$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa File: B0CE94A0E80911EEADE3420AC4F9AE02.roa (raw, json) Hash identifier: xeBdZEDygAkJP3gWk8DQnl/NecYbqaLYzhSDka+Be5E= Subject key identifier: 3B:45:7F:2F:63:C2:36:2D:A7:62:6F:51:1A:7D:EB:F7:94:CA:D8:EF Certificate issuer: /CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Certificate serial: 02 Authority key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa Signing time: Fri 22 Mar 2024 05:04:41 +0000 ROA not before: Fri 22 Mar 2024 05:04:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4826 IP address blocks: 203.57.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 09:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Validity Not Before: Mar 22 05:04:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65fd1169-e07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ef:0c:85:df:6c:27:b1:9f:5d:89:7a:75:98: ca:e0:68:93:ee:90:8a:9e:67:8a:68:4f:ac:36:d9: 76:69:90:6e:73:70:22:ff:f2:09:55:5f:cc:db:57: 32:97:1b:8a:2b:88:e2:83:12:7f:74:53:44:b7:f0: ea:ce:65:d7:a5:1f:49:bd:90:2e:b1:ef:d8:fc:d0: c1:3f:15:4f:08:f7:d8:1b:ba:da:a0:72:8b:09:59: a1:54:d4:be:a7:f8:46:6c:c8:bb:ad:8f:3c:7a:83: 96:69:9b:0a:47:27:95:9d:44:a4:d8:cb:25:82:7e: 0d:d2:da:b3:5b:4f:fe:9b:85:e9:2b:bb:e0:fa:39: e5:53:8c:ba:a7:af:91:3d:fd:1c:1c:e3:03:53:29: 5f:bf:88:c2:ce:88:19:62:f8:f6:88:ab:2f:ec:6b: 7e:92:1b:7c:44:34:49:f3:3b:9e:ec:b5:06:a1:c9: 55:47:1c:89:81:33:56:49:40:fe:57:b2:72:ff:20: 1a:87:6d:af:b1:c0:57:bc:79:2d:3b:10:49:d5:03: f7:96:68:17:65:96:59:ae:ef:dd:3d:21:2f:25:7f: ce:5c:9e:60:d9:f7:48:e8:e1:0b:6d:59:74:49:82: 02:8c:35:c8:8a:bc:a3:c6:04:87:9e:b8:d2:12:3a: ba:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:45:7F:2F:63:C2:36:2D:A7:62:6F:51:1A:7D:EB:F7:94:CA:D8:EF X509v3 Authority Key Identifier: keyid:E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.57.81.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:95:c8:1f:b6:bc:ea:3e:30:19:1b:52:27:83:d1:8d:4f:d1: 7e:8d:78:e8:81:58:ae:21:55:23:78:44:57:76:ac:f5:91:e0: 13:00:38:4e:6d:c8:68:2b:ad:b2:65:24:f7:3b:6c:7a:02:49: 30:fa:5a:5b:36:7a:13:77:87:6c:67:7b:06:79:33:3c:c8:64: f7:e3:73:75:6d:38:c8:9e:aa:cb:65:3f:0a:ee:22:9b:ea:a5: bf:de:41:ce:bb:ad:9c:70:14:a9:68:c9:00:ab:3e:79:0c:0e: be:b2:b4:4e:6d:6c:71:66:cc:62:e2:9f:69:38:59:ff:4b:e9: 98:b0:75:2b:d9:f6:92:59:0b:80:79:0e:a0:e8:6e:a2:38:60: 55:53:fe:3d:91:63:1b:36:ba:e5:5a:8b:27:3e:1a:24:6e:25: df:d9:ef:9b:24:da:63:f5:5a:9b:9c:b0:ed:54:55:5e:a7:07: ea:04:01:10:23:20:d0:bd:1b:ec:08:6b:e5:f2:0e:f9:18:3e: 1b:af:55:39:9a:d3:44:3f:12:67:50:06:d5:1e:52:b3:ed:1e: 5b:38:2b:b0:a2:88:ac:85:eb:13:67:be:77:19:fa:bb:85:fa: 64:a0:f3:63:da:14:79:d3:73:6c:9e:98:ac:d0:a1:70:32:67: d4:45:7d:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjVDNzExMC8GA1UEBRMoRTQxRUQ3NTYwNzRCMzdBRERDNzk0Rjk0MEJEMUY1M0Uz RjY3NkI5MzAeFw0yNDAzMjIwNTA0NDFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmQxMTY5LWUwN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV7wyF32wnsZ9diXp1mMrgaJPukIqeZ4poT6w22XZpkG5zcCL/8glVX8zbVzKX G4oriOKDEn90U0S38OrOZdelH0m9kC6x79j80ME/FU8I99gbutqgcosJWaFU1L6n +EZsyLutjzx6g5ZpmwpHJ5WdRKTYyyWCfg3S2rNbT/6bhekru+D6OeVTjLqnr5E9 /Rwc4wNTKV+/iMLOiBli+PaIqy/sa36SG3xENEnzO57stQahyVVHHImBM1ZJQP5X snL/IBqHba+xwFe8eS07EEnVA/eWaBdlllmu7909IS8lf85cnmDZ90jo4QttWXRJ ggKMNciKvKPGBIeeuNISOrofAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUO0V/L2PC Ni2nYm9RGn3r95TK2O8wHwYDVR0jBBgwFoAU5B7XVgdLN63ceU+UC9H1Pj9na5Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNUM3LzY3RDI0Mzk2RTgw OTExRUVCRTQ4OTU2M0M0RjlBRTAyLzVCN1hWZ2RMTjYzY2VVLVVDOUgxUGo5bmE1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUI3WFZnZExONjNjZVUtVUM5SDFQajluYTVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjVDNy82N0QyNDM5NkU4MDkxMUVFQkU0ODk1NjNDNEY5QUUwMi9CMENFOTRBMEU4 MDkxMUVFQURFMzQyMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMs5UTANBgkqhkiG9w0BAQsFAAOCAQEAO5XIH7a86j4wGRtS J4PRjU/Rfo146IFYriFVI3hEV3as9ZHgEwA4Tm3IaCutsmUk9ztsegJJMPpaWzZ6 E3eHbGd7BnkzPMhk9+NzdW04yJ6qy2U/Cu4im+qlv95BzrutnHAUqWjJAKs+eQwO vrK0Tm1scWbMYuKfaThZ/0vpmLB1K9n2klkLgHkOoOhuojhgVVP+PZFjGza65VqL Jz4aJG4l39nvmyTaY/Vam5yw7VRVXqcH6gQBECMg0L0b7Ahr5fIO+Rg+G69VOZrT RD8SZ1AG1R5Ss+0eWzgrsKKIrIXrE2e+dxn6u4X6ZKDzY9oUedNzbJ6YrNChcDJn 1EV9gA== -----END CERTIFICATE-----Generated at Fri May 31 13:04:14 2024 by rpki-client on console-ams.rpki-client.org