$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa File: 3F2B28B4D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: x5D7YFaNXh4p45cM45XRDD05Cd62+rqCLj94VMZPKwI= Subject key identifier: AF:26:04:74:60:C9:B3:EF:2C:E3:8A:2C:18:E4:66:C8:17:63:DA:24 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2513 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa Signing time: Wed 16 Aug 2023 16:12:33 +0000 ROA not before: Wed 16 Aug 2023 16:12:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24241 IP address blocks: 202.57.108.0/24 maxlen: 24 202.57.117.0/24 maxlen: 24 202.57.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9491 (0x2513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Aug 16 16:12:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcf571-c0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:70:d4:ee:57:6d:40:6f:16:5f:6c:e3:9d:67: f0:05:88:78:c6:38:7a:6c:60:91:b6:b2:7a:b8:53: 11:40:ca:5c:40:5c:46:71:b4:a9:3b:16:ed:86:8f: 6d:04:e7:8e:b1:a4:98:b6:c7:7b:0e:eb:73:b6:7c: b1:b2:9d:63:fa:7c:cf:1e:7a:bb:52:2c:ac:ee:60: 5a:46:3e:de:12:e4:a9:2d:fd:b8:b5:c9:38:ee:3b: 9e:ec:91:20:83:db:1d:c4:68:c8:9d:b6:57:96:9e: 19:a2:b0:a5:4b:2c:80:6d:34:59:b7:a4:57:d6:a4: 95:81:b5:20:6c:1b:8c:6f:60:3c:6d:fc:71:73:74: 1c:b1:68:c8:45:45:20:8e:e1:16:d2:9f:9a:56:b0: e8:4a:d7:05:ae:cc:46:c2:ba:cc:7a:2d:ed:cc:2d: a4:fc:87:6b:d4:02:c4:69:19:4a:58:d0:a9:de:33: 0e:02:ca:41:6f:1d:cd:d2:d7:c5:9a:99:20:fb:c9: 08:88:7f:db:42:96:c9:39:98:58:50:0d:8d:b3:23: 2e:2c:db:fb:5a:c2:5b:9c:b3:e5:55:67:d8:d2:05: 9e:ff:13:87:ac:47:ca:63:d0:5d:40:b5:f9:d4:21: 49:aa:96:61:77:4a:9a:96:57:d1:42:c1:ab:d5:99: dc:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:26:04:74:60:C9:B3:EF:2C:E3:8A:2C:18:E4:66:C8:17:63:DA:24 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.57.108.0/24 202.57.117.0-202.57.118.255 Signature Algorithm: sha256WithRSAEncryption b6:bc:ad:5f:9f:d2:45:05:8e:19:95:42:97:3d:48:39:ad:93: 17:62:de:76:42:e1:2f:83:7e:98:57:cd:4c:53:c0:cf:49:81: d2:b8:8f:0c:61:2c:20:48:ee:f4:36:35:ef:6c:7b:80:4c:63: ea:f7:96:1f:a6:65:7b:a0:19:24:16:50:19:0b:af:e6:ab:d3: 73:3a:73:ab:fc:e5:e8:17:20:ae:6f:63:a8:20:c1:37:21:31: 69:08:13:3d:a3:20:db:af:a7:04:a8:b7:fd:2b:a1:b4:ce:71: 3d:a4:8d:d6:e0:d5:ab:cb:36:73:c7:0f:2a:f8:c8:85:c7:ee: eb:be:9a:aa:0d:fa:b2:62:91:58:0d:b4:87:56:15:07:af:e6: 92:51:a0:c7:fc:a9:c5:4d:c2:2b:bf:d4:ff:3d:6b:98:1b:21: 74:4f:9e:aa:93:07:25:76:68:e8:10:6e:63:7d:d4:d1:b5:bc: a8:b5:51:d8:75:de:6d:13:78:46:c0:6e:94:fd:b7:fb:45:d3: 2b:38:c9:7f:6c:95:1f:44:e8:ef:05:9f:fb:54:47:70:39:f1: 91:36:92:9a:b6:20:14:af:d3:9d:5e:ba:aa:a6:82:c7:5a:6f: 14:18:fe:fe:17:0d:fa:3f:82:69:17:8c:bc:45:b3:6e:45:f1: ce:23:9b:d4 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICJRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjMwODE2MTYxMjMzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjZjU3MS1jMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3DU7ldtQG8WX2zjnWfwBYh4xjh6bGCRtrJ6uFMRQMpcQFxGcbSpOxbtho9t BOeOsaSYtsd7Dutztnyxsp1j+nzPHnq7Uiys7mBaRj7eEuSpLf24tck47jue7JEg g9sdxGjInbZXlp4ZorClSyyAbTRZt6RX1qSVgbUgbBuMb2A8bfxxc3QcsWjIRUUg juEW0p+aVrDoStcFrsxGwrrMei3tzC2k/Idr1ALEaRlKWNCp3jMOAspBbx3N0tfF mpkg+8kIiH/bQpbJOZhYUA2NsyMuLNv7WsJbnLPlVWfY0gWe/xOHrEfKY9BdQLX5 1CFJqpZhd0qallfRQsGr1ZncewIDAQABo4ICozCCAp8wHQYDVR0OBBYEFK8mBHRg ybPvLOOKLBjkZsgXY9okMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0YyQjI4QjRE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBADKOWwwDAMEAMo5dQMEAMo5djANBgkqhkiG9w0BAQsFAAOC AQEAtrytX5/SRQWOGZVClz1IOa2TF2LedkLhL4N+mFfNTFPAz0mB0riPDGEsIEju 9DY172x7gExj6veWH6Zle6AZJBZQGQuv5qvTczpzq/zl6Bcgrm9jqCDBNyExaQgT PaMg26+nBKi3/SuhtM5xPaSN1uDVq8s2c8cPKvjIhcfu676aqg36smKRWA20h1YV B6/mklGgx/ypxU3CK7/U/z1rmBshdE+eqpMHJXZo6BBuY33U0bW8qLVR2HXebRN4 RsBulP23+0XTKzjJf2yVH0To7wWf+1RHcDnxkTaSmrYgFK/TnV66qqaCx1pvFBj+ /hcN+j+CaReMvEWzbkXxziOb1A== -----END CERTIFICATE-----Generated at Thu May 16 18:26:03 2024 by rpki-client on console-fra.rpki-client.org