$ rpki-client -vvf rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/B5E8546EBF2611EE8879BB66C4F9AE02.roa File: B5E8546EBF2611EE8879BB66C4F9AE02.roa (raw, json) Hash identifier: uEsEXFwWb7KyD9Mn16ZXHKjuz+Q36pyYCy/3TA2ow/0= Subject key identifier: C8:21:68:01:52:65:85:20:3B:AF:D6:B9:24:48:4E:B4:37:6C:57:6E Certificate issuer: /CN=A918DFCE/serialNumber=1044029FF83174C6F1D66C8AD0D3FA1664EFE53B Certificate serial: 42 Authority key identifier: 10:44:02:9F:F8:31:74:C6:F1:D6:6C:8A:D0:D3:FA:16:64:EF:E5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEQCn_gxdMbx1myK0NP6FmTv5Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/B5E8546EBF2611EE8879BB66C4F9AE02.roa Signing time: Fri 17 May 2024 08:42:35 +0000 ROA not before: Fri 17 May 2024 08:42:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 8075 IP address blocks: 203.12.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/EEQCn_gxdMbx1myK0NP6FmTv5Ts.crl rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/EEQCn_gxdMbx1myK0NP6FmTv5Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEQCn_gxdMbx1myK0NP6FmTv5Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DFCE/serialNumber=1044029FF83174C6F1D66C8AD0D3FA1664EFE53B Validity Not Before: May 17 08:42:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6647187b-8ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:d5:d7:75:a4:4e:56:8b:05:4d:9b:bd:e6: ec:8c:f5:46:f9:57:62:9a:c1:e7:0f:7b:7a:11:ba: 9b:37:9d:47:86:15:23:98:d3:c3:d9:f2:e4:40:92: 3b:67:a1:aa:de:5f:e5:56:11:2c:e7:31:f4:6f:8a: 17:96:8b:87:5e:43:57:c2:ff:91:ef:8c:2a:64:68: 8e:07:08:7e:e9:55:b2:f0:63:67:12:41:ad:53:33: 01:6b:0e:64:18:f5:95:1f:47:54:a5:a0:c7:5c:9e: 40:bc:bb:f1:7c:04:b5:90:88:d2:29:d6:7e:c9:d6: 36:f9:36:89:f2:a1:45:97:1a:31:62:d5:43:9e:83: 5f:46:fb:f4:2d:fa:2b:cb:36:b8:f8:b4:f5:23:52: 5b:4e:31:e5:4c:04:32:25:bd:c4:dc:46:a9:d8:f8: ea:4c:13:aa:ed:48:d2:52:83:e2:dc:7a:b7:0f:ac: 3a:19:ce:99:0e:30:e0:34:4a:16:99:a1:3e:3b:4c: 62:fa:9d:42:55:b6:f1:a0:1e:42:10:b3:fc:19:20: 27:e9:f4:4c:00:81:65:d0:ad:e0:f3:e6:7f:16:91: a7:dd:5a:c1:91:17:57:6b:2a:0f:41:60:a2:83:ab: e8:8f:5a:d2:12:0e:1a:3c:60:7f:9e:54:8a:c7:d5: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:21:68:01:52:65:85:20:3B:AF:D6:B9:24:48:4E:B4:37:6C:57:6E X509v3 Authority Key Identifier: keyid:10:44:02:9F:F8:31:74:C6:F1:D6:6C:8A:D0:D3:FA:16:64:EF:E5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/EEQCn_gxdMbx1myK0NP6FmTv5Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEQCn_gxdMbx1myK0NP6FmTv5Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/B5E8546EBF2611EE8879BB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.31.0/24 Signature Algorithm: sha256WithRSAEncryption e4:1b:c4:52:52:62:1b:39:84:78:11:8b:51:2d:e5:46:fb:b1: 1e:ef:07:6a:36:47:2b:fa:f5:61:c7:5f:25:76:c5:ab:f4:e2: 9d:81:5a:c3:aa:59:16:e5:5f:b8:d9:05:06:04:b5:60:84:c8: 22:2c:f1:91:bd:8e:c5:a9:10:ac:b3:b9:e9:b2:a1:4c:3c:1f: e7:f2:16:ac:4e:65:74:ee:58:69:c5:cd:29:df:0e:8c:da:8b: 4f:5e:c9:87:fd:ca:a9:70:6d:6d:3d:cd:b6:2d:82:19:2e:d4: 16:fd:66:6e:20:f0:c6:8f:b8:df:43:c9:48:d4:4c:bd:56:df: fa:8d:ec:f4:eb:50:3c:06:4c:24:91:58:19:31:14:1e:74:f5: a5:aa:81:fe:52:28:06:38:e8:79:26:cb:a7:3d:fa:c3:c4:fb: a8:55:f2:45:5a:d4:c3:4a:72:ab:fa:48:82:dc:d3:8e:71:a4: b8:49:cc:da:54:d1:25:4f:5b:7c:ae:88:58:1c:c6:81:54:16: 20:3c:18:06:34:cf:1f:dc:0d:4b:b0:da:b3:5d:3c:62:e6:37: 57:b1:86:04:a0:65:1e:b9:c6:f9:1f:66:2c:85:40:8b:55:29: 79:66:de:e5:da:54:dd:33:ba:6d:00:24:94:7a:3a:ac:be:73: d5:be:2d:62 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REZDRTExMC8GA1UEBRMoMTA0NDAyOUZGODMxNzRDNkYxRDY2QzhBRDBEM0ZBMTY2 NEVGRTUzQjAeFw0yNDA1MTcwODQyMzVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDcxODdiLThlYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7C9XXdaROVosFTZu95uyM9Ub5V2KawecPe3oRups3nUeGFSOY08PZ8uRAkjtn oareX+VWESznMfRviheWi4deQ1fC/5HvjCpkaI4HCH7pVbLwY2cSQa1TMwFrDmQY 9ZUfR1SloMdcnkC8u/F8BLWQiNIp1n7J1jb5NonyoUWXGjFi1UOeg19G+/Qt+ivL Nrj4tPUjUltOMeVMBDIlvcTcRqnY+OpME6rtSNJSg+LcercPrDoZzpkOMOA0ShaZ oT47TGL6nUJVtvGgHkIQs/wZICfp9EwAgWXQreDz5n8WkafdWsGRF1drKg9BYKKD q+iPWtISDho8YH+eVIrH1eF1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyCFoAVJl hSA7r9a5JEhOtDdsV24wHwYDVR0jBBgwFoAUEEQCn/gxdMbx1myK0NP6FmTv5Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThERkNFLzgwQUM1NENBQkYx RDExRUU4NzVBRTI3RkM0RjlBRTAyL0VFUUNuX2d4ZE1ieDFteUswTlA2Rm1UdjVU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUVRQ25fZ3hkTWJ4MW15SzBOUDZGbVR2NVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REZDRS84MEFDNTRDQUJGMUQxMUVFODc1QUUyN0ZDNEY5QUUwMi9CNUU4NTQ2RUJG MjYxMUVFODg3OUJCNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsMHzANBgkqhkiG9w0BAQsFAAOCAQEA5BvEUlJiGzmEeBGL US3lRvuxHu8HajZHK/r1YcdfJXbFq/TinYFaw6pZFuVfuNkFBgS1YITIIizxkb2O xakQrLO56bKhTDwf5/IWrE5ldO5YacXNKd8OjNqLT17Jh/3KqXBtbT3Nti2CGS7U Fv1mbiDwxo+430PJSNRMvVbf+o3s9OtQPAZMJJFYGTEUHnT1paqB/lIoBjjoeSbL pz36w8T7qFXyRVrUw0pyq/pIgtzTjnGkuEnM2lTRJU9bfK6IWBzGgVQWIDwYBjTP H9wNS7Das108YuY3V7GGBKBlHrnG+R9mLIVAi1UpeWbe5dpU3TO6bQAklHo6rL5z 1b4tYg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org