$ rpki-client -vvf rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/C3876BD8589D11EC9CF19A41C4F9AE02.roa File: C3876BD8589D11EC9CF19A41C4F9AE02.roa (raw, json) Hash identifier: plj7gbTh/uibVdgorTOsQNlKAa4siZFr/FDFGAoOHVQ= Subject key identifier: 68:B4:85:C4:94:14:61:EF:55:D0:C1:A7:C2:8E:9F:D0:A3:93:57:DE Certificate issuer: /CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD Certificate serial: 27EF Authority key identifier: C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/C3876BD8589D11EC9CF19A41C4F9AE02.roa Signing time: Wed 06 Dec 2023 16:02:19 +0000 ROA not before: Wed 06 Dec 2023 16:02:19 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4764 IP address blocks: 202.84.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10223 (0x27ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD Validity Not Before: Dec 6 16:02:19 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65709b0a-10a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c1:5c:c7:48:82:06:76:9f:f3:e3:b9:3a:0b: fe:3d:c0:8a:ad:93:e1:73:93:79:3b:c3:5a:5c:98: 96:e8:3a:7a:bf:4f:bd:3c:b9:a0:39:f6:a2:03:67: 30:59:0b:47:ee:1a:9f:b5:10:2a:21:ef:8e:2d:23: 47:24:fa:ea:fc:3e:b8:a7:86:bd:0b:db:45:6a:d5: 21:d4:c3:a3:48:78:a1:ed:6b:04:08:b6:20:73:ff: 1e:89:e2:0d:f8:49:c6:3b:58:3a:1e:72:e8:bf:b4: 39:69:b1:f0:0d:b7:12:ab:5a:2a:c2:f4:0c:cb:1f: e7:be:f2:e1:75:49:34:9d:73:a2:33:5d:ec:be:1f: eb:3a:30:f4:ae:ec:44:39:4e:d3:23:92:53:b9:b6: 01:a9:52:71:18:40:d0:0c:13:40:1f:83:40:12:25: 94:f8:f8:40:7a:73:94:1e:07:55:78:21:ed:4d:1a: 3c:af:b8:5c:43:20:5c:d2:04:14:ac:1a:cf:81:f1: ab:55:05:23:a9:1a:90:48:00:f6:88:73:91:22:52: e4:80:ae:e2:f1:1c:37:71:06:16:9c:34:63:7b:23: 3e:d1:6a:48:5b:12:c4:aa:4d:fd:53:d9:02:4f:2a: c2:18:d5:17:92:18:22:27:f7:a0:ea:53:50:02:a7: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B4:85:C4:94:14:61:EF:55:D0:C1:A7:C2:8E:9F:D0:A3:93:57:DE X509v3 Authority Key Identifier: keyid:C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/C3876BD8589D11EC9CF19A41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.84.20.0/23 Signature Algorithm: sha256WithRSAEncryption 22:a5:f4:8b:16:3b:82:75:6f:98:77:1b:bc:03:3c:08:25:1e: a7:9f:25:93:02:87:91:df:47:07:8e:d4:f3:a2:86:48:80:3a: a5:2c:fc:eb:64:d3:30:1f:49:74:a6:74:75:7a:e2:e7:f9:f1: 54:25:4f:57:3b:dd:2a:eb:45:2c:27:db:cf:26:0e:79:a3:bc: 37:72:80:07:4e:9e:0b:00:06:8b:95:e3:89:b6:59:ac:95:8f: 9d:64:c2:9c:98:ad:98:65:98:10:b8:b1:5e:db:f8:3a:6d:19: 32:60:ac:73:dd:a0:b6:35:c1:2c:94:7c:51:5c:2f:cb:a1:af: 41:b5:81:1c:f2:93:ec:85:a4:0b:bf:1c:7d:17:1a:ab:04:54: c7:ff:8c:28:4e:a6:2e:6a:6c:4e:83:75:4c:f5:07:08:5c:68: bf:4e:32:6b:b7:03:de:3c:27:76:31:f4:90:4a:0f:50:2e:8c: 0a:a2:81:54:23:15:e1:39:84:b9:70:d9:59:a6:21:a1:9e:07: 54:c6:27:88:ca:7b:e2:f2:8b:61:34:fd:98:a8:55:d6:24:f9: 67:b5:10:0d:bf:63:2c:36:43:42:fa:ad:72:0f:61:76:e4:02: b2:4d:c4:28:6f:d8:87:16:1a:12:24:88:ca:ef:a1:ad:e2:ca: 32:84:62:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MDcxMTAvBgNVBAUTKEMxRTIyNzY1MUFEQTNCRkJDMTg3NzFBRUM4QjYwMDI2 NzIzQjYwQUQwHhcNMjMxMjA2MTYwMjE5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwOWIwYS0xMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcFcx0iCBnaf8+O5Ogv+PcCKrZPhc5N5O8NaXJiW6Dp6v0+9PLmgOfaiA2cw WQtH7hqftRAqIe+OLSNHJPrq/D64p4a9C9tFatUh1MOjSHih7WsECLYgc/8eieIN +EnGO1g6HnLov7Q5abHwDbcSq1oqwvQMyx/nvvLhdUk0nXOiM13svh/rOjD0ruxE OU7TI5JTubYBqVJxGEDQDBNAH4NAEiWU+PhAenOUHgdVeCHtTRo8r7hcQyBc0gQU rBrPgfGrVQUjqRqQSAD2iHORIlLkgK7i8Rw3cQYWnDRjeyM+0WpIWxLEqk39U9kC TyrCGNUXkhgiJ/eg6lNQAqcRhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGi0hcSU FGHvVdDBp8KOn9Cjk1feMB8GA1UdIwQYMBaAFMHiJ2Ua2jv7wYdxrsi2ACZyO2Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwNy9CNEFDRTE2NDcw QjYxMUU0OUNDQUYxNkZDNEY5QUUwMi93ZUluWlJyYU9fdkJoM0d1eUxZQUpuSTdZ SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dlSW5aUnJhT192QmgzR3V5TFlBSm5JN1lLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3MDcvQjRBQ0UxNjQ3MEI2MTFFNDlDQ0FGMTZGQzRGOUFFMDIvQzM4NzZCRDg1 ODlEMTFFQzlDRjE5QTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKVBQwDQYJKoZIhvcNAQELBQADggEBACKl9IsWO4J1b5h3 G7wDPAglHqefJZMCh5HfRweO1POihkiAOqUs/Otk0zAfSXSmdHV64uf58VQlT1c7 3SrrRSwn288mDnmjvDdygAdOngsABouV44m2WayVj51kwpyYrZhlmBC4sV7b+Dpt GTJgrHPdoLY1wSyUfFFcL8uhr0G1gRzyk+yFpAu/HH0XGqsEVMf/jChOpi5qbE6D dUz1BwhcaL9OMmu3A948J3Yx9JBKD1AujAqigVQjFeE5hLlw2VmmIaGeB1TGJ4jK e+Lyi2E0/ZioVdYk+We1EA2/Yyw2Q0L6rXIPYXbkArJNxChv2IcWGhIkiMrvoa3i yjKEYhw= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:43 2024 by rpki-client on console-fra.rpki-client.org