$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa File: DB4932CEC2B611EB9BF18A81C4F9AE02.roa (raw, json) Hash identifier: f5L6qbZHYJinb4dxqK06lf1TWxmjBDPvh/3tmuODvG0= Subject key identifier: C1:D7:CC:2E:C9:95:05:B8:79:B7:6F:DA:F2:BA:1B:49:FA:0D:F7:E5 Certificate issuer: /CN=A9133E16/serialNumber=31C4F9064F89E56B194EB88492E9021C152DEB3E Certificate serial: 07BF Authority key identifier: 31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa Signing time: Wed 20 Sep 2023 21:19:17 +0000 ROA not before: Wed 20 Sep 2023 21:19:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 19905 IP address blocks: 42.200.3.0/24 maxlen: 24 42.200.23.0/24 maxlen: 24 42.200.54.0/24 maxlen: 24 202.82.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16/serialNumber=31C4F9064F89E56B194EB88492E9021C152DEB3E Validity Not Before: Sep 20 21:19:17 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=650b61d5-a30f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3b:91:f8:77:30:31:27:21:3e:12:74:c0:c2: 67:1c:2e:31:4b:b0:af:aa:28:79:00:59:db:d1:08: 32:12:d2:c3:22:2c:d4:9f:07:6b:4d:71:07:2b:96: da:24:73:bd:87:ce:04:da:c2:82:0b:9c:5a:97:d4: 7e:78:3d:a6:95:26:50:1e:a7:aa:5f:41:7b:cf:9e: 10:d7:1f:36:4b:50:c3:12:d8:ab:ad:8d:f9:62:80: 33:a6:b2:d5:b5:92:c0:0c:38:f6:14:36:e9:15:cb: b1:b6:a7:ae:f1:35:38:63:6e:31:98:98:e4:36:2f: 5a:78:8b:83:fe:51:f7:3c:f9:f4:98:41:b0:ff:c6: 57:31:25:4e:ae:14:7f:38:d0:62:55:cf:fa:36:34: 79:c8:c4:0e:f2:6f:51:87:e5:a9:12:60:50:e5:11: 97:24:45:fe:53:a6:6d:61:47:f3:b5:f5:e8:87:8a: b7:b4:99:67:37:c0:f5:d0:60:50:1f:5e:08:26:a6: 65:7b:08:c9:ac:be:fa:6a:44:30:eb:72:7c:06:07: 79:db:a4:b4:8e:c7:88:3e:28:ce:e7:ac:2f:14:0c: 5d:91:ad:98:86:f4:8e:6b:f5:41:65:9b:57:36:73: ac:7c:e3:18:a3:7e:db:2c:12:da:25:26:46:07:72: cc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D7:CC:2E:C9:95:05:B8:79:B7:6F:DA:F2:BA:1B:49:FA:0D:F7:E5 X509v3 Authority Key Identifier: keyid:31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.200.3.0/24 42.200.23.0/24 42.200.54.0/24 202.82.250.0/24 Signature Algorithm: sha256WithRSAEncryption 36:44:dd:26:e8:76:07:32:ec:5d:5d:9f:64:51:81:d8:9a:a4: 9a:3b:98:00:80:4f:ea:da:67:1b:57:f7:03:cc:07:93:3c:f8: 46:f2:37:5d:ee:a7:f3:cd:46:1a:49:05:dc:e1:83:6e:b2:32: 1c:de:3c:48:5d:f6:d5:e8:a0:83:a2:63:6c:bb:f8:6d:ba:41: 2d:c2:12:22:3f:d6:e4:37:1d:f8:13:69:b0:6d:74:40:6a:9f: 5f:d1:83:52:25:61:ab:c0:89:9c:eb:d0:89:79:62:74:3b:c0: a1:ae:00:1c:1d:77:f4:26:1a:99:d9:12:da:f0:bb:4d:f7:11: 86:89:11:76:28:89:0d:ff:a1:88:9f:33:9f:17:aa:21:c1:28: e9:27:45:3c:54:d6:17:ef:be:26:23:df:2a:24:02:76:38:c7: f9:a8:c7:7f:dc:ae:6f:5a:72:5c:75:a0:70:73:b9:64:e8:c3: df:43:09:58:96:73:02:e1:4f:8f:14:eb:a6:02:34:38:95:03: c2:a1:8c:79:09:c0:e0:2f:d1:aa:79:c2:1e:12:7a:d9:77:50: c5:b3:06:32:62:5f:0c:d7:4b:9a:29:b1:e6:2a:2d:03:6c:63: 23:cb:39:8f:cc:19:3b:3a:e5:8c:e6:82:cb:db:da:d9:74:64: 70:5d:13:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKDMxQzRGOTA2NEY4OUU1NkIxOTRFQjg4NDkyRTkwMjFD MTUyREVCM0UwHhcNMjMwOTIwMjExOTE3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiNjFkNS1hMzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3juR+HcwMSchPhJ0wMJnHC4xS7Cvqih5AFnb0QgyEtLDIizUnwdrTXEHK5ba JHO9h84E2sKCC5xal9R+eD2mlSZQHqeqX0F7z54Q1x82S1DDEtirrY35YoAzprLV tZLADDj2FDbpFcuxtqeu8TU4Y24xmJjkNi9aeIuD/lH3PPn0mEGw/8ZXMSVOrhR/ ONBiVc/6NjR5yMQO8m9Rh+WpEmBQ5RGXJEX+U6ZtYUfztfXoh4q3tJlnN8D10GBQ H14IJqZlewjJrL76akQw63J8Bgd526S0jseIPijO56wvFAxdka2YhvSOa/VBZZtX NnOsfOMYo37bLBLaJSZGB3LM+QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFMHXzC7J lQW4ebdv2vK6G0n6DfflMB8GA1UdIwQYMBaAFDHE+QZPieVrGU64hJLpAhwVLes+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9EQzU0RDlBNkFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi9NY1Q1QmstSjVXc1pUcmlFa3VrQ0hCVXQ2 ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01jVDVCay1KNVdzWlRyaUVrdWtDSEJVdDZ6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNFMTYvREM1NEQ5QTZBQzc0MTFFQTg2RUE5RjQ4QzRGOUFFMDIvREI0OTMyQ0VD MkI2MTFFQjlCRjE4QTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAqyAMDBAAqyBcDBAAqyDYDBADKUvowDQYJKoZIhvcNAQEL BQADggEBADZE3Sbodgcy7F1dn2RRgdiapJo7mACAT+raZxtX9wPMB5M8+EbyN13u p/PNRhpJBdzhg26yMhzePEhd9tXooIOiY2y7+G26QS3CEiI/1uQ3HfgTabBtdEBq n1/Rg1IlYavAiZzr0Il5YnQ7wKGuABwdd/QmGpnZEtrwu033EYaJEXYoiQ3/oYif M58XqiHBKOknRTxU1hfvviYj3yokAnY4x/mox3/crm9aclx1oHBzuWTow99DCViW cwLhT48U66YCNDiVA8KhjHkJwOAv0ap5wh4Setl3UMWzBjJiXwzXS5opseYqLQNs YyPLOY/MGTs65Yzmgsvb2tl0ZHBdEwM= -----END CERTIFICATE-----Generated at Thu May 2 22:28:48 2024 by rpki-client on console-ams.rpki-client.org