$ rpki-client -vvf rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/E3CD40BE7D6611ECBA65C232C4F9AE02.roa File: E3CD40BE7D6611ECBA65C232C4F9AE02.roa (raw, json) Hash identifier: 0enjz6SIbauvQ9h6jwc2NEiXIAcjMM9tvz5AS5aCRh4= Subject key identifier: 59:02:30:DD:E7:6F:0B:08:F3:64:2D:74:CD:EC:A1:80:10:59:62:A9 Certificate issuer: /CN=A9157E9C/serialNumber=E99FF0448B0BDA3771CDC4A96C59F7C9F9C87944 Certificate serial: 034D Authority key identifier: E9:9F:F0:44:8B:0B:DA:37:71:CD:C4:A9:6C:59:F7:C9:F9:C8:79:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/E3CD40BE7D6611ECBA65C232C4F9AE02.roa Signing time: Sun 07 Jul 2024 02:14:23 +0000 ROA not before: Sun 07 Jul 2024 02:14:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7575 IP address blocks: 203.22.214.0/24 maxlen: 24 2401:2fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.crl rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 845 (0x34d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157E9C/serialNumber=E99FF0448B0BDA3771CDC4A96C59F7C9F9C87944 Validity Not Before: Jul 7 02:14:23 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6689f9ff-8da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1f:9f:8c:b1:b9:2a:c3:a8:12:3d:d9:c3:0e: e6:80:b3:95:4a:03:7a:8c:16:00:85:56:c7:fb:61: 3c:36:55:6d:c0:ec:23:c1:af:e8:87:53:14:a9:6f: 54:3a:4b:f2:37:a7:53:05:16:4f:d7:52:3a:a7:6a: 92:56:8f:9a:20:00:92:fb:05:d2:3f:91:f6:ee:56: 46:6b:32:98:84:3e:fe:87:22:6f:22:30:22:22:62: c3:98:3e:08:96:c8:af:89:2e:fe:c7:ce:d6:af:db: 8a:e2:26:17:4a:38:0e:81:0c:bc:c9:15:16:d5:d1: ae:df:82:99:f5:37:bb:11:b0:9e:25:cc:5f:ec:25: ff:f4:18:8d:17:29:6b:86:a6:20:d6:fa:7f:43:d1: 85:1c:96:b9:78:8c:75:3e:ae:f9:86:db:12:b7:fd: b2:45:61:7d:bf:53:16:24:ab:db:b5:28:90:27:cb: b7:aa:9e:8f:c5:4f:e9:15:82:0c:e4:45:7e:73:70: 3a:84:a9:ba:17:16:11:bd:09:6a:0f:f9:4b:02:fd: c2:4c:d3:25:82:7f:b2:75:fc:cd:a4:42:35:28:cf: 64:f5:2b:4d:79:a8:f0:16:6c:41:bc:60:61:12:8e: 3f:b2:fc:cc:75:4e:d7:ca:1f:10:be:80:34:9f:cf: 34:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:02:30:DD:E7:6F:0B:08:F3:64:2D:74:CD:EC:A1:80:10:59:62:A9 X509v3 Authority Key Identifier: keyid:E9:9F:F0:44:8B:0B:DA:37:71:CD:C4:A9:6C:59:F7:C9:F9:C8:79:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/E3CD40BE7D6611ECBA65C232C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.22.214.0/24 IPv6: 2401:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:19:f7:25:78:e0:10:62:6e:31:3e:80:11:2e:e7:33:9e:7b: 44:2a:16:01:11:b8:29:a9:47:32:0e:cf:36:8f:20:ec:b0:45: a7:49:60:fe:50:c1:6a:e9:eb:5a:70:cf:86:b2:f8:95:e1:bb: e8:98:03:72:fb:c0:02:10:3c:25:65:91:07:ad:c5:7b:dc:de: 2a:5f:9b:d0:b1:5a:d7:5d:d0:cf:33:22:ca:65:cb:ff:cc:9d: 6a:f6:f3:7f:2e:1e:c5:4e:9d:7d:62:04:4b:6b:18:18:f9:32: 71:b2:0d:88:0b:1d:dd:0c:69:e4:92:d9:fe:50:2b:14:03:75: d3:58:03:b4:cd:b6:7e:7a:3a:fb:cb:b3:bf:58:39:36:9c:b7: 25:da:10:4f:ff:4c:83:79:8b:10:fc:45:4e:95:9a:90:c0:d1: 4f:8b:13:41:b5:d1:4c:78:38:a0:02:1e:98:32:f8:e4:86:84: 78:a7:ec:14:17:cd:93:7f:61:12:57:9b:97:c8:7f:e6:f6:9f: e7:bc:48:79:df:e9:75:65:89:ba:3f:42:7b:f8:b6:64:2d:e3: 87:d3:63:d9:dd:d1:e6:0f:76:d8:fb:5c:0d:49:14:f6:4f:a6: 92:5e:92:13:35:7b:2e:c8:99:ef:04:8d:45:9a:42:75:24:4a: d2:2a:b7:70 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdFOUMxMTAvBgNVBAUTKEU5OUZGMDQ0OEIwQkRBMzc3MUNEQzRBOTZDNTlGN0M5 RjlDODc5NDQwHhcNMjQwNzA3MDIxNDIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5ZjlmZi04ZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6R+fjLG5KsOoEj3Zww7mgLOVSgN6jBYAhVbH+2E8NlVtwOwjwa/oh1MUqW9U OkvyN6dTBRZP11I6p2qSVo+aIACS+wXSP5H27lZGazKYhD7+hyJvIjAiImLDmD4I lsiviS7+x87Wr9uK4iYXSjgOgQy8yRUW1dGu34KZ9Te7EbCeJcxf7CX/9BiNFylr hqYg1vp/Q9GFHJa5eIx1Pq75htsSt/2yRWF9v1MWJKvbtSiQJ8u3qp6PxU/pFYIM 5EV+c3A6hKm6FxYRvQlqD/lLAv3CTNMlgn+ydfzNpEI1KM9k9StNeajwFmxBvGBh Eo4/svzMdU7Xyh8QvoA0n880rwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFkCMN3n bwsI82QtdM3soYAQWWKpMB8GA1UdIwQYMBaAFOmf8ESLC9o3cc3EqWxZ98n5yHlE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0U5Qy81MEM5OTNDRTdE NjMxMUVDQUM1QzdGMUVDNEY5QUUwMi82Wl93UklzTDJqZHh6Y1NwYkZuM3lmbkll VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZaX3dSSXNMMmpkeHpjU3BiRm4zeWZuSWVVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdFOUMvNTBDOTkzQ0U3RDYzMTFFQ0FDNUM3RjFFQzRGOUFFMDIvRTNDRDQwQkU3 RDY2MTFFQ0JBNjVDMjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADLFtYwDQQCAAIwBwMFACQBL8AwDQYJKoZIhvcNAQELBQAD ggEBABsZ9yV44BBibjE+gBEu5zOee0QqFgERuCmpRzIOzzaPIOywRadJYP5QwWrp 61pwz4ay+JXhu+iYA3L7wAIQPCVlkQetxXvc3ipfm9CxWtdd0M8zIsply//MnWr2 838uHsVOnX1iBEtrGBj5MnGyDYgLHd0MaeSS2f5QKxQDddNYA7TNtn56OvvLs79Y OTactyXaEE//TIN5ixD8RU6VmpDA0U+LE0G10Ux4OKACHpgy+OSGhHin7BQXzZN/ YRJXm5fIf+b2n+e8SHnf6XVlibo/Qnv4tmQt44fTY9nd0eYPdtj7XA1JFPZPppJe khM1ey7Ime8EjUWaQnUkStIqt3A= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:27 2024 by rpki-client on console-fra.rpki-client.org