$ rpki-client -vvf rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa File: 948A2714980211EB82357D6CC4F9AE02.roa (raw, json) Hash identifier: iUwsMlwG14yhQu9mFdyFQuqtn6Bv++zfI2iNXgm3mns= Subject key identifier: 31:8A:59:A6:9C:55:A9:94:61:5B:39:07:DE:9B:91:8C:DC:D3:9F:48 Certificate issuer: /CN=A9149BFB/serialNumber=F6E712FC5C69E72F69396E5E1142CC7F78C68FD1 Certificate serial: 0532 Authority key identifier: F6:E7:12:FC:5C:69:E7:2F:69:39:6E:5E:11:42:CC:7F:78:C6:8F:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa Signing time: Wed 17 Jan 2024 00:22:33 +0000 ROA not before: Wed 17 Jan 2024 00:22:33 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9723 IP address blocks: 203.10.6.0/24 maxlen: 24 203.10.7.0/24 maxlen: 24 203.10.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.crl rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149BFB/serialNumber=F6E712FC5C69E72F69396E5E1142CC7F78C68FD1 Validity Not Before: Jan 17 00:22:33 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65a71dc9-ea84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4a:e0:08:90:06:07:44:6e:11:39:1a:49:51: e8:03:a4:31:19:e7:81:b9:19:d1:78:47:ea:8b:b1: 4b:59:10:ff:42:fe:4b:38:62:8c:b2:37:26:9c:2b: 2a:a6:f1:15:cf:73:f9:71:01:71:5d:f2:c4:75:f1: 93:c9:04:d2:9c:25:67:58:d3:a9:07:bf:e8:8e:76: ed:cc:f5:fe:f5:61:49:a0:8d:88:6d:75:4c:1a:a9: 74:a5:03:12:f2:8c:bb:3f:b9:7e:35:a3:de:1c:92: 00:65:b8:fe:e2:94:00:da:cb:78:c8:f5:43:dc:1f: a8:0d:30:b0:4a:89:38:f1:13:ba:7a:1e:72:c4:2c: 26:6d:42:f1:f2:60:8d:aa:28:12:ca:30:74:cd:a4: be:24:61:bb:6d:1e:1b:cc:ad:ca:c4:2c:7b:9a:47: 75:ba:32:bc:01:48:ea:2b:1c:f4:f7:16:9f:07:03: 5c:e3:2e:07:ec:4e:7a:b6:99:84:65:51:45:61:2a: bc:f6:22:54:74:5f:ad:f8:71:44:f5:99:3c:28:d5: 55:9d:fc:f7:69:ef:cb:1a:bf:ab:f3:70:32:dc:df: 3b:89:eb:2b:88:64:3f:df:98:dd:48:9c:bb:e7:5b: 44:c5:c6:2e:69:fc:ba:7c:e3:69:1c:a0:63:21:8c: 46:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:8A:59:A6:9C:55:A9:94:61:5B:39:07:DE:9B:91:8C:DC:D3:9F:48 X509v3 Authority Key Identifier: keyid:F6:E7:12:FC:5C:69:E7:2F:69:39:6E:5E:11:42:CC:7F:78:C6:8F:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.10.6.0-203.10.8.255 Signature Algorithm: sha256WithRSAEncryption 2a:b1:7e:36:e0:76:74:f0:b8:b7:e8:4a:a9:c1:3e:70:59:d8: 94:36:da:c2:bf:33:e6:0b:a5:7d:f6:37:63:99:90:07:66:ed: 16:58:25:d5:25:87:f9:22:e5:b1:61:47:6d:f0:40:4c:72:11: 96:d0:61:7c:2e:f5:72:34:e1:7b:37:88:1b:55:2f:86:67:66: 30:76:57:4a:26:2a:a0:ce:21:a7:e0:2e:74:2c:77:8e:3e:d8: 37:f5:ba:a9:a2:19:88:76:d3:93:8f:11:7d:f2:f0:4a:82:d6: 7b:d8:5f:cc:21:c7:2b:ae:1a:6a:67:ce:93:e0:cc:5f:1b:4a: d7:9b:04:77:c2:14:44:c7:c1:32:3f:3a:42:67:72:27:23:7f: 0b:c8:f3:37:d0:58:05:12:4a:fd:ad:99:7e:92:95:b8:6d:5a: 52:84:0a:c6:97:8e:2b:98:0d:3f:7b:27:ce:f1:33:9d:f2:bd: 57:0a:fd:5b:f0:71:88:d6:9d:45:0f:79:5a:1c:71:00:ee:6f: 04:20:bb:7b:71:33:3a:3c:9b:a9:88:ce:58:05:42:e3:d6:54: b2:27:7e:58:75:5b:38:96:1b:d4:7b:49:0e:b9:49:95:3d:a3: c7:54:cd:9f:bb:e4:37:c4:c7:4e:05:92:18:98:32:fb:53:82: 8b:b2:18:b6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlCRkIxMTAvBgNVBAUTKEY2RTcxMkZDNUM2OUU3MkY2OTM5NkU1RTExNDJDQzdG NzhDNjhGRDEwHhcNMjQwMTE3MDAyMjMzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MWRjOS1lYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkrgCJAGB0RuETkaSVHoA6QxGeeBuRnReEfqi7FLWRD/Qv5LOGKMsjcmnCsq pvEVz3P5cQFxXfLEdfGTyQTSnCVnWNOpB7/ojnbtzPX+9WFJoI2IbXVMGql0pQMS 8oy7P7l+NaPeHJIAZbj+4pQA2st4yPVD3B+oDTCwSok48RO6eh5yxCwmbULx8mCN qigSyjB0zaS+JGG7bR4bzK3KxCx7mkd1ujK8AUjqKxz09xafBwNc4y4H7E56tpmE ZVFFYSq89iJUdF+t+HFE9Zk8KNVVnfz3ae/LGr+r83Ay3N87iesriGQ/35jdSJy7 51tExcYuafy6fONpHKBjIYxGOwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDGKWaac VamUYVs5B96bkYzc059IMB8GA1UdIwQYMBaAFPbnEvxcaecvaTluXhFCzH94xo/R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUJGQi9ERTJERTY0Njk4 MDAxMUVCODA3MURENjhDNEY5QUUwMi85dWNTX0Z4cDV5OXBPVzVlRVVMTWYzakdq OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl1Y1NfRnhwNXk5cE9XNWVFVUxNZjNqR2o5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlCRkIvREUyREU2NDY5ODAwMTFFQjgwNzFERDY4QzRGOUFFMDIvOTQ4QTI3MTQ5 ODAyMTFFQjgyMzU3RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAcsKBgMEAMsKCDANBgkqhkiG9w0BAQsFAAOCAQEAKrF+ NuB2dPC4t+hKqcE+cFnYlDbawr8z5gulffY3Y5mQB2btFlgl1SWH+SLlsWFHbfBA THIRltBhfC71cjThezeIG1UvhmdmMHZXSiYqoM4hp+AudCx3jj7YN/W6qaIZiHbT k48RffLwSoLWe9hfzCHHK64aamfOk+DMXxtK15sEd8IURMfBMj86QmdyJyN/C8jz N9BYBRJK/a2ZfpKVuG1aUoQKxpeOK5gNP3snzvEznfK9Vwr9W/BxiNadRQ95Whxx AO5vBCC7e3EzOjybqYjOWAVC49ZUsid+WHVbOJYb1HtJDrlJlT2jx1TNn7vkN8TH TgWSGJgy+1OCi7IYtg== -----END CERTIFICATE-----Generated at Sat May 11 02:39:22 2024 by rpki-client on console-fra.rpki-client.org