$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa File: DE5B018C8D8B11EBB959991DC4F9AE02.roa (raw, json) Hash identifier: 1Y/6mhbczLDis+QbubtdSaOBm5IZRuZEmTlZsH1PE9o= Subject key identifier: 85:4E:84:69:84:D6:92:42:3F:10:3A:1C:5D:C1:A5:07:D6:F2:2E:32 Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1BCC Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa Signing time: Wed 14 Jun 2023 16:44:40 +0000 ROA not before: Wed 14 Jun 2023 16:44:40 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 17477 IP address blocks: 203.28.58.0/23 maxlen: 24 203.28.58.0/24 maxlen: 24 203.28.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 16:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7116 (0x1bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Jun 14 16:44:40 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6489ee78-429b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:56:90:15:7a:3d:c2:d2:22:eb:9c:34:00:fb: 08:96:c7:29:f5:32:8a:75:b6:09:23:aa:ec:b1:9a: d2:a7:1c:78:85:fa:7d:d6:76:36:fd:b1:d1:37:18: c5:29:13:df:16:de:5c:58:f9:2c:c8:e1:f0:9d:76: a0:5d:b4:6e:43:e4:54:fd:5f:88:59:64:4b:35:26: 42:66:0b:0c:03:21:4e:64:fc:52:8f:c4:85:47:d1: cc:32:b3:48:2e:ca:22:4a:e8:4e:55:a1:3b:c4:f4: 21:af:fe:a4:04:88:98:93:41:67:22:1f:be:e3:13: 4c:2c:fd:48:c0:4b:07:68:28:fa:8b:9a:5b:3d:4d: 09:02:0a:41:72:3e:24:9a:b4:8c:c0:68:10:8b:10: 50:2b:72:b6:56:30:2b:1d:d4:81:3b:58:c6:ab:de: 54:12:dd:ff:12:e9:9f:0b:4d:89:68:29:58:40:63: 4a:9c:62:4b:08:61:fa:5d:6b:c6:3b:06:90:ab:55: 06:66:4c:4c:5b:22:13:0c:42:9e:4e:a4:1b:b9:99: 7f:f9:0e:2d:62:a4:1f:3e:80:b2:5a:a6:d2:21:68: f6:47:3b:d7:10:a1:71:07:15:92:bf:90:70:51:1d: 47:0a:cd:db:f8:a6:28:c8:1a:d3:77:28:b7:23:c6: 6b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4E:84:69:84:D6:92:42:3F:10:3A:1C:5D:C1:A5:07:D6:F2:2E:32 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.58.0/23 Signature Algorithm: sha256WithRSAEncryption 26:18:83:78:5f:84:e5:37:c2:42:bc:4c:98:c4:10:81:4e:3e: 42:32:35:85:75:a7:81:76:04:d2:54:0d:bf:49:d2:f9:4a:29: f7:b0:58:4f:18:48:0f:5a:b6:3e:f3:e4:82:e6:58:a7:1c:1e: fd:74:c1:ff:a8:ca:a2:b6:64:90:b8:e2:5d:01:c3:28:b8:04: ff:65:11:f0:f5:bb:d8:b5:c8:4d:c9:5f:a3:d1:10:e0:4f:18: 06:30:9f:db:72:39:70:61:52:7e:86:98:f3:fa:e1:e8:22:5f: 29:15:c1:b3:40:8b:cc:f9:14:15:9e:22:43:b4:4c:6b:2a:7f: 22:73:0a:4f:34:71:6a:4d:3e:67:c9:65:62:3d:d1:00:e8:56: 05:6f:29:9c:43:4f:48:b8:f4:5d:0d:27:03:6c:43:ea:f5:68: 6f:f1:f7:f9:49:f3:5e:c9:4c:fe:20:44:d7:0f:5a:ed:2d:80: fa:8d:b5:e0:96:66:45:6d:e5:ca:39:68:85:5c:7b:a6:da:3d: c2:aa:93:76:eb:37:d8:29:d8:fa:bb:3a:99:c8:94:17:7d:cd: d9:09:34:57:56:cd:cc:ff:72:d5:fa:c5:e3:6e:82:25:4d:6a: 4e:f6:7c:45:3a:84:e8:4e:3c:51:0a:8d:c4:98:c5:ff:04:d5: 08:d4:cc:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjMwNjE0MTY0NDQwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg5ZWU3OC00MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FaQFXo9wtIi65w0APsIlscp9TKKdbYJI6rssZrSpxx4hfp91nY2/bHRNxjF KRPfFt5cWPksyOHwnXagXbRuQ+RU/V+IWWRLNSZCZgsMAyFOZPxSj8SFR9HMMrNI LsoiSuhOVaE7xPQhr/6kBIiYk0FnIh++4xNMLP1IwEsHaCj6i5pbPU0JAgpBcj4k mrSMwGgQixBQK3K2VjArHdSBO1jGq95UEt3/EumfC02JaClYQGNKnGJLCGH6XWvG OwaQq1UGZkxMWyITDEKeTqQbuZl/+Q4tYqQfPoCyWqbSIWj2RzvXEKFxBxWSv5Bw UR1HCs3b+KYoyBrTdyi3I8ZryQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIVOhGmE 1pJCPxA6HF3BpQfW8i4yMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNBQjQvMUZCMDQwQTBCMTc0MTFFNjhFQzg4NTE4QzRGOUFFMDIvREU1QjAxOEM4 RDhCMTFFQkI5NTk5OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLHDowDQYJKoZIhvcNAQELBQADggEBACYYg3hfhOU3wkK8 TJjEEIFOPkIyNYV1p4F2BNJUDb9J0vlKKfewWE8YSA9atj7z5ILmWKccHv10wf+o yqK2ZJC44l0Bwyi4BP9lEfD1u9i1yE3JX6PREOBPGAYwn9tyOXBhUn6GmPP64egi XykVwbNAi8z5FBWeIkO0TGsqfyJzCk80cWpNPmfJZWI90QDoVgVvKZxDT0i49F0N JwNsQ+r1aG/x9/lJ817JTP4gRNcPWu0tgPqNteCWZkVt5co5aIVce6baPcKqk3br N9gp2Pq7OpnIlBd9zdkJNFdWzcz/ctX6xeNugiVNak72fEU6hOhOPFEKjcSYxf8E 1QjUzI4= -----END CERTIFICATE-----Generated at Tue May 14 19:55:08 2024 by rpki-client on console-fra.rpki-client.org