$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa File: 2D973430340E11EDB5E9BC42C4F9AE02.roa (raw, json) Hash identifier: fbwzA56Hd0lU5VpI0ywqmhInHds+7Q5Ab35sCgUacus= Subject key identifier: 9E:23:B3:B7:D4:9D:E0:E9:34:43:5B:6F:38:BA:FD:55:40:13:3C:4A Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 091B Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa Signing time: Thu 04 Apr 2024 22:00:35 +0000 ROA not before: Thu 04 Apr 2024 22:00:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 54994 IP address blocks: 203.168.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2331 (0x91b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Apr 4 22:00:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f2303-75bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d6:d8:eb:bc:7a:47:4f:1f:39:cd:c3:89:bd: 00:f8:cd:ad:6b:16:34:59:45:02:62:da:ae:9c:ea: 89:ba:84:d2:18:86:86:a5:b4:60:35:33:b0:07:03: 11:c8:17:1c:39:95:89:47:63:af:19:11:b3:92:bf: 73:48:fe:e8:e0:6c:7c:01:ea:ca:25:dc:43:95:6f: fe:1a:2a:19:16:bf:d0:23:43:51:3f:f3:19:c7:b7: 00:97:cb:4e:1b:0a:25:14:f4:6e:2e:28:dd:f2:d6: 9d:ca:31:ba:7d:a9:a9:69:42:84:6e:f8:9f:46:11: 30:b8:93:72:29:3b:5d:6c:72:8e:18:8a:81:63:c4: 37:96:ea:5a:be:2d:d0:49:75:33:70:9d:09:25:17: f4:94:c1:3e:3f:5d:2c:68:9e:d2:9e:cc:5b:68:64: a4:07:07:c8:24:a2:49:d4:20:40:b8:fc:b3:ad:99: 94:f3:ee:cd:3e:8d:9b:e8:57:8c:df:2b:28:4a:cb: 64:12:3d:97:04:2f:b7:4c:6f:f6:29:8e:3d:b2:0f: 6f:07:c7:35:f3:a9:62:6c:93:e8:8f:49:4b:74:f8: d4:93:8f:81:22:9d:21:5d:de:43:00:8f:8a:6b:84: ba:b8:74:07:8a:7c:46:ae:15:a9:20:9d:84:17:45: e3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:23:B3:B7:D4:9D:E0:E9:34:43:5B:6F:38:BA:FD:55:40:13:3C:4A X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.252.0/24 Signature Algorithm: sha256WithRSAEncryption 15:b1:50:c8:e0:c0:8b:1a:f7:95:64:6c:f0:de:1b:81:6b:4f: 92:b0:20:af:e2:30:c6:bd:91:8c:2e:25:25:ea:b9:43:f3:82: ee:13:fc:d0:4d:34:c5:c8:e5:fa:d7:e9:e7:7b:eb:1f:a1:32: 49:38:16:4a:52:b2:27:49:b9:68:79:ad:1c:e7:3a:a2:78:a7: 6c:28:5e:7f:67:27:6b:e5:43:e4:c7:84:a1:51:0c:d7:0a:e3: 47:eb:38:e7:d8:6d:f8:45:3a:2b:14:b3:48:2c:0e:0e:f9:f3: 01:ae:0e:07:4a:12:bc:76:e1:dd:4c:24:d5:3b:b1:a8:c8:60: 90:30:6c:25:df:80:32:27:60:b5:31:a5:e8:cb:c7:92:6b:34: 3b:4e:d9:81:6e:5d:54:8e:fb:6a:5e:c4:30:18:70:6a:70:ea: 68:45:f3:ea:5f:a9:17:5e:bb:22:03:7a:5b:bc:04:a0:1b:f8: 97:c3:f5:bf:52:f5:d5:58:9c:50:9f:b9:e5:61:f5:be:1f:43: 55:f9:c5:08:9b:94:2f:2d:0c:e5:d3:ec:56:42:b9:17:3b:b7: 05:0b:fb:da:66:e2:80:03:4a:97:17:e0:76:49:6e:b6:55:b2: 5c:eb:39:c0:de:13:f3:2f:ab:3b:ac:2d:47:d2:e1:94:a2:76: 5b:56:45:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjQwNDA0MjIwMDM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMjMwMy03NWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79bY67x6R08fOc3Dib0A+M2taxY0WUUCYtqunOqJuoTSGIaGpbRgNTOwBwMR yBccOZWJR2OvGRGzkr9zSP7o4Gx8AerKJdxDlW/+GioZFr/QI0NRP/MZx7cAl8tO GwolFPRuLijd8tadyjG6fampaUKEbvifRhEwuJNyKTtdbHKOGIqBY8Q3lupavi3Q SXUzcJ0JJRf0lME+P10saJ7SnsxbaGSkBwfIJKJJ1CBAuPyzrZmU8+7NPo2b6FeM 3ysoSstkEj2XBC+3TG/2KY49sg9vB8c186libJPoj0lLdPjUk4+BIp0hXd5DAI+K a4S6uHQHinxGrhWpIJ2EF0XjYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ4js7fU neDpNENbbzi6/VVAEzxKMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvMkQ5NzM0MzAz NDBFMTFFREI1RTlCQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLqPwwDQYJKoZIhvcNAQELBQADggEBABWxUMjgwIsa95Vk bPDeG4FrT5KwIK/iMMa9kYwuJSXquUPzgu4T/NBNNMXI5frX6ed76x+hMkk4FkpS sidJuWh5rRznOqJ4p2woXn9nJ2vlQ+THhKFRDNcK40frOOfYbfhFOisUs0gsDg75 8wGuDgdKErx24d1MJNU7sajIYJAwbCXfgDInYLUxpejLx5JrNDtO2YFuXVSO+2pe xDAYcGpw6mhF8+pfqRdeuyIDelu8BKAb+JfD9b9S9dVYnFCfueVh9b4fQ1X5xQib lC8tDOXT7FZCuRc7twUL+9pm4oADSpcX4HZJbrZVslzrOcDeE/MvqzusLUfS4ZSi dltWRUQ= -----END CERTIFICATE-----Generated at Mon May 6 22:40:54 2024 by rpki-client on console-ams.rpki-client.org