$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/3E122AE0876011ED84335D46C4F9AE02.roa File: 3E122AE0876011ED84335D46C4F9AE02.roa (raw, json) Hash identifier: /uWMNP1WtMNTZYHRDA417xpJfUKrmS6c5bkJ4hhX1ME= Subject key identifier: F3:44:81:FB:DB:1B:C3:45:3D:F8:AF:8B:0B:D8:BD:73:FD:96:AC:28 Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: C5 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/3E122AE0876011ED84335D46C4F9AE02.roa Signing time: Mon 15 Jan 2024 04:54:52 +0000 ROA not before: Mon 15 Jan 2024 04:54:52 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.24.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Jan 15 04:54:52 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a4ba9c-05c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b5:2c:e6:5d:95:72:10:05:a8:d6:f5:3d:56: 34:f7:f6:8a:19:83:25:2e:94:bb:53:b6:f7:b4:42: d9:4e:34:7d:83:d9:0a:20:a7:d9:83:72:7a:db:43: 2e:51:27:b3:36:01:0c:18:fe:b2:90:d5:f0:1e:ce: bd:44:80:7c:4d:7b:51:84:51:0a:dd:c9:84:4b:5a: ca:43:c3:13:0b:62:6f:25:d1:e3:fe:3a:7d:b9:32: e2:77:d9:35:98:95:8c:c7:a5:e3:d8:83:18:1a:ce: 38:65:5c:36:18:47:e1:96:ea:83:e2:0a:58:31:fa: 9d:38:a8:e5:7b:e9:c4:fd:2b:a2:02:11:69:50:fc: 12:16:81:34:23:7b:9a:f9:95:e0:ce:b5:95:fc:1e: c1:25:22:6b:63:e1:7b:6d:8f:6b:2c:c7:98:da:8b: b5:16:b4:49:75:2a:b6:63:10:a2:ec:cd:e1:96:5e: 86:1a:51:b6:46:d8:74:7a:f8:ec:40:db:90:1a:3c: 42:02:da:d7:d3:85:c7:4c:ad:42:b8:c1:10:27:06: 04:ac:0d:40:52:39:58:c9:5b:24:e6:45:31:5a:42: 11:41:c4:c1:72:da:8f:c0:04:09:2c:11:c4:97:6f: 9b:b3:93:2f:32:15:a7:b8:cd:1c:94:12:3c:8a:b5: 12:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:44:81:FB:DB:1B:C3:45:3D:F8:AF:8B:0B:D8:BD:73:FD:96:AC:28 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/3E122AE0876011ED84335D46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.210.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:50:4b:51:2e:de:91:37:51:18:7d:c2:46:e2:ac:10:70:8a: 59:a5:23:f1:77:c3:c6:f9:bd:51:4e:03:7f:d6:1f:71:dd:b8: 37:ff:3b:a6:ed:ad:68:47:2b:24:df:c2:52:5d:3d:da:2c:f2: b9:bc:3b:65:88:39:48:15:43:24:f3:c9:50:90:c5:10:51:52: 83:18:34:ee:cc:66:72:09:83:9e:72:9b:11:f3:a4:86:20:5e: 3c:d5:3f:8f:67:e1:66:42:b1:7b:49:5c:ba:03:a8:03:51:0a: b0:93:05:51:48:d2:92:4e:86:31:dd:f8:62:47:bd:c2:c7:0a: 0f:32:5c:01:c2:4f:1e:e8:7d:2a:c6:d3:a1:02:97:ef:ef:cf: 70:ee:89:71:76:fb:00:9d:83:48:fa:2f:35:45:db:8c:32:23: 3e:6a:3b:7d:89:2b:75:ce:e1:10:5e:c1:cb:c2:3b:5e:f9:c9: c0:2b:e1:e8:70:13:dd:f5:78:4c:c8:d0:22:83:d5:5f:b1:62: b2:49:29:25:fa:49:2b:e9:db:ae:71:d8:dd:35:28:01:13:c6: 11:5e:c8:0e:0e:4e:62:e2:91:ea:e6:41:19:9c:92:f8:3c:69: d3:80:de:fd:56:45:2f:0a:4f:70:f7:62:c9:19:fe:b6:5a:86: 6a:f0:94:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjQwMTE1MDQ1NDUyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE0YmE5Yy0wNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17Us5l2VchAFqNb1PVY09/aKGYMlLpS7U7b3tELZTjR9g9kKIKfZg3J620Mu USezNgEMGP6ykNXwHs69RIB8TXtRhFEK3cmES1rKQ8MTC2JvJdHj/jp9uTLid9k1 mJWMx6Xj2IMYGs44ZVw2GEfhluqD4gpYMfqdOKjle+nE/SuiAhFpUPwSFoE0I3ua +ZXgzrWV/B7BJSJrY+F7bY9rLMeY2ou1FrRJdSq2YxCi7M3hll6GGlG2Rth0evjs QNuQGjxCAtrX04XHTK1CuMEQJwYErA1AUjlYyVsk5kUxWkIRQcTBctqPwAQJLBHE l2+bs5MvMhWnuM0clBI8irUSZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPNEgfvb G8NFPfiviwvYvXP9lqwoMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlGMUQvMjFDQUJBNUM4NzVFMTFFREJEQzY0OTQ2QzRGOUFFMDIvM0UxMjJBRTA4 NzYwMTFFRDg0MzM1RDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGNIwDQYJKoZIhvcNAQELBQADggEBAFtQS1Eu3pE3URh9 wkbirBBwilmlI/F3w8b5vVFOA3/WH3HduDf/O6btrWhHKyTfwlJdPdos8rm8O2WI OUgVQyTzyVCQxRBRUoMYNO7MZnIJg55ymxHzpIYgXjzVP49n4WZCsXtJXLoDqANR CrCTBVFI0pJOhjHd+GJHvcLHCg8yXAHCTx7ofSrG06ECl+/vz3DuiXF2+wCdg0j6 LzVF24wyIz5qO32JK3XO4RBewcvCO175ycAr4ehwE931eEzI0CKD1V+xYrJJKSX6 SSvp265x2N01KAETxhFeyA4OTmLikermQRmckvg8adOA3v1WRS8KT3D3YskZ/rZa hmrwlIw= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:36 2024 by rpki-client on console-ams.rpki-client.org