$ rpki-client -vvf rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa File: F9B10D46ADAA11ED810C6C45C4F9AE02.roa (raw, json) Hash identifier: Zu/GkgTDY0t5SCI7wWqSzTovtjd1f4VGPuuLiqKupZw= Subject key identifier: 5F:4E:DE:85:41:12:8E:4F:C4:05:E2:67:CF:E0:6B:D0:CC:58:5B:17 Certificate issuer: /CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Certificate serial: C2 Authority key identifier: D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa Signing time: Sat 03 Feb 2024 05:17:05 +0000 ROA not before: Sat 03 Feb 2024 05:17:04 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9438 IP address blocks: 203.13.33.0/24 maxlen: 24 203.17.122.0/24 maxlen: 24 203.18.16.0/24 maxlen: 24 203.18.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Validity Not Before: Feb 3 05:17:04 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bdcc50-2ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:63:6b:b3:e9:80:5a:53:db:a6:90:f3:e0: fd:86:37:8a:5d:2c:13:32:27:18:72:69:f2:d6:5f: 2a:8c:dc:e0:a2:98:6f:ba:9a:85:c8:b6:ec:fb:d4: cf:ca:4f:18:b1:69:fd:32:d6:80:fa:34:06:55:f1: b8:e3:a4:1b:c8:bf:c6:17:2a:54:26:ba:1f:5c:4e: 4e:db:ea:a6:da:36:54:19:bf:60:a6:db:03:18:74: d5:37:73:dc:45:97:86:18:fb:0a:ac:99:1e:fa:14: 52:b6:49:c6:5f:c8:42:cb:6e:e4:9e:17:df:7e:0f: da:ed:e3:2f:7b:cd:49:3e:04:3e:3a:f9:8d:b1:ee: b9:2a:17:e2:02:7a:01:85:f7:b8:41:6e:4a:49:33: b6:fa:86:98:67:17:9b:0e:8e:09:32:56:bc:4a:a0: 36:12:c3:cf:dc:40:3a:dd:95:8e:6f:bf:95:3c:18: f2:95:98:3b:7b:99:1d:1e:f3:61:92:84:74:54:dc: 3f:c6:b3:87:94:21:4f:c1:2e:ea:74:e8:48:d5:08: 2b:8a:f2:d6:c5:f4:86:c9:06:6e:0f:7d:1e:d5:b9: 36:a1:4d:83:38:ad:25:04:f7:46:b5:14:00:bc:14: 15:09:c4:e0:72:37:eb:03:c7:b8:ca:cf:06:87:8b: f9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:DE:85:41:12:8E:4F:C4:05:E2:67:CF:E0:6B:D0:CC:58:5B:17 X509v3 Authority Key Identifier: keyid:D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.33.0/24 203.17.122.0/24 203.18.16.0/23 Signature Algorithm: sha256WithRSAEncryption 50:31:8c:2f:3f:5f:9e:ca:fd:23:eb:a9:ab:1d:3b:34:d7:83: d6:95:e0:aa:d9:9d:8d:cd:87:0f:a3:06:d3:bb:7d:b2:2d:ae: e3:54:c7:ef:f5:d9:3e:f1:11:b0:80:05:ea:da:89:71:2f:de: c5:05:93:81:af:27:ed:42:a6:c4:b1:04:1b:89:cf:ba:22:67: 04:32:12:26:5c:fd:91:7d:a6:c1:4d:0a:5d:49:cc:03:86:82: 3f:7f:37:35:93:b0:f4:00:4c:07:64:29:7f:1d:ea:aa:3a:0b: 0d:be:e1:97:f6:83:08:ac:11:a3:17:97:da:24:08:cb:3f:cd: 06:d1:be:92:c8:72:4f:d4:aa:f6:0b:76:cd:18:5f:80:64:31: 20:8d:a8:a4:3a:6a:e7:66:1b:6a:2c:db:6d:4e:91:bc:41:36: a6:cd:4e:c7:d4:7c:72:cc:aa:1a:a9:cf:ba:01:4b:ae:91:30: de:ee:f6:b6:aa:59:4a:86:b6:a7:f5:49:4c:ce:7b:82:3c:37: 26:c3:cf:e7:c8:d1:69:ac:22:02:db:8b:ac:ea:3a:24:43:86: 82:a0:57:ff:3f:aa:1b:c0:e6:44:20:07:0c:60:23:13:b5:67: 81:4e:8c:81:b2:67:82:e7:a6:2c:1f:12:4f:5c:49:85:de:3b: f1:54:2e:c6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgzNEQxMTAvBgNVBAUTKEQwRTU0NDA1QjAzRDNEMTIzNDU5REUwMUJCNDAwRjRE N0E4MzI5RDAwHhcNMjQwMjAzMDUxNzA0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkY2M1MC0yZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxolja7PpgFpT26aQ8+D9hjeKXSwTMicYcmny1l8qjNzgophvupqFyLbs+9TP yk8YsWn9MtaA+jQGVfG446QbyL/GFypUJrofXE5O2+qm2jZUGb9gptsDGHTVN3Pc RZeGGPsKrJke+hRStknGX8hCy27knhfffg/a7eMve81JPgQ+OvmNse65KhfiAnoB hfe4QW5KSTO2+oaYZxebDo4JMla8SqA2EsPP3EA63ZWOb7+VPBjylZg7e5kdHvNh koR0VNw/xrOHlCFPwS7qdOhI1QgrivLWxfSGyQZuD30e1bk2oU2DOK0lBPdGtRQA vBQVCcTgcjfrA8e4ys8Gh4v5HwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFF9O3oVB Eo5PxAXiZ8/ga9DMWFsXMB8GA1UdIwQYMBaAFNDlRAWwPT0SNFneAbtAD016gynQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODM0RC8zQTJDNTE5NkFE QTExMUVEQUI2REY0MkRDNEY5QUUwMi8wT1ZFQmJBOVBSSTBXZDRCdTBBUFRYcURL ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBPVkVCYkE5UFJJMFdkNEJ1MEFQVFhxREtkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgzNEQvM0EyQzUxOTZBREExMTFFREFCNkRGNDJEQzRGOUFFMDIvRjlCMTBENDZB REFBMTFFRDgxMEM2QzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADLDSEDBADLEXoDBAHLEhAwDQYJKoZIhvcNAQELBQADggEB AFAxjC8/X57K/SPrqasdOzTXg9aV4KrZnY3Nhw+jBtO7fbItruNUx+/12T7xEbCA BeraiXEv3sUFk4GvJ+1CpsSxBBuJz7oiZwQyEiZc/ZF9psFNCl1JzAOGgj9/NzWT sPQATAdkKX8d6qo6Cw2+4Zf2gwisEaMXl9okCMs/zQbRvpLIck/UqvYLds0YX4Bk MSCNqKQ6audmG2os221OkbxBNqbNTsfUfHLMqhqpz7oBS66RMN7u9raqWUqGtqf1 SUzOe4I8NybDz+fI0WmsIgLbi6zqOiRDhoKgV/8/qhvA5kQgBwxgIxO1Z4FOjIGy Z4LnpiwfEk9cSYXeO/FULsY= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:37 2024 by rpki-client on console-fra.rpki-client.org