$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/83298B188CDD11EE9C0A8258C4F9AE02.roa File: 83298B188CDD11EE9C0A8258C4F9AE02.roa (raw, json) Hash identifier: JrS4QOKWl/toc0OYKrIEB8GXyI1gTp5S/X8d4ugPSvE= Subject key identifier: 34:F9:27:B9:AF:D8:F3:69:D4:AA:09:77:8D:AE:74:3C:CA:1F:B9:5D Certificate issuer: /CN=A9127C2D/serialNumber=8B65A5294377D686378C46B3E9DAD7CDB5B66791 Certificate serial: 23 Authority key identifier: 8B:65:A5:29:43:77:D6:86:37:8C:46:B3:E9:DA:D7:CD:B5:B6:67:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/83298B188CDD11EE9C0A8258C4F9AE02.roa Signing time: Wed 17 Jan 2024 07:08:57 +0000 ROA not before: Wed 17 Jan 2024 07:08:57 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9896 IP address blocks: 202.49.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.crl rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C2D/serialNumber=8B65A5294377D686378C46B3E9DAD7CDB5B66791 Validity Not Before: Jan 17 07:08:57 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a77d09-522d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:89:1a:98:80:7e:5e:85:7c:6b:7f:43:34: 00:c8:6b:6a:aa:4e:bd:ff:0e:24:14:ae:e6:1f:a3: e6:d6:e0:bc:a5:d5:6b:a8:bb:8d:fd:36:54:05:ee: c6:78:39:25:84:10:57:55:77:7b:a3:e0:6b:96:d4: b6:41:cf:83:1a:60:de:63:8c:80:3b:3e:89:cd:32: 49:13:f2:90:ec:d1:54:9e:de:43:f5:fa:f1:db:98: 09:b3:7d:e7:8a:57:1e:37:24:19:f8:cb:c3:a2:f6: f1:0c:8c:a6:92:28:a6:14:04:9c:63:c6:0a:d9:47: 17:0d:92:ef:33:1e:f5:9d:ce:c0:4d:73:a3:3a:b6: fc:54:f7:74:bc:9d:7d:7d:90:1f:15:c1:92:d7:04: b4:72:e2:3b:65:2c:db:06:95:71:06:0b:3b:14:cf: 7b:d9:f0:3a:6b:7a:72:44:30:2c:4d:1b:9c:68:32: 32:5b:b3:37:6a:56:b8:ac:2f:7d:30:76:5a:33:bf: 17:57:de:78:75:21:87:d3:02:17:9d:ac:72:61:59: fa:56:aa:6a:68:dd:d4:ad:f8:f3:31:f0:a8:b1:70: c7:2e:2d:31:09:3e:02:ab:35:bc:af:ef:6c:ad:92: 8d:b0:1b:2b:2d:a3:c1:00:8d:f9:8a:8c:0d:87:84: 4e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:27:B9:AF:D8:F3:69:D4:AA:09:77:8D:AE:74:3C:CA:1F:B9:5D X509v3 Authority Key Identifier: keyid:8B:65:A5:29:43:77:D6:86:37:8C:46:B3:E9:DA:D7:CD:B5:B6:67:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/83298B188CDD11EE9C0A8258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.252.0/22 Signature Algorithm: sha256WithRSAEncryption 68:d4:4b:e9:9c:a7:c2:a5:27:34:50:87:98:2c:55:07:2e:a1: 53:fa:3d:aa:22:5f:e1:c7:ce:fd:dd:84:04:2b:fd:37:c3:6c: 34:95:40:41:2e:70:11:ba:75:94:57:80:0b:a2:73:ec:fb:b7: 30:c4:ae:e6:18:9f:2b:18:4a:f4:c4:f8:ad:2f:7e:5b:9d:35: 20:51:15:5b:0e:d7:01:9a:91:55:d1:c6:ba:f1:c6:d1:2d:5c: 10:14:41:26:7a:39:34:48:c3:36:76:25:ae:ba:f2:75:f5:4e: 77:ff:a9:20:1d:16:0d:b5:35:88:78:a1:0c:88:a4:45:5e:43: 67:79:d7:ad:1f:c4:f6:d9:fe:69:dc:5e:c3:ce:28:28:82:e9: 72:a9:4b:e6:21:0c:d6:5c:b7:e3:c4:0e:4c:46:cd:c4:54:ab: 0d:1d:eb:ac:2a:1e:69:cd:53:a9:1f:0d:50:d2:6e:c4:cc:de: c6:0b:c5:47:94:bb:29:59:da:32:39:57:36:12:86:38:dc:1f: bc:79:62:2a:bd:b5:b5:2f:51:de:fb:71:c4:01:be:ac:2c:10: a5:e0:de:25:e8:21:3a:e9:c3:07:b4:54:62:cc:3b:91:1a:91: 90:58:39:ca:4b:b7:4a:ce:a1:09:1a:22:69:92:12:44:94:d2: 0a:89:d0:ab -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0MyRDExMC8GA1UEBRMoOEI2NUE1Mjk0Mzc3RDY4NjM3OEM0NkIzRTlEQUQ3Q0RC NUI2Njc5MTAeFw0yNDAxMTcwNzA4NTdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YTc3ZDA5LTUyMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFP4kamIB+XoV8a39DNADIa2qqTr3/DiQUruYfo+bW4Lyl1Wuou439NlQF7sZ4 OSWEEFdVd3uj4GuW1LZBz4MaYN5jjIA7PonNMkkT8pDs0VSe3kP1+vHbmAmzfeeK Vx43JBn4y8Oi9vEMjKaSKKYUBJxjxgrZRxcNku8zHvWdzsBNc6M6tvxU93S8nX19 kB8VwZLXBLRy4jtlLNsGlXEGCzsUz3vZ8DprenJEMCxNG5xoMjJbszdqVrisL30w dlozvxdX3nh1IYfTAhedrHJhWfpWqmpo3dSt+PMx8KixcMcuLTEJPgKrNbyv72yt ko2wGysto8EAjfmKjA2HhE6fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNPknua/Y 82nUqgl3ja50PMofuV0wHwYDVR0jBBgwFoAUi2WlKUN31oY3jEaz6drXzbW2Z5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3QzJELzlFMzlGOTM2OEM5 RTExRUU4N0M4RUU3OEM0RjlBRTAyL2kyV2xLVU4zMW9ZM2pFYXo2ZHJYemJXMlo1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaTJXbEtVTjMxb1kzakVhejZkclh6YlcyWjVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0MyRC85RTM5RjkzNjhDOUUxMUVFODdDOEVFNzhDNEY5QUUwMi84MzI5OEIxODhD REQxMUVFOUMwQTgyNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsox/DANBgkqhkiG9w0BAQsFAAOCAQEAaNRL6ZynwqUnNFCH mCxVBy6hU/o9qiJf4cfO/d2EBCv9N8NsNJVAQS5wEbp1lFeAC6Jz7Pu3MMSu5hif KxhK9MT4rS9+W501IFEVWw7XAZqRVdHGuvHG0S1cEBRBJno5NEjDNnYlrrrydfVO d/+pIB0WDbU1iHihDIikRV5DZ3nXrR/E9tn+adxew84oKILpcqlL5iEM1ly348QO TEbNxFSrDR3rrCoeac1TqR8NUNJuxMzexgvFR5S7KVnaMjlXNhKGONwfvHliKr21 tS9R3vtxxAG+rCwQpeDeJeghOunDB7RUYsw7kRqRkFg5yku3Ss6hCRoiaZISRJTS ConQqw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:01 2024 by rpki-client on console-ams.rpki-client.org