$ rpki-client -vvf rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/5D4068C0E82411EE92612D7DC4F9AE02.roa File: 5D4068C0E82411EE92612D7DC4F9AE02.roa (raw, json) Hash identifier: p3i6Ay+o3E2OVSQm1vW2MA6Ty+h/wAo4/YH27AwdgTs= Subject key identifier: B0:C0:07:38:10:9E:AE:D9:FC:79:C6:2A:A0:CE:91:BA:31:48:79:BA Certificate issuer: /CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Certificate serial: 01C9 Authority key identifier: 2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/5D4068C0E82411EE92612D7DC4F9AE02.roa Signing time: Fri 22 Mar 2024 08:15:38 +0000 ROA not before: Fri 22 Mar 2024 08:15:38 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138415 IP address blocks: 43.248.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Validity Not Before: Mar 22 08:15:38 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fd3e2a-0078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:24:02:3c:dc:90:e7:2e:2a:0e:0a:f1:16:61: 4e:f5:f2:29:57:da:4b:5d:25:73:b8:f1:24:18:dc: c1:82:39:3f:b3:e7:72:c0:3e:7a:b6:e1:77:55:f9: 3f:14:3c:1d:26:c6:87:52:b4:80:0c:0c:8a:d2:95: 7f:82:8b:96:12:09:90:94:4c:0a:72:d2:58:d9:38: 28:4b:ce:0c:e6:78:36:31:3a:8c:cf:f5:2b:a0:c2: 44:de:3a:6f:a9:66:10:63:9c:42:5d:97:9b:42:de: d9:03:a0:da:d2:b1:e1:f3:a4:64:db:f9:24:6c:22: 7a:b1:4b:ac:ba:78:61:b6:93:1a:81:c0:f7:d1:74: e5:32:ea:64:50:42:c4:c5:52:27:91:e6:4c:d2:fd: de:c2:31:76:41:2e:cc:32:6a:46:99:ee:6b:61:9e: b5:7f:a4:56:eb:66:7a:ec:50:28:9f:f2:2b:6b:60: b0:a2:84:a2:fe:55:06:2b:20:a5:8f:0d:03:ba:45: 85:37:e0:02:2d:16:0c:fd:c3:65:ce:d9:13:b3:01: cc:f5:89:cb:4d:71:5d:cf:52:bc:34:30:9a:42:75: 35:ff:d6:a0:65:6b:cb:bc:43:d2:41:f8:ae:8d:87: fb:0f:89:4a:b7:c4:6d:f5:72:55:d1:22:3b:9a:1a: 7a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C0:07:38:10:9E:AE:D9:FC:79:C6:2A:A0:CE:91:BA:31:48:79:BA X509v3 Authority Key Identifier: keyid:2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/5D4068C0E82411EE92612D7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.174.0/24 Signature Algorithm: sha256WithRSAEncryption bf:4d:73:e7:35:6f:1a:42:c5:41:ca:fc:2b:7a:c2:89:78:7f: 52:3a:2a:db:8c:e0:f3:c6:2d:fb:8a:ee:28:2b:9a:0a:ce:28: 32:b6:05:05:27:66:c4:1c:6a:86:3b:cb:a2:bf:4c:86:03:13: e1:38:3f:21:7f:8b:1f:7a:9c:8a:31:49:3d:c9:a9:49:81:ba: 0f:4d:76:34:e5:19:ee:d1:47:e9:96:2e:8b:68:33:53:0c:34: 3b:f2:72:e7:76:4b:4b:0d:0e:e9:60:42:66:b5:cb:d6:05:44: 1d:41:ce:08:35:6c:b9:7e:2f:62:24:01:49:74:6c:d6:87:1e: 6c:62:39:3e:bb:e6:8f:8a:3d:47:2c:8b:9b:52:25:9a:d2:a6: de:ea:86:fb:ed:21:c6:7e:7c:81:37:fe:5f:2e:42:6b:96:84: 57:02:a2:1a:89:10:c2:a3:7f:64:99:5c:41:4a:65:4c:d0:e4: e8:f4:fe:99:03:9f:a7:5c:88:a2:c2:70:00:a1:8a:2d:ba:66: c1:90:20:8e:30:d3:b6:ff:0c:9f:1d:fa:27:62:1d:73:7d:5b: 90:e6:8f:b1:5e:2c:bf:79:e8:f2:2f:8f:7b:75:c1:f2:18:45: b6:32:31:30:08:9f:9d:5d:44:85:12:b0:48:93:18:da:37:f6: 9a:b5:bc:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5OTkxMTAvBgNVBAUTKDJGNTMzRUEwRTQwODE5REY1NjNFM0Y3RkUzRkU4NzQy OEQ1MkEwRDUwHhcNMjQwMzIyMDgxNTM4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZkM2UyYS0wMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yQCPNyQ5y4qDgrxFmFO9fIpV9pLXSVzuPEkGNzBgjk/s+dywD56tuF3Vfk/ FDwdJsaHUrSADAyK0pV/gouWEgmQlEwKctJY2TgoS84M5ng2MTqMz/UroMJE3jpv qWYQY5xCXZebQt7ZA6Da0rHh86Rk2/kkbCJ6sUusunhhtpMagcD30XTlMupkUELE xVInkeZM0v3ewjF2QS7MMmpGme5rYZ61f6RW62Z67FAon/Ira2CwooSi/lUGKyCl jw0DukWFN+ACLRYM/cNlztkTswHM9YnLTXFdz1K8NDCaQnU1/9agZWvLvEPSQfiu jYf7D4lKt8Rt9XJV0SI7mhp6vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLDABzgQ nq7Z/HnGKqDOkboxSHm6MB8GA1UdIwQYMBaAFC9TPqDkCBnfVj4/f+P+h0KNUqDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk5OS9CMUMxQjBEQTAz MUUxMUVEOTZFMjU2MjBDNEY5QUUwMi9MMU0tb09RSUdkOVdQajlfNF82SFFvMVNv TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxTS1vT1FJR2Q5V1BqOV80XzZIUW8xU29OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5OTkvQjFDMUIwREEwMzFFMTFFRDk2RTI1NjIwQzRGOUFFMDIvNUQ0MDY4QzBF ODI0MTFFRTkyNjEyRDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr+K4wDQYJKoZIhvcNAQELBQADggEBAL9Nc+c1bxpCxUHK /Ct6wol4f1I6KtuM4PPGLfuK7igrmgrOKDK2BQUnZsQcaoY7y6K/TIYDE+E4PyF/ ix96nIoxST3JqUmBug9NdjTlGe7RR+mWLotoM1MMNDvycud2S0sNDulgQma1y9YF RB1Bzgg1bLl+L2IkAUl0bNaHHmxiOT675o+KPUcsi5tSJZrSpt7qhvvtIcZ+fIE3 /l8uQmuWhFcCohqJEMKjf2SZXEFKZUzQ5Oj0/pkDn6dciKLCcAChii26ZsGQII4w 07b/DJ8d+idiHXN9W5Dmj7FeLL956PIvj3t1wfIYRbYyMTAIn51dRIUSsEiTGNo3 9pq1vGE= -----END CERTIFICATE-----Generated at Sun May 19 04:56:55 2024 by rpki-client on console-fra.rpki-client.org