9z6MwwHwYDVR0jBBgwFoAUnkKx9pFGDihG+nHwbcib8sdB25ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCQ0RELzM0OEFEOEFDODYx MzExRUVBOEM5NTA0MkM0RjlBRTAyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmtLeDlwRkdEaWhHLW5Id2JjaWI4c2RCMjVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi81RUQ0MTdBRTg2 OTAxMUVFQTkwMTFBMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMuRJjAPBAIAAjAJAwcAIAEN8ybAMA0GCSqGSIb3DQEBCwUA A4IBAQAth5Kr9L4ruPXrATemSwlqM5zzmaVWqBJ7AvjRtnj3Xk+Z4LJ4H8j2dBt7 T8vfHFBfZHaUyq+0gZHthyxSFE+rk0JUirqxgJ5oZsKq86tDEZFdiWDqw59yo75/ agX0B/9F8o+bcvGIKKSZBTFiK/YdWPZyKm+ZdZs4yhrkSNU5iuX1KIzk7MpXg0ZY wwAuPle5fM9pLY64pqpFz4iT+5zrnawtc2bomzyrTdiSBttdfbSfr4jaEaATSZiJ UuHe5/xyA+fhB228+4QmuAxUbo6JhaVmfLVkmmYWDOE+i2inA4WgwntlE82fkCVE E2VSBzq2PoMqNcs/FiAo2ieexYiB -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org