$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa File: A368B23623C411EFB7164123C4F9AE02.roa (raw, json) Hash identifier: 6WMxEseQDOQi71AEegKWG3BFBRYdf0cjzTU5QeyGB6s= Subject key identifier: 22:4B:63:72:94:FC:93:56:8B:17:26:8D:99:A1:AF:1B:E7:41:B7:E1 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: 02 Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa Signing time: Thu 06 Jun 2024 05:21:34 +0000 ROA not before: Thu 06 Jun 2024 05:21:34 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 396982 IP address blocks: 203.0.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Validity Not Before: Jun 6 05:21:34 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6661475d-85f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e1:e5:8f:20:b9:af:54:5a:ec:7b:ca:59:05: 4a:48:0e:46:5c:9b:03:b8:62:3b:2b:0d:e7:bb:c5: 2d:bb:7a:bd:91:0e:af:3e:ec:f2:b4:a8:02:4d:2b: 4d:7a:64:fb:c9:f3:f7:dc:fa:f6:80:5f:4a:bc:b8: d9:64:d1:fe:46:79:03:c4:d5:45:ec:f0:03:2a:1f: 5e:41:43:bf:8b:74:7e:10:97:f0:0e:de:27:ad:e1: a4:16:4c:c0:81:9a:c7:ad:db:dc:28:8e:f1:e6:13: 84:b8:ca:ae:b9:fb:8a:f9:08:90:b1:0b:b9:b9:f2: 55:37:09:dc:5e:63:a1:95:0d:fc:88:07:a0:33:92: e5:db:64:32:8b:ba:19:c4:40:0b:7b:cd:2e:1e:30: 19:a1:db:ec:6d:77:e8:59:b7:7e:b7:d7:2b:c5:e7: 00:ff:f0:91:e2:08:57:ee:21:32:a7:b8:22:65:94: b3:70:5d:c3:04:ce:45:3b:a6:f0:22:05:18:f5:02: 59:36:3a:09:12:99:d0:54:0d:0c:aa:f3:f9:a2:3a: b3:d6:99:5a:80:1e:d8:24:f8:28:46:33:e9:79:9f: cf:b2:36:dc:a5:c4:0b:6c:dc:ba:65:3e:b4:fc:42: 04:a7:57:af:06:ba:31:67:8f:51:c0:62:fe:c8:0c: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4B:63:72:94:FC:93:56:8B:17:26:8D:99:A1:AF:1B:E7:41:B7:E1 X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.168.0/23 Signature Algorithm: sha256WithRSAEncryption 41:5c:a1:b3:1d:3c:e7:f9:45:68:29:a0:ce:db:5a:71:75:27: 0d:d2:d3:ad:ca:98:da:77:40:9f:df:69:5a:89:c2:0e:70:2e: 53:c6:36:c0:5f:5f:26:eb:ca:21:92:78:7a:68:56:a8:e8:63: bd:43:fb:be:cd:09:7f:3a:0b:db:32:2d:67:9d:ac:35:09:1c: 76:7e:2e:9a:d9:ec:79:01:9b:69:b8:80:92:70:f7:e3:1a:d3: b7:ad:98:30:6c:2c:ef:37:a6:4e:d2:91:2a:7c:00:33:23:4b: a8:17:fe:f5:d7:c1:c5:eb:eb:43:7a:5b:4c:bb:b7:8e:a0:02: 97:e6:1e:5d:da:50:c2:e3:c0:3e:bd:a4:6a:04:26:5a:e0:be: c5:14:54:dd:eb:e9:90:71:d8:ac:5f:7e:5b:0e:3a:bc:eb:aa: 22:10:9e:c6:60:22:17:40:fb:7d:a0:9f:85:d5:2c:c9:77:a5: 2e:3b:81:ee:46:a0:62:d6:92:94:cc:37:f1:0f:1f:d8:b3:e3: 42:2e:38:a7:01:e2:a8:34:6c:5a:e2:6f:57:48:ec:4d:c6:49: 29:f2:c9:8a:08:00:a9:2d:2f:03:68:53:aa:01:60:44:6e:f6: a6:ba:bf:05:10:ac:3f:ed:77:16:4a:9e:c7:59:2d:69:0e:32: 07:b8:ca:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RUI5QTExMC8GA1UEBRMoODNFRjhGRTlFRTQ4NjlGMEI5NEE5NUY3NDZGNTg5NEJB MUZCMzBGMDAeFw0yNDA2MDYwNTIxMzRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjE0NzVkLTg1ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB4eWPILmvVFrse8pZBUpIDkZcmwO4YjsrDee7xS27er2RDq8+7PK0qAJNK016 ZPvJ8/fc+vaAX0q8uNlk0f5GeQPE1UXs8AMqH15BQ7+LdH4Ql/AO3iet4aQWTMCB mset29wojvHmE4S4yq65+4r5CJCxC7m58lU3CdxeY6GVDfyIB6AzkuXbZDKLuhnE QAt7zS4eMBmh2+xtd+hZt3631yvF5wD/8JHiCFfuITKnuCJllLNwXcMEzkU7pvAi BRj1Alk2OgkSmdBUDQyq8/miOrPWmVqAHtgk+ChGM+l5n8+yNtylxAts3LplPrT8 QgSnV68GujFnj1HAYv7IDEd3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIktjcpT8 k1aLFyaNmaGvG+dBt+EwHwYDVR0jBBgwFoAUg++P6e5IafC5SpX3RvWJS6H7MPAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFQjlBL0U0QTY1RURFMjND MzExRUY4OTJERUIyMUM0RjlBRTAyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01Q QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZy0tUDZlNUlhZkM1U3BYM1J2V0pTNkg3TVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI5QS9FNEE2NUVERTIzQzMxMUVGODkyREVCMjFDNEY5QUUwMi9BMzY4QjIzNjIz QzQxMUVGQjcxNjQxMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsAqDANBgkqhkiG9w0BAQsFAAOCAQEAQVyhsx085/lFaCmg zttacXUnDdLTrcqY2ndAn99pWonCDnAuU8Y2wF9fJuvKIZJ4emhWqOhjvUP7vs0J fzoL2zItZ52sNQkcdn4umtnseQGbabiAknD34xrTt62YMGws7zemTtKRKnwAMyNL qBf+9dfBxevrQ3pbTLu3jqACl+YeXdpQwuPAPr2kagQmWuC+xRRU3evpkHHYrF9+ Ww46vOuqIhCexmAiF0D7faCfhdUsyXelLjuB7kagYtaSlMw38Q8f2LPjQi44pwHi qDRsWuJvV0jsTcZJKfLJiggAqS0vA2hTqgFgRG72prq/BRCsP+13Fkqex1ktaQ4y B7jKFA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org