$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa File: 47BE563CEA5A11EE92E5221CC4F9AE02.roa (raw, json) Hash identifier: 7x4NakpluCkmWYYDryCnQ1IzpwHgcjNVH6n3LNHtQAs= Subject key identifier: 46:D8:9E:1D:7C:3B:B1:13:8C:E7:D5:D5:84:04:E2:3F:95:90:73:9B Certificate issuer: /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470 Certificate serial: 072B Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa Signing time: Mon 25 Mar 2024 03:46:37 +0000 ROA not before: Mon 25 Mar 2024 03:46:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137547 IP address blocks: 114.134.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1835 (0x72b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470 Validity Not Before: Mar 25 03:46:37 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6600f39c-6e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:32:60:c1:0b:35:cb:9c:ea:47:7c:a9:fa:8f: e7:2b:e1:41:52:59:71:9a:b9:6e:9d:91:91:df:1c: fb:5a:5c:aa:cf:2b:e0:40:a0:ca:e7:8a:bc:54:e3: 46:10:34:7e:39:dc:bf:79:7f:77:23:f3:54:bb:4e: 16:a4:fa:c9:6f:93:94:d1:07:48:90:c0:ec:ad:21: af:7e:f8:7e:5c:75:86:2d:57:8f:0f:8a:ca:a1:82: 77:12:5b:30:e3:e2:50:06:30:da:f2:a3:07:83:82: 71:ea:e5:13:1a:7a:58:fe:34:06:19:47:ae:4c:9b: 8f:31:9e:74:ea:5d:8a:b9:ac:bb:46:0c:fd:0e:63: 3e:15:a8:91:f1:29:70:26:b6:0f:a8:2c:e6:79:53: 10:b8:8b:d4:b7:b8:72:bc:40:bd:4a:6a:79:1b:42: c5:6a:ac:0a:f9:e5:ec:40:d1:21:f1:54:95:02:6b: 41:6e:30:00:50:c2:21:76:f7:d7:79:f4:49:2b:9a: 6c:b8:0e:f1:ca:e8:49:b7:3f:96:52:bf:73:16:4f: ec:5d:a1:80:3d:19:48:81:fc:6b:02:35:65:67:5c: 0f:25:65:70:23:42:43:01:a3:d9:5c:35:4c:a1:fe: 91:4b:83:11:84:ac:74:84:f5:ae:9b:73:4a:44:25: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D8:9E:1D:7C:3B:B1:13:8C:E7:D5:D5:84:04:E2:3F:95:90:73:9B X509v3 Authority Key Identifier: keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.134.184.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:0a:d3:30:43:51:69:ef:dc:fd:65:2c:e4:46:22:02:2b:5c: aa:cc:84:b2:df:16:df:c8:af:69:34:ea:35:3d:2c:69:c4:00: 4a:b0:59:88:82:e3:49:30:13:d4:af:ea:02:47:43:07:54:4e: ac:1f:c2:1b:b4:e2:4d:98:fb:07:81:1f:51:ec:7b:6b:c5:8b: 31:ed:30:3b:9f:1a:6d:cb:7f:73:c2:c0:15:f2:0b:5b:bd:89: 3b:82:05:24:0d:ee:4e:06:00:fe:31:cc:18:9d:16:90:95:4e: b3:1d:ed:b8:17:22:aa:7d:f2:98:55:4f:3c:8e:80:7c:79:2f: 1f:90:60:40:d6:62:17:3d:66:32:ec:82:79:c2:90:59:7d:ec: fb:60:d1:a3:43:6f:6a:b5:3b:62:f2:f8:b5:89:96:59:50:c1: 43:e7:76:cb:64:a9:4c:4c:a3:3b:98:b6:f7:56:4b:86:e1:c6: 9b:cd:2d:16:94:a4:c7:80:a6:43:95:43:56:b9:58:74:28:39: 2e:b4:16:f3:02:15:5e:8f:34:82:c7:f1:e1:6a:9b:f8:c6:b6: a1:1a:b6:4e:81:a2:e2:13:4d:1e:df:98:68:91:07:b6:20:72: 99:71:92:bd:e3:c6:03:c3:8a:8a:2b:96:ea:07:3b:0a:a0:2a: bd:08:59:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICByswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MEYxMTAvBgNVBAUTKDlEMDc0NDZFRjk5RjNDNTdDMjlDNTgyRDZCN0FDQTQ3 MzVGNEU0NzAwHhcNMjQwMzI1MDM0NjM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwZjM5Yy02ZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TJgwQs1y5zqR3yp+o/nK+FBUllxmrlunZGR3xz7WlyqzyvgQKDK54q8VONG EDR+Ody/eX93I/NUu04WpPrJb5OU0QdIkMDsrSGvfvh+XHWGLVePD4rKoYJ3Elsw 4+JQBjDa8qMHg4Jx6uUTGnpY/jQGGUeuTJuPMZ506l2Kuay7Rgz9DmM+FaiR8Slw JrYPqCzmeVMQuIvUt7hyvEC9Smp5G0LFaqwK+eXsQNEh8VSVAmtBbjAAUMIhdvfX efRJK5psuA7xyuhJtz+WUr9zFk/sXaGAPRlIgfxrAjVlZ1wPJWVwI0JDAaPZXDVM of6RS4MRhKx0hPWum3NKRCU5zQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEbYnh18 O7ETjOfV1YQE4j+VkHObMB8GA1UdIwQYMBaAFJ0HRG75nzxXwpxYLWt6ykc19ORw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkwRi9CM0NBNzZDMEZB MzExMUVBQkQyNDlFN0FDNEY5QUUwMi9uUWRFYnZtZlBGZkNuRmd0YTNyS1J6WDA1 SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RZEVidm1mUEZmQ25GZ3RhM3JLUnpYMDVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MEYvQjNDQTc2QzBGQTMxMTFFQUJEMjQ5RTdBQzRGOUFFMDIvNDdCRTU2M0NF QTVBMTFFRTkyRTUyMjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJyhrgwDQYJKoZIhvcNAQELBQADggEBAIoK0zBDUWnv3P1l LORGIgIrXKrMhLLfFt/Ir2k06jU9LGnEAEqwWYiC40kwE9Sv6gJHQwdUTqwfwhu0 4k2Y+weBH1Hse2vFizHtMDufGm3Lf3PCwBXyC1u9iTuCBSQN7k4GAP4xzBidFpCV TrMd7bgXIqp98phVTzyOgHx5Lx+QYEDWYhc9ZjLsgnnCkFl97Ptg0aNDb2q1O2Ly +LWJlllQwUPndstkqUxMozuYtvdWS4bhxpvNLRaUpMeApkOVQ1a5WHQoOS60FvMC FV6PNILH8eFqm/jGtqEatk6BouITTR7fmGiRB7Ygcplxkr3jxgPDioorluoHOwqg Kr0IWZE= -----END CERTIFICATE-----Generated at Sun May 26 23:22:26 2024 by rpki-client on console-fra.rpki-client.org