$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa File: C8E115CEA6A711EA8A48CD2BC4F9AE02.roa (raw, json) Hash identifier: InWU/AiONnrgo1wTkMsfQ5x6H98uvw9sacgEkC/ZGcM= Subject key identifier: 0A:9F:35:13:D4:86:0C:FB:21:71:77:78:AC:EE:D2:44:96:11:8E:01 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 33F6 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa Signing time: Tue 30 Jan 2024 14:50:46 +0000 ROA not before: Tue 30 Jan 2024 14:50:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132738 IP address blocks: 202.3.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13302 (0x33f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 30 14:50:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cc6-a072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:36:be:3a:6e:ec:c4:29:9b:60:dc:64:b4: 57:9b:26:33:f1:57:31:8e:c6:68:c5:6f:bf:f9:73: 27:b0:4c:29:44:79:f4:1a:da:8b:a1:6a:29:b8:17: 0c:a3:ad:0f:ca:c7:a3:89:e9:d0:14:f7:80:43:19: d7:5a:13:cb:47:cc:0c:9b:3e:7f:d2:10:34:76:a9: 58:24:cf:14:31:44:96:62:a1:96:7b:10:92:73:f6: e7:ed:f5:f7:cb:70:b0:b0:a7:95:ed:65:ef:0f:52: 04:a8:59:8d:82:12:85:0e:dc:3a:8c:c4:8c:f0:81: 63:d8:5e:5f:7e:6d:c4:18:74:96:fd:1b:90:2b:af: 97:99:c7:97:e9:23:86:17:5b:32:dc:0f:77:a2:45: de:19:53:45:bf:4a:5a:a5:5c:d5:05:44:89:dd:37: de:f3:6f:19:52:66:17:36:7c:be:db:92:b6:61:23: 35:ed:d4:9c:32:14:59:c0:3c:7d:ad:c2:f1:b3:fa: 81:57:af:d5:66:15:b7:72:53:c4:7b:1d:f7:3e:4b: 3f:6e:2f:05:a4:af:75:e5:52:95:77:86:02:5d:f4: f1:46:cf:4b:ca:78:c0:cb:b6:3f:e0:1c:5e:02:dd: 7f:d5:10:0f:9c:ed:e2:e6:35:4e:8a:45:04:f2:83: ca:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9F:35:13:D4:86:0C:FB:21:71:77:78:AC:EE:D2:44:96:11:8E:01 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.171.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:89:1f:31:66:f9:6e:09:98:29:9b:06:a6:15:5c:ad:25:05: 2b:a3:17:78:a6:65:a2:78:79:60:a3:9d:bf:3c:65:d4:df:a7: b1:2a:93:96:ce:df:30:e0:4c:b2:52:85:4d:66:83:6c:d8:00: 5b:12:98:54:68:3d:4c:ec:b2:91:7b:30:4d:70:19:92:05:7b: de:95:ca:12:eb:cf:69:64:35:b8:28:8b:55:3b:ce:6f:98:bf: c4:ab:e4:15:be:68:57:ea:7a:ae:66:94:7e:1f:f1:8c:5e:64: 00:73:59:1e:3c:36:a1:58:ba:2b:ac:9e:e1:a8:4b:6d:7a:72: 29:0d:2b:c2:d3:be:ed:31:d6:50:26:77:84:50:11:48:19:29: ab:5f:2f:c2:0c:a5:e8:a1:6f:ec:61:0f:cf:89:77:66:06:7e: ec:67:7e:2b:c0:66:cc:52:8d:c1:e3:35:f0:2f:2f:a5:16:95: 1d:57:b6:dd:d5:af:f4:ec:1c:b7:8c:5d:3a:cc:d6:c3:ae:ea: 89:7d:d0:21:4a:21:be:8a:54:72:25:78:6d:bd:93:01:de:fe: c8:8d:b1:2d:87:b2:27:65:a1:0a:8e:43:74:ce:45:60:50:84: d5:91:93:f8:e8:dc:5c:35:8b:b0:c5:f6:b9:40:d7:74:85:b8: 74:30:15:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjQwMTMwMTQ1MDQ2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNjNi1hMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY82vjpu7MQpm2DcZLRXmyYz8VcxjsZoxW+/+XMnsEwpRHn0GtqLoWopuBcM o60PysejienQFPeAQxnXWhPLR8wMmz5/0hA0dqlYJM8UMUSWYqGWexCSc/bn7fX3 y3CwsKeV7WXvD1IEqFmNghKFDtw6jMSM8IFj2F5ffm3EGHSW/RuQK6+XmceX6SOG F1sy3A93okXeGVNFv0papVzVBUSJ3Tfe828ZUmYXNny+25K2YSM17dScMhRZwDx9 rcLxs/qBV6/VZhW3clPEex33Pks/bi8FpK915VKVd4YCXfTxRs9LynjAy7Y/4Bxe At1/1RAPnO3i5jVOikUE8oPKyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAqfNRPU hgz7IXF3eKzu0kSWEY4BMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvQzhFMTE1Q0VB NkE3MTFFQThBNDhDRDJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKA6swDQYJKoZIhvcNAQELBQADggEBAD6JHzFm+W4JmCmb BqYVXK0lBSujF3imZaJ4eWCjnb88ZdTfp7Eqk5bO3zDgTLJShU1mg2zYAFsSmFRo PUzsspF7ME1wGZIFe96VyhLrz2lkNbgoi1U7zm+Yv8Sr5BW+aFfqeq5mlH4f8Yxe ZABzWR48NqFYuiusnuGoS216cikNK8LTvu0x1lAmd4RQEUgZKatfL8IMpeihb+xh D8+Jd2YGfuxnfivAZsxSjcHjNfAvL6UWlR1Xtt3Vr/TsHLeMXTrM1sOu6ol90CFK Ib6KVHIleG29kwHe/siNsS2HsidloQqOQ3TORWBQhNWRk/jo3Fw1i7DF9rlA13SF uHQwFdc= -----END CERTIFICATE-----Generated at Thu May 16 15:21:28 2024 by rpki-client on console-ams.rpki-client.org