$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa File: DD9C07828D8B11EBB959991DC4F9AE02.roa (raw, json) Hash identifier: gqOrlTvQP7NE8QcpWskAg9stXohxZ5iMQQauxzl2p0w= Subject key identifier: 21:62:E1:78:16:F0:27:ED:9B:73:53:43:9F:34:87:A6:26:D3:29:B7 Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1C8E Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa Signing time: Thu 20 Jun 2024 16:45:05 +0000 ROA not before: Thu 20 Jun 2024 16:45:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135104 IP address blocks: 203.28.58.0/23 maxlen: 29 203.28.58.152/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7310 (0x1c8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Jun 20 16:45:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66745c91-9bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:22:7a:59:03:dc:78:bb:f7:c9:66:22:15:72: a0:b2:af:46:f0:df:2b:d9:90:ad:e7:0e:4c:76:36: 5d:57:58:76:15:0b:cf:a3:ea:bd:0e:ef:b9:61:8b: c0:0a:8c:68:03:41:18:65:73:f4:63:6c:16:64:a2: a0:5e:5f:e0:8d:79:21:45:ff:c7:6c:cb:5d:e4:f3: 3e:25:10:90:24:ec:f3:60:10:a0:a7:34:96:d6:92: 70:b8:c8:18:01:3c:82:3b:35:00:85:30:7a:37:6b: b9:4e:fe:b9:1c:f8:b3:48:49:ec:2f:83:fa:ae:3c: 7e:a9:d8:d7:95:99:36:11:aa:df:65:a6:70:f9:b7: d3:d2:33:3e:37:94:a7:fa:9e:0b:b9:8d:41:c4:1d: 48:6d:95:6f:d3:41:a6:ce:b1:d9:64:c9:14:d1:97: 51:0d:b8:14:c9:d3:25:8e:07:5c:cc:7b:14:0a:9d: db:b3:8b:a4:30:f5:28:4a:ec:b6:6b:45:29:bc:1e: a1:53:c1:5b:bb:c9:bd:69:6c:da:cd:a4:c3:8b:bc: 27:8f:5b:11:d3:1d:43:88:ad:9a:e7:bd:e4:8e:c7: b0:0f:fc:e6:4e:07:ba:24:82:1b:8c:57:49:30:50: a7:86:53:98:2d:d9:62:a5:8a:72:e9:1a:39:d1:1e: 4e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:62:E1:78:16:F0:27:ED:9B:73:53:43:9F:34:87:A6:26:D3:29:B7 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.58.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:5b:c6:26:82:05:32:a7:bf:e2:02:63:45:0e:13:2c:45:ee: 96:98:24:3e:47:f0:2a:c3:7d:ee:ef:8a:fe:c3:e6:8d:15:4c: 75:ab:f5:3b:e6:1c:c7:4a:0a:e9:a6:98:33:0b:ef:05:f5:78: 35:64:d9:3f:16:81:83:04:cd:2c:01:75:62:95:b7:25:ec:13: 7d:e2:c9:ea:0c:4f:b9:8e:10:69:5c:ca:82:82:ae:9c:b7:3b: 1f:ae:4d:43:ba:b2:3a:fa:a8:f4:ad:cb:8f:51:d6:c0:d1:57: 1c:18:ba:6a:5d:0e:f9:a3:6f:9e:a1:bd:35:6d:08:19:cb:60: c2:dc:e4:1f:31:4b:30:d8:a9:93:95:0f:fc:94:7b:f5:ed:a0: ff:35:ae:1a:f6:10:56:73:f1:f8:05:b3:c6:b5:93:23:e2:bd: 0c:83:9c:68:a8:3c:34:80:0f:59:5d:41:82:47:08:7b:83:3d: db:b4:42:a2:c8:04:e0:36:c9:09:58:a9:6d:17:f5:89:00:30: 1f:85:a6:58:ce:56:b3:ce:29:7c:4b:c2:2c:ee:b2:da:b2:76: 74:18:ff:97:42:99:64:34:89:c2:11:78:71:a0:aa:09:7d:7c: 16:4c:d2:de:1e:80:69:73:1a:94:20:d2:4c:f4:6a:08:23:00: 93:b9:54:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjQwNjIwMTY0NTA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NWM5MS05YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSJ6WQPceLv3yWYiFXKgsq9G8N8r2ZCt5w5MdjZdV1h2FQvPo+q9Du+5YYvA CoxoA0EYZXP0Y2wWZKKgXl/gjXkhRf/HbMtd5PM+JRCQJOzzYBCgpzSW1pJwuMgY ATyCOzUAhTB6N2u5Tv65HPizSEnsL4P6rjx+qdjXlZk2EarfZaZw+bfT0jM+N5Sn +p4LuY1BxB1IbZVv00GmzrHZZMkU0ZdRDbgUydMljgdczHsUCp3bs4ukMPUoSuy2 a0UpvB6hU8Fbu8m9aWzazaTDi7wnj1sR0x1DiK2a573kjsewD/zmTge6JIIbjFdJ MFCnhlOYLdlipYpy6Ro50R5ONwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCFi4XgW 8Cftm3NTQ580h6Ym0ym3MB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNBQjQvMUZCMDQwQTBCMTc0MTFFNjhFQzg4NTE4QzRGOUFFMDIvREQ5QzA3ODI4 RDhCMTFFQkI5NTk5OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLHDowDQYJKoZIhvcNAQELBQADggEBAAtbxiaCBTKnv+IC Y0UOEyxF7paYJD5H8CrDfe7viv7D5o0VTHWr9TvmHMdKCummmDML7wX1eDVk2T8W gYMEzSwBdWKVtyXsE33iyeoMT7mOEGlcyoKCrpy3Ox+uTUO6sjr6qPSty49R1sDR VxwYumpdDvmjb56hvTVtCBnLYMLc5B8xSzDYqZOVD/yUe/XtoP81rhr2EFZz8fgF s8a1kyPivQyDnGioPDSAD1ldQYJHCHuDPdu0QqLIBOA2yQlYqW0X9YkAMB+FpljO VrPOKXxLwizustqydnQY/5dCmWQ0icIReHGgqgl9fBZM0t4egGlzGpQg0kz0aggj AJO5VIs= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org