$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa File: AE51756A556B11EFA5FB1569C4F9AE02.roa (raw, json) Hash identifier: Bt9vGqi9TgbZdaX+9C2xi9dkPbVYKmUnDkvJSbxIGtE= Subject key identifier: A6:9C:74:D6:E5:8E:DC:7A:EC:A3:D4:06:F5:C9:4B:C7:DB:2C:86:76 Certificate issuer: /CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Certificate serial: 04 Authority key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa Signing time: Thu 08 Aug 2024 09:50:45 +0000 ROA not before: Thu 08 Aug 2024 09:50:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 8075 IP address blocks: 203.21.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Validity Not Before: Aug 8 09:50:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b494f4-3784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7c:13:3b:0e:ce:63:3a:38:e1:75:37:af:ac: 81:26:7d:69:9d:cf:cc:77:ec:7a:dd:5c:ce:53:15: 19:88:84:51:f0:1a:0b:fa:0c:16:5d:fc:cc:90:c6: a9:d4:cf:8b:2e:cd:4d:4c:1c:5c:7b:39:d6:6e:f5: 1a:98:58:11:a1:e5:d8:53:79:43:a4:0c:95:bb:3e: a5:78:c2:6b:ae:15:f3:d9:ff:ab:95:11:a9:eb:a4: ae:cd:4c:80:34:7b:89:12:da:c1:48:d6:6e:d0:48: 42:99:04:26:8f:b4:78:5b:14:ac:4f:03:e0:05:f1: 87:b1:3f:37:b3:9d:1a:a5:62:83:b8:ae:ff:38:15: e3:64:94:90:c0:79:67:39:75:a9:2d:7a:dc:7b:3c: 67:8f:7a:c2:68:18:84:22:da:38:f5:50:47:ec:51: d4:01:48:8a:27:e7:dc:80:c9:15:93:41:73:01:bf: e7:23:88:e0:6a:24:65:83:4a:e1:c9:9a:a7:61:12: f5:64:38:23:f2:69:37:63:b0:e6:a5:b2:b9:3a:06: f8:f3:0a:7b:47:ac:a4:dc:91:3d:41:a5:6a:77:a3: ef:b3:24:6c:65:b4:da:f9:d7:8f:5c:b3:3b:b1:d7: 54:3b:c5:b3:c0:fa:ee:81:1f:7d:4e:1a:f2:2f:41: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9C:74:D6:E5:8E:DC:7A:EC:A3:D4:06:F5:C9:4B:C7:DB:2C:86:76 X509v3 Authority Key Identifier: keyid:5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.152.0/23 Signature Algorithm: sha256WithRSAEncryption 32:5c:1e:69:2c:5c:28:31:e0:82:9a:d4:5a:31:31:64:c8:90: af:99:1a:a4:9e:8b:00:fb:64:b1:17:25:4f:c7:7b:4f:04:a1: 71:42:6f:01:07:e1:66:ac:d7:5c:9c:1e:b8:d9:f5:da:5d:6a: 7b:b8:1e:ac:85:d8:b2:60:0d:0f:18:39:77:f5:0d:86:0f:39: 37:08:a3:ef:7c:8e:04:cb:57:0d:d4:b2:3d:f2:8f:0f:ce:be: c8:bc:81:a7:06:0f:b1:2c:b1:86:d8:b4:6e:33:26:7f:ba:9f: 5f:38:b4:2f:c3:67:75:02:cc:48:23:dc:86:fd:a2:9a:8d:24: 2b:82:96:19:10:76:d5:65:26:c8:c5:87:08:78:3f:a8:76:22: 12:71:00:93:84:c7:fa:78:52:60:8a:aa:18:bd:33:59:80:a9: 25:30:59:50:26:41:41:03:c9:9c:3c:57:7f:ba:ce:c0:29:c0: fd:4c:ea:38:60:42:51:e9:d3:ef:e6:cb:5e:73:70:54:55:c5: 26:72:9a:cf:3f:41:e1:c2:22:c6:e5:41:95:95:1b:1d:63:05: ec:63:78:6d:66:67:b6:36:f3:69:32:f0:79:38:41:cc:d0:58: 88:1b:25:ff:b1:64:28:a5:39:26:91:3e:78:70:ef:67:26:bf: 6c:b8:86:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0QxMjExMC8GA1UEBRMoNUE4QjYxQkM1M0EzMjREN0EyQjRGNDE1M0QwNzc0NkVD MkEzMzVEMjAeFw0yNDA4MDgwOTUwNDVaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjQ5NGY0LTM3ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQfBM7Ds5jOjjhdTevrIEmfWmdz8x37HrdXM5TFRmIhFHwGgv6DBZd/MyQxqnU z4suzU1MHFx7OdZu9RqYWBGh5dhTeUOkDJW7PqV4wmuuFfPZ/6uVEanrpK7NTIA0 e4kS2sFI1m7QSEKZBCaPtHhbFKxPA+AF8YexPzeznRqlYoO4rv84FeNklJDAeWc5 daktetx7PGePesJoGIQi2jj1UEfsUdQBSIon59yAyRWTQXMBv+cjiOBqJGWDSuHJ mqdhEvVkOCPyaTdjsOalsrk6BvjzCntHrKTckT1BpWp3o++zJGxltNr5149cszux 11Q7xbPA+u6BH31OGvIvQaQJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUppx01uWO 3Hrso9QG9clLx9sshnYwHwYDVR0jBBgwFoAUWothvFOjJNeitPQVPQd0bsKjNdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRDEyL0FCODkzNEYyNTJD NDExRUY4RERGRDUzRkM0RjlBRTAyL1dvdGh2Rk9qSk5laXRQUVZQUWQwYnNLak5k SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV290aHZGT2pKTmVpdFBRVlBRZDBic0tqTmRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0QxMi9BQjg5MzRGMjUyQzQxMUVGOERERkQ1M0ZDNEY5QUUwMi9BRTUxNzU2QTU1 NkIxMUVGQTVGQjE1NjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsVmDANBgkqhkiG9w0BAQsFAAOCAQEAMlweaSxcKDHggprU WjExZMiQr5kapJ6LAPtksRclT8d7TwShcUJvAQfhZqzXXJweuNn12l1qe7gerIXY smANDxg5d/UNhg85Nwij73yOBMtXDdSyPfKPD86+yLyBpwYPsSyxhti0bjMmf7qf Xzi0L8NndQLMSCPchv2imo0kK4KWGRB21WUmyMWHCHg/qHYiEnEAk4TH+nhSYIqq GL0zWYCpJTBZUCZBQQPJnDxXf7rOwCnA/UzqOGBCUenT7+bLXnNwVFXFJnKazz9B 4cIixuVBlZUbHWMF7GN4bWZntjbzaTLweThBzNBYiBsl/7FkKKU5JpE+eHDvZya/ bLiGnA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org