$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa File: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (raw, json) Hash identifier: r1SfnOsVtZNnvFGakgXIapWsdBjJIouRhsrzhT3iNeo= Subject key identifier: F2:C3:9E:B5:A6:C9:5E:DA:57:80:4C:82:23:C4:48:DF:5E:F6:F1:F2 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 08C3 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa Signing time: Tue 14 May 2024 22:01:05 +0000 ROA not before: Tue 14 May 2024 22:01:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140603 IP address blocks: 203.24.61.0/24 maxlen: 24 2001:df3:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: May 14 22:01:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6643df21-468d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:85:1b:e0:0f:74:12:92:b8:c6:b5:8f:47: 0a:f1:4d:15:9b:33:b6:9e:d5:59:05:0b:fb:03:b4: f8:0a:51:25:36:d9:c5:cf:cc:71:b7:60:ab:69:ff: 05:1a:24:fa:e1:19:c7:96:35:38:60:19:91:e8:48: 50:87:35:f3:b8:7a:d6:a6:35:92:e0:22:67:98:e4: 16:09:5e:a1:8b:06:71:8a:42:9b:03:22:06:17:c1: 13:3d:fa:f2:35:64:46:f4:34:9d:10:30:95:21:cb: 28:cd:9f:c5:37:0f:f9:c7:de:78:df:79:79:d7:a7: 05:ce:48:b7:46:c8:4b:6e:be:f0:05:6a:69:cd:8e: f2:61:83:44:44:30:81:b1:ca:41:ba:58:03:63:d8: fc:6b:9a:dc:1c:01:d6:93:0c:0f:6b:83:5f:5a:41: 2d:01:5a:f6:97:23:df:73:bf:d5:72:24:7d:1d:d3: 1b:65:f2:d0:ba:46:97:01:09:27:31:88:58:9e:77: 57:56:68:0a:fc:6d:f9:47:ca:90:d3:4e:2e:41:e2: c7:a0:da:eb:24:7a:cc:e7:7f:d9:9a:48:8c:9d:07: 26:da:60:d9:38:9e:d2:41:5b:b7:40:33:10:0c:99: 2e:21:23:c5:db:d5:db:79:67:6f:25:94:ca:d8:b6: 0a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C3:9E:B5:A6:C9:5E:DA:57:80:4C:82:23:C4:48:DF:5E:F6:F1:F2 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.61.0/24 IPv6: 2001:df3:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 94:58:8c:6f:c0:6d:74:95:5e:c7:c1:ba:f2:e1:1d:04:1d:4d: e3:66:0a:f3:15:d7:95:05:f3:2c:0d:94:e9:1b:9e:d1:a8:6c: 3c:1c:bf:d8:91:0a:74:01:94:fd:cd:3d:64:8d:02:6e:9d:2c: 28:4b:a4:d5:55:ac:f3:35:44:8c:6f:46:1a:b3:bf:95:5c:f2: 8a:05:6c:21:43:59:f0:e7:bd:67:d5:ce:f9:14:44:5d:e2:a3: 56:70:7c:c6:bb:8c:ae:e1:cc:b8:d3:e8:da:33:d3:03:6e:fa: 9b:29:3f:22:33:be:f0:cb:91:90:d4:7e:d6:ce:0a:6a:22:a0: fd:fb:50:c4:69:59:81:9d:05:7d:ab:8c:bc:ab:9c:e1:a4:20: 32:af:5f:64:a4:68:a2:bb:b8:69:93:df:35:ac:95:c4:5a:59: 49:54:12:47:d0:a6:ec:ed:5d:74:8c:02:a6:ff:19:c1:93:a3: a2:58:51:b9:50:b8:e0:78:f7:8f:ce:82:29:97:cc:13:d4:cd: 8f:89:7c:84:ba:56:c7:d5:55:be:1a:08:5b:9a:d3:01:81:46: 77:63:2c:88:ff:ea:58:e0:d9:e9:b6:97:6f:7c:e1:38:fc:45: 49:b2:d4:f2:12:44:59:4c:45:9b:1f:0d:be:68:05:a9:f1:ce: 69:7a:c0:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjQwNTE0MjIwMTA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzZGYyMS00NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEiFG+APdBKSuMa1j0cK8U0VmzO2ntVZBQv7A7T4ClElNtnFz8xxt2Craf8F GiT64RnHljU4YBmR6EhQhzXzuHrWpjWS4CJnmOQWCV6hiwZxikKbAyIGF8ETPfry NWRG9DSdEDCVIcsozZ/FNw/5x95433l516cFzki3RshLbr7wBWppzY7yYYNERDCB scpBulgDY9j8a5rcHAHWkwwPa4NfWkEtAVr2lyPfc7/VciR9HdMbZfLQukaXAQkn MYhYnndXVmgK/G35R8qQ004uQeLHoNrrJHrM53/ZmkiMnQcm2mDZOJ7SQVu3QDMQ DJkuISPF29XbeWdvJZTK2LYKawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPLDnrWm yV7aV4BMgiPESN9e9vHyMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIzNDIvMEI0MTAwQzA4RThDMTFFQUJEMzQ1ODExQzRGOUFFMDIvNEQyM0E3N0U4 RThGMTFFQUIzMERDQTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLGD0wDwQCAAIwCQMHACABDfOPgDANBgkqhkiG9w0BAQsF AAOCAQEAlFiMb8BtdJVex8G68uEdBB1N42YK8xXXlQXzLA2U6Rue0ahsPBy/2JEK dAGU/c09ZI0Cbp0sKEuk1VWs8zVEjG9GGrO/lVzyigVsIUNZ8Oe9Z9XO+RREXeKj VnB8xruMruHMuNPo2jPTA276myk/IjO+8MuRkNR+1s4KaiKg/ftQxGlZgZ0FfauM vKuc4aQgMq9fZKRooru4aZPfNayVxFpZSVQSR9Cm7O1ddIwCpv8ZwZOjolhRuVC4 4Hj3j86CKZfME9TNj4l8hLpWx9VVvhoIW5rTAYFGd2MsiP/qWODZ6baXb3zhOPxF SbLU8hJEWUxFmx8NvmgFqfHOaXrAcw== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org