$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa File: 5E2DEF009C5C11E99CCA9656C4F9AE02.roa (raw, json) Hash identifier: OhyFTZMkQ0Lsb0HJnA8vV6teBU6PIDkPYMH0Rk7064s= Subject key identifier: 06:29:EF:3A:54:7E:36:0A:25:19:8F:E2:6B:51:39:6B:E4:13:F1:F4 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 33F4 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa Signing time: Tue 30 Jan 2024 14:50:45 +0000 ROA not before: Tue 30 Jan 2024 14:50:45 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131627 IP address blocks: 202.153.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13300 (0x33f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 30 14:50:45 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cc5-ba81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:55:aa:ec:1f:69:4e:3b:3f:44:e2:62:3d: 10:3b:db:13:54:6e:53:3c:e8:c0:aa:47:9e:14:fc: fc:06:6d:c1:35:16:5f:fc:82:f8:c9:7f:da:a3:4d: da:99:99:8c:ec:af:4c:b6:b5:a6:1a:14:98:2f:97: 1e:fd:ca:d9:de:f2:10:69:a2:af:7b:63:80:cd:e9: 84:fc:93:c7:bd:ee:e7:35:a1:ec:02:65:eb:e2:f4: 9d:05:33:98:df:7e:51:43:41:60:26:97:f7:75:88: 72:18:58:05:67:da:5e:04:74:1b:45:20:68:1f:2e: e9:14:a3:47:bf:e6:99:cf:80:6c:e9:4a:99:0e:82: bf:ad:90:c8:97:d5:7e:ec:e7:e7:69:71:a1:e0:55: ef:dc:b7:ea:0d:2b:53:3b:a7:41:fd:2c:16:4e:a4: da:73:81:25:ca:21:4e:6e:fd:67:ed:12:69:09:5f: bd:d6:dc:d5:c4:ca:81:a0:a9:e7:2e:a3:52:c2:02: cf:65:b5:a6:47:90:48:c5:8a:25:a6:e5:0c:f3:3c: a7:44:dc:9e:1a:1f:4f:d3:a6:3b:86:4a:b1:9a:c7: e6:8e:27:ed:c3:63:91:19:f0:41:de:61:61:e2:e4: bf:04:f8:8f:90:fb:57:06:43:3d:1e:92:3c:6b:d0: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:29:EF:3A:54:7E:36:0A:25:19:8F:E2:6B:51:39:6B:E4:13:F1:F4 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.153.171.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:22:22:8d:be:7f:a0:be:cf:16:0c:e6:0d:4f:51:8b:83:c2: 72:d0:36:82:c3:0d:58:f0:92:71:bc:95:fb:48:ca:3a:0e:35: cb:e6:81:8c:d7:65:c4:27:10:bd:33:a1:51:3d:c8:c3:38:9a: 78:3f:e8:c8:08:a8:9a:04:6c:43:0c:e9:66:0f:90:5b:1d:d4: 9d:d6:ff:5f:3d:96:b2:dd:c9:1b:ab:18:c8:62:e9:4f:fa:6e: f9:5d:c7:77:b5:4e:68:8f:af:7f:ec:1e:3f:91:b8:db:02:86: a5:81:9b:61:b5:48:62:26:ff:cb:dd:20:3e:12:50:68:62:4a: 39:73:69:d4:23:9c:5e:92:3c:d2:b0:2f:76:22:05:a5:bb:78: c3:31:64:2e:1a:54:cf:89:13:02:d6:b6:6f:be:d1:76:11:84: df:e0:2e:83:6b:a1:e9:9f:58:52:80:61:d6:7b:e2:ce:65:df: ac:e9:14:87:b9:6f:a0:0e:50:e3:76:53:3e:56:fd:cb:31:b7: 54:f3:98:59:59:dc:8f:47:5f:79:14:7b:e6:df:3b:7b:9c:37: ab:e0:bd:75:28:10:78:a6:bc:d7:2d:7c:12:c0:57:7c:74:06: e3:f3:f1:b8:07:cd:e2:d9:1a:f6:09:5b:8c:ac:31:95:eb:14: 8f:fb:4f:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjQwMTMwMTQ1MDQ1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNjNS1iYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya9VquwfaU47P0TiYj0QO9sTVG5TPOjAqkeeFPz8Bm3BNRZf/IL4yX/ao03a mZmM7K9MtrWmGhSYL5ce/crZ3vIQaaKve2OAzemE/JPHve7nNaHsAmXr4vSdBTOY 335RQ0FgJpf3dYhyGFgFZ9peBHQbRSBoHy7pFKNHv+aZz4Bs6UqZDoK/rZDIl9V+ 7OfnaXGh4FXv3LfqDStTO6dB/SwWTqTac4ElyiFObv1n7RJpCV+91tzVxMqBoKnn LqNSwgLPZbWmR5BIxYolpuUM8zynRNyeGh9P06Y7hkqxmsfmjiftw2ORGfBB3mFh 4uS/BPiPkPtXBkM9HpI8a9BfqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAYp7zpU fjYKJRmP4mtROWvkE/H0MB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvNUUyREVGMDA5 QzVDMTFFOTlDQ0E5NjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKmaswDQYJKoZIhvcNAQELBQADggEBAB8iIo2+f6C+zxYM 5g1PUYuDwnLQNoLDDVjwknG8lftIyjoONcvmgYzXZcQnEL0zoVE9yMM4mng/6MgI qJoEbEMM6WYPkFsd1J3W/189lrLdyRurGMhi6U/6bvldx3e1TmiPr3/sHj+RuNsC hqWBm2G1SGIm/8vdID4SUGhiSjlzadQjnF6SPNKwL3YiBaW7eMMxZC4aVM+JEwLW tm++0XYRhN/gLoNroemfWFKAYdZ74s5l36zpFIe5b6AOUON2Uz5W/csxt1TzmFlZ 3I9HX3kUe+bfO3ucN6vgvXUoEHimvNctfBLAV3x0BuPz8bgHzeLZGvYJW4ysMZXr FI/7T5k= -----END CERTIFICATE-----Generated at Thu May 16 15:21:28 2024 by rpki-client on console-ams.rpki-client.org