$ rpki-client -vvf rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa File: 5452AC309B4911EB9952394CC4F9AE02.roa (raw, json) Hash identifier: WW8r5VWu3s7zLjRc2MaNw5HuLFwohLxgkcBYESSXNcE= Subject key identifier: C1:B7:AF:3F:26:FB:9D:5F:65:FA:54:BD:34:05:4A:BE:51:0D:4C:43 Certificate issuer: /CN=A9143336/serialNumber=E442F99559AC1BA87EE1348B2FC7AF0A22FFB261 Certificate serial: 2976 Authority key identifier: E4:42:F9:95:59:AC:1B:A8:7E:E1:34:8B:2F:C7:AF:0A:22:FF:B2:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa Signing time: Wed 31 May 2023 16:19:24 +0000 ROA not before: Wed 31 May 2023 16:19:24 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 45671 IP address blocks: 203.132.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.crl rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10614 (0x2976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143336/serialNumber=E442F99559AC1BA87EE1348B2FC7AF0A22FFB261 Validity Not Before: May 31 16:19:24 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6477738c-ec90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ae:7b:a9:79:17:18:bc:f5:af:2d:75:4d:44: 78:f0:90:e4:98:c8:c9:aa:4a:44:a0:41:4f:3f:80: b9:87:48:90:99:1f:f6:75:38:51:9d:47:29:78:73: b8:a4:5b:52:b9:f1:e5:71:10:4e:20:aa:13:c0:ca: 03:7e:88:17:f7:0f:29:8e:6e:bc:05:a2:2d:63:5f: 0d:77:45:93:f6:f9:bc:0e:87:7c:01:f2:85:18:29: bb:ad:c0:33:4a:aa:3d:8b:da:fe:c5:57:2e:e5:ce: 45:e5:32:96:9d:ae:99:3d:69:5b:cc:97:14:5c:ee: b0:33:a1:d0:f9:4c:3b:2e:5b:09:e7:1d:cf:44:2f: 09:c6:75:b8:18:09:85:2f:1d:84:8a:c3:48:64:29: 0b:8a:21:12:b9:e9:01:0d:90:ca:1f:83:37:ee:d9: 4e:b6:cc:ac:d9:bf:d2:c1:84:90:f2:77:3e:ff:85: 3a:79:77:c4:ae:1d:a8:20:7e:47:a6:75:df:ef:63: 33:95:f4:25:12:86:57:bf:df:33:da:76:2d:7b:03: 7e:e5:2c:f1:1d:9e:e6:09:84:c1:f2:1f:c4:e4:5e: 51:53:a9:b1:2a:38:c7:a5:b9:fa:79:fb:b8:4b:88: bf:71:3f:90:41:ce:87:45:b3:e8:b3:0a:a0:ad:d8: 29:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B7:AF:3F:26:FB:9D:5F:65:FA:54:BD:34:05:4A:BE:51:0D:4C:43 X509v3 Authority Key Identifier: keyid:E4:42:F9:95:59:AC:1B:A8:7E:E1:34:8B:2F:C7:AF:0A:22:FF:B2:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5EL5lVmsG6h-4TSLL8evCiL_smE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EL5lVmsG6h-4TSLL8evCiL_smE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143336/8EE7FC1E085311E4B0239E61C4F9AE02/5452AC309B4911EB9952394CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.132.0.0/22 Signature Algorithm: sha256WithRSAEncryption 14:43:37:4d:71:46:3a:0d:0b:75:aa:dd:62:bd:97:33:22:89: ef:36:74:a9:ee:7d:3a:33:bc:0a:36:c7:f2:2e:a6:c6:db:9e: 6f:d9:c2:f3:ff:14:a5:35:d4:e5:c1:04:aa:a7:7f:70:6c:a3: 28:c9:0e:71:69:1d:02:1d:82:a4:e6:fe:bd:81:d2:c3:f9:56: f2:a7:50:89:4f:16:27:9b:3a:0a:d4:3f:f3:21:ee:3e:d6:a6: 55:1a:38:5e:f7:72:aa:75:11:89:0e:66:df:cd:c3:6f:e7:b8: 17:ca:8c:53:37:5d:90:73:fb:d3:82:95:05:8e:5e:fe:36:f8: 19:b9:e2:5f:34:38:11:bd:f5:64:e2:aa:86:31:5a:2e:47:47: 7c:01:0a:67:93:09:90:af:00:9e:49:e6:db:47:d1:55:c9:3c: cd:64:f4:26:fa:4d:67:7d:c3:83:c0:f4:e2:4b:ad:d1:30:36: b8:41:96:1c:54:36:31:23:72:bd:24:12:69:5f:94:7f:ad:43: 37:8b:a2:fc:1b:06:19:9b:b1:fd:f0:91:2b:96:a2:1f:16:7c: e2:93:d1:4a:4d:a2:72:a4:be:9a:e8:fe:ee:22:20:31:86:96: d9:64:30:db:e0:28:4d:1e:b8:c0:81:ee:4c:98:60:2c:11:5a: 8f:0d:a5:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMzYxMTAvBgNVBAUTKEU0NDJGOTk1NTlBQzFCQTg3RUUxMzQ4QjJGQzdBRjBB MjJGRkIyNjEwHhcNMjMwNTMxMTYxOTI0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc3NzM4Yy1lYzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2657qXkXGLz1ry11TUR48JDkmMjJqkpEoEFPP4C5h0iQmR/2dThRnUcpeHO4 pFtSufHlcRBOIKoTwMoDfogX9w8pjm68BaItY18Nd0WT9vm8Dod8AfKFGCm7rcAz Sqo9i9r+xVcu5c5F5TKWna6ZPWlbzJcUXO6wM6HQ+Uw7LlsJ5x3PRC8JxnW4GAmF Lx2EisNIZCkLiiESuekBDZDKH4M37tlOtsys2b/SwYSQ8nc+/4U6eXfErh2oIH5H pnXf72MzlfQlEoZXv98z2nYtewN+5SzxHZ7mCYTB8h/E5F5RU6mxKjjHpbn6efu4 S4i/cT+QQc6HRbPoswqgrdgpFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMG3rz8m +51fZfpUvTQFSr5RDUxDMB8GA1UdIwQYMBaAFORC+ZVZrBuofuE0iy/Hrwoi/7Jh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMzNi84RUU3RkMxRTA4 NTMxMUU0QjAyMzlFNjFDNEY5QUUwMi81RUw1bFZtc0c2aC00VFNMTDhldkNpTF9z bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFTDVsVm1zRzZoLTRUU0xMOGV2Q2lMX3NtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzMzYvOEVFN0ZDMUUwODUzMTFFNEIwMjM5RTYxQzRGOUFFMDIvNTQ1MkFDMzA5 QjQ5MTFFQjk5NTIzOTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLhAAwDQYJKoZIhvcNAQELBQADggEBABRDN01xRjoNC3Wq 3WK9lzMiie82dKnufTozvAo2x/Iupsbbnm/ZwvP/FKU11OXBBKqnf3BsoyjJDnFp HQIdgqTm/r2B0sP5VvKnUIlPFiebOgrUP/Mh7j7WplUaOF73cqp1EYkOZt/Nw2/n uBfKjFM3XZBz+9OClQWOXv42+Bm54l80OBG99WTiqoYxWi5HR3wBCmeTCZCvAJ5J 5ttH0VXJPM1k9Cb6TWd9w4PA9OJLrdEwNrhBlhxUNjEjcr0kEmlflH+tQzeLovwb Bhmbsf3wkSuWoh8WfOKT0UpNonKkvpro/u4iIDGGltlkMNvgKE0euMCB7kyYYCwR Wo8Npf8= -----END CERTIFICATE-----Generated at Wed Apr 24 18:35:52 2024 by rpki-client on console-ams.rpki-client.org