$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/1FB96962DA1311EE81216D86C4F9AE02.roa File: 1FB96962DA1311EE81216D86C4F9AE02.roa (raw, json) Hash identifier: i6YPlaMnGASCs0Ij1ZA+/Al9vtaAI62dbzUJZsHZ5+E= Subject key identifier: 7C:AC:01:4D:3A:44:8A:04:F7:97:89:55:AF:42:79:FA:9B:5E:B3:62 Certificate issuer: /CN=A9175D84/serialNumber=949B647A5F8C79F6DA4AE36D9E00C44E02A9A7A4 Certificate serial: 43 Authority key identifier: 94:9B:64:7A:5F:8C:79:F6:DA:4A:E3:6D:9E:00:C4:4E:02:A9:A7:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJtkel-MefbaSuNtngDETgKpp6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/1FB96962DA1311EE81216D86C4F9AE02.roa Signing time: Mon 04 Mar 2024 10:36:57 +0000 ROA not before: Mon 04 Mar 2024 10:36:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141045 IP address blocks: 203.145.36.0/23 maxlen: 24 2401:5020::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/lJtkel-MefbaSuNtngDETgKpp6Q.crl rsync://rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/lJtkel-MefbaSuNtngDETgKpp6Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJtkel-MefbaSuNtngDETgKpp6Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D84/serialNumber=949B647A5F8C79F6DA4AE36D9E00C44E02A9A7A4 Validity Not Before: Mar 4 10:36:57 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65e5a448-e133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:55:06:a9:47:71:89:15:b9:18:1b:3c:f3:a1: e5:b1:60:4f:12:77:7a:27:28:0e:1c:99:5f:2e:d1: 27:97:23:f9:1d:4b:f2:8c:03:7e:0a:03:e2:d1:10: a6:3e:da:2c:11:21:34:97:76:64:75:04:5c:4e:6d: e1:ba:49:0e:a7:72:30:91:0e:67:9f:74:93:e6:1b: b5:20:d6:7c:4e:e9:33:72:a0:ba:fc:f3:08:49:0c: b4:5d:42:f0:40:5a:ef:e6:f3:24:5c:0c:9a:0b:f4: f4:40:61:34:b6:26:f7:a5:76:23:49:ef:5c:98:3d: bf:09:7a:0e:7e:9e:dc:57:d4:5c:c2:b4:1a:20:8e: cf:13:90:08:dd:71:5f:1a:36:2c:4b:69:c3:e0:be: eb:46:4b:fe:44:6d:bc:4c:b6:4f:03:a9:a2:2d:41: 9d:9f:40:46:30:bb:74:ce:74:e2:5f:b7:08:61:fb: 55:83:b9:40:d3:0a:c6:c2:1f:f8:b5:7d:fd:51:da: de:6a:ea:25:ee:da:59:dd:3e:9f:10:d8:cf:8d:5f: f2:93:15:41:e2:df:cc:70:6f:84:d5:ab:cc:25:f4: e5:88:85:42:fb:06:4e:b1:0b:2a:d8:da:94:cc:3d: 71:1a:bb:12:d8:02:f3:09:52:41:91:3f:44:86:55: 7f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AC:01:4D:3A:44:8A:04:F7:97:89:55:AF:42:79:FA:9B:5E:B3:62 X509v3 Authority Key Identifier: keyid:94:9B:64:7A:5F:8C:79:F6:DA:4A:E3:6D:9E:00:C4:4E:02:A9:A7:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/lJtkel-MefbaSuNtngDETgKpp6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJtkel-MefbaSuNtngDETgKpp6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D84/F806943C86C811EEAAD34414C4F9AE02/1FB96962DA1311EE81216D86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.36.0/23 IPv6: 2401:5020::/32 Signature Algorithm: sha256WithRSAEncryption 2d:be:6e:31:fa:2d:a1:b2:5d:94:f9:00:6f:1e:5e:0e:b9:80: e3:af:d8:57:b1:e7:c5:38:64:48:f0:a1:1d:86:d0:2e:9e:13: 28:cf:05:0d:ec:89:7d:2e:ed:37:bf:f1:c4:0c:5c:1b:eb:aa: f7:b8:38:95:99:05:53:ef:5e:02:de:80:45:56:5e:9f:28:b0: 8b:e5:ba:6f:b6:18:ea:8b:a5:44:ee:5b:d0:7b:c1:0f:d9:cf: 79:55:c7:7b:08:66:7b:ab:cd:82:00:25:44:69:2e:5f:e8:df: 59:83:98:04:30:76:a7:7b:ba:8d:65:20:0d:bd:da:ae:43:e8: 1a:16:a2:65:20:21:cd:43:9d:7c:73:3d:df:32:41:7a:1e:86: c1:52:71:a2:44:e7:48:1d:f1:05:3a:c8:e6:71:e4:e3:d9:db: fd:13:93:ad:35:09:7e:a1:59:9a:5d:5f:2a:61:2e:d8:37:1f: d6:1c:f1:f3:bd:d3:09:2e:50:0e:72:51:1e:77:2c:40:34:3e: 0d:6f:b9:f2:70:29:5c:0c:69:f0:72:ea:95:31:09:3f:a2:95: 5f:6e:c9:e2:e9:ef:63:8d:fe:fe:3f:46:22:63:7e:44:c0:70: 16:0d:20:47:54:ed:21:37:ef:46:24:0e:e1:a4:48:ff:62:64: 82:b8:f2:c5 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUQ4NDExMC8GA1UEBRMoOTQ5QjY0N0E1RjhDNzlGNkRBNEFFMzZEOUUwMEM0NEUw MkE5QTdBNDAeFw0yNDAzMDQxMDM2NTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTVhNDQ4LWUxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSVQapR3GJFbkYGzzzoeWxYE8Sd3onKA4cmV8u0SeXI/kdS/KMA34KA+LREKY+ 2iwRITSXdmR1BFxObeG6SQ6ncjCRDmefdJPmG7Ug1nxO6TNyoLr88whJDLRdQvBA Wu/m8yRcDJoL9PRAYTS2JveldiNJ71yYPb8Jeg5+ntxX1FzCtBogjs8TkAjdcV8a NixLacPgvutGS/5EbbxMtk8DqaItQZ2fQEYwu3TOdOJftwhh+1WDuUDTCsbCH/i1 ff1R2t5q6iXu2lndPp8Q2M+NX/KTFUHi38xwb4TVq8wl9OWIhUL7Bk6xCyrY2pTM PXEauxLYAvMJUkGRP0SGVX/bAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUfKwBTTpE igT3l4lVr0J5+ptes2IwHwYDVR0jBBgwFoAUlJtkel+MefbaSuNtngDETgKpp6Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1RDg0L0Y4MDY5NDNDODZD ODExRUVBQUQzNDQxNEM0RjlBRTAyL2xKdGtlbC1NZWZiYVN1TnRuZ0RFVGdLcHA2 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEp0a2VsLU1lZmJhU3VOdG5nREVUZ0twcDZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ4NC9GODA2OTQzQzg2QzgxMUVFQUFEMzQ0MTRDNEY5QUUwMi8xRkI5Njk2MkRB MTMxMUVFODEyMTZEODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAcuRJDANBAIAAjAHAwUAJAFQIDANBgkqhkiG9w0BAQsFAAOC AQEALb5uMfotobJdlPkAbx5eDrmA46/YV7HnxThkSPChHYbQLp4TKM8FDeyJfS7t N7/xxAxcG+uq97g4lZkFU+9eAt6ARVZenyiwi+W6b7YY6oulRO5b0HvBD9nPeVXH ewhme6vNggAlRGkuX+jfWYOYBDB2p3u6jWUgDb3arkPoGhaiZSAhzUOdfHM93zJB eh6GwVJxokTnSB3xBTrI5nHk49nb/ROTrTUJfqFZml1fKmEu2Dcf1hzx873TCS5Q DnJRHncsQDQ+DW+58nApXAxp8HLqlTEJP6KVX27J4unvY43+/j9GImN+RMBwFg0g R1TtITfvRiQO4aRI/2JkgrjyxQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org