$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa File: 76DDA85AFE5211EC8F4A4F16C4F9AE02.roa (raw, json) Hash identifier: P6xYLGWZasAZ0O0GYyx/cUS1pnfp7Nbv28TT3E9ue6A= Subject key identifier: 3A:92:33:93:7B:9A:E4:62:55:5F:9D:F1:B9:EB:49:CA:7E:8E:0A:6E Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Certificate serial: 0515 Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa Signing time: Wed 13 Mar 2024 00:43:14 +0000 ROA not before: Wed 13 Mar 2024 00:43:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 8075 IP address blocks: 113.197.64.0/24 maxlen: 24 113.197.65.0/24 maxlen: 24 113.197.66.0/24 maxlen: 24 113.197.67.0/24 maxlen: 24 203.84.134.0/24 maxlen: 24 203.84.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Validity Not Before: Mar 13 00:43:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f0f6a2-06de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:60:98:79:9c:d2:2a:a2:34:e5:bb:73:3b: 70:2c:b9:01:f5:df:3d:15:e1:fc:26:df:3e:98:4e: 4e:3e:b2:71:3c:b2:e3:30:1a:c9:4e:8f:83:f4:66: d2:c9:c6:5c:b3:e8:d5:48:31:3c:52:c6:b6:b9:9a: 2d:a8:c5:b1:28:80:1a:eb:6d:6a:b2:ea:38:ef:a1: 6e:70:e6:dc:8f:f0:e9:5b:ad:52:9e:f6:17:82:6f: 6f:19:2b:e9:7d:26:26:87:e4:14:3e:10:1b:8b:f1: 76:44:d5:8d:65:8d:6e:e6:c9:d2:d9:f6:d4:c1:53: 36:c3:dc:d8:0b:4d:8d:5f:0f:af:ca:b7:7a:f7:e4: 56:ca:c8:28:1f:86:62:35:62:b5:ea:f5:f4:93:8b: 32:8c:df:1f:32:39:2b:f7:69:4a:13:7d:5b:61:5a: 39:78:a5:5d:50:50:fc:85:37:47:df:29:f7:d3:7c: 63:52:ad:9c:b6:6d:9c:66:03:59:11:cf:63:f8:ad: ac:31:f8:82:47:d4:c9:93:cc:1a:54:1b:6e:42:1c: a0:c1:eb:50:41:58:9d:bc:3e:2b:e3:21:c8:90:dc: 5a:92:a8:b5:20:1a:aa:7d:74:c3:72:06:2a:db:2d: 98:4c:19:89:05:f6:2c:c2:d0:fd:18:8c:25:ac:13: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:92:33:93:7B:9A:E4:62:55:5F:9D:F1:B9:EB:49:CA:7E:8E:0A:6E X509v3 Authority Key Identifier: keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.64.0/22 203.84.134.0/23 Signature Algorithm: sha256WithRSAEncryption 36:91:f1:19:fe:ac:d3:e9:c7:f5:33:08:b0:98:2b:00:eb:ff: a1:c7:f8:a4:ba:f8:73:4f:5b:db:15:c3:e9:38:6a:6d:d8:1a: 21:36:c8:9f:e5:a4:5c:4b:9e:31:27:96:9e:b9:89:c4:9d:82: ed:6b:c3:31:bc:b0:b3:c5:b8:ea:2f:44:e2:a2:ec:cc:6c:98: 83:5f:ce:eb:df:d7:09:4b:5e:68:36:d2:c3:e6:c4:f8:20:a0: 07:53:67:42:cb:8e:36:ab:9c:b0:d0:aa:50:b2:d6:0f:30:81: ef:57:06:a5:dd:5f:34:dc:e6:0d:3f:eb:4f:af:26:4e:8e:15: ea:89:90:1f:57:08:f0:09:48:ed:a7:c6:c3:53:a9:34:62:c4: c7:bf:4b:f9:10:3f:e8:65:c9:26:0f:87:38:39:25:76:dc:c7: 8f:0e:fc:e7:47:5e:5f:6d:4f:ec:b1:d2:e7:de:96:53:59:2e: c7:76:b3:a6:53:50:3b:d7:3d:4b:31:3c:a0:fe:df:eb:98:3c: 1b:2f:0b:59:24:ad:0f:33:a8:1c:57:13:dd:c1:fe:dc:a2:c5: d6:27:df:4e:54:a9:10:45:12:13:bf:34:84:18:a9:16:3e:f1: 90:da:5b:21:63:65:51:aa:d8:2c:04:d0:bf:fd:bb:ed:a5:34: c7:b2:01:9b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFGM0IxMTAvBgNVBAUTKEJFOTJBQkE0QTAxNDQzMTlFRTZENDVBQjkwOTBEODhE NURBRjM3RkUwHhcNMjQwMzEzMDA0MzE0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZjZhMi0wNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7JgmHmc0iqiNOW7cztwLLkB9d89FeH8Jt8+mE5OPrJxPLLjMBrJTo+D9GbS ycZcs+jVSDE8Usa2uZotqMWxKIAa621qsuo476FucObcj/DpW61SnvYXgm9vGSvp fSYmh+QUPhAbi/F2RNWNZY1u5snS2fbUwVM2w9zYC02NXw+vyrd69+RWysgoH4Zi NWK16vX0k4syjN8fMjkr92lKE31bYVo5eKVdUFD8hTdH3yn303xjUq2ctm2cZgNZ Ec9j+K2sMfiCR9TJk8waVBtuQhygwetQQVidvD4r4yHIkNxakqi1IBqqfXTDcgYq 2y2YTBmJBfYswtD9GIwlrBNW9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDqSM5N7 muRiVV+d8bnrScp+jgpuMB8GA1UdIwQYMBaAFL6Sq6SgFEMZ7m1Fq5CQ2I1drzf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUYzQi80RjhCOTFCOEI5 QjYxMUVCQjQxMUU5MkVDNEY5QUUwMi92cEtycEtBVVF4bnViVVdya0pEWWpWMnZO XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwS3JwS0FVUXhudWJVV3JrSkRZalYydk5fNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFGM0IvNEY4QjkxQjhCOUI2MTFFQkI0MTFFOTJFQzRGOUFFMDIvNzZEREE4NUFG RTUyMTFFQzhGNEE0RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJxxUADBAHLVIYwDQYJKoZIhvcNAQELBQADggEBADaR8Rn+ rNPpx/UzCLCYKwDr/6HH+KS6+HNPW9sVw+k4am3YGiE2yJ/lpFxLnjEnlp65icSd gu1rwzG8sLPFuOovROKi7MxsmINfzuvf1wlLXmg20sPmxPggoAdTZ0LLjjarnLDQ qlCy1g8wge9XBqXdXzTc5g0/60+vJk6OFeqJkB9XCPAJSO2nxsNTqTRixMe/S/kQ P+hlySYPhzg5JXbcx48O/OdHXl9tT+yx0ufellNZLsd2s6ZTUDvXPUsxPKD+3+uY PBsvC1kkrQ8zqBxXE93B/tyixdYn305UqRBFEhO/NIQYqRY+8ZDaWyFjZVGq2CwE 0L/9u+2lNMeyAZs= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:25 2024 by rpki-client on console-ams.rpki-client.org