$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa File: B3997DB4F3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: a42gSvTBLjoG87MaWUeUPIbEWoVD8JcwRDmWOtwQhiw= Subject key identifier: F3:0E:DA:C8:0F:AE:64:A1:5E:EF:68:A8:DE:11:EE:B1:52:51:1A:B0 Certificate issuer: /CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Certificate serial: 025E Authority key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa Signing time: Wed 22 May 2024 16:54:58 +0000 ROA not before: Wed 22 May 2024 16:54:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55408 IP address blocks: 192.82.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 16:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5 Validity Not Before: May 22 16:54:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664e2362-7bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6d:c9:b9:3b:ff:87:27:20:3c:e1:fe:4b:a8: 02:3c:ec:31:cf:1d:41:15:4a:d2:cd:48:7b:a4:97: 74:b5:5c:be:53:e3:a1:f9:fe:ce:85:28:20:00:a5: 48:4c:08:4a:5a:4a:fa:b0:8c:9b:43:96:83:5f:c6: 33:de:a6:35:44:8f:17:05:6b:11:a0:0d:4c:9f:61: 38:47:08:ad:0f:3f:f9:a3:d2:dc:f6:89:7d:38:fe: 94:58:d0:c3:0f:37:67:10:c9:1d:04:9e:eb:fc:63: 49:f8:bb:ea:14:51:20:41:2e:21:fe:dd:9a:35:e6: 75:6e:7c:5f:9c:c6:5a:73:7f:0b:f1:e5:9e:00:89: cb:3b:80:f2:58:02:9b:52:32:e7:96:2c:75:c6:86: 3c:9d:57:20:f2:ea:73:1a:a0:c5:59:d6:20:44:7c: 48:3f:05:0b:62:77:31:9c:02:d2:71:f4:ef:e7:a6: ef:cd:c1:f4:15:23:fe:2d:da:33:05:71:02:17:f4: 58:9f:bb:2a:81:04:ad:6e:00:1e:92:ba:6a:7a:ce: 70:a4:68:c6:fe:29:55:39:63:ea:c4:03:da:c2:59: 7b:57:3a:6a:6c:74:e3:c7:c3:74:25:38:b8:2e:e6: e7:ae:fc:31:12:8f:ce:ec:99:9d:8d:33:d1:78:34: 1a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0E:DA:C8:0F:AE:64:A1:5E:EF:68:A8:DE:11:EE:B1:52:51:1A:B0 X509v3 Authority Key Identifier: keyid:D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/B3997DB4F3A311EC8804FE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.93.0/24 Signature Algorithm: sha256WithRSAEncryption 57:1a:b2:b4:30:ed:3c:5e:d1:7b:76:44:48:84:37:75:e9:46: d6:bf:04:b6:32:5f:61:1a:30:45:11:35:63:5b:bc:00:df:e5: 01:9b:4e:ec:c9:ac:24:e2:32:52:63:30:10:56:bb:96:4a:0c: 2d:21:28:bd:0b:61:22:9b:67:48:cf:b8:bd:a4:d4:92:e9:e5: 02:32:21:42:f5:fa:75:e6:2a:37:6d:aa:a9:eb:ca:75:ed:47: 21:af:40:16:28:76:8f:38:4c:a2:d6:95:e3:e8:a7:72:cc:74: 81:08:45:e6:70:af:b4:5e:d6:01:f1:4e:ab:38:14:73:12:ab: f6:e3:6d:db:de:81:41:8f:09:7b:1c:c6:98:c2:c9:47:78:d6: e5:a6:f6:f0:5d:03:91:45:25:e9:e8:70:45:39:39:13:95:59: 45:3f:6c:36:10:7e:d3:e1:19:ee:9d:a5:5d:e0:4a:f2:d2:92: 5e:93:bc:da:91:6e:c0:fe:63:91:19:ae:03:85:74:70:0f:1d: ce:4b:61:46:a9:88:9e:ec:e2:9f:90:f3:81:cc:88:02:ed:8e: 96:d6:9f:db:dd:0b:0a:c1:aa:3a:85:9e:9d:f7:a3:91:57:c1: ff:4b:95:96:0f:6a:bd:25:39:23:04:0b:76:f3:54:b8:12:d9: 3b:6a:64:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKEQ3Q0I2RDFERENGOTM0QTFGNTlFNEZGRTQ5ODJGMEI0 QzUyQzM1RjUwHhcNMjQwNTIyMTY1NDU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlMjM2Mi03YmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA223JuTv/hycgPOH+S6gCPOwxzx1BFUrSzUh7pJd0tVy+U+Oh+f7OhSggAKVI TAhKWkr6sIybQ5aDX8Yz3qY1RI8XBWsRoA1Mn2E4RwitDz/5o9Lc9ol9OP6UWNDD DzdnEMkdBJ7r/GNJ+LvqFFEgQS4h/t2aNeZ1bnxfnMZac38L8eWeAInLO4DyWAKb UjLnlix1xoY8nVcg8upzGqDFWdYgRHxIPwULYncxnALScfTv56bvzcH0FSP+Ldoz BXECF/RYn7sqgQStbgAekrpqes5wpGjG/ilVOWPqxAPawll7VzpqbHTjx8N0JTi4 LubnrvwxEo/O7JmdjTPReDQahwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPMO2sgP rmShXu9oqN4R7rFSURqwMB8GA1UdIwQYMBaAFNfLbR3c+TSh9Z5P/kmC8LTFLDX1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC83MkI1RjI5MkQy N0QxMUVDQTczRUYxNTRDNEY5QUUwMi8xOHR0SGR6NU5LSDFua18tU1lMd3RNVXNO ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzE4dHRIZHo1TktIMW5rXy1TWUx3dE1Vc05mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvNzJCNUYyOTJEMjdEMTFFQ0E3M0VGMTU0QzRGOUFFMDIvQjM5OTdEQjRG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAUl0wDQYJKoZIhvcNAQELBQADggEBAFcasrQw7Txe0Xt2 REiEN3XpRta/BLYyX2EaMEURNWNbvADf5QGbTuzJrCTiMlJjMBBWu5ZKDC0hKL0L YSKbZ0jPuL2k1JLp5QIyIUL1+nXmKjdtqqnrynXtRyGvQBYodo84TKLWlePop3LM dIEIReZwr7Re1gHxTqs4FHMSq/bjbdvegUGPCXscxpjCyUd41uWm9vBdA5FFJeno cEU5OROVWUU/bDYQftPhGe6dpV3gSvLSkl6TvNqRbsD+Y5EZrgOFdHAPHc5LYUap iJ7s4p+Q84HMiALtjpbWn9vdCwrBqjqFnp33o5FXwf9LlZYPar0lOSMEC3bzVLgS 2TtqZP0= -----END CERTIFICATE-----Generated at Sun Jun 2 17:59:42 2024 by rpki-client on console-fra.rpki-client.org