$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa File: DE5B018C8D8B11EBB959991DC4F9AE02.roa (raw, json) Hash identifier: jfTk7qLtFGzciF3MjfSmzCLIXIS5E+uoDhIbl0HSies= Subject key identifier: 43:C2:28:C2:8B:4A:F7:21:FA:B3:0A:1B:B1:62:DB:7A:4D:1F:29:2B Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1C8F Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa Signing time: Thu 20 Jun 2024 16:45:06 +0000 ROA not before: Thu 20 Jun 2024 16:45:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 17477 IP address blocks: 203.28.58.0/23 maxlen: 24 203.28.58.0/24 maxlen: 24 203.28.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7311 (0x1c8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Jun 20 16:45:06 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66745c92-6cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d9:e7:6b:62:df:d2:9f:7a:fe:f4:60:66:b8: 5d:ac:2e:2e:bf:0e:ea:d4:7d:ec:17:eb:bc:97:d8: 86:d0:04:4e:8a:54:d3:34:49:c8:67:1a:f0:2c:48: 67:e1:bf:90:2b:2a:ac:1c:fa:b4:28:58:54:b8:d4: f7:29:71:2e:b7:7e:ec:38:3b:eb:ab:c1:4e:27:05: 13:0c:58:2d:ad:5e:77:97:e7:2e:3c:e3:0f:b1:d3: 3e:cd:44:e2:c3:8a:be:c8:5c:33:c1:f7:42:f0:52: 60:37:b4:81:94:cc:1f:21:92:2b:99:cf:ea:a7:f0: a7:5b:e6:83:eb:db:cf:15:53:5e:73:6a:81:cf:b9: cc:84:a8:2e:0f:0d:7c:20:16:9a:32:f1:83:cc:e3: e9:0e:70:74:8b:92:33:0f:3d:be:0d:17:df:10:0f: 10:e9:54:b8:b8:da:4d:37:20:cc:86:8d:9e:93:e6: da:b2:a5:57:8c:4f:81:9a:9d:50:8c:c8:1f:ee:e5: 30:1e:7b:1d:15:43:cb:5e:48:35:3c:a7:99:e1:4a: 63:f8:01:78:8b:70:49:6e:2b:b7:af:d2:2a:28:72: ee:ec:36:1b:4e:cc:d1:cc:c4:5d:b5:99:07:74:89: 97:16:35:77:90:c2:a1:bf:60:62:84:66:65:1f:35: a1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C2:28:C2:8B:4A:F7:21:FA:B3:0A:1B:B1:62:DB:7A:4D:1F:29:2B X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DE5B018C8D8B11EBB959991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.58.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:ca:ba:ad:d1:f8:ad:e3:8c:1c:ad:30:ff:7d:d6:7b:6e:eb: b0:66:10:9a:62:eb:d9:48:66:a5:09:29:3e:07:73:ef:6a:48: d0:05:b4:d7:f3:47:10:11:c6:cb:a7:39:b7:e1:bd:0b:e5:4f: 28:80:49:6c:36:89:24:b3:f2:57:3f:a5:ce:7f:34:24:3f:25: 64:5f:e4:0c:4b:88:e4:4b:64:09:c1:9c:06:e1:18:eb:51:18: 19:47:bf:46:ce:9a:7f:20:cf:28:ff:31:50:c5:e9:f2:53:4a: b2:5d:84:24:a3:44:c9:1c:8f:b8:97:3c:ab:e1:41:5e:39:3a: 55:40:2a:44:bb:21:7b:59:04:f9:d7:6e:7c:1b:26:29:e8:d4: c1:7c:e4:d3:a5:28:13:ac:e1:9a:c5:7f:d6:5b:c8:6a:dc:3e: c3:fa:ee:73:f7:4f:83:cf:fb:6b:eb:27:98:d9:08:10:b4:27: 0e:47:7f:81:08:4a:f8:17:bf:fc:b8:fd:cf:82:f3:29:eb:e6: 70:19:e1:d0:1d:3b:7c:0f:d0:77:9e:fa:a0:19:d5:a4:84:6c: 6f:6c:48:e8:96:8f:4f:48:24:f9:b1:f4:74:af:02:38:6c:3d: a7:fb:0c:cc:ac:98:93:b5:be:8a:5c:58:95:af:b3:2a:54:b1: 10:f0:ae:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjQwNjIwMTY0NTA2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NWM5Mi02Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dnna2Lf0p96/vRgZrhdrC4uvw7q1H3sF+u8l9iG0AROilTTNEnIZxrwLEhn 4b+QKyqsHPq0KFhUuNT3KXEut37sODvrq8FOJwUTDFgtrV53l+cuPOMPsdM+zUTi w4q+yFwzwfdC8FJgN7SBlMwfIZIrmc/qp/CnW+aD69vPFVNec2qBz7nMhKguDw18 IBaaMvGDzOPpDnB0i5IzDz2+DRffEA8Q6VS4uNpNNyDMho2ek+basqVXjE+Bmp1Q jMgf7uUwHnsdFUPLXkg1PKeZ4Upj+AF4i3BJbiu3r9IqKHLu7DYbTszRzMRdtZkH dImXFjV3kMKhv2BihGZlHzWhKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEPCKMKL Svch+rMKG7Fi23pNHykrMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNBQjQvMUZCMDQwQTBCMTc0MTFFNjhFQzg4NTE4QzRGOUFFMDIvREU1QjAxOEM4 RDhCMTFFQkI5NTk5OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLHDowDQYJKoZIhvcNAQELBQADggEBAA3Kuq3R+K3jjByt MP991ntu67BmEJpi69lIZqUJKT4Hc+9qSNAFtNfzRxARxsunObfhvQvlTyiASWw2 iSSz8lc/pc5/NCQ/JWRf5AxLiORLZAnBnAbhGOtRGBlHv0bOmn8gzyj/MVDF6fJT SrJdhCSjRMkcj7iXPKvhQV45OlVAKkS7IXtZBPnXbnwbJino1MF85NOlKBOs4ZrF f9ZbyGrcPsP67nP3T4PP+2vrJ5jZCBC0Jw5Hf4EISvgXv/y4/c+C8ynr5nAZ4dAd O3wP0Hee+qAZ1aSEbG9sSOiWj09IJPmx9HSvAjhsPaf7DMysmJO1vopcWJWvsypU sRDwrho= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org