$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa File: E33945D6B0ED11E5B7779F44C4F9AE02.roa (raw, json) Hash identifier: uxFxgRv7/m27t2e5PsXNDBKg+MyZTqFKbYLl4BbhZq4= Subject key identifier: 5D:BD:F3:C8:AA:A4:63:80:A5:E9:2E:A0:36:A6:F7:24:76:CD:5D:CB Certificate issuer: /CN=A9148AC4/serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Certificate serial: 2B49 Authority key identifier: DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa Signing time: Thu 06 Jul 2023 15:54:21 +0000 ROA not before: Thu 06 Jul 2023 15:54:21 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 17741 IP address blocks: 114.31.96.0/21 maxlen: 21 202.44.75.0/24 maxlen: 24 2401:2800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11081 (0x2b49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC4/serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Validity Not Before: Jul 6 15:54:21 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a6e3ad-5e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:84:d8:66:41:70:07:0c:2b:88:84:0c:b1:73: e7:59:3c:4d:37:4a:59:ab:20:86:6c:93:15:b0:fa: 28:a7:d5:4f:08:30:c2:a2:40:64:de:9f:32:ae:6c: b9:27:28:c6:8a:1a:48:01:a1:19:df:16:a6:82:68: 35:27:52:96:82:84:9f:e1:f1:e4:22:97:af:c5:ce: 10:fb:7d:c5:59:87:d9:9c:ac:4d:19:b5:e8:ba:7d: b5:4d:e8:8e:35:95:ad:63:f4:3b:70:13:73:10:3e: 9d:dc:64:90:0e:f6:24:17:bc:fb:bc:28:e0:06:8b: 23:68:a9:2f:ea:5f:a8:4d:b6:f3:ac:9b:90:2b:3c: d3:b1:41:27:67:de:b2:24:07:0e:2d:a4:38:4e:13: 2a:f9:bc:45:ce:da:8a:c6:0c:bd:87:f4:0e:0e:a2: 02:20:35:b8:5d:5f:2c:4e:a7:dd:30:d0:01:3d:fc: 1c:9a:f9:76:99:f0:9c:90:06:53:3f:93:cb:00:89: 2a:e7:e3:b6:2d:24:1a:70:60:6b:85:6f:8d:92:f1: e3:d7:60:7b:17:26:aa:29:80:53:61:5a:25:58:81: e7:83:04:05:f2:2a:59:54:bb:8c:c7:6b:75:73:84: d0:75:86:21:33:2d:56:b0:3b:22:1e:fb:81:e6:0d: 77:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BD:F3:C8:AA:A4:63:80:A5:E9:2E:A0:36:A6:F7:24:76:CD:5D:CB X509v3 Authority Key Identifier: keyid:DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.96.0/21 202.44.75.0/24 IPv6: 2401:2800::/32 Signature Algorithm: sha256WithRSAEncryption 82:ca:d4:5f:03:a5:92:a5:05:2c:1b:89:58:30:d1:88:a4:ac: 7e:d9:30:65:70:f0:9b:2d:b3:4d:d6:fa:9b:ae:bb:3f:b7:c1: db:6f:d4:00:ab:6a:cd:79:46:2f:c9:06:f4:b5:3f:cd:46:29: 6a:fe:aa:9d:e4:a5:d1:a5:cd:14:04:d2:d5:2f:15:7f:36:34: e0:e2:de:e5:09:c6:e6:ff:2e:bb:24:5b:6d:b3:3b:b1:1d:78: cc:a9:fd:3f:0c:41:be:77:37:0e:3b:20:9b:72:ee:df:84:24: f3:21:fd:a6:99:ea:11:ac:45:be:65:56:43:6a:cf:33:38:74: d4:91:f2:54:03:3a:93:4d:c0:b1:72:10:f4:86:c3:dc:41:02: 2f:79:9d:88:08:da:51:35:61:29:e4:1e:14:f0:ee:17:95:53: ef:e3:bc:d0:d9:70:22:66:30:ba:d8:bb:b5:c5:43:a1:32:f2: ca:f7:5e:70:8d:06:86:64:5a:83:04:d4:51:6d:53:00:5b:d2: 80:08:73:16:f0:f7:c4:a3:4e:89:92:ba:bc:48:1f:0c:47:32: b5:2d:54:0d:5a:36:b0:cf:4a:7d:0f:77:8c:c5:d4:f9:cf:86: a6:1e:38:c1:d4:06:82:63:54:58:28:e0:45:b4:db:5f:55:49: 2d:3d:d6:cc -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICK0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzQxMTAvBgNVBAUTKERFMzEzQ0IzNUNEMDc2QUZFNUMzNzc4RjA1RTVDQTE1 Q0YzMzdBRjkwHhcNMjMwNzA2MTU1NDIxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE2ZTNhZC01ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwITYZkFwBwwriIQMsXPnWTxNN0pZqyCGbJMVsPoop9VPCDDCokBk3p8yrmy5 JyjGihpIAaEZ3xamgmg1J1KWgoSf4fHkIpevxc4Q+33FWYfZnKxNGbXoun21TeiO NZWtY/Q7cBNzED6d3GSQDvYkF7z7vCjgBosjaKkv6l+oTbbzrJuQKzzTsUEnZ96y JAcOLaQ4ThMq+bxFztqKxgy9h/QODqICIDW4XV8sTqfdMNABPfwcmvl2mfCckAZT P5PLAIkq5+O2LSQacGBrhW+NkvHj12B7FyaqKYBTYVolWIHngwQF8ipZVLuMx2t1 c4TQdYYhMy1WsDsiHvuB5g13hwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFF2988iq pGOApekuoDam9yR2zV3LMB8GA1UdIwQYMBaAFN4xPLNc0Hav5cN3jwXlyhXPM3r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDNC8yMDZCQzg2Q0FF NkExMUUzOTM3OUQ1NTA1OTExRUEzMi8zakU4czF6UWRxX2x3M2VQQmVYS0ZjOHpl dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNqRThzMXpRZHFfbHczZVBCZVhLRmM4emV2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhBQzQvMjA2QkM4NkNBRTZBMTFFMzkzNzlENTUwNTkxMUVBMzIvRTMzOTQ1RDZC MEVEMTFFNUI3Nzc5RjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBANyH2ADBADKLEswDQQCAAIwBwMFACQBKAAwDQYJKoZIhvcN AQELBQADggEBAILK1F8DpZKlBSwbiVgw0YikrH7ZMGVw8Jsts03W+puuuz+3wdtv 1ACras15Ri/JBvS1P81GKWr+qp3kpdGlzRQE0tUvFX82NODi3uUJxub/LrskW22z O7EdeMyp/T8MQb53Nw47IJty7t+EJPMh/aaZ6hGsRb5lVkNqzzM4dNSR8lQDOpNN wLFyEPSGw9xBAi95nYgI2lE1YSnkHhTw7heVU+/jvNDZcCJmMLrYu7XFQ6Ey8sr3 XnCNBoZkWoME1FFtUwBb0oAIcxbw98SjTomSurxIHwxHMrUtVA1aNrDPSn0Pd4zF 1PnPhqYeOMHUBoJjVFgo4EW0219VSS091sw= -----END CERTIFICATE-----Generated at Fri May 31 16:40:55 2024 by rpki-client on console-ams.rpki-client.org