$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/2E971452411311EC88F4A813C4F9AE02.roa File: 2E971452411311EC88F4A813C4F9AE02.roa (raw, json) Hash identifier: BJkoemMT/+xpo5406DrYJzR7xcCQChxSufm253c8Bjc= Subject key identifier: 55:57:32:EB:47:77:30:A8:36:AB:F6:2F:79:36:B4:19:DF:85:72:07 Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 038D Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/2E971452411311EC88F4A813C4F9AE02.roa Signing time: Wed 03 Jan 2024 02:24:01 +0000 ROA not before: Wed 03 Jan 2024 02:24:01 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 147051 IP address blocks: 203.33.188.0/24 maxlen: 24 2400:1360:c000::/34 maxlen: 34 2400:1360:c000::/48 maxlen: 48 2400:1360:c001::/48 maxlen: 48 2400:1360:c002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jan 3 02:24:01 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6594c541-d65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bf:5e:3d:c5:cd:54:ba:5f:d4:8b:a8:1c:05: 93:78:a7:40:ca:5f:42:34:e1:ec:72:10:76:bf:78: ca:bd:24:1d:ba:a4:31:6f:f9:02:22:24:b6:11:99: 2d:d9:b9:fa:4f:b8:de:77:bf:24:dc:fc:22:c3:00: 84:34:e0:61:7e:49:d1:58:27:d9:0a:78:ea:b6:ff: 07:dc:58:5a:cd:bd:44:05:67:79:91:71:01:84:2d: c6:c4:a1:90:e9:92:dc:c2:f0:5d:24:e4:80:bd:f8: 55:00:40:88:57:21:0d:10:e9:6e:13:4d:a2:0e:b1: 5a:a6:49:51:bc:a9:47:65:28:cd:64:6b:f0:ae:74: 9c:46:b2:e6:f8:29:ec:cc:9b:8e:4f:da:47:af:2e: 46:2f:bb:86:36:9d:5f:cc:ee:2a:23:9a:d6:89:6e: ce:ff:69:24:0f:78:d3:7a:f7:46:36:68:25:da:99: 6d:84:4e:61:98:1f:fc:92:c0:c1:5d:9d:39:f0:26: 57:5c:07:ac:86:0f:ee:50:a2:9a:b4:59:d2:63:66: 08:99:03:18:72:19:c3:b0:5b:86:70:bd:30:dd:78: 71:23:6d:78:c2:f6:b9:96:5f:ef:ec:49:ab:d9:fc: b8:ae:50:46:ad:c2:d2:45:da:33:09:a3:c2:a6:22: e3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:57:32:EB:47:77:30:A8:36:AB:F6:2F:79:36:B4:19:DF:85:72:07 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/2E971452411311EC88F4A813C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.188.0/24 IPv6: 2400:1360:c000::/34 Signature Algorithm: sha256WithRSAEncryption b5:3a:e5:08:4d:8d:af:64:08:28:f6:f1:54:17:8a:49:c1:a0: 5b:97:7f:34:15:b3:7b:dd:e2:8a:4a:73:52:3e:e6:7c:7a:ee: f0:10:2d:77:dd:58:c6:31:e6:97:36:54:31:9b:8a:b6:f6:7f: 7c:de:e1:55:e5:32:07:bc:31:2e:5f:ed:b4:89:ae:f8:f4:05: 9f:fe:fe:92:f6:0d:a6:ea:5c:5d:e3:57:d9:65:26:0d:5b:b4: 9a:96:3b:6e:d2:45:14:c5:05:77:a2:ea:92:97:a1:f8:58:be: 02:11:74:ca:e4:7b:03:ec:e3:66:22:02:16:45:59:79:f7:5d: 48:9d:8f:e5:c0:ef:be:ac:46:57:32:ca:ce:f2:c9:f1:6b:1a: 1d:5d:90:17:10:b5:75:8e:b2:1e:54:c5:eb:f7:26:5e:e5:63: f8:42:21:43:d8:b4:93:e1:9e:19:29:2b:a6:69:35:ac:48:da: b1:66:3f:df:1a:ef:63:ad:86:de:0d:a3:59:da:06:4f:1d:23: 1d:d3:17:9c:3c:83:12:96:39:18:42:50:29:87:ef:b8:87:77: c4:bd:3d:62:70:78:be:f7:a5:5f:48:ff:39:b6:5c:cc:8b:eb: 24:dc:36:d3:f7:1e:87:fa:4a:11:52:ec:a9:77:cf:43:32:0c: 3e:b3:2c:d3 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjQwMTAzMDIyNDAxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0YzU0MS1kNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL9ePcXNVLpf1IuoHAWTeKdAyl9CNOHschB2v3jKvSQduqQxb/kCIiS2EZkt 2bn6T7jed78k3PwiwwCENOBhfknRWCfZCnjqtv8H3Fhazb1EBWd5kXEBhC3GxKGQ 6ZLcwvBdJOSAvfhVAECIVyENEOluE02iDrFapklRvKlHZSjNZGvwrnScRrLm+Cns zJuOT9pHry5GL7uGNp1fzO4qI5rWiW7O/2kkD3jTevdGNmgl2plthE5hmB/8ksDB XZ058CZXXAeshg/uUKKatFnSY2YImQMYchnDsFuGcL0w3XhxI214wva5ll/v7Emr 2fy4rlBGrcLSRdozCaPCpiLjTwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFVXMutH dzCoNqv2L3k2tBnfhXIHMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE5NkQvNjIwMkFBM0U0MTEwMTFFQzk5MzlDMDBGQzRGOUFFMDIvMkU5NzE0NTI0 MTEzMTFFQzg4RjRBODEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBADLIbwwDgQCAAIwCAMGBiQAE2DAMA0GCSqGSIb3DQEBCwUA A4IBAQC1OuUITY2vZAgo9vFUF4pJwaBbl380FbN73eKKSnNSPuZ8eu7wEC133VjG MeaXNlQxm4q29n983uFV5TIHvDEuX+20ia749AWf/v6S9g2m6lxd41fZZSYNW7Sa ljtu0kUUxQV3ouqSl6H4WL4CEXTK5HsD7ONmIgIWRVl5911InY/lwO++rEZXMsrO 8snxaxodXZAXELV1jrIeVMXr9yZe5WP4QiFD2LST4Z4ZKSumaTWsSNqxZj/fGu9j rYbeDaNZ2gZPHSMd0xecPIMSljkYQlAph++4h3fEvT1icHi+96VfSP85tlzMi+sk 3DbT9x6H+koRUuypd89DMgw+syzT -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org