$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa File: 57BD12E2CA1411ED9F6F423BC4F9AE02.roa (raw, json) Hash identifier: A75OHSDWXW0WzjUXTIrXgGI8y9ggeXqBCTyyb2T7Ldw= Subject key identifier: 5E:A4:0D:8E:20:DD:A8:A2:EA:95:29:57:5B:F8:FE:2F:AA:7E:46:D3 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 33F5 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa Signing time: Tue 30 Jan 2024 14:50:46 +0000 ROA not before: Tue 30 Jan 2024 14:50:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132737 IP address blocks: 202.153.188.0/24 maxlen: 24 202.153.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13301 (0x33f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 30 14:50:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cc5-e0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:92:79:4c:f9:73:28:6f:29:93:b6:d7:56: e1:6f:de:d6:25:a5:93:ec:4f:57:d0:39:e5:e8:90: 70:56:d4:54:f9:96:36:f9:96:16:52:7d:42:62:80: 77:3c:46:70:11:40:2c:b1:c2:e8:e1:c7:92:4c:9e: 16:cd:c7:37:67:3b:5d:62:3a:78:cd:c9:46:5b:db: fe:3c:9e:25:58:88:7c:84:a2:c6:c1:d9:d0:1f:bd: 04:f0:0e:72:46:3d:6a:c6:2d:75:37:2f:28:f3:dd: cd:51:08:40:1b:d6:d8:38:3c:5b:b5:97:7a:1d:6e: b7:05:6b:7e:6f:1c:10:41:72:e8:57:48:6d:f0:c7: ba:e8:42:aa:ad:63:a0:d1:0e:90:ab:ae:05:99:6b: 6b:23:3b:62:e4:1b:13:0d:62:4d:2c:0c:38:74:2b: 25:f3:9c:3b:34:a6:36:b8:be:fb:ad:d1:a0:fc:9a: 13:cb:61:e7:e4:b3:3a:76:d3:ab:f5:78:c8:b2:fd: 3f:a8:63:26:5a:40:61:87:69:92:60:f0:b4:9a:db: 12:56:89:66:fb:b2:84:7c:d8:60:29:ea:bb:eb:ad: db:ba:52:a4:4b:34:db:51:06:ea:e6:b2:37:c7:40: 28:80:35:73:47:be:8d:85:e1:b9:47:5f:c8:b7:65: 21:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A4:0D:8E:20:DD:A8:A2:EA:95:29:57:5B:F8:FE:2F:AA:7E:46:D3 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.153.188.0/24 202.153.190.0/24 Signature Algorithm: sha256WithRSAEncryption 67:1d:ff:e5:e0:50:f0:d0:e7:48:b0:b9:b8:41:d1:5d:7d:a5: 48:c8:93:37:a4:da:7f:89:0d:92:82:59:f7:ec:75:fb:38:f2: fa:c7:19:36:54:f3:b8:c2:99:88:21:e9:14:ab:4e:17:bb:ca: 39:78:89:99:6c:23:20:1f:f1:6b:1c:e1:e1:e4:78:15:82:49: 31:fa:ea:8a:5c:e5:11:d7:73:53:31:20:07:0b:37:3a:d3:14: 41:48:8a:27:f1:27:4a:db:14:46:ab:21:30:46:8f:9d:b1:d9: 31:b3:6d:fd:7b:3c:3f:6b:50:95:85:dd:44:c6:ad:b6:80:43: a1:a6:d5:f9:c1:12:28:e7:fb:af:a8:b1:c4:b8:1a:00:76:52: 86:4b:b4:3b:b6:a1:60:ed:41:23:b3:c0:09:83:50:df:bf:91: 71:65:19:66:a0:34:46:56:9b:b3:f5:3f:c7:75:4e:16:00:23: e6:d0:22:b7:41:3d:d2:61:2e:59:ce:3c:3c:99:59:5a:d0:81: f4:51:96:3a:0b:36:22:1c:fb:1e:df:50:b7:65:47:6d:1e:58: c1:1b:9e:4b:bb:d4:ea:bb:0f:01:dc:44:21:3d:48:a5:1e:db: 56:ee:18:9e:e6:bd:4e:8e:ca:d8:f9:21:63:67:9f:0d:20:09: d7:2d:a1:bd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjQwMTMwMTQ1MDQ2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNjNS1lMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEmSeUz5cyhvKZO211bhb97WJaWT7E9X0Dnl6JBwVtRU+ZY2+ZYWUn1CYoB3 PEZwEUAsscLo4ceSTJ4Wzcc3ZztdYjp4zclGW9v+PJ4lWIh8hKLGwdnQH70E8A5y Rj1qxi11Ny8o893NUQhAG9bYODxbtZd6HW63BWt+bxwQQXLoV0ht8Me66EKqrWOg 0Q6Qq64FmWtrIzti5BsTDWJNLAw4dCsl85w7NKY2uL77rdGg/JoTy2Hn5LM6dtOr 9XjIsv0/qGMmWkBhh2mSYPC0mtsSVolm+7KEfNhgKeq7663bulKkSzTbUQbq5rI3 x0AogDVzR76NheG5R1/It2Uh/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF6kDY4g 3aii6pUpV1v4/i+qfkbTMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvNTdCRDEyRTJD QTE0MTFFRDlGNkY0MjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKmbwDBADKmb4wDQYJKoZIhvcNAQELBQADggEBAGcd/+Xg UPDQ50iwubhB0V19pUjIkzek2n+JDZKCWffsdfs48vrHGTZU87jCmYgh6RSrThe7 yjl4iZlsIyAf8Wsc4eHkeBWCSTH66opc5RHXc1MxIAcLNzrTFEFIiifxJ0rbFEar ITBGj52x2TGzbf17PD9rUJWF3UTGrbaAQ6Gm1fnBEijn+6+oscS4GgB2UoZLtDu2 oWDtQSOzwAmDUN+/kXFlGWagNEZWm7P1P8d1ThYAI+bQIrdBPdJhLlnOPDyZWVrQ gfRRljoLNiIc+x7fULdlR20eWMEbnku71Oq7DwHcRCE9SKUe21buGJ7mvU6Oytj5 IWNnnw0gCdctob0= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:13 2024 by rpki-client on console-ams.rpki-client.org