$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa File: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (raw, json) Hash identifier: XVQmhW82fWRmXCkFv6uhGVCs1LKAjvBw4vBGbB/f8uo= Subject key identifier: A4:BC:DD:8E:D3:F5:F3:E6:E8:03:2A:81:55:F1:00:2D:FA:FC:96:AF Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0806 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa Signing time: Tue 16 May 2023 22:34:01 +0000 ROA not before: Tue 16 May 2023 22:34:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140603 IP address blocks: 203.24.61.0/24 maxlen: 24 2001:df3:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: May 16 22:34:01 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646404d9-468d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b3:53:ec:69:7c:6a:56:23:e9:97:d4:b1:47: 7a:f3:a2:42:8b:b5:54:1a:69:45:c6:52:96:81:02: 6e:08:7c:ee:81:b8:3d:0e:57:0b:5b:33:aa:08:4e: 10:e4:9d:02:c5:61:f1:b6:87:8b:b8:e6:d9:e4:69: 1d:b5:3f:14:7d:21:b2:87:6d:79:d0:51:85:0b:1f: 69:b9:ec:0d:f0:72:e3:0d:28:ee:7d:f6:90:96:23: 09:68:af:bc:27:16:db:1c:0a:fc:00:7e:48:bb:b0: 9d:45:1d:6a:62:65:98:23:59:e1:db:41:93:6a:7f: 72:62:8f:33:e3:f0:3e:9c:c7:7a:65:18:d4:17:43: 7f:49:99:a5:70:bb:72:8b:d6:33:a4:cb:76:d4:75: b1:ca:2f:07:3d:c7:eb:48:f2:4c:23:44:83:5a:be: 58:d5:92:fb:49:b2:17:bb:60:fa:be:d1:27:83:d2: 77:18:2d:8a:fb:85:8f:e0:cd:1c:1b:71:b7:34:c3: 8c:ec:18:c8:68:ac:3f:57:89:0f:19:98:b2:ac:1d: ab:bb:d4:e5:4b:99:29:db:7c:6e:17:42:9e:b7:b3: 50:d8:77:24:47:46:bb:37:dd:85:b2:d1:d3:da:b6: 18:b9:4b:11:04:c5:1a:9b:98:6c:c9:75:21:9d:2b: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BC:DD:8E:D3:F5:F3:E6:E8:03:2A:81:55:F1:00:2D:FA:FC:96:AF X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.61.0/24 IPv6: 2001:df3:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 81:b1:f1:69:e6:f9:2a:cc:9e:24:ff:9b:d7:1e:28:9f:c5:a2: 9d:f8:d6:30:b5:92:5d:a1:d7:d6:75:f8:38:32:73:f6:38:60: 6e:1d:65:b9:eb:1c:5e:d8:dc:4b:0e:84:ab:cf:37:d7:d3:ad: a9:90:c6:93:32:72:2b:c8:95:31:f7:67:ea:43:c9:75:64:2f: 6d:d4:a6:2a:d3:62:9f:cd:6f:08:fd:19:84:a4:ac:fb:07:58: dd:fe:d1:0c:e9:04:f9:d0:af:0b:fb:17:81:00:38:4c:20:82: f3:48:c0:bc:86:55:2a:99:43:e1:4a:04:8e:d4:e5:0e:7e:91: 45:12:22:d4:9b:6c:9e:af:0b:72:00:58:3f:45:49:70:4b:5f: aa:35:9a:d0:54:2e:8e:41:79:6f:80:fb:81:af:36:aa:40:c0: 02:5f:53:38:7f:98:88:0b:0b:4f:f8:77:63:11:b6:7f:d3:99: f3:cc:3a:1a:f0:c2:e0:f7:04:b6:38:26:d3:52:9c:d7:57:95: 73:76:2f:a2:fe:d3:69:e1:30:f2:7b:9b:57:7b:cf:08:d4:cc: 96:01:6d:8e:79:e0:04:3c:1d:0e:d6:9b:2b:53:3f:23:2d:49: 1e:f4:e4:a1:2a:01:f1:fa:c4:53:ea:5f:b5:73:74:c5:7a:3e: 90:5d:33:27 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjMwNTE2MjIzNDAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY0MDRkOS00NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7NT7Gl8alYj6ZfUsUd686JCi7VUGmlFxlKWgQJuCHzugbg9DlcLWzOqCE4Q 5J0CxWHxtoeLuObZ5GkdtT8UfSGyh2150FGFCx9puewN8HLjDSjuffaQliMJaK+8 JxbbHAr8AH5Iu7CdRR1qYmWYI1nh20GTan9yYo8z4/A+nMd6ZRjUF0N/SZmlcLty i9YzpMt21HWxyi8HPcfrSPJMI0SDWr5Y1ZL7SbIXu2D6vtEng9J3GC2K+4WP4M0c G3G3NMOM7BjIaKw/V4kPGZiyrB2ru9TlS5kp23xuF0Ket7NQ2HckR0a7N92FstHT 2rYYuUsRBMUam5hsyXUhnSstswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKS83Y7T 9fPm6AMqgVXxAC36/JavMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIzNDIvMEI0MTAwQzA4RThDMTFFQUJEMzQ1ODExQzRGOUFFMDIvNEQyM0E3N0U4 RThGMTFFQUIzMERDQTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLGD0wDwQCAAIwCQMHACABDfOPgDANBgkqhkiG9w0BAQsF AAOCAQEAgbHxaeb5KsyeJP+b1x4on8WinfjWMLWSXaHX1nX4ODJz9jhgbh1luesc XtjcSw6Eq88319OtqZDGkzJyK8iVMfdn6kPJdWQvbdSmKtNin81vCP0ZhKSs+wdY 3f7RDOkE+dCvC/sXgQA4TCCC80jAvIZVKplD4UoEjtTlDn6RRRIi1Jtsnq8LcgBY P0VJcEtfqjWa0FQujkF5b4D7ga82qkDAAl9TOH+YiAsLT/h3YxG2f9OZ88w6GvDC 4PcEtjgm01Kc11eVc3Yvov7TaeEw8nubV3vPCNTMlgFtjnngBDwdDtabK1M/Iy1J HvTkoSoB8frEU+pftXN0xXo+kF0zJw== -----END CERTIFICATE-----Generated at Fri May 10 23:54:54 2024 by rpki-client on console-fra.rpki-client.org