$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa File: DE0A76C805B511EE95562E2AC4F9AE02.roa (raw, json) Hash identifier: Vek/WzrMVx7KqqfBWKpfk6Pa/vctgDmGCLNJlCCefXs= Subject key identifier: 47:98:02:68:78:3A:E9:63:99:F1:13:9D:90:1C:99:32:E9:1E:BE:AF Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 19FF Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa Signing time: Mon 04 Dec 2023 16:43:33 +0000 ROA not before: Mon 04 Dec 2023 16:43:33 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 140726 IP address blocks: 203.93.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6655 (0x19ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Dec 4 16:43:33 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656e01b5-01f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4b:df:db:6d:bf:94:55:12:99:9f:da:12:e0: a0:14:65:d5:67:4c:f8:b5:ff:9b:26:35:7d:1f:93: a4:49:1e:76:12:59:a7:c8:ea:aa:8a:b8:27:79:19: cc:a9:a0:05:d3:91:d7:a6:a3:c1:5a:58:c4:9e:e8: aa:b8:30:da:b5:88:1d:17:70:ee:2f:4a:d7:82:ab: 5c:c9:d9:e4:dc:5f:48:83:9a:8e:05:31:a5:f0:d3: 57:3a:c3:06:1e:23:94:fb:ec:7a:85:06:4d:a9:40: ab:ca:ea:63:40:40:09:c8:34:8f:15:74:d6:87:c6: ce:1d:5e:bc:1b:22:f8:75:5c:21:51:2f:22:7d:4e: 88:25:65:1f:df:a9:db:e0:b4:e8:cc:8e:bb:f9:d8: aa:f5:be:64:93:30:95:8a:66:a2:4a:b7:85:da:a1: 62:2f:91:35:21:6f:cf:71:83:be:b6:11:e3:ba:11: c8:c9:41:70:71:0b:eb:2f:53:6c:4c:63:11:30:b9: 91:d6:fe:7a:b6:ed:38:90:76:44:35:6a:5c:1b:f4: a0:3f:16:60:74:46:78:52:c7:24:8f:77:de:e4:a6: 48:20:06:55:a3:c7:44:4a:cd:d5:9b:14:7e:71:f7: 99:ef:da:19:6d:b8:8a:cd:e0:1b:6a:b8:fc:e9:22: 9d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:98:02:68:78:3A:E9:63:99:F1:13:9D:90:1C:99:32:E9:1E:BE:AF X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.93.240.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:df:06:1c:4d:7e:ef:d6:7a:e9:f8:cd:5b:b3:ab:76:9a:2f: c3:3d:dd:8a:03:eb:f0:52:d8:e3:bc:00:65:78:6f:47:68:21: 4f:a6:b9:55:80:7f:a6:fa:fa:65:b5:2c:5c:ff:40:be:40:1d: 11:38:19:1c:7f:81:51:35:f7:b1:a3:06:50:bc:53:77:de:98: 5a:6e:34:71:49:d9:6f:8a:05:a7:3e:50:29:82:a0:92:53:3d: ab:f2:41:a0:10:76:3f:53:26:5a:a5:57:56:1a:45:90:b3:dd: 93:21:a1:fa:bb:d3:0a:93:3f:0b:4c:5c:c4:ad:bc:b3:0f:7b: f3:09:d0:84:4b:c7:3e:a3:58:f1:e8:6b:91:71:01:b2:6a:41: 14:bf:75:2a:2e:b9:2f:21:19:9b:17:1c:4a:81:12:cc:01:76: e2:f2:ae:a5:38:f9:cb:aa:3e:8d:ae:f5:8c:16:9d:11:57:57: 7d:40:b0:02:11:5d:23:f6:d0:ab:f1:2a:a3:95:ff:bc:f4:f9: 5f:bd:58:07:7a:89:2b:35:85:9d:de:6c:05:1b:f2:73:69:50: ce:5d:52:f9:ed:35:a3:46:2a:cf:e4:65:cf:85:c9:ca:99:33: 5d:7f:c8:d6:92:31:6f:be:bb:71:a2:4a:8b:77:1f:2b:fb:df: e5:2d:25:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjMxMjA0MTY0MzMzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMDFiNS0wMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Evf222/lFUSmZ/aEuCgFGXVZ0z4tf+bJjV9H5OkSR52ElmnyOqqirgneRnM qaAF05HXpqPBWljEnuiquDDatYgdF3DuL0rXgqtcydnk3F9Ig5qOBTGl8NNXOsMG HiOU++x6hQZNqUCryupjQEAJyDSPFXTWh8bOHV68GyL4dVwhUS8ifU6IJWUf36nb 4LTozI67+diq9b5kkzCVimaiSreF2qFiL5E1IW/PcYO+thHjuhHIyUFwcQvrL1Ns TGMRMLmR1v56tu04kHZENWpcG/SgPxZgdEZ4Usckj3fe5KZIIAZVo8dESs3VmxR+ cfeZ79oZbbiKzeAbarj86SKdvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEeYAmh4 OuljmfETnZAcmTLpHr6vMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNDQjMvMURCNzk4M0MyNTlEMTFFNzg1RDMyNTBBQzRGOUFFMDIvREUwQTc2Qzgw NUI1MTFFRTk1NTYyRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLXfAwDQYJKoZIhvcNAQELBQADggEBAC/fBhxNfu/Weun4 zVuzq3aaL8M93YoD6/BS2OO8AGV4b0doIU+muVWAf6b6+mW1LFz/QL5AHRE4GRx/ gVE197GjBlC8U3femFpuNHFJ2W+KBac+UCmCoJJTPavyQaAQdj9TJlqlV1YaRZCz 3ZMhofq70wqTPwtMXMStvLMPe/MJ0IRLxz6jWPHoa5FxAbJqQRS/dSouuS8hGZsX HEqBEswBduLyrqU4+cuqPo2u9YwWnRFXV31AsAIRXSP20KvxKqOV/7z0+V+9WAd6 iSs1hZ3ebAUb8nNpUM5dUvntNaNGKs/kZc+FycqZM11/yNaSMW++u3GiSot3Hyv7 3+UtJWY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org