$ rpki-client -vvf rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/38F9C792948F11EEAE636E0FC4F9AE02.roa File: 38F9C792948F11EEAE636E0FC4F9AE02.roa (raw, json) Hash identifier: 3QR/UvKzS+sKKfIIK9uHF2so+MGpUcPtji7e/5xzyuw= Subject key identifier: 4D:97:DC:F6:F0:BC:1F:18:AF:6A:88:41:98:78:EF:AF:F4:16:B8:73 Certificate issuer: /CN=A9157378/serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Certificate serial: 5E Authority key identifier: 90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/38F9C792948F11EEAE636E0FC4F9AE02.roa Signing time: Sat 25 May 2024 08:12:23 +0000 ROA not before: Sat 25 May 2024 08:12:22 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45207 IP address blocks: 203.189.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157378/serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Validity Not Before: May 25 08:12:22 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66519d66-6674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:58:f1:41:40:5f:f3:5a:13:c3:dd:4d:fb:47: 83:c5:71:61:7a:07:a7:96:b8:42:f0:f3:a6:28:f3: 52:3c:c9:0c:78:c0:26:65:ba:53:06:11:9d:e6:fa: 93:b8:e4:1a:39:95:d1:70:50:39:3b:98:2d:f5:d4: 8c:b7:fe:ba:28:3c:33:a7:ad:78:50:80:a9:f6:26: 1f:d1:4a:ae:1d:97:ce:ed:14:f4:e7:c7:f8:f9:3d: 17:24:72:e7:01:79:dc:cb:aa:ca:59:4d:94:5f:23: 65:fc:74:b5:78:d5:75:b5:13:4e:cd:be:1b:b3:a6: 6a:87:9b:f9:02:62:f3:a5:dc:48:7a:df:34:82:17: e7:6a:33:aa:cb:0f:5d:b6:dc:22:cf:b0:e6:43:04: ed:ec:29:a6:32:7f:79:59:2e:70:47:60:c5:97:f9: a6:8a:9a:57:18:38:be:2e:8d:a7:a2:bc:10:ef:ba: 74:a7:35:a8:d4:56:5b:07:89:c2:82:ca:80:8e:e3: f0:a2:c7:08:7c:fe:a4:70:59:7b:bf:8c:09:fa:af: ae:bc:35:33:ef:f7:4a:b4:5a:ad:df:b8:6f:1c:fd: 8a:9a:45:2d:a9:08:cd:51:ae:93:09:b5:cf:c1:ff: 32:b0:fe:b6:44:55:36:79:33:f3:43:7e:1d:4d:b0: 0b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:97:DC:F6:F0:BC:1F:18:AF:6A:88:41:98:78:EF:AF:F4:16:B8:73 X509v3 Authority Key Identifier: keyid:90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/38F9C792948F11EEAE636E0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.189.93.0/24 Signature Algorithm: sha256WithRSAEncryption ac:05:2c:05:25:e6:7a:3d:52:08:f4:b2:d3:7c:a5:09:35:90: d8:30:47:9f:56:1b:d1:7e:50:8f:9e:eb:20:fe:fe:84:96:72: f5:5a:bd:2f:58:bd:c6:95:e5:51:31:b0:55:3d:aa:8d:a1:c8: 55:1c:91:2d:54:ac:dd:f8:16:06:20:24:b6:65:22:6c:e5:13: b9:bb:b9:1f:3b:f3:e1:42:eb:50:8f:cf:8f:f5:22:bf:38:a3: f8:d8:9c:d3:2f:5d:dd:51:4d:cd:e0:93:f4:f4:55:9e:aa:dd: de:31:74:ab:ff:d8:31:ff:79:56:4f:e8:f0:cb:69:96:31:f2: ef:91:24:4f:d9:6b:13:12:1f:47:76:8e:33:d3:46:5d:43:53: 62:8a:9b:79:de:d4:0a:90:23:9d:be:0a:8d:be:e1:38:6b:fb: 50:98:6f:d5:3f:54:74:ed:83:36:e4:65:40:e4:93:55:f1:26: 55:23:7e:a3:87:8e:97:54:b5:e6:f5:a2:81:a1:98:a0:5b:b9: cf:c1:d7:4f:0b:fc:3a:ab:51:40:dd:84:47:2c:ca:eb:46:4c: 4c:14:f8:54:56:a1:a6:76:10:e2:c9:00:14:50:f1:c7:0b:20: 40:14:78:f9:42:bd:1c:e4:48:b0:b3:74:b5:a8:ef:e7:f8:d4: 7f:71:b1:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzM3ODExMC8GA1UEBRMoOTBCOUJBQkQ3NDJCMjc1NzQzRkI3MTVFMTM1OTc1NjM4 RTlDMkYyNTAeFw0yNDA1MjUwODEyMjJaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTE5ZDY2LTY2NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3WPFBQF/zWhPD3U37R4PFcWF6B6eWuELw86Yo81I8yQx4wCZlulMGEZ3m+pO4 5Bo5ldFwUDk7mC311Iy3/rooPDOnrXhQgKn2Jh/RSq4dl87tFPTnx/j5PRckcucB edzLqspZTZRfI2X8dLV41XW1E07NvhuzpmqHm/kCYvOl3Eh63zSCF+dqM6rLD122 3CLPsOZDBO3sKaYyf3lZLnBHYMWX+aaKmlcYOL4ujaeivBDvunSnNajUVlsHicKC yoCO4/Cixwh8/qRwWXu/jAn6r668NTPv90q0Wq3fuG8c/YqaRS2pCM1RrpMJtc/B /zKw/rZEVTZ5M/NDfh1NsAsBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTZfc9vC8 HxivaohBmHjvr/QWuHMwHwYDVR0jBBgwFoAUkLm6vXQrJ1dD+3FeE1l1Y46cLyUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Mzc4LzBBODhDN0YyOTNF MzExRUU5M0M4RTU4MkM0RjlBRTAyL2tMbTZ2WFFySjFkRC0zRmVFMWwxWTQ2Y0x5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0xtNnZYUXJKMWRELTNGZUUxbDFZNDZjTHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzM3OC8wQTg4QzdGMjkzRTMxMUVFOTNDOEU1ODJDNEY5QUUwMi8zOEY5Qzc5Mjk0 OEYxMUVFQUU2MzZFMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMu9XTANBgkqhkiG9w0BAQsFAAOCAQEArAUsBSXmej1SCPSy 03ylCTWQ2DBHn1Yb0X5Qj57rIP7+hJZy9Vq9L1i9xpXlUTGwVT2qjaHIVRyRLVSs 3fgWBiAktmUibOUTubu5Hzvz4ULrUI/Pj/Uivzij+Nic0y9d3VFNzeCT9PRVnqrd 3jF0q//YMf95Vk/o8MtpljHy75EkT9lrExIfR3aOM9NGXUNTYoqbed7UCpAjnb4K jb7hOGv7UJhv1T9UdO2DNuRlQOSTVfEmVSN+o4eOl1S15vWigaGYoFu5z8HXTwv8 OqtRQN2ERyzK60ZMTBT4VFahpnYQ4skAFFDxxwsgQBR4+UK9HORIsLN0tajv5/jU f3Gxog== -----END CERTIFICATE-----Generated at Fri May 31 10:01:44 2024 by rpki-client on console-ams.rpki-client.org