$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa File: 9BC1C0762BD411EC81C16155C4F9AE02.roa (raw, json) Hash identifier: dl4RTDHzWq7uNHYDBsFr/OHdTU7zxbtM/nxDEXFCggA= Subject key identifier: F3:59:FE:40:E6:9C:3E:57:C0:D4:24:D4:B3:3E:6B:3F:98:33:17:28 Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 0355 Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa Signing time: Sun 09 Jul 2023 01:01:22 +0000 ROA not before: Sun 09 Jul 2023 01:01:22 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140724 IP address blocks: 203.20.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Jul 9 01:01:22 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64aa06e1-a73b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:10:c8:da:c7:5f:cd:3c:0b:d3:18:c9:78: 73:f1:1e:2b:ef:28:d1:11:2d:66:fd:6b:15:d0:c8: ee:a3:e5:91:c7:35:36:ec:5e:a4:06:56:a0:32:43: 92:d7:f5:92:65:f8:df:da:e9:8a:00:d3:5d:b7:a6: d5:79:83:d0:cb:a1:bf:a5:77:d7:a8:ae:f3:ee:ea: d2:6a:a4:de:fd:3a:27:d1:1a:4f:ba:37:3d:54:1f: 9d:79:31:84:87:09:f2:f3:55:f4:ea:70:55:df:75: 7a:3a:21:f3:76:33:ec:af:06:cb:9f:05:62:fc:52: ed:40:d8:36:3d:21:be:9f:d3:d0:9d:ef:b2:1b:23: c3:5b:f7:62:a9:bc:db:d2:b4:5a:2a:8a:5a:d8:3c: a6:1e:5d:b8:6f:7f:58:e5:36:d6:7a:d3:64:f9:0f: e2:2b:82:8f:e6:a9:af:0b:ac:96:43:2f:f0:d4:68: b9:85:ea:e9:31:e9:64:ad:d9:f5:f8:bb:c0:48:0c: da:a5:59:0f:82:fc:43:c2:43:bd:41:30:0d:85:74: 58:30:de:a5:18:a8:5d:92:80:00:32:20:94:eb:54: eb:0c:49:91:ad:3d:5f:c6:63:75:d9:c4:bb:af:a6: 87:41:6a:b9:38:ee:7e:90:96:9d:1d:a3:e2:27:fd: 83:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:59:FE:40:E6:9C:3E:57:C0:D4:24:D4:B3:3E:6B:3F:98:33:17:28 X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 85:f5:c8:62:3b:96:00:bf:cb:6c:1e:39:d1:01:ac:b4:d4:90: b2:1f:ae:1c:f8:04:58:b1:c6:8d:68:2c:3a:c7:9c:cf:63:ac: 34:09:31:7c:d5:7b:26:91:1e:da:f3:f7:83:d6:c3:fc:53:d9: c7:c5:e4:13:29:8c:08:64:2c:d6:df:ed:49:65:8b:c4:04:24: 64:89:9f:12:5e:60:8c:b8:b6:1d:aa:a7:b3:b6:a4:c1:c5:d3: 6b:43:e6:da:34:29:00:a0:25:e8:85:0b:d5:f5:34:92:1b:c5: da:b1:36:1b:2d:df:9e:7a:59:1a:0c:5c:af:78:12:5c:61:7f: 47:a8:5c:8b:07:92:ed:a6:89:4b:80:af:23:f5:4a:42:98:4c: b3:aa:ea:21:f4:97:4e:92:3c:38:d3:28:3a:3d:be:48:7d:a4: de:d8:3e:89:13:4f:9b:98:71:62:d0:2d:18:ba:5a:1b:58:67: 09:3e:57:d5:28:2c:b2:70:a4:7e:bd:1f:78:c4:fc:2f:5a:d1: e5:59:80:be:00:d6:4b:81:d2:db:cd:80:3e:1a:e1:c7:06:4a: 25:84:2f:55:a5:92:f3:ba:54:6a:26:37:27:a0:5b:0a:da:c6: bd:ea:35:ce:ab:43:5b:c0:a3:42:b9:4b:91:f4:07:2e:3e:34: 99:61:0d:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjMwNzA5MDEwMTIyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFhMDZlMS1hNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ8QyNrHX808C9MYyXhz8R4r7yjRES1m/WsV0Mjuo+WRxzU27F6kBlagMkOS 1/WSZfjf2umKANNdt6bVeYPQy6G/pXfXqK7z7urSaqTe/Ton0RpPujc9VB+deTGE hwny81X06nBV33V6OiHzdjPsrwbLnwVi/FLtQNg2PSG+n9PQne+yGyPDW/diqbzb 0rRaKopa2DymHl24b39Y5TbWetNk+Q/iK4KP5qmvC6yWQy/w1Gi5herpMelkrdn1 +LvASAzapVkPgvxDwkO9QTANhXRYMN6lGKhdkoAAMiCU61TrDEmRrT1fxmN12cS7 r6aHQWq5OO5+kJadHaPiJ/2DEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPNZ/kDm nD5XwNQk1LM+az+YMxcoMB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5MUMvQkMyNjNBOEUyQkQxMTFFQ0FEREZBMzExQzRGOUFFMDIvOUJDMUMwNzYy QkQ0MTFFQzgxQzE2MTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLFBQwDQYJKoZIhvcNAQELBQADggEBAIX1yGI7lgC/y2we OdEBrLTUkLIfrhz4BFixxo1oLDrHnM9jrDQJMXzVeyaRHtrz94PWw/xT2cfF5BMp jAhkLNbf7Ulli8QEJGSJnxJeYIy4th2qp7O2pMHF02tD5to0KQCgJeiFC9X1NJIb xdqxNhst3556WRoMXK94Elxhf0eoXIsHku2miUuAryP1SkKYTLOq6iH0l06SPDjT KDo9vkh9pN7YPokTT5uYcWLQLRi6WhtYZwk+V9UoLLJwpH69H3jE/C9a0eVZgL4A 1kuB0tvNgD4a4ccGSiWEL1WlkvO6VGomNyegWwraxr3qNc6rQ1vAo0K5S5H0By4+ NJlhDRA= -----END CERTIFICATE-----Generated at Tue May 21 02:53:25 2024 by rpki-client on console-fra.rpki-client.org