$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa File: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (raw, json) Hash identifier: reHdzW246NVqAWZCq6Q5QnJEXEf29dnZorkiuo7WYZA= Subject key identifier: 18:20:AB:B8:3F:A2:24:99:16:AA:90:71:CD:2D:02:DB:AB:84:9C:F1 Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0AFF Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa Signing time: Sat 06 Jan 2024 19:57:38 +0000 ROA not before: Sat 06 Jan 2024 19:57:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 8739 IP address blocks: 116.251.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jan 6 19:57:38 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6599b0b1-8335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5f:39:bf:fb:72:1b:6d:b4:1d:ef:ad:c1:c2: 14:6f:f1:2b:93:cb:23:53:5d:91:46:65:6a:1c:e5: 7e:17:0e:08:8f:61:d7:71:ec:0f:3a:c7:15:3a:99: b8:90:96:74:cc:dd:88:84:84:00:85:f4:23:6e:9e: 09:79:36:75:21:16:6c:4a:c5:86:37:fe:84:7f:f0: cd:6c:98:86:f6:80:78:23:3a:d7:cd:f5:c9:9f:12: 2a:e5:3d:bf:b7:f2:e4:17:cf:1c:74:ae:ca:97:32: 58:f0:18:0c:29:ac:35:0d:11:1c:8c:f7:8b:4f:8e: 39:a6:ed:9c:c6:95:eb:5a:0f:27:5f:ca:ef:f1:31: 9e:a8:64:00:75:d8:c2:8b:a5:7d:99:46:42:db:cf: 48:1b:4a:6d:da:b6:c6:e2:9d:d3:20:8c:fd:c6:5a: 51:23:a6:db:e3:21:8f:65:61:c2:6d:d3:cc:e9:34: 02:95:c8:32:47:40:e1:c2:54:4b:ab:23:3a:97:d1: 99:de:86:19:91:44:25:7f:01:fc:c7:58:49:23:26: cf:ab:26:cb:55:51:74:df:66:83:71:8c:75:53:9f: 8d:b5:fa:af:c4:9b:90:d6:24:b2:75:4c:ec:97:0d: 67:a8:96:b0:4a:ff:05:2e:c4:60:39:43:b0:b5:82: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:20:AB:B8:3F:A2:24:99:16:AA:90:71:CD:2D:02:DB:AB:84:9C:F1 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3A5A84F8CB7111EBA9EEF440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.251.204.0/22 Signature Algorithm: sha256WithRSAEncryption 92:14:71:ee:07:5a:22:fc:ed:f1:0f:9e:ed:25:b9:21:66:38: 3c:b8:ea:d2:ec:00:63:8a:3d:4f:ee:b5:1b:91:6f:ba:94:ae: 57:46:16:32:98:7e:58:a5:83:76:80:a4:70:78:60:72:c7:68: c1:63:33:84:a0:f6:b4:2a:73:9f:8a:34:65:fd:2e:0e:89:e9: 81:e1:e9:76:51:07:23:26:f9:7d:d2:0b:1d:f0:02:a7:f7:b0: 25:13:97:83:e4:3a:2e:45:a6:1d:b9:f0:42:51:10:53:a1:94: a6:fe:02:cc:b2:b1:22:b6:67:77:c5:52:d0:a1:f8:70:7d:0a: 90:70:9b:67:06:fb:cb:26:32:90:6d:51:4c:e2:0d:e3:9a:7f: 12:c2:c3:11:d6:31:27:19:64:71:e4:29:21:64:47:13:68:82: 68:50:19:8c:f9:0c:1e:5b:a3:0a:1d:3b:3d:39:56:06:b5:7c: a8:0f:ac:30:ed:63:bf:0f:ec:ac:7d:e5:52:57:07:41:02:e9: 46:dd:49:0b:23:be:92:bb:de:3a:0c:3a:18:e9:7c:3e:eb:85: 3e:a1:c7:41:be:b7:4d:a0:58:ce:a9:bd:9f:6a:9b:73:38:d7: 43:77:07:3e:80:53:8e:9c:00:62:e4:f7:27:0c:c0:01:f8:e2: 9b:e7:52:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjQwMTA2MTk1NzM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk5YjBiMS04MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyF85v/tyG220He+twcIUb/Erk8sjU12RRmVqHOV+Fw4Ij2HXcewPOscVOpm4 kJZ0zN2IhIQAhfQjbp4JeTZ1IRZsSsWGN/6Ef/DNbJiG9oB4IzrXzfXJnxIq5T2/ t/LkF88cdK7KlzJY8BgMKaw1DREcjPeLT445pu2cxpXrWg8nX8rv8TGeqGQAddjC i6V9mUZC289IG0pt2rbG4p3TIIz9xlpRI6bb4yGPZWHCbdPM6TQClcgyR0DhwlRL qyM6l9GZ3oYZkUQlfwH8x1hJIybPqybLVVF032aDcYx1U5+NtfqvxJuQ1iSydUzs lw1nqJawSv8FLsRgOUOwtYKVEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBggq7g/ oiSZFqqQcc0tAturhJzxMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg1NjgvRDMxMzA2NzYxODU3MTFFQTk4NjM0MTVFQzRGOUFFMDIvM0E1QTg0RjhD QjcxMTFFQkE5RUVGNDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0+8wwDQYJKoZIhvcNAQELBQADggEBAJIUce4HWiL87fEP nu0luSFmODy46tLsAGOKPU/utRuRb7qUrldGFjKYflilg3aApHB4YHLHaMFjM4Sg 9rQqc5+KNGX9Lg6J6YHh6XZRByMm+X3SCx3wAqf3sCUTl4PkOi5Fph258EJREFOh lKb+AsyysSK2Z3fFUtCh+HB9CpBwm2cG+8smMpBtUUziDeOafxLCwxHWMScZZHHk KSFkRxNogmhQGYz5DB5bowodOz05Vga1fKgPrDDtY78P7Kx95VJXB0EC6UbdSQsj vpK73joMOhjpfD7rhT6hx0G+t02gWM6pvZ9qm3M410N3Bz6AU46cAGLk9ycMwAH4 4pvnUp8= -----END CERTIFICATE-----Generated at Sat May 18 20:48:18 2024 by rpki-client on console-fra.rpki-client.org