$ rpki-client -vvf rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/38C200523FFE11EB9AE7EE80C4F9AE02.roa File: 38C200523FFE11EB9AE7EE80C4F9AE02.roa (raw, json) Hash identifier: dyQhki+SNLmRg+AAVTc90r70ss3AX+2HiGAnGYOMrmY= Subject key identifier: C1:AA:26:DC:83:3F:84:C7:7D:F3:14:03:27:53:14:28:C5:E8:1E:C4 Certificate issuer: /CN=A9152F52/serialNumber=81428A01C51691E7A8C5D843ECB6B1D3D9AE424E Certificate serial: 0AC9 Authority key identifier: 81:42:8A:01:C5:16:91:E7:A8:C5:D8:43:EC:B6:B1:D3:D9:AE:42:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/38C200523FFE11EB9AE7EE80C4F9AE02.roa Signing time: Mon 31 Jul 2023 19:57:25 +0000 ROA not before: Mon 31 Jul 2023 19:57:25 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 16509 IP address blocks: 202.93.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.crl rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 20:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152F52/serialNumber=81428A01C51691E7A8C5D843ECB6B1D3D9AE424E Validity Not Before: Jul 31 19:57:25 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c81225-0a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:8d:39:7a:22:1c:60:d2:4f:66:23:9a:bc: d1:12:62:86:e7:88:60:32:1a:67:18:6e:f7:89:3c: ed:3d:af:ac:92:92:21:7f:8c:44:78:89:71:75:d0: 99:6b:89:53:df:84:8a:72:12:1f:07:65:4f:39:e4: 7a:ec:a1:80:92:c1:8e:ed:00:d7:3a:1f:a5:77:4f: 99:78:6f:ff:4d:87:68:89:07:82:ae:1e:42:54:85: 4f:48:20:20:b9:fe:3e:02:43:81:d5:5e:35:33:7c: 8f:dc:07:fa:98:77:30:eb:93:41:93:19:f2:4b:49: 1f:70:53:8c:7b:7b:93:80:49:0d:9b:9d:64:0e:f8: da:f7:b0:46:0c:75:6f:bb:de:ff:5b:c2:b9:76:4b: 03:e3:4a:f0:40:62:17:5a:87:94:84:f7:91:c4:6f: 2f:7d:73:a4:71:72:0d:46:98:4b:72:c6:60:93:2f: 35:32:57:53:b4:4d:78:7f:a9:32:58:f8:73:d5:c3: 61:a9:bc:8b:ca:6c:fb:2e:51:56:cf:3e:c1:d9:3b: 9e:78:3d:88:c8:91:1c:00:44:ae:aa:36:3a:e1:37: 53:2d:ea:2c:7b:0e:67:4d:e0:43:d3:be:78:90:d1: 61:7a:b7:7a:76:92:cc:27:3f:28:b2:32:94:26:70: 7a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AA:26:DC:83:3F:84:C7:7D:F3:14:03:27:53:14:28:C5:E8:1E:C4 X509v3 Authority Key Identifier: keyid:81:42:8A:01:C5:16:91:E7:A8:C5:D8:43:EC:B6:B1:D3:D9:AE:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/38C200523FFE11EB9AE7EE80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.93.4.0/23 Signature Algorithm: sha256WithRSAEncryption a0:81:db:a3:ce:e5:a4:8b:2b:70:90:2b:24:45:34:36:05:f9: e8:97:0c:78:24:0b:8d:5f:ac:e3:1e:c3:eb:6d:f4:da:8c:c9: fd:d2:08:3d:d3:77:78:ae:86:fe:a4:f5:21:4d:5d:19:fd:c2: 84:08:d3:8a:1a:79:52:9c:e3:06:58:7b:4d:cd:c2:49:5f:17: 5d:6d:8e:a1:e7:49:76:b1:a4:57:29:ff:5e:c6:39:6e:0f:83: 6f:2d:b9:4f:e8:4c:b3:13:f9:ae:02:0d:df:1f:79:59:95:1b: 90:bf:a5:7c:36:86:05:8c:88:37:8d:94:8c:ca:98:43:2f:3b: 19:9b:3e:1a:d9:09:93:c1:40:21:c1:c3:39:03:ec:8b:7e:64: 06:cf:56:6e:5e:08:97:09:f3:2a:5c:54:10:ee:9e:d8:f5:0a: 36:60:9d:e7:8b:e6:e7:d9:d3:a4:88:04:c9:0d:8f:4a:4b:6b: 42:44:fc:4b:37:8f:1e:9d:bf:5b:af:78:e5:1f:35:76:2d:ff: c0:a1:a3:64:35:41:d0:69:a0:66:b7:8d:2f:3d:d9:fc:7b:55: 0b:51:f8:18:b8:6a:ef:db:fc:50:10:14:1f:c0:0e:3a:12:8c: 71:6c:7b:99:9f:e6:80:7c:24:94:ab:cf:61:14:42:e0:9a:d3: 46:bf:bb:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJGNTIxMTAvBgNVBAUTKDgxNDI4QTAxQzUxNjkxRTdBOEM1RDg0M0VDQjZCMUQz RDlBRTQyNEUwHhcNMjMwNzMxMTk1NzI1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4MTIyNS0wYTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiSNOXoiHGDST2YjmrzREmKG54hgMhpnGG73iTztPa+skpIhf4xEeIlxddCZ a4lT34SKchIfB2VPOeR67KGAksGO7QDXOh+ld0+ZeG//TYdoiQeCrh5CVIVPSCAg uf4+AkOB1V41M3yP3Af6mHcw65NBkxnyS0kfcFOMe3uTgEkNm51kDvja97BGDHVv u97/W8K5dksD40rwQGIXWoeUhPeRxG8vfXOkcXINRphLcsZgky81MldTtE14f6ky WPhz1cNhqbyLymz7LlFWzz7B2TueeD2IyJEcAESuqjY64TdTLeosew5nTeBD0754 kNFherd6dpLMJz8osjKUJnB6DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMGqJtyD P4THffMUAydTFCjF6B7EMB8GA1UdIwQYMBaAFIFCigHFFpHnqMXYQ+y2sdPZrkJO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkY1Mi84OEVCQ0ZEQzFE NDkxMUVBQUU3NzVCMzRDNEY5QUUwMi9nVUtLQWNVV2tlZW94ZGhEN0xheDA5bXVR azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVS0tBY1VXa2Vlb3hkaEQ3TGF4MDltdVFrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJGNTIvODhFQkNGREMxRDQ5MTFFQUFFNzc1QjM0QzRGOUFFMDIvMzhDMjAwNTIz RkZFMTFFQjlBRTdFRTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKXQQwDQYJKoZIhvcNAQELBQADggEBAKCB26PO5aSLK3CQ KyRFNDYF+eiXDHgkC41frOMew+tt9NqMyf3SCD3Td3iuhv6k9SFNXRn9woQI04oa eVKc4wZYe03NwklfF11tjqHnSXaxpFcp/17GOW4Pg28tuU/oTLMT+a4CDd8feVmV G5C/pXw2hgWMiDeNlIzKmEMvOxmbPhrZCZPBQCHBwzkD7It+ZAbPVm5eCJcJ8ypc VBDuntj1CjZgneeL5ufZ06SIBMkNj0pLa0JE/Es3jx6dv1uveOUfNXYt/8Cho2Q1 QdBpoGa3jS892fx7VQtR+Bi4au/b/FAQFB/ADjoSjHFse5mf5oB8JJSrz2EUQuCa 00a/u54= -----END CERTIFICATE-----Generated at Tue Apr 23 18:32:43 2024 by rpki-client on console-fra.rpki-client.org