$ rpki-client -vvf rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/47B8C6B018BF11EBA5E2E946C4F9AE02.roa File: 47B8C6B018BF11EBA5E2E946C4F9AE02.roa (raw, json) Hash identifier: U/tx3MraILOec7vkpEGffo5QsXSNEbPW1wesnqKSc8s= Subject key identifier: C3:AC:98:25:1D:67:BC:D3:5C:5E:A6:A0:0C:76:00:0D:98:CB:44:D5 Certificate issuer: /CN=A9138171/serialNumber=71789EE2B2C8B7FBBAD3F785A5DDECEF15CC15A4 Certificate serial: 0689 Authority key identifier: 71:78:9E:E2:B2:C8:B7:FB:BA:D3:F7:85:A5:DD:EC:EF:15:CC:15:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/47B8C6B018BF11EBA5E2E946C4F9AE02.roa Signing time: Tue 06 Feb 2024 23:11:37 +0000 ROA not before: Tue 06 Feb 2024 23:11:37 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4049 IP address blocks: 202.0.124.0/24 maxlen: 24 202.20.63.0/24 maxlen: 24 202.37.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.crl rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138171/serialNumber=71789EE2B2C8B7FBBAD3F785A5DDECEF15CC15A4 Validity Not Before: Feb 6 23:11:37 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c2bca9-a78c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:db:b7:2c:a9:7e:79:b1:ab:22:c7:f6:67: f3:5a:69:b8:21:c9:37:32:48:40:2d:c4:0d:05:91: 9e:1b:bf:16:2a:ed:4f:42:ff:4f:54:d3:ea:0f:95: f1:17:97:26:be:4e:f6:55:72:e1:17:a5:df:12:3a: 00:5f:d9:bd:2e:23:78:26:8c:5d:60:bf:21:49:b9: e6:7f:c3:3f:70:38:f3:b9:78:e7:cd:e7:56:a5:3b: 5e:15:38:48:a9:bd:9f:f3:16:46:36:ce:a4:d1:92: 5f:2f:05:a5:93:e4:64:83:73:6b:ea:a9:44:91:75: 75:27:75:a2:77:99:bb:13:0a:6a:a4:98:b5:f3:b7: 18:49:63:34:af:8d:55:fd:78:e9:60:ce:4d:62:f5: fb:6c:ce:f2:1d:e9:15:2e:72:87:41:c0:86:62:65: 54:c6:63:d8:90:ce:74:82:31:65:1f:1a:51:57:3e: e2:40:74:23:e0:4f:fb:80:88:9e:55:18:b1:6c:3a: 7f:87:eb:55:9a:76:a5:e9:cb:77:17:37:49:8a:d4: 5f:ce:0e:6a:e9:38:1b:0f:0e:21:dc:f4:5e:bd:5f: 76:f0:1a:60:f0:08:bc:4e:cc:6d:eb:6b:10:46:5b: bc:16:15:46:54:b7:e3:e9:4c:62:10:c2:fa:dc:10: 97:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AC:98:25:1D:67:BC:D3:5C:5E:A6:A0:0C:76:00:0D:98:CB:44:D5 X509v3 Authority Key Identifier: keyid:71:78:9E:E2:B2:C8:B7:FB:BA:D3:F7:85:A5:DD:EC:EF:15:CC:15:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/cXie4rLIt_u60_eFpd3s7xXMFaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXie4rLIt_u60_eFpd3s7xXMFaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138171/75D64D1218BD11EB8B844345C4F9AE02/47B8C6B018BF11EBA5E2E946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.124.0/24 202.20.63.0/24 202.37.26.0/24 Signature Algorithm: sha256WithRSAEncryption 45:e7:d1:b9:1d:e6:84:5a:1e:97:14:aa:69:69:80:5b:f9:80: 25:ee:83:af:ed:f4:f4:7e:51:9e:d9:da:b6:b7:c3:21:f7:f0: 83:b7:67:06:e4:92:52:e2:f0:da:a7:90:af:17:df:0c:e8:7a: f3:a2:5d:67:b0:4b:7a:3a:8e:2e:8e:ec:77:70:e4:a0:c4:99: 4f:5f:14:7c:90:58:84:06:5b:aa:e2:ad:30:6d:b1:14:12:8d: ed:2b:70:b2:e7:61:6a:cb:e6:b1:a3:99:90:de:53:5e:63:38: 74:56:aa:a9:7a:9b:d7:74:02:85:da:65:35:94:b5:68:f9:1c: 25:1e:40:d1:46:b9:2d:a9:c8:8e:e2:c1:23:1b:fe:5d:10:a9: 66:30:92:5d:7d:3a:27:27:9b:99:04:0e:9a:c5:d2:e6:95:90: 21:09:3a:2d:c7:ac:3f:50:24:12:16:4d:16:58:6b:e1:e1:56: 5d:82:d8:f0:53:a7:d9:b0:9b:60:fc:51:7c:13:d8:26:fa:cf: 16:42:c1:9d:cc:7f:79:6f:b2:70:5b:57:c7:76:2a:af:72:10: 7f:d1:b4:64:4c:0a:5e:49:4f:e3:49:22:77:87:86:a8:76:a4: 2d:24:0f:a3:86:b4:01:37:b5:52:4e:26:ef:0b:d9:c6:da:94: 20:19:99:79 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxNzExMTAvBgNVBAUTKDcxNzg5RUUyQjJDOEI3RkJCQUQzRjc4NUE1RERFQ0VG MTVDQzE1QTQwHhcNMjQwMjA2MjMxMTM3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyYmNhOS1hNzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK3btyypfnmxqyLH9mfzWmm4Ick3MkhALcQNBZGeG78WKu1PQv9PVNPqD5Xx F5cmvk72VXLhF6XfEjoAX9m9LiN4JoxdYL8hSbnmf8M/cDjzuXjnzedWpTteFThI qb2f8xZGNs6k0ZJfLwWlk+Rkg3Nr6qlEkXV1J3Wid5m7EwpqpJi187cYSWM0r41V /XjpYM5NYvX7bM7yHekVLnKHQcCGYmVUxmPYkM50gjFlHxpRVz7iQHQj4E/7gIie VRixbDp/h+tVmnal6ct3FzdJitRfzg5q6TgbDw4h3PRevV928Bpg8Ai8Tsxt62sQ Rlu8FhVGVLfj6UxiEML63BCXswIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMOsmCUd Z7zTXF6moAx2AA2Yy0TVMB8GA1UdIwQYMBaAFHF4nuKyyLf7utP3haXd7O8VzBWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE3MS83NUQ2NEQxMjE4 QkQxMUVCOEI4NDQzNDVDNEY5QUUwMi9jWGllNHJMSXRfdTYwX2VGcGQzczd4WE1G YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYaWU0ckxJdF91NjBfZUZwZDNzN3hYTUZhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxNzEvNzVENjREMTIxOEJEMTFFQjhCODQ0MzQ1QzRGOUFFMDIvNDdCOEM2QjAx OEJGMTFFQkE1RTJFOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKAHwDBADKFD8DBADKJRowDQYJKoZIhvcNAQELBQADggEB AEXn0bkd5oRaHpcUqmlpgFv5gCXug6/t9PR+UZ7Z2ra3wyH38IO3ZwbkklLi8Nqn kK8X3wzoevOiXWewS3o6ji6O7Hdw5KDEmU9fFHyQWIQGW6rirTBtsRQSje0rcLLn YWrL5rGjmZDeU15jOHRWqql6m9d0AoXaZTWUtWj5HCUeQNFGuS2pyI7iwSMb/l0Q qWYwkl19Oicnm5kEDprF0uaVkCEJOi3HrD9QJBIWTRZYa+HhVl2C2PBTp9mwm2D8 UXwT2Cb6zxZCwZ3Mf3lvsnBbV8d2Kq9yEH/RtGRMCl5JT+NJIneHhqh2pC0kD6OG tAE3tVJOJu8L2cbalCAZmXk= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org