$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa File: 45A83CC809EE11EBAD92B66BC4F9AE02.roa (raw, json) Hash identifier: WUQ9oV5ylba1WYvMvi8YcfDIyI4Ea0WkGe2gC4D2+pc= Subject key identifier: 0A:9A:33:EB:36:3B:5C:70:A0:DE:3E:97:9C:32:CF:4C:77:45:9B:38 Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 09D2 Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa Signing time: Tue 02 Apr 2024 21:00:00 +0000 ROA not before: Tue 02 Apr 2024 21:00:00 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18233 IP address blocks: 203.160.160.0/19 maxlen: 24 2400:8a81::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2514 (0x9d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Apr 2 21:00:00 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c71cf-89bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:78:04:7c:e8:d7:4e:7f:13:84:c9:f6:b2: 27:50:2d:37:68:53:c2:ad:d1:05:41:5b:4a:cd:ed: 6f:aa:d5:a9:a1:c7:11:1a:e7:da:4a:e4:49:3d:51: 34:16:a8:b1:d0:06:80:fa:44:f2:fb:77:52:1c:dd: d5:02:5e:2a:0a:63:ac:1a:20:59:57:5f:99:13:88: 82:02:8a:30:83:6b:f9:f9:72:04:08:07:d7:d6:92: 56:8e:6f:f4:31:d3:b7:f5:eb:59:64:3b:68:db:d4: 40:a0:34:bc:98:3d:1d:d0:e4:11:1c:17:4c:04:97: 90:27:9f:76:28:6e:28:70:22:3a:dc:98:2d:9a:de: b0:8a:41:7e:0d:28:c8:12:7a:40:d6:e8:92:2e:10: 08:94:19:5c:f1:e2:78:ec:5f:23:6c:69:a5:ca:de: 06:1f:2d:81:b7:6b:8a:c1:bc:63:d0:58:a4:f4:45: f8:d1:36:c1:d6:73:62:86:c1:bf:b2:fa:8f:66:68: 86:9d:73:c7:e7:17:1d:49:be:f3:35:9d:76:dc:d3: 0f:8a:a2:51:ae:32:b9:b2:97:54:ec:a3:b7:2e:82: 68:d3:96:59:78:1b:c3:08:72:3a:16:7b:ce:16:2e: ba:9e:3d:18:9e:c0:c8:76:fa:09:bc:1f:13:e4:5e: cc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9A:33:EB:36:3B:5C:70:A0:DE:3E:97:9C:32:CF:4C:77:45:9B:38 X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.160.160.0/19 IPv6: 2400:8a81::/32 Signature Algorithm: sha256WithRSAEncryption 2b:67:ca:5e:47:5f:be:37:9d:37:64:b1:61:db:c4:41:b0:87: 1b:ec:52:84:63:25:88:26:60:12:12:51:68:2b:00:dc:b2:55: d3:6b:5e:00:7f:29:e9:3f:83:05:e7:10:71:ea:87:01:ec:a1: 2a:ad:a4:69:76:89:6e:ee:80:bc:89:05:e2:b9:3e:05:25:f2: 96:8d:d3:27:93:d5:8a:d1:87:6f:a6:91:c6:c6:d6:1f:a2:74: 34:9b:26:26:ce:43:d0:b0:8c:73:c3:51:96:ce:3a:bd:c0:0c: 3b:e4:e4:4e:34:ce:4e:c5:36:7d:fb:8c:46:c1:9f:57:4a:04: c6:52:33:4e:4b:03:e8:97:d2:62:20:36:3a:71:e4:48:87:3a: d4:c3:b6:f5:01:4a:e3:20:98:de:1f:60:10:6a:ef:c3:8a:da: c2:95:4e:b8:74:72:13:73:42:83:28:30:0e:85:e7:20:62:1c: 27:3e:d0:eb:29:fc:1c:b8:7e:30:9e:bc:70:01:c9:fc:36:25: 9c:17:c1:6e:68:fc:c2:d8:63:90:07:2d:3c:08:12:ac:77:3e: 31:54:b3:41:2d:22:f4:4e:01:20:96:2d:c1:10:5d:ea:78:39: 21:69:e5:bb:0d:10:da:cd:38:ba:95:8b:ec:58:ea:46:01:47: c7:2f:c0:f1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjQwNDAyMjEwMDAwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNzFjZi04OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZB4BHzo105/E4TJ9rInUC03aFPCrdEFQVtKze1vqtWpoccRGufaSuRJPVE0 Fqix0AaA+kTy+3dSHN3VAl4qCmOsGiBZV1+ZE4iCAoowg2v5+XIECAfX1pJWjm/0 MdO39etZZDto29RAoDS8mD0d0OQRHBdMBJeQJ592KG4ocCI63Jgtmt6wikF+DSjI EnpA1uiSLhAIlBlc8eJ47F8jbGmlyt4GHy2Bt2uKwbxj0Fik9EX40TbB1nNihsG/ svqPZmiGnXPH5xcdSb7zNZ123NMPiqJRrjK5spdU7KO3LoJo05ZZeBvDCHI6FnvO Fi66nj0YnsDIdvoJvB8T5F7MAQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAqaM+s2 O1xwoN4+l5wyz0x3RZs4MB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvNDVBODNDQzgw OUVFMTFFQkFEOTJCNjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXLoKAwDQQCAAIwBwMFACQAioEwDQYJKoZIhvcNAQELBQAD ggEBACtnyl5HX743nTdksWHbxEGwhxvsUoRjJYgmYBISUWgrANyyVdNrXgB/Kek/ gwXnEHHqhwHsoSqtpGl2iW7ugLyJBeK5PgUl8paN0yeT1YrRh2+mkcbG1h+idDSb JibOQ9CwjHPDUZbOOr3ADDvk5E40zk7FNn37jEbBn1dKBMZSM05LA+iX0mIgNjpx 5EiHOtTDtvUBSuMgmN4fYBBq78OK2sKVTrh0chNzQoMoMA6F5yBiHCc+0Osp/By4 fjCevHAByfw2JZwXwW5o/MLYY5AHLTwIEqx3PjFUs0EtIvROASCWLcEQXep4OSFp 5bsNENrNOLqVi+xY6kYBR8cvwPE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org