$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa File: 057EA0EEC63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: UKM0uGo+2linmHil82GllN3C1fZGgnBOGPFeJwldB5E= Subject key identifier: A9:62:5C:5C:27:D7:31:02:54:A0:48:37:46:C0:55:2F:1A:72:8D:E0 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 0734 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa Signing time: Mon 28 Aug 2023 21:38:28 +0000 ROA not before: Mon 28 Aug 2023 21:38:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 16815 IP address blocks: 202.173.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Aug 28 21:38:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed13d4-c0ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:74:7d:03:2d:9f:12:13:bd:4e:9b:f7:fd:db: 44:82:24:3c:31:15:4a:6a:37:8a:9f:a2:3d:36:3b: 40:85:45:3b:b6:2c:e2:a6:9f:06:0a:97:fc:61:68: a0:3b:5f:42:9d:7e:01:fb:29:df:9c:ce:9f:b3:3b: e4:3a:46:28:64:5b:81:6d:60:0c:48:50:d4:9c:25: 47:4c:38:dd:30:b4:c6:33:8c:a1:2b:f4:6e:07:0d: 36:d8:4c:37:07:83:28:e3:4c:2a:29:1c:59:ce:f0: 9a:d6:a2:01:c9:84:d9:48:ec:11:2b:f8:99:98:03: 2e:84:89:e7:70:f3:e5:1d:71:ea:28:d3:07:10:ad: e5:21:fd:06:5f:9e:13:75:a7:90:dc:cd:01:1e:61: 4d:e7:80:ce:99:ad:0b:d6:8f:25:55:17:27:e7:30: 80:f3:25:54:c1:99:ff:48:b1:95:2a:f2:59:c5:05: cf:88:fa:74:a2:53:82:f9:c2:4c:35:1a:71:af:12: 16:94:c5:4b:76:6a:57:af:b3:63:a8:f2:97:57:c5: 07:bd:54:cc:cc:52:0a:e8:9c:fb:f8:0e:da:49:b2: f6:3f:3e:a1:05:38:d2:17:fe:14:fe:d6:9c:d3:0a: 87:df:93:04:91:d8:57:d1:01:a1:40:0f:46:15:22: d8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:62:5C:5C:27:D7:31:02:54:A0:48:37:46:C0:55:2F:1A:72:8D:E0 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/21 Signature Algorithm: sha256WithRSAEncryption c9:93:67:36:a0:92:5d:5e:49:df:bb:2c:11:e2:0d:d9:9b:28: f1:73:cb:08:14:b6:12:d7:a0:b0:14:db:bc:fa:8d:66:ee:86: ba:23:8a:a6:f5:f9:a0:d2:ae:76:e8:7e:ac:fc:64:14:94:30: 18:2c:db:94:db:ca:f4:c8:fd:17:00:1c:b9:81:86:9e:6a:27: 44:f7:a6:26:13:f9:56:4c:d7:20:67:b8:91:a3:32:d2:b9:b3: 28:0e:96:37:66:16:d1:1d:5b:7e:9d:03:80:62:1d:ba:d6:b4: d5:5c:da:cf:f1:ae:6d:6b:9b:08:9d:94:e6:d8:c9:43:35:0d: 4c:86:0e:cd:11:91:41:46:4a:e3:50:0f:c3:f9:5d:af:05:4d: 65:a3:36:d2:5b:52:27:96:09:52:5b:d1:6a:9c:11:54:9d:ac: a6:7e:3a:9b:68:3f:74:fd:3e:f3:72:a8:94:fa:af:62:84:cd: a0:09:3d:85:1b:1a:b0:37:59:3a:6f:8e:1b:16:18:76:6e:3c: 4d:14:69:ce:d2:79:22:7e:5c:d4:f9:ff:4f:8b:d8:f1:f1:fc: a8:ee:5f:a4:e0:09:9f:09:a8:7a:c8:98:a6:76:e3:9c:76:d8: 88:32:1d:17:32:ed:2e:09:1b:3a:26:21:c7:aa:e0:ff:c9:04: d8:d9:eb:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjMwODI4MjEzODI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkMTNkNC1jMGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03R9Ay2fEhO9Tpv3/dtEgiQ8MRVKajeKn6I9NjtAhUU7tizipp8GCpf8YWig O19CnX4B+ynfnM6fszvkOkYoZFuBbWAMSFDUnCVHTDjdMLTGM4yhK/RuBw022Ew3 B4Mo40wqKRxZzvCa1qIByYTZSOwRK/iZmAMuhInncPPlHXHqKNMHEK3lIf0GX54T daeQ3M0BHmFN54DOma0L1o8lVRcn5zCA8yVUwZn/SLGVKvJZxQXPiPp0olOC+cJM NRpxrxIWlMVLdmpXr7NjqPKXV8UHvVTMzFIK6Jz7+A7aSbL2Pz6hBTjSF/4U/tac 0wqH35MEkdhX0QGhQA9GFSLYgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKliXFwn 1zECVKBIN0bAVS8aco3gMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDU3RUEwRUVD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKrRgwDQYJKoZIhvcNAQELBQADggEBAMmTZzagkl1eSd+7 LBHiDdmbKPFzywgUthLXoLAU27z6jWbuhrojiqb1+aDSrnbofqz8ZBSUMBgs25Tb yvTI/RcAHLmBhp5qJ0T3piYT+VZM1yBnuJGjMtK5sygOljdmFtEdW36dA4BiHbrW tNVc2s/xrm1rmwidlObYyUM1DUyGDs0RkUFGSuNQD8P5Xa8FTWWjNtJbUieWCVJb 0WqcEVSdrKZ+OptoP3T9PvNyqJT6r2KEzaAJPYUbGrA3WTpvjhsWGHZuPE0Uac7S eSJ+XNT5/0+L2PHx/KjuX6TgCZ8JqHrImKZ245x22IgyHRcy7S4JGzomIceq4P/J BNjZ61Y= -----END CERTIFICATE-----Generated at Thu May 16 23:39:13 2024 by rpki-client on console-ams.rpki-client.org