$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/E1C173F01EFD11EE88E45C83C4F9AE02.roa File: E1C173F01EFD11EE88E45C83C4F9AE02.roa (raw, json) Hash identifier: wZAMwabhPphZz41oY7gf6inGAUn+jP9FZcAbwBbTFFo= Subject key identifier: 2E:AE:C3:31:02:4C:8F:46:BB:DC:46:FB:76:0C:EC:57:78:77:BE:9B Certificate issuer: /CN=A912DD15/serialNumber=EC51A9EA06C1C857F48EBD2D273A41F201EA6434 Certificate serial: 99 Authority key identifier: EC:51:A9:EA:06:C1:C8:57:F4:8E:BD:2D:27:3A:41:F2:01:EA:64:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FGp6gbByFf0jr0tJzpB8gHqZDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/E1C173F01EFD11EE88E45C83C4F9AE02.roa Signing time: Tue 05 Dec 2023 05:35:43 +0000 ROA not before: Tue 05 Dec 2023 05:35:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9328 IP address blocks: 202.0.108.0/24 maxlen: 24 202.2.0.0/22 maxlen: 22 203.7.130.0/23 maxlen: 23 203.26.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/7FGp6gbByFf0jr0tJzpB8gHqZDQ.crl rsync://rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/7FGp6gbByFf0jr0tJzpB8gHqZDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FGp6gbByFf0jr0tJzpB8gHqZDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15/serialNumber=EC51A9EA06C1C857F48EBD2D273A41F201EA6434 Validity Not Before: Dec 5 05:35:43 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656eb6ae-496d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:d2:18:3b:3b:b2:e0:7d:11:5a:ad:94:6f: 36:9c:00:2e:4e:60:10:3c:f9:98:94:d2:14:8e:3a: 3e:e4:3f:1e:17:a3:11:47:4f:8e:6a:9e:a8:a3:e3: f2:03:cd:84:40:4a:4e:70:73:19:8a:09:1e:58:8b: 38:ab:bb:bd:9c:d1:45:7a:1d:10:97:4b:27:f2:69: a6:e2:da:89:61:37:ac:f3:9c:fb:a0:c5:4b:5c:3b: a5:18:40:a4:47:df:50:9f:c4:04:95:a1:26:86:f8: 1d:e3:77:49:6f:2a:7e:b0:e1:36:ae:25:6b:63:c5: 11:b0:46:c6:fe:da:ed:e1:c5:dd:a5:44:0e:bc:aa: 06:f6:62:21:5e:53:12:6e:a3:71:81:b3:7e:ca:0f: 0f:d3:ad:18:f6:a4:79:63:5e:8b:9c:b6:7b:1d:7c: 56:a5:b7:3e:1e:d5:6a:c5:85:6d:47:2b:95:58:9e: 05:68:d8:44:e8:e0:6b:b5:ff:9c:a9:0e:1d:64:0c: 48:be:c2:71:dc:4c:0a:66:c3:d6:1e:e3:4d:e7:01: 89:a2:b7:29:2b:f6:95:46:c1:c1:55:c5:59:c2:f2: d9:0b:e7:8c:48:4f:80:9b:4c:0f:d9:6a:ed:01:a0: 45:15:66:e1:56:f8:33:a7:e9:94:9a:f4:5e:9d:9e: ff:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AE:C3:31:02:4C:8F:46:BB:DC:46:FB:76:0C:EC:57:78:77:BE:9B X509v3 Authority Key Identifier: keyid:EC:51:A9:EA:06:C1:C8:57:F4:8E:BD:2D:27:3A:41:F2:01:EA:64:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/7FGp6gbByFf0jr0tJzpB8gHqZDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FGp6gbByFf0jr0tJzpB8gHqZDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/C761A0AACC5211EDA8291D10C4F9AE02/E1C173F01EFD11EE88E45C83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.108.0/24 202.2.0.0/22 203.7.130.0/23 203.26.100.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:a5:e7:db:fc:f3:b5:eb:00:4d:e5:0b:3a:d9:d5:84:e2:83: 79:da:1d:4f:61:4f:33:cd:ac:db:70:90:f1:ac:fb:0f:67:37: 51:88:65:53:62:29:42:54:92:a4:f9:ba:dd:fb:ab:18:1d:9f: 57:59:1f:54:17:7c:79:74:84:c2:ec:b1:e1:a5:cd:4d:84:82: 84:9d:74:60:d0:00:94:3a:fa:65:40:55:fe:4a:29:a9:1c:67: 6e:9b:9d:ad:64:8f:86:38:a2:db:20:81:c3:1f:8a:d5:5b:0d: 91:d5:3a:ce:40:ff:2d:8a:88:f8:08:48:31:3a:a5:5b:eb:bf: f7:a8:c7:78:b8:3f:09:79:0a:10:d9:dc:80:88:c2:91:a9:8c: e5:b0:e5:86:7b:78:af:91:c2:7f:3e:ab:61:82:7a:ef:4a:e4: 85:3e:72:4c:1d:63:06:b4:f8:e3:47:28:36:c7:62:33:55:23: d7:6d:83:cd:40:ce:9b:36:a0:35:de:4d:97:49:e2:97:2a:06: ec:2d:13:4c:8d:fc:bd:c2:8f:46:10:c9:ba:2d:3f:06:55:eb: 91:1a:6d:e9:95:81:76:3e:e7:43:0c:eb:0e:af:a0:f5:38:84: bb:f7:3f:d3:7d:6e:06:8d:b1:d5:70:19:4d:9e:b3:e3:19:81: 3d:14:da:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKEVDNTFBOUVBMDZDMUM4NTdGNDhFQkQyRDI3M0E0MUYy MDFFQTY0MzQwHhcNMjMxMjA1MDUzNTQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlYjZhZS00OTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusfSGDs7suB9EVqtlG82nAAuTmAQPPmYlNIUjjo+5D8eF6MRR0+Oap6oo+Py A82EQEpOcHMZigkeWIs4q7u9nNFFeh0Ql0sn8mmm4tqJYTes85z7oMVLXDulGECk R99Qn8QElaEmhvgd43dJbyp+sOE2riVrY8URsEbG/trt4cXdpUQOvKoG9mIhXlMS bqNxgbN+yg8P060Y9qR5Y16LnLZ7HXxWpbc+HtVqxYVtRyuVWJ4FaNhE6OBrtf+c qQ4dZAxIvsJx3EwKZsPWHuNN5wGJorcpK/aVRsHBVcVZwvLZC+eMSE+Am0wP2Wrt AaBFFWbhVvgzp+mUmvRenZ7/4QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFC6uwzEC TI9Gu9xG+3YM7Fd4d76bMB8GA1UdIwQYMBaAFOxRqeoGwchX9I69LSc6QfIB6mQ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9DNzYxQTBBQUND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi83RkdwNmdiQnlGZjBqcjB0SnpwQjhnSHFa RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGR3A2Z2JCeUZmMGpyMHRKenBCOGdIcVpEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkREMTUvQzc2MUEwQUFDQzUyMTFFREE4MjkxRDEwQzRGOUFFMDIvRTFDMTczRjAx RUZEMTFFRTg4RTQ1QzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADKAGwDBALKAgADBAHLB4IDBADLGmQwDQYJKoZIhvcNAQEL BQADggEBAD6l59v887XrAE3lCzrZ1YTig3naHU9hTzPNrNtwkPGs+w9nN1GIZVNi KUJUkqT5ut37qxgdn1dZH1QXfHl0hMLsseGlzU2EgoSddGDQAJQ6+mVAVf5KKakc Z26bna1kj4Y4otsggcMfitVbDZHVOs5A/y2KiPgISDE6pVvrv/eox3i4Pwl5ChDZ 3ICIwpGpjOWw5YZ7eK+Rwn8+q2GCeu9K5IU+ckwdYwa0+ONHKDbHYjNVI9dtg81A zps2oDXeTZdJ4pcqBuwtE0yN/L3Cj0YQybotPwZV65EabemVgXY+50MM6w6voPU4 hLv3P9N9bgaNsdVwGU2es+MZgT0U2kM= -----END CERTIFICATE-----Generated at Fri May 17 06:46:21 2024 by rpki-client on console-ams.rpki-client.org