$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa File: 427B2B004D9011EC868F7186C4F9AE02.roa (raw, json) Hash identifier: JKGwZrx9wrsIXPGCYWa5pAiczTrp7fQvRORuHLwpOAA= Subject key identifier: 14:E0:42:CF:CD:48:B2:E9:A8:20:22:0B:D5:10:01:1C:72:D9:96:3B Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0917 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa Signing time: Thu 04 Apr 2024 22:00:32 +0000 ROA not before: Thu 04 Apr 2024 22:00:32 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140570 IP address blocks: 203.168.224.0/23 maxlen: 24 203.168.226.0/23 maxlen: 24 203.168.228.0/22 maxlen: 24 203.168.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Apr 4 22:00:32 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f22ff-6c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:0e:99:2c:bf:65:34:e1:09:30:00:21:9d: f9:06:28:7c:70:72:13:11:02:ec:ea:92:6c:b6:0d: ae:86:ac:92:53:e7:fe:f7:2b:00:8b:18:9c:b2:2e: d7:4c:b5:01:da:c8:c1:db:6f:d1:88:2c:95:07:3c: d4:c7:cd:9f:3a:62:30:a8:72:2f:9b:4b:ab:e7:27: 36:23:f4:50:aa:37:f8:ed:0b:2e:27:ab:49:dc:bd: 25:51:0a:c6:b5:bf:f0:73:bf:62:4a:a6:32:ae:53: 9a:cd:0d:09:1a:d7:da:70:19:b5:8d:e6:f8:9a:86: 01:27:19:08:6a:52:bc:06:da:4e:3f:d9:51:45:fd: b9:44:cd:af:7d:d7:09:63:c9:c7:be:e5:3e:6c:56: 46:c9:e2:e8:95:e4:3a:04:80:bf:de:13:aa:7e:2c: 85:ca:29:54:7c:be:56:16:e0:22:b8:c3:19:f5:4a: 55:f7:a4:c5:3b:ac:ef:32:d9:dd:c4:fb:2d:16:23: 6a:b8:97:20:33:1f:42:ab:ad:32:4a:3a:4c:7e:ed: 09:77:24:63:a6:c0:c4:d7:2c:9b:b6:f8:d7:07:56: 62:f6:77:70:1b:f6:0d:15:be:e5:ce:dd:6b:77:d3: 86:7f:20:aa:ea:72:34:1b:34:cf:e2:92:ce:35:08: f3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E0:42:CF:CD:48:B2:E9:A8:20:22:0B:D5:10:01:1C:72:D9:96:3B X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.224.0-203.168.233.255 Signature Algorithm: sha256WithRSAEncryption 3d:98:b4:f6:4d:a2:49:46:5f:0a:0d:29:e4:de:2d:db:34:30: ad:6f:ae:94:4e:26:1d:23:24:a2:28:cb:b7:3e:4d:69:2b:09: c9:f6:b3:47:4c:dc:67:f6:a1:07:59:d3:f9:d1:e0:9a:92:a5: 35:07:5b:3d:26:0c:45:90:36:c5:23:c5:2a:0c:2e:f2:44:48: b7:84:45:be:45:ac:23:f0:c5:a7:2a:70:63:b8:68:36:fb:85: df:23:4d:bd:02:d6:f8:f9:28:aa:09:0e:99:18:2e:ee:b6:f2: 3d:56:2c:2c:49:f6:12:c0:18:a0:87:14:72:83:f0:8e:0b:cd: d4:59:59:98:48:8c:1d:5c:21:32:46:bc:fa:04:2c:dd:ee:fd: dd:d7:35:41:4b:ad:6b:ea:a6:2a:45:eb:fc:a4:1f:11:f9:26: b9:13:ed:3d:51:d1:3d:8c:63:f4:82:7a:42:db:3b:87:4f:3e: 59:b9:82:31:84:57:58:d4:c1:4a:7b:d0:4e:85:4b:d8:99:22: 94:9e:40:7f:b5:2e:58:bb:10:1d:9b:82:2a:d1:91:5c:38:1c: 0c:83:c5:9a:08:6f:83:cb:f4:d3:d3:07:d7:b2:45:f2:2f:e5: 19:5e:55:23:97:eb:97:2f:e2:d3:ae:29:a6:d5:cc:dd:8f:75: c5:69:1b:07 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjQwNDA0MjIwMDMyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMjJmZi02YzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGkOmSy/ZTThCTAAIZ35Bih8cHITEQLs6pJstg2uhqySU+f+9ysAixicsi7X TLUB2sjB22/RiCyVBzzUx82fOmIwqHIvm0ur5yc2I/RQqjf47QsuJ6tJ3L0lUQrG tb/wc79iSqYyrlOazQ0JGtfacBm1jeb4moYBJxkIalK8BtpOP9lRRf25RM2vfdcJ Y8nHvuU+bFZGyeLoleQ6BIC/3hOqfiyFyilUfL5WFuAiuMMZ9UpV96TFO6zvMtnd xPstFiNquJcgMx9Cq60ySjpMfu0JdyRjpsDE1yybtvjXB1Zi9ndwG/YNFb7lzt1r d9OGfyCq6nI0GzTP4pLONQjztQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBTgQs/N SLLpqCAiC9UQARxy2ZY7MB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNDI3QjJCMDA0 RDkwMTFFQzg2OEY3MTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBcuo4AMEAcuo6DANBgkqhkiG9w0BAQsFAAOCAQEAPZi0 9k2iSUZfCg0p5N4t2zQwrW+ulE4mHSMkoijLtz5NaSsJyfazR0zcZ/ahB1nT+dHg mpKlNQdbPSYMRZA2xSPFKgwu8kRIt4RFvkWsI/DFpypwY7hoNvuF3yNNvQLW+Pko qgkOmRgu7rbyPVYsLEn2EsAYoIcUcoPwjgvN1FlZmEiMHVwhMka8+gQs3e793dc1 QUuta+qmKkXr/KQfEfkmuRPtPVHRPYxj9IJ6Qts7h08+WbmCMYRXWNTBSnvQToVL 2JkilJ5Af7UuWLsQHZuCKtGRXDgcDIPFmghvg8v009MH17JF8i/lGV5VI5frly/i 064pptXM3Y91xWkbBw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org