$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa File: 04F19212C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: yM7E0Nn3qoLSiHFRteQ7+peb1NbJYXPVsf0qTgGnnjQ= Subject key identifier: A0:F7:40:A6:1F:73:C5:67:FE:15:FC:36:A5:20:57:AE:60:10:1F:92 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 0733 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa Signing time: Mon 28 Aug 2023 21:38:27 +0000 ROA not before: Mon 28 Aug 2023 21:38:27 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 16509 IP address blocks: 202.173.24.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 21:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Aug 28 21:38:27 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed13d3-b0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a0:b9:23:a5:3a:0e:02:0a:13:59:1d:9e:d9: 30:74:ae:8b:97:fb:42:74:c0:46:ab:71:93:fa:70: 11:3b:bd:48:01:03:e1:bf:9a:09:e8:0f:7b:ab:d7: 0f:61:12:78:7b:36:7c:26:44:b9:bc:38:d8:4b:2b: fb:24:3a:78:96:c6:0b:d6:61:93:50:28:2b:35:bc: 83:7e:3b:f9:70:da:10:10:f8:2e:31:45:cb:14:bb: 2d:00:44:44:9f:89:72:fd:69:36:c7:43:f6:b5:b1: 01:d1:e0:43:cf:49:f9:a3:44:47:94:97:b5:e8:ee: 2e:45:f6:cd:10:dc:12:17:82:ed:ab:98:19:9c:2f: 82:b0:73:bf:f2:3f:2c:59:97:be:4a:c1:c4:e4:60: fc:ff:5c:fb:80:3b:f4:e9:e0:79:b0:de:d0:68:94: f9:43:eb:d5:a7:3e:23:e4:92:d6:d0:f8:2d:10:20: 95:b5:52:d9:6b:a5:44:64:ea:f1:90:5d:4e:97:2c: ae:e2:c3:03:81:6f:c1:92:33:ca:89:ab:ce:08:d8: cd:68:6e:b2:51:bf:ae:f9:a1:04:12:42:d0:6a:c1: 41:51:9b:a7:ec:24:44:3f:35:38:ff:8b:65:19:9f: 70:92:ee:0f:77:2c:49:37:de:a8:b9:a7:2a:7d:7e: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F7:40:A6:1F:73:C5:67:FE:15:FC:36:A5:20:57:AE:60:10:1F:92 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/24 202.173.26.0/23 202.173.31.0/24 Signature Algorithm: sha256WithRSAEncryption a5:c2:44:12:2f:83:8e:c2:ee:b1:10:f9:34:d6:d0:42:59:e9: 17:0a:d6:26:fa:63:54:1f:27:12:76:11:b9:95:90:75:0c:e9: 89:8c:6b:05:cd:8a:63:40:d9:97:c5:ab:7c:f5:ce:47:ac:eb: 8d:cf:80:9e:78:6b:52:76:fb:b5:b2:fa:ec:86:16:97:38:29: 38:50:2b:fc:5b:51:e5:c3:5f:2e:d5:db:9a:ca:f7:a9:d4:c7: 99:3c:9d:0f:ed:e1:19:e9:13:ec:bb:78:17:f4:03:60:d3:47: c3:8b:6f:97:65:ab:fc:5b:b6:e9:64:41:e0:2d:d8:04:9b:6e: eb:fb:24:b4:85:06:c9:91:e4:a0:2e:b2:01:f9:5c:cd:fc:95: 8a:91:1a:61:6b:a3:df:a6:4b:3a:c4:b1:c2:a2:28:99:0d:9a: dc:5d:59:be:30:43:5a:25:ae:d6:e1:4b:3e:de:13:28:fc:96: 43:4c:1d:0f:d6:36:ad:44:99:b2:f8:05:2b:c9:e6:e9:3e:c2: b0:4c:bd:68:ab:6b:56:8a:e2:c5:d2:76:d6:33:b5:a1:d0:a7: 16:a8:7b:12:06:7e:14:df:94:d8:a8:8c:98:fd:fc:56:10:8a: f5:b9:bd:6f:45:c1:c5:36:3c:f1:b6:4c:27:f6:f8:2e:74:ed: 99:b8:cc:22 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjMwODI4MjEzODI3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkMTNkMy1iMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqC5I6U6DgIKE1kdntkwdK6Ll/tCdMBGq3GT+nARO71IAQPhv5oJ6A97q9cP YRJ4ezZ8JkS5vDjYSyv7JDp4lsYL1mGTUCgrNbyDfjv5cNoQEPguMUXLFLstAERE n4ly/Wk2x0P2tbEB0eBDz0n5o0RHlJe16O4uRfbNENwSF4Ltq5gZnC+CsHO/8j8s WZe+SsHE5GD8/1z7gDv06eB5sN7QaJT5Q+vVpz4j5JLW0PgtECCVtVLZa6VEZOrx kF1Olyyu4sMDgW/BkjPKiavOCNjNaG6yUb+u+aEEEkLQasFBUZun7CREPzU4/4tl GZ9wku4PdyxJN96ouacqfX5B9wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKD3QKYf c8Vn/hX8NqUgV65gEB+SMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDRGMTkyMTJD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKrRgDBAHKrRoDBADKrR8wDQYJKoZIhvcNAQELBQADggEB AKXCRBIvg47C7rEQ+TTW0EJZ6RcK1ib6Y1QfJxJ2EbmVkHUM6YmMawXNimNA2ZfF q3z1zkes643PgJ54a1J2+7Wy+uyGFpc4KThQK/xbUeXDXy7V25rK96nUx5k8nQ/t 4RnpE+y7eBf0A2DTR8OLb5dlq/xbtulkQeAt2ASbbuv7JLSFBsmR5KAusgH5XM38 lYqRGmFro9+mSzrEscKiKJkNmtxdWb4wQ1olrtbhSz7eEyj8lkNMHQ/WNq1EmbL4 BSvJ5uk+wrBMvWira1aK4sXSdtYztaHQpxaoexIGfhTflNiojJj9/FYQivW5vW9F wcU2PPG2TCf2+C507Zm4zCI= -----END CERTIFICATE-----Generated at Thu Apr 18 22:44:36 2024 by rpki-client on console-fra.rpki-client.org