$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa File: 873C98E0DE5911ED826BDB39C4F9AE02.roa (raw, json) Hash identifier: W+m8i8/ecOoVYbCV+dJZsJPjSawS8GKTTRSrX5q6NWE= Subject key identifier: 94:FA:6F:53:34:DE:4B:91:0C:26:B0:6D:8C:83:76:5F:99:7F:3F:D5 Certificate issuer: /CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Certificate serial: 01D9 Authority key identifier: 3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa Signing time: Sat 23 Mar 2024 04:06:22 +0000 ROA not before: Sat 23 Mar 2024 04:06:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.201.18.0/24 maxlen: 24 203.201.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Validity Not Before: Mar 23 04:06:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fe553e-8ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:5a:14:e7:f3:79:56:fe:1b:99:53:1b:09: 62:25:cc:07:32:ea:39:1b:82:a6:15:f8:5f:60:98: 48:2a:4a:e0:15:75:5e:65:3f:79:3b:d5:ce:8e:69: c0:a0:40:a2:ba:70:0f:c8:1e:75:c8:bf:ac:8e:2e: 78:66:e7:f0:c9:2c:49:b9:27:4e:e9:6c:e1:5a:13: 96:78:8d:0a:c7:8a:0b:e5:2d:b6:dd:df:38:29:7a: 35:db:49:4f:31:66:39:20:f8:c2:c9:50:85:b5:bd: 6f:00:e5:a5:7b:4a:7d:aa:fc:19:82:a5:ea:bc:c4: 4d:21:55:a1:b5:f3:0c:5b:a6:2a:33:ee:cd:b8:c5: 9c:2f:56:2c:99:4b:0d:5b:c1:e8:77:12:7c:5f:23: 5c:ae:bb:0e:59:f5:02:92:cc:9f:91:18:db:d4:78: 98:5b:8e:11:dc:00:f8:61:df:61:4d:bb:c1:43:b1: 67:a2:42:f8:e6:37:2c:fc:e3:02:5f:5a:8c:63:00: 74:f6:82:1a:24:0a:30:ad:4d:0b:9c:7f:23:85:3a: 61:b4:3c:79:67:15:e1:50:d2:f8:32:2d:87:38:5d: 63:4f:2c:6f:5b:cc:37:96:53:c2:5a:72:fd:74:9d: 0f:49:6c:cc:3d:94:fd:01:f1:42:c6:56:d3:73:32: fc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:FA:6F:53:34:DE:4B:91:0C:26:B0:6D:8C:83:76:5F:99:7F:3F:D5 X509v3 Authority Key Identifier: keyid:3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.201.18.0/24 203.201.30.0/24 Signature Algorithm: sha256WithRSAEncryption bd:da:80:11:65:1b:60:ee:27:4a:2d:e8:49:d7:d3:b5:6c:3a: c9:d0:bc:4c:ca:ff:86:7e:6d:83:9c:35:99:eb:9b:d0:38:ed: 3a:b3:38:2a:3a:b1:de:2e:b0:32:c2:91:2b:e4:f2:58:c3:fb: 61:42:4d:0d:de:68:c2:00:43:b2:81:40:56:5f:1a:08:83:fa: 9f:93:68:c0:f5:53:9c:84:4c:74:1b:6c:7e:e9:2e:86:7c:10: 38:4d:a1:c3:19:d2:50:67:ae:1d:82:69:89:3c:1c:2c:95:c3: 17:b3:f9:99:2d:96:3c:b6:a1:dc:67:e9:36:73:dc:fb:02:e5: 17:76:e4:0f:39:a4:4b:f5:79:ce:f0:f5:8f:e6:96:c3:f4:f4: 55:2c:c4:1f:f8:ca:83:07:a5:29:7a:1c:9f:d3:de:ac:36:90: fb:e7:b9:d8:2d:85:51:ec:ec:f9:80:37:da:98:70:0c:03:f9: 0b:ea:14:9b:76:a3:9c:64:00:ac:cc:23:86:b0:a7:77:15:ff: 3c:4a:82:db:c9:d1:38:f2:68:d1:0e:36:95:c8:06:48:92:be: 61:32:5e:95:92:9a:70:42:73:ac:fd:6b:25:a5:84:a4:d2:ef: a6:7d:cc:8e:c6:6d:60:7b:22:00:de:0f:30:a2:7b:60:23:95: f2:03:71:07 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRTQxMTAvBgNVBAUTKDNDRjkxNjA4MjI2ODE5QzNFOURBODREMTE5NUI1MzI2 RjkyNDlGQkQwHhcNMjQwMzIzMDQwNjIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlNTUzZS04Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPxaFOfzeVb+G5lTGwliJcwHMuo5G4KmFfhfYJhIKkrgFXVeZT95O9XOjmnA oECiunAPyB51yL+sji54ZufwySxJuSdO6WzhWhOWeI0Kx4oL5S223d84KXo120lP MWY5IPjCyVCFtb1vAOWle0p9qvwZgqXqvMRNIVWhtfMMW6YqM+7NuMWcL1YsmUsN W8HodxJ8XyNcrrsOWfUCksyfkRjb1HiYW44R3AD4Yd9hTbvBQ7FnokL45jcs/OMC X1qMYwB09oIaJAowrU0LnH8jhTphtDx5ZxXhUNL4Mi2HOF1jTyxvW8w3llPCWnL9 dJ0PSWzMPZT9AfFCxlbTczL87wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJT6b1M0 3kuRDCawbYyDdl+Zfz/VMB8GA1UdIwQYMBaAFDz5FggiaBnD6dqE0RlbUyb5JJ+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFFNC9FNUQ2RDBBQzA2 NTMxMUVEODI3QkVGNTRDNEY5QUUwMi9QUGtXQ0NKb0djUHAyb1RSR1Z0VEp2a2tu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQa1dDQ0pvR2NQcDJvVFJHVnRUSnZra243MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRTQvRTVENkQwQUMwNjUzMTFFRDgyN0JFRjU0QzRGOUFFMDIvODczQzk4RTBE RTU5MTFFRDgyNkJEQjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLyRIDBADLyR4wDQYJKoZIhvcNAQELBQADggEBAL3agBFl G2DuJ0ot6EnX07VsOsnQvEzK/4Z+bYOcNZnrm9A47TqzOCo6sd4usDLCkSvk8ljD +2FCTQ3eaMIAQ7KBQFZfGgiD+p+TaMD1U5yETHQbbH7pLoZ8EDhNocMZ0lBnrh2C aYk8HCyVwxez+Zktljy2odxn6TZz3PsC5Rd25A85pEv1ec7w9Y/mlsP09FUsxB/4 yoMHpSl6HJ/T3qw2kPvnudgthVHs7PmAN9qYcAwD+QvqFJt2o5xkAKzMI4awp3cV /zxKgtvJ0TjyaNEONpXIBkiSvmEyXpWSmnBCc6z9ayWlhKTS76Z9zI7GbWB7IgDe DzCie2AjlfIDcQc= -----END CERTIFICATE-----Generated at Wed May 1 05:55:41 2024 by rpki-client on console-ams.rpki-client.org