$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa File: E8343A14280A11ED80EB7F2FC4F9AE02.roa (raw, json) Hash identifier: HHwm+CVHuXSSZBZ1KZm1M1AyC+d36xjwyY9C4UFPj64= Subject key identifier: E8:8B:A3:4F:BE:FA:59:02:FB:A9:A2:26:11:1F:6A:1A:E0:F9:31:53 Certificate issuer: /CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Certificate serial: 01DA Authority key identifier: 3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa Signing time: Sat 23 Mar 2024 04:06:23 +0000 ROA not before: Sat 23 Mar 2024 04:06:23 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 24017 IP address blocks: 202.10.240.0/22 maxlen: 22 202.10.244.0/22 maxlen: 22 203.17.26.0/23 maxlen: 23 203.17.26.0/24 maxlen: 24 203.17.27.0/24 maxlen: 24 203.18.237.0/24 maxlen: 24 203.18.238.0/24 maxlen: 24 203.18.239.0/24 maxlen: 24 203.22.0.0/24 maxlen: 24 203.22.1.0/24 maxlen: 24 203.22.2.0/24 maxlen: 24 203.22.10.0/24 maxlen: 24 203.22.11.0/24 maxlen: 24 203.22.12.0/23 maxlen: 23 203.22.14.0/23 maxlen: 23 203.22.14.0/24 maxlen: 24 203.22.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Validity Not Before: Mar 23 04:06:23 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fe553f-7420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:a4:06:fe:b0:d5:f8:f6:e6:4c:8f:c8:30: 93:d9:13:7d:79:ea:b0:19:2d:44:e6:97:ea:14:a4: b7:e3:43:3c:46:5f:d8:f5:16:e5:85:f7:79:3e:4e: cd:ed:36:21:28:ff:a3:87:09:0b:7a:c0:45:cd:2f: 29:c3:2e:1d:66:05:3d:63:0c:93:81:e9:7d:f2:c9: 89:f7:21:d5:de:50:59:4a:bb:0e:8e:22:48:07:a5: 10:be:be:6a:d0:af:9e:0c:c5:a7:0c:e1:1f:f3:54: 5f:a0:d0:67:13:1c:e5:e0:3e:5e:94:fb:63:a0:53: f2:90:fd:c5:e0:9c:31:55:cf:db:13:8b:7a:00:89: a5:ac:d0:2e:17:68:c6:ad:1e:55:fc:40:93:31:93: 11:ba:40:45:f8:6c:69:72:ba:12:b7:3e:11:4b:3f: 27:f3:c2:2f:72:cf:d3:ce:e2:64:d0:1f:37:a3:8e: 2d:d0:3a:0b:72:ab:48:be:9b:1d:ee:6b:57:ff:a9: 82:5e:a7:a3:40:74:3e:18:e6:c5:4e:88:83:4c:8e: 4d:90:c3:20:43:26:58:17:a0:98:1f:7f:0d:b9:6e: 51:26:93:25:9d:55:04:f7:02:2e:e6:5a:7b:52:1e: fc:21:b3:e5:0d:26:54:96:9c:5d:43:aa:42:3f:fd: 34:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8B:A3:4F:BE:FA:59:02:FB:A9:A2:26:11:1F:6A:1A:E0:F9:31:53 X509v3 Authority Key Identifier: keyid:3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/E8343A14280A11ED80EB7F2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.10.240.0/21 203.17.26.0/23 203.18.237.0-203.18.239.255 203.22.0.0-203.22.2.255 203.22.10.0-203.22.15.255 Signature Algorithm: sha256WithRSAEncryption 02:5d:59:49:6b:a1:4d:36:e3:51:e7:78:4b:89:72:4e:1b:0b: f2:a4:1c:06:46:73:22:db:85:6c:e9:cc:22:42:0d:dc:04:f1: 12:b1:5c:99:25:74:a2:cb:d2:47:34:47:6d:cd:ef:5f:a3:d5: 17:7a:af:8c:42:a8:5d:69:c1:a2:e3:a4:84:41:2e:1e:d1:4e: 61:70:32:8a:fb:0c:c1:cd:c4:29:ba:9f:ef:3c:d9:ba:0b:89: 22:da:fa:2e:9c:03:54:50:0f:93:c9:fc:77:7d:52:18:26:29: 4e:44:b0:83:d5:ca:90:cd:6d:00:21:70:2e:f2:94:4c:b9:9a: 85:d7:05:61:fd:ba:30:a7:9c:af:78:a9:a7:9a:d3:f2:83:dc: 0f:3b:ab:a5:29:97:22:cb:a9:d4:63:ad:18:72:3a:56:a7:49: 35:ad:3c:f7:28:08:76:27:0e:b5:a6:b5:43:f7:ed:d1:a8:f9: 3b:3b:50:2f:de:ad:1d:94:0c:b7:d1:7c:19:0e:a3:b6:77:4f: 6c:2d:3e:a3:1f:0d:23:d6:b2:8d:10:df:6d:0a:8d:e3:77:96: 79:70:39:98:5c:fb:e2:d8:2d:a3:32:da:20:05:65:f4:35:15: 9f:53:e8:a1:78:5f:e1:e9:3f:93:18:97:91:7a:51:89:f6:cc: 3b:3a:16:c7 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRTQxMTAvBgNVBAUTKDNDRjkxNjA4MjI2ODE5QzNFOURBODREMTE5NUI1MzI2 RjkyNDlGQkQwHhcNMjQwMzIzMDQwNjIzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlNTUzZi03NDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0+kBv6w1fj25kyPyDCT2RN9eeqwGS1E5pfqFKS340M8Rl/Y9Rblhfd5Pk7N 7TYhKP+jhwkLesBFzS8pwy4dZgU9YwyTgel98smJ9yHV3lBZSrsOjiJIB6UQvr5q 0K+eDMWnDOEf81RfoNBnExzl4D5elPtjoFPykP3F4JwxVc/bE4t6AImlrNAuF2jG rR5V/ECTMZMRukBF+GxpcroStz4RSz8n88Ivcs/TzuJk0B83o44t0DoLcqtIvpsd 7mtX/6mCXqejQHQ+GObFToiDTI5NkMMgQyZYF6CYH38NuW5RJpMlnVUE9wIu5lp7 Uh78IbPlDSZUlpxdQ6pCP/006wIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFOiLo0++ +lkC+6miJhEfahrg+TFTMB8GA1UdIwQYMBaAFDz5FggiaBnD6dqE0RlbUyb5JJ+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFFNC9FNUQ2RDBBQzA2 NTMxMUVEODI3QkVGNTRDNEY5QUUwMi9QUGtXQ0NKb0djUHAyb1RSR1Z0VEp2a2tu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQa1dDQ0pvR2NQcDJvVFJHVnRUSnZra243MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRTQvRTVENkQwQUMwNjUzMTFFRDgyN0JFRjU0QzRGOUFFMDIvRTgzNDNBMTQy ODBBMTFFRDgwRUI3RjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MDsEAgABMDUDBAPKCvADBAHLERowDAMEAMsS7QMEBMsS4DALAwMByxYDBADL FgIwDAMEAcsWCgMEBMsWADANBgkqhkiG9w0BAQsFAAOCAQEAAl1ZSWuhTTbjUed4 S4lyThsL8qQcBkZzItuFbOnMIkIN3ATxErFcmSV0osvSRzRHbc3vX6PVF3qvjEKo XWnBouOkhEEuHtFOYXAyivsMwc3EKbqf7zzZuguJItr6LpwDVFAPk8n8d31SGCYp TkSwg9XKkM1tACFwLvKUTLmahdcFYf26MKecr3ipp5rT8oPcDzurpSmXIsup1GOt GHI6VqdJNa089ygIdicOtaa1Q/ft0aj5OztQL96tHZQMt9F8GQ6jtndPbC0+ox8N I9ayjRDfbQqN43eWeXA5mFz74tgtozLaIAVl9DUVn1PooXhf4ek/kxiXkXpRifbM OzoWxw== -----END CERTIFICATE-----Generated at Wed May 29 05:26:28 2024 by rpki-client on console-fra.rpki-client.org