$ rpki-client -vvf rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa File: 4E2597ACB30F11EDA610E01FC4F9AE02.roa (raw, json) Hash identifier: +JRM8PLLs2K8spHmf62FFoCB9GtAesyOP9jhMm33TUQ= Subject key identifier: 5B:CA:81:3E:15:25:EA:2F:4D:AF:BB:FD:5F:64:C9:0A:76:71:42:1E Certificate issuer: /CN=A9133C64/serialNumber=A7C182CB0C56ECC68D7491A2914144B4774F7732 Certificate serial: 78 Authority key identifier: A7:C1:82:CB:0C:56:EC:C6:8D:74:91:A2:91:41:44:B4:77:4F:77:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa Signing time: Wed 11 Oct 2023 04:55:35 +0000 ROA not before: Wed 11 Oct 2023 04:55:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4826 IP address blocks: 203.19.224.0/24 maxlen: 24 203.19.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.crl rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133C64/serialNumber=A7C182CB0C56ECC68D7491A2914144B4774F7732 Validity Not Before: Oct 11 04:55:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65262ac6-2ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:67:e9:0e:3d:0d:f9:cb:6e:4d:32:96:e1: 3a:33:1b:1a:84:5e:da:34:cc:76:dc:78:63:8c:65: c6:7b:e9:c0:55:a8:0d:77:05:60:cd:58:bc:f1:73: 51:d8:7d:95:bc:b1:9d:c1:a8:33:44:98:c3:bc:34: 59:2a:91:9d:38:bf:34:fb:62:3e:20:d3:e5:69:65: 56:87:69:2b:d9:67:c4:e2:ff:0a:6b:3e:25:48:41: 24:7b:65:1b:41:4c:34:1a:15:3f:5d:5d:b5:48:d3: bf:58:d6:e3:a0:26:50:75:3e:23:ab:9d:8a:d9:eb: 0f:7f:da:97:e3:ba:d5:d3:7c:1d:b1:7b:f5:09:56: 58:ab:7f:9e:00:e5:75:bf:bc:1f:df:15:f7:d4:69: 26:49:8a:22:cb:8b:bf:f0:5e:c6:59:38:66:0b:f3: e9:05:6b:f9:85:86:eb:8d:d3:8d:86:c5:cc:88:85: ac:ae:79:c6:8a:d3:4a:c7:90:d6:b6:7e:c2:9c:98: 0b:d7:f1:df:57:45:66:55:7b:40:98:a8:d5:22:f5: 07:51:f4:f9:bc:63:be:9d:71:e1:f4:e7:f5:2b:37: 7e:3b:7e:48:e9:2d:90:fe:b9:67:ff:4e:43:56:fe: 05:fe:61:99:32:64:4f:15:8d:d9:34:ce:68:50:3e: 6b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CA:81:3E:15:25:EA:2F:4D:AF:BB:FD:5F:64:C9:0A:76:71:42:1E X509v3 Authority Key Identifier: keyid:A7:C1:82:CB:0C:56:EC:C6:8D:74:91:A2:91:41:44:B4:77:4F:77:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.224.0/23 Signature Algorithm: sha256WithRSAEncryption 75:11:c1:4b:a7:e1:a3:c1:2d:f5:65:b5:5f:bb:82:b1:72:f1: 47:43:ce:37:17:e8:e6:48:13:3e:d8:c4:76:1f:d9:3f:02:c3: d0:e9:18:37:99:ee:35:f5:c6:71:a2:d8:3e:c6:94:8c:5f:a4: a8:7b:ac:42:9a:af:f8:b7:fb:48:f4:cf:47:62:28:f3:39:53: 38:0a:25:bb:d2:b8:c4:2e:26:1e:67:5c:d3:77:99:79:9f:ae: f4:ea:5f:75:ae:12:f4:66:6e:69:f5:7f:f0:07:8b:9e:ca:f2: e9:0f:f4:cd:6d:c2:1c:ad:4c:42:d2:cb:db:85:2d:00:01:14: ac:02:18:28:5a:cf:8b:bb:51:bf:d3:b1:c9:85:be:dd:65:b2: 4b:e8:51:8c:b8:e8:b3:78:20:c0:0c:3e:60:43:2c:24:98:23: ab:4a:6d:44:a0:3e:eb:0f:d3:ce:62:2a:f9:9a:f9:b8:8b:f4: d4:44:c1:f7:5a:01:78:8c:0b:7a:22:cf:19:3d:b5:97:8f:ec: 17:31:8d:84:4c:c0:45:bb:af:ea:f5:01:a5:53:fd:0c:42:f8: a6:b9:66:33:97:fd:44:2c:4d:8c:f0:92:c7:fe:9f:de:5b:c7: 2d:1d:10:53:18:2d:98:3a:0f:2d:7d:f0:99:a5:a0:f9:8d:f8: 98:1b:81:37 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0M2NDExMC8GA1UEBRMoQTdDMTgyQ0IwQzU2RUNDNjhENzQ5MUEyOTE0MTQ0QjQ3 NzRGNzczMjAeFw0yMzEwMTEwNDU1MzVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjYyYWM2LTJjYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt/WfpDj0N+ctuTTKW4TozGxqEXto0zHbceGOMZcZ76cBVqA13BWDNWLzxc1HY fZW8sZ3BqDNEmMO8NFkqkZ04vzT7Yj4g0+VpZVaHaSvZZ8Ti/wprPiVIQSR7ZRtB TDQaFT9dXbVI079Y1uOgJlB1PiOrnYrZ6w9/2pfjutXTfB2xe/UJVlirf54A5XW/ vB/fFffUaSZJiiLLi7/wXsZZOGYL8+kFa/mFhuuN042GxcyIhayuecaK00rHkNa2 fsKcmAvX8d9XRWZVe0CYqNUi9QdR9Pm8Y76dceH05/UrN347fkjpLZD+uWf/TkNW /gX+YZkyZE8Vjdk0zmhQPmvtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUW8qBPhUl 6i9Nr7v9X2TJCnZxQh4wHwYDVR0jBBgwFoAUp8GCywxW7MaNdJGikUFEtHdPdzIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQzY0L0E2REVGMUVFQjMw QjExRUQ5RTg0REYxOUM0RjlBRTAyL3A4R0N5d3hXN01hTmRKR2lrVUZFdEhkUGR6 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDhHQ3l3eFc3TWFOZEpHaWtVRkV0SGRQZHpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0M2NC9BNkRFRjFFRUIzMEIxMUVEOUU4NERGMTlDNEY5QUUwMi80RTI1OTdBQ0Iz MEYxMUVEQTYxMEUwMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsT4DANBgkqhkiG9w0BAQsFAAOCAQEAdRHBS6fho8Et9WW1 X7uCsXLxR0PONxfo5kgTPtjEdh/ZPwLD0OkYN5nuNfXGcaLYPsaUjF+kqHusQpqv +Lf7SPTPR2Io8zlTOAolu9K4xC4mHmdc03eZeZ+u9Opfda4S9GZuafV/8AeLnsry 6Q/0zW3CHK1MQtLL24UtAAEUrAIYKFrPi7tRv9OxyYW+3WWyS+hRjLjos3ggwAw+ YEMsJJgjq0ptRKA+6w/TzmIq+Zr5uIv01ETB91oBeIwLeiLPGT21l4/sFzGNhEzA Rbuv6vUBpVP9DEL4prlmM5f9RCxNjPCSx/6f3lvHLR0QUxgtmDoPLX3wmaWg+Y34 mBuBNw== -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org