$ rpki-client -vvf rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa File: 5452AC309B4911EB9952394CC4F9AE02.roa (raw, json) Hash identifier: l8JeN+xjbySFaTx51RAHTtCLIp0nPYZYJcYkSVQtE9k= Subject key identifier: 73:34:5B:CC:A4:73:10:43:AB:74:FA:C7:21:B7:81:0B:79:CB:FD:46 Certificate issuer: /CN=A9143336/serialNumber=E442F99559AC1BA87EE1348B2FC7AF0A22FFB261 Certificate serial: 2A36 Authority key identifier: E4:42:F9:95:59:AC:1B:A8:7E:E1:34:8B:2F:C7:AF:0A:22:FF:B2:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa Signing time: Sun 02 Jun 2024 16:23:45 +0000 ROA not before: Sun 02 Jun 2024 16:23:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45671 IP address blocks: 203.132.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.crl rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10806 (0x2a36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143336 Validity Not Before: Jun 2 16:23:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665c9c91-4d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1b:22:d0:fb:8b:88:17:de:08:08:d2:65:66: b5:f0:db:f6:96:66:56:96:c5:20:bc:2b:26:1a:f6: ee:90:2c:0e:91:90:a5:34:86:25:1a:6f:01:55:42: 06:2f:b4:76:4e:fe:31:f9:4e:92:d9:3e:74:6e:98: 7f:c0:20:37:2a:8c:32:55:0d:46:9b:83:23:88:18: f9:73:f6:64:c9:a6:58:a9:1d:55:68:96:72:c1:f0: 85:6e:a6:a3:e1:11:80:8a:13:d0:1a:4e:d7:67:b1: a2:fd:b5:eb:b2:5e:48:1f:a0:45:e4:90:08:66:99: ab:b1:6d:6b:86:a5:0d:00:44:3d:8a:ac:4f:ee:b0: 29:fc:59:94:13:82:3f:1f:46:a7:10:c9:97:1f:45: c7:c0:71:0a:50:0b:cc:c2:d3:e6:41:8a:d6:30:3e: 83:51:9c:9b:2e:88:fe:15:6f:b9:82:5a:1f:69:15: 08:90:cf:d4:28:c3:fd:fb:59:75:6d:ce:a1:6c:9f: 68:e3:69:8c:fe:df:2f:ea:51:c7:b9:02:3f:61:0c: 08:17:af:45:3b:d7:06:88:9b:a2:41:08:c6:87:b4: 4b:aa:77:c5:0c:69:ba:fb:6d:be:13:48:b8:6b:a9: d2:a7:99:34:00:16:11:68:d7:cd:8f:e9:e3:89:19: 0d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:34:5B:CC:A4:73:10:43:AB:74:FA:C7:21:B7:81:0B:79:CB:FD:46 X509v3 Authority Key Identifier: keyid:E4:42:F9:95:59:AC:1B:A8:7E:E1:34:8B:2F:C7:AF:0A:22:FF:B2:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.132.0.0/22 Signature Algorithm: sha256WithRSAEncryption 04:b7:b3:96:67:e6:86:ee:f2:34:f9:c1:38:94:40:87:1a:ec: b1:fd:96:95:bd:ff:92:54:76:86:46:fe:92:13:cf:da:7b:e6: c5:f6:42:44:24:0e:a4:e4:70:f2:0a:01:31:4b:d5:a1:a6:6a: be:aa:11:5d:a6:0e:5c:62:cb:e6:12:69:19:47:da:a3:d4:61: 37:f2:95:a2:29:73:ce:91:ca:5a:49:79:3a:00:51:64:2a:b6: 36:a5:7e:b9:4c:8d:e6:ba:9e:c4:2e:34:e0:a6:7d:dc:98:4e: 5a:68:7e:1a:cb:ad:60:5f:87:14:c0:a9:c0:15:6d:fb:a1:a8: 31:89:94:8e:24:3b:db:88:30:d0:2f:b6:6c:ca:8b:4c:79:47: 81:c7:7f:03:f6:67:9e:c6:c6:3a:b6:27:dc:50:f8:16:c8:98: 6c:23:76:56:a9:08:28:56:8c:ec:ac:fe:51:a5:3e:23:be:2d: 4f:7d:0a:a5:45:a8:c0:f6:81:49:d1:d9:30:e5:da:54:00:c3: 6e:9c:f4:62:d9:b5:cd:88:cd:19:ae:73:88:c3:26:3a:fe:ec: 21:bd:db:4b:c5:27:1a:34:6d:6f:66:57:b1:78:99:cf:ad:58: f4:6d:16:98:6b:f0:a5:6a:c7:3c:c1:3e:9d:51:a3:88:67:42: 58:21:af:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMzYxMTAvBgNVBAUTKEU0NDJGOTk1NTlBQzFCQTg3RUUxMzQ4QjJGQzdBRjBB MjJGRkIyNjEwHhcNMjQwNjAyMTYyMzQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjOWM5MS00ZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8hsi0PuLiBfeCAjSZWa18Nv2lmZWlsUgvCsmGvbukCwOkZClNIYlGm8BVUIG L7R2Tv4x+U6S2T50bph/wCA3KowyVQ1Gm4MjiBj5c/ZkyaZYqR1VaJZywfCFbqaj 4RGAihPQGk7XZ7Gi/bXrsl5IH6BF5JAIZpmrsW1rhqUNAEQ9iqxP7rAp/FmUE4I/ H0anEMmXH0XHwHEKUAvMwtPmQYrWMD6DUZybLoj+FW+5glofaRUIkM/UKMP9+1l1 bc6hbJ9o42mM/t8v6lHHuQI/YQwIF69FO9cGiJuiQQjGh7RLqnfFDGm6+22+E0i4 a6nSp5k0ABYRaNfNj+njiRkNIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHM0W8yk cxBDq3T6xyG3gQt5y/1GMB8GA1UdIwQYMBaAFORC+ZVZrBuofuE0iy/Hrwoi/7Jh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMzNi84RUU3RkMxRTA4 NTMxMUU0QjAyMzlFNjFDNEY5QUUwMi81RUw1bFZtc0c2aC00VFNMTDhldkNpTF9z bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFTDVsVm1zRzZoLTRUU0xMOGV2Q2lMX3NtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzMzYvOEVFN0ZDMUUwODUzMTFFNEIwMjM5RTYxQzRGOUFFMDIvNTQ1MkFDMzA5 QjQ5MTFFQjk5NTIzOTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLhAAwDQYJKoZIhvcNAQELBQADggEBAAS3s5Zn5obu8jT5 wTiUQIca7LH9lpW9/5JUdoZG/pITz9p75sX2QkQkDqTkcPIKATFL1aGmar6qEV2m Dlxiy+YSaRlH2qPUYTfylaIpc86RylpJeToAUWQqtjalfrlMjea6nsQuNOCmfdyY TlpofhrLrWBfhxTAqcAVbfuhqDGJlI4kO9uIMNAvtmzKi0x5R4HHfwP2Z57Gxjq2 J9xQ+BbImGwjdlapCChWjOys/lGlPiO+LU99CqVFqMD2gUnR2TDl2lQAw26c9GLZ tc2IzRmuc4jDJjr+7CG920vFJxo0bW9mV7F4mc+tWPRtFphr8KVqxzzBPp1Ro4hn Qlghr/I= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:22 2025 by rpki-client