$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa File: 5047D510C02411EC93BB8865C4F9AE02.roa (raw, json) Hash identifier: ojWeWBDMfxxcmtLBj0L1QsLnEWsbZUHq3tFTe+It8P8= Subject key identifier: 84:06:55:0E:AE:A7:45:09:FB:0D:30:58:FA:C2:C9:7D:8D:CD:03:75 Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 1902 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa Signing time: Sat 18 May 2024 17:25:10 +0000 ROA not before: Sat 18 May 2024 17:25:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58421 IP address blocks: 202.22.16.0/21 maxlen: 21 202.22.24.0/22 maxlen: 22 202.22.28.0/23 maxlen: 23 202.22.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6402 (0x1902) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: May 18 17:25:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6648e476-a622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:15:89:3d:64:72:71:95:f5:1b:92:dc:ba: d8:f2:23:68:b5:f7:a8:be:e3:fc:e7:d2:84:1e:15: e6:3a:74:2c:49:f0:33:3b:e8:cc:24:01:10:95:c8: 1b:0c:b4:67:a3:d5:10:eb:cf:39:a5:2f:77:b0:5b: 1c:a0:0a:b6:e9:f1:1b:1e:8c:97:7c:80:e9:12:ba: d7:20:b9:48:2b:00:cd:9d:b1:04:02:38:7b:c1:5f: 87:25:9d:38:df:76:39:5d:7c:31:2f:4e:8d:5a:df: c2:04:a8:5f:af:94:7e:7f:cd:01:39:a5:5f:60:fa: 56:35:36:85:93:f8:b9:73:0c:8e:dd:e2:5d:d5:6f: 28:ea:a2:08:89:60:a3:73:4f:46:53:32:e4:7b:1c: 34:80:1c:1d:57:07:15:c7:bb:ca:70:e0:01:3f:3d: fc:07:f0:a7:fb:db:da:04:c0:f3:9c:59:28:bc:c0: 80:bf:70:e4:bf:00:43:38:bd:4d:5c:dd:ae:ba:6a: 7f:c0:84:51:6d:c8:f0:be:30:04:c5:82:b1:78:9e: 2d:22:75:ad:d0:12:5c:a3:a7:00:22:b1:e3:46:00: 75:f1:3b:da:7b:db:db:6b:58:2f:46:6e:8d:d8:a9: 6e:44:ec:9a:22:8c:4b:8c:70:58:2b:1d:e0:cd:f8: 70:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:06:55:0E:AE:A7:45:09:FB:0D:30:58:FA:C2:C9:7D:8D:CD:03:75 X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.22.16.0-202.22.30.255 Signature Algorithm: sha256WithRSAEncryption 59:69:3d:ca:09:7c:4b:70:21:03:7b:66:ef:41:ba:59:02:bd: 12:77:7e:10:2d:f9:e8:d1:f8:fd:08:d7:b2:2f:de:c6:76:c2: d8:0c:4e:58:84:06:12:c1:25:cb:73:b7:da:cf:31:2c:3a:d3: 5c:d5:82:ea:3f:89:f1:65:ca:bc:c6:1b:0e:28:7c:15:8b:f6: ee:20:83:ec:30:ef:71:10:3d:81:8e:d4:1c:ba:bc:ac:fc:15: 38:a1:4e:43:90:71:a2:bd:d5:a7:83:d5:db:7d:30:bf:fc:07: 2c:72:dd:c4:53:b2:e6:6e:a5:32:77:a4:dd:14:9b:17:4a:51: 0d:f5:65:56:48:52:ee:97:b6:de:e1:cf:51:35:5c:7f:c5:a6: 9c:40:cf:8d:bf:0a:0c:5c:56:c1:b2:27:88:30:89:01:8d:ca: cd:66:d2:c1:d6:fc:9e:4e:2c:48:00:fb:d3:5a:10:24:0b:01: 58:17:e7:95:a7:08:47:d7:16:37:3f:ac:43:c9:36:26:55:8b: 53:86:bb:2e:95:10:30:f9:84:f9:f3:3f:97:11:81:72:92:b8: a2:de:77:80:c4:21:27:4e:47:57:8e:af:cf:6c:08:1b:9b:82: 92:1a:c9:9a:ef:7e:b5:14:9e:04:e5:40:65:1b:58:47:78:d4: 47:6e:2d:f8 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICGQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjQwNTE4MTcyNTEwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ4ZTQ3Ni1hNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCIViT1kcnGV9RuS3LrY8iNotfeovuP859KEHhXmOnQsSfAzO+jMJAEQlcgb DLRno9UQ6885pS93sFscoAq26fEbHoyXfIDpErrXILlIKwDNnbEEAjh7wV+HJZ04 33Y5XXwxL06NWt/CBKhfr5R+f80BOaVfYPpWNTaFk/i5cwyO3eJd1W8o6qIIiWCj c09GUzLkexw0gBwdVwcVx7vKcOABPz38B/Cn+9vaBMDznFkovMCAv3DkvwBDOL1N XN2uump/wIRRbcjwvjAExYKxeJ4tInWt0BJco6cAIrHjRgB18Tvae9vba1gvRm6N 2KluROyaIoxLjHBYKx3gzfhwawIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIQGVQ6u p0UJ+w0wWPrCyX2NzQN1MB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNTA0N0Q1MTBD MDI0MTFFQzkzQkI4ODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBMoWEAMEAMoWHjANBgkqhkiG9w0BAQsFAAOCAQEAWWk9 ygl8S3AhA3tm70G6WQK9End+EC356NH4/QjXsi/exnbC2AxOWIQGEsEly3O32s8x LDrTXNWC6j+J8WXKvMYbDih8FYv27iCD7DDvcRA9gY7UHLq8rPwVOKFOQ5Bxor3V p4PV230wv/wHLHLdxFOy5m6lMnek3RSbF0pRDfVlVkhS7pe23uHPUTVcf8WmnEDP jb8KDFxWwbIniDCJAY3KzWbSwdb8nk4sSAD701oQJAsBWBfnlacIR9cWNz+sQ8k2 JlWLU4a7LpUQMPmE+fM/lxGBcpK4ot53gMQhJ05HV46vz2wIG5uCkhrJmu9+tRSe BOVAZRtYR3jUR24t+A== -----END CERTIFICATE-----Generated at Fri May 24 18:22:54 2024 by rpki-client on console-ams.rpki-client.org