$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/A6D6CA7E022C11EBAC47A831C4F9AE02.roa File: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (raw, json) Hash identifier: zCjW74BNINc4Oe8jK6oFEsAHN/HQVGCYlLcNtLolElw= Subject key identifier: 8F:39:47:57:75:AF:C2:8E:05:05:05:F3:7B:1A:47:D6:34:9B:C3:F4 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 339F Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/A6D6CA7E022C11EBAC47A831C4F9AE02.roa Signing time: Thu 22 Feb 2024 15:10:50 +0000 ROA not before: Thu 22 Feb 2024 15:10:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23838 IP address blocks: 203.170.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13215 (0x339f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Feb 22 15:10:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d763fa-a240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9d:b2:86:21:ff:c7:b1:fb:90:3b:f3:fc:76: 85:ea:bd:af:ca:7d:b2:78:c5:09:4a:70:a2:f6:b1: 9a:7a:46:92:67:21:bd:15:5c:9d:07:01:c0:5c:c8: 6a:9a:2f:e4:63:a4:98:99:cd:2f:e2:de:cc:0a:8c: 9a:70:ac:40:d6:7e:40:18:8d:1a:ec:5c:56:81:54: ea:2d:10:3b:6c:2e:6d:bc:c8:6b:68:bb:10:5d:c9: f2:f8:c5:70:f8:9f:57:53:b0:68:0c:6d:50:eb:18: 8f:f1:9f:ab:6d:77:14:70:1f:23:7f:fe:15:09:e1: c1:35:d1:a5:b1:4b:2e:99:3d:57:e0:5b:2d:8e:6e: 71:e0:28:02:d4:62:45:e6:4b:8a:bd:f8:f5:05:71: d8:a2:74:4f:62:c8:ae:28:e5:92:73:41:02:ee:28: 62:66:f4:55:6e:86:0c:c5:d6:62:cd:91:9f:5c:c2: ef:7a:08:00:34:d1:82:2e:a3:9d:7a:d7:24:18:57: 06:0d:71:c1:a0:bf:e4:aa:19:c6:e0:e2:98:87:9e: be:9a:cb:b2:d2:3d:55:cd:19:61:ab:50:2f:77:e4: 23:4c:23:6b:ec:19:7a:7b:a4:d3:58:3d:d8:77:07: a7:b7:c5:3d:53:b5:ff:d7:66:ce:fb:2b:f6:32:5b: e0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:39:47:57:75:AF:C2:8E:05:05:05:F3:7B:1A:47:D6:34:9B:C3:F4 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/A6D6CA7E022C11EBAC47A831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.56.0/24 Signature Algorithm: sha256WithRSAEncryption 10:9d:9f:5e:ef:ad:b4:97:e1:90:44:c1:a3:4a:0f:26:8b:63: 4c:89:e5:2b:54:e8:25:49:fc:12:41:13:40:47:3c:d0:12:90: 07:22:eb:c8:01:c7:0c:23:ef:43:58:c3:d7:33:af:65:fc:6c: bd:e5:8c:7d:9c:3c:4e:b4:1b:39:87:4a:28:19:c2:bd:ae:e3: db:b7:9d:4b:3b:6f:4c:9f:4b:b2:3c:bb:e5:2d:21:b8:4d:66: 59:4b:40:14:02:d6:2b:d2:36:dc:13:87:5e:99:0b:8a:99:bd: 05:5a:6c:f1:b1:06:fb:26:d4:32:10:10:fa:75:44:de:f4:c3: 39:3f:c1:71:c3:cb:52:2a:c3:2d:63:04:ba:95:41:76:96:78: 13:08:1a:b8:cd:d5:a1:60:b9:02:f3:89:c8:9f:c9:f0:35:54: dc:f6:f2:58:0c:3f:b5:a6:2c:60:72:ce:6f:61:51:29:dd:7a: 8a:d2:4e:77:4f:54:41:d7:92:c8:23:6e:d5:28:67:75:6f:b5: a3:20:23:8a:d6:80:bf:a6:a0:da:47:0b:fb:f1:7f:85:f8:9a: a1:71:38:b8:5d:ae:88:dc:aa:fd:9a:93:02:29:db:49:f3:62: 03:ff:57:7b:c1:55:3a:3b:de:2f:5b:9d:14:ed:a8:05:8f:58: 65:ce:08:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjQwMjIyMTUxMDUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3NjNmYS1hMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo52yhiH/x7H7kDvz/HaF6r2vyn2yeMUJSnCi9rGaekaSZyG9FVydBwHAXMhq mi/kY6SYmc0v4t7MCoyacKxA1n5AGI0a7FxWgVTqLRA7bC5tvMhraLsQXcny+MVw +J9XU7BoDG1Q6xiP8Z+rbXcUcB8jf/4VCeHBNdGlsUsumT1X4Fstjm5x4CgC1GJF 5kuKvfj1BXHYonRPYsiuKOWSc0EC7ihiZvRVboYMxdZizZGfXMLveggANNGCLqOd etckGFcGDXHBoL/kqhnG4OKYh56+msuy0j1VzRlhq1Avd+QjTCNr7Bl6e6TTWD3Y dwent8U9U7X/12bO+yv2MlvgVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI85R1d1 r8KOBQUF83saR9Y0m8P0MB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDk5MDUvMzk0RDA2NEExRDlCMTFFMkJFMTJFRjg4MDhCMDJDRDIvQTZENkNBN0Uw MjJDMTFFQkFDNDdBODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLqjgwDQYJKoZIhvcNAQELBQADggEBABCdn17vrbSX4ZBE waNKDyaLY0yJ5StU6CVJ/BJBE0BHPNASkAci68gBxwwj70NYw9czr2X8bL3ljH2c PE60GzmHSigZwr2u49u3nUs7b0yfS7I8u+UtIbhNZllLQBQC1ivSNtwTh16ZC4qZ vQVabPGxBvsm1DIQEPp1RN70wzk/wXHDy1Iqwy1jBLqVQXaWeBMIGrjN1aFguQLz icifyfA1VNz28lgMP7WmLGByzm9hUSndeorSTndPVEHXksgjbtUoZ3VvtaMgI4rW gL+moNpHC/vxf4X4mqFxOLhdrojcqv2akwIp20nzYgP/V3vBVTo73i9bnRTtqAWP WGXOCD8= -----END CERTIFICATE-----Generated at Thu May 16 17:51:19 2024 by rpki-client on console-ams.rpki-client.org