$ rpki-client -vvf rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa File: 4F7CFB9A82B711EE997EB92AC4F9AE02.roa (raw, json) Hash identifier: TJ34Wyoap/5yzhKFKcWfCR4OzCGqCkt7A3M9uL0mJ3o= Subject key identifier: 96:F5:E1:79:8F:2D:EE:86:2C:60:20:EF:C5:6A:4D:8D:B7:25:AA:1B Certificate issuer: /CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Certificate serial: 04 Authority key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa Signing time: Tue 14 Nov 2023 06:31:23 +0000 ROA not before: Tue 14 Nov 2023 06:31:23 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136418 IP address blocks: 202.47.164.0/24 maxlen: 24 202.47.165.0/24 maxlen: 24 2001:df3:2440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Validity Not Before: Nov 14 06:31:23 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6553143b-d19c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:84:98:71:4a:73:13:56:be:7e:8f:e0:9a: 1a:c4:fb:14:24:83:94:5b:0b:79:6f:54:a7:50:c5: 35:22:da:2b:57:4d:cb:94:f9:57:84:2a:ec:d4:6a: dd:1f:45:1f:67:ac:10:aa:eb:ea:27:c5:1d:9c:b4: 17:18:46:78:ef:1d:5e:50:3a:b5:6c:64:52:b4:5b: 26:8e:24:4c:a6:87:ed:63:52:95:d6:26:6f:91:19: 57:61:8c:34:8c:3d:42:da:bf:4c:17:b1:da:b9:66: 72:bd:ec:04:c9:71:70:4a:b8:ef:01:6b:bc:e8:53: c7:16:07:88:12:29:b2:38:0f:b6:2c:51:6a:14:fc: 6b:70:1f:7b:b8:e1:85:56:35:74:67:94:40:2f:91: 52:06:bd:27:3d:88:c6:7d:0c:fe:24:2f:98:54:07: 66:a7:fc:5e:45:aa:f7:67:c2:68:fa:ce:99:dc:4b: 8e:e4:ef:4a:33:ab:6c:e2:dc:58:63:e5:b3:e7:84: 34:15:90:1d:80:5f:b3:3f:be:76:a2:d1:00:b7:b7: 99:2b:39:8b:72:6b:02:90:99:cf:e9:17:54:a2:5f: 21:a3:af:ac:c8:a1:0f:2c:97:b2:b4:9d:28:b8:47: 90:63:75:3f:7f:31:db:eb:0b:7a:bb:ea:51:83:93: 00:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F5:E1:79:8F:2D:EE:86:2C:60:20:EF:C5:6A:4D:8D:B7:25:AA:1B X509v3 Authority Key Identifier: keyid:3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.164.0/23 IPv6: 2001:df3:2440::/48 Signature Algorithm: sha256WithRSAEncryption 8b:b0:f7:0f:1b:21:b9:c8:d3:d0:1b:e3:02:77:ad:ad:ae:df: 6f:82:4c:1b:f7:e2:de:b5:32:5c:d1:86:c5:64:f5:b9:39:2d: bc:0f:25:ad:ed:3d:d4:25:ac:9c:6c:dc:fb:a1:3b:8f:40:5f: c2:20:50:86:ca:fd:57:c6:87:83:1e:4b:7f:35:e8:44:ee:ee: 19:4f:b0:48:0b:54:58:a8:bd:fe:1d:f4:5d:72:9b:16:00:2a: a3:11:93:3a:a6:ce:9f:65:4a:fe:5e:35:58:16:05:57:7a:a0: 21:d1:1c:21:90:db:57:89:8a:e7:8c:e0:03:b3:18:1e:cf:82: ee:93:3f:ca:94:c6:00:62:89:5e:c6:f7:e0:5c:17:3c:24:71: fa:61:dc:4d:1a:cb:6d:b5:cc:d1:e4:15:32:be:35:35:8b:fb: 6c:3d:6c:ed:31:7b:16:31:88:87:07:65:66:f9:31:c7:f9:c6: 5a:12:8e:b0:77:33:32:5c:fb:11:19:96:b5:81:de:84:1d:31: c8:f1:93:52:38:b9:81:c5:dc:61:43:75:5e:22:49:dd:bd:d5: 4e:d1:84:67:6e:a9:0d:d8:81:a9:79:27:f4:58:75:f1:0b:81: 5c:44:9d:c1:1e:3b:01:aa:b8:cf:af:3e:65:84:06:e1:d3:0d: 21:f8:92:17 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkNFMTExMC8GA1UEBRMoM0NENzE1NTJBRkFBMDEzOEY5QTY0RTAxNjBFRUYwNjA5 NjA2NTMyMzAeFw0yMzExMTQwNjMxMjNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTMxNDNiLWQxOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC45oSYcUpzE1a+fo/gmhrE+xQkg5RbC3lvVKdQxTUi2itXTcuU+VeEKuzUat0f RR9nrBCq6+onxR2ctBcYRnjvHV5QOrVsZFK0WyaOJEymh+1jUpXWJm+RGVdhjDSM PULav0wXsdq5ZnK97ATJcXBKuO8Ba7zoU8cWB4gSKbI4D7YsUWoU/GtwH3u44YVW NXRnlEAvkVIGvSc9iMZ9DP4kL5hUB2an/F5Fqvdnwmj6zpncS47k70ozq2zi3Fhj 5bPnhDQVkB2AX7M/vnai0QC3t5krOYtyawKQmc/pF1SiXyGjr6zIoQ8sl7K0nSi4 R5BjdT9/MdvrC3q76lGDkwBxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUlvXheY8t 7oYsYCDvxWpNjbclqhswHwYDVR0jBBgwFoAUPNcVUq+qATj5pk4BYO7wYJYGUyMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Q0UxL0U4ODFFOEVDODJC NjExRUU5QkZDMDYxREM0RjlBRTAyL1BOY1ZVcS1xQVRqNXBrNEJZTzd3WUpZR1V5 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE5jVlVxLXFBVGo1cGs0QllPN3dZSllHVXlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkNFMS9FODgxRThFQzgyQjYxMUVFOUJGQzA2MURDNEY5QUUwMi80RjdDRkI5QTgy QjcxMUVFOTk3RUI5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcovpDAPBAIAAjAJAwcAIAEN8yRAMA0GCSqGSIb3DQEBCwUA A4IBAQCLsPcPGyG5yNPQG+MCd62trt9vgkwb9+LetTJc0YbFZPW5OS28DyWt7T3U JaycbNz7oTuPQF/CIFCGyv1XxoeDHkt/NehE7u4ZT7BIC1RYqL3+HfRdcpsWACqj EZM6ps6fZUr+XjVYFgVXeqAh0RwhkNtXiYrnjOADsxgez4Lukz/KlMYAYolexvfg XBc8JHH6YdxNGstttczR5BUyvjU1i/tsPWztMXsWMYiHB2Vm+THH+cZaEo6wdzMy XPsRGZa1gd6EHTHI8ZNSOLmBxdxhQ3VeIkndvdVO0YRnbqkN2IGpeSf0WHXxC4Fc RJ3BHjsBqrjPrz5lhAbh0w0h+JIX -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org