$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/3768DFB41C6011EEAF58FB61C4F9AE02.roa File: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (raw, json) Hash identifier: KpwyVmAV+2aohI+X1BHF5SHX3fe5QtPqxB/sPIhZciU= Subject key identifier: B5:BB:4E:E9:B9:68:8C:F7:93:ED:10:CC:C6:B1:82:52:45:A5:0D:99 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 33C6 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/3768DFB41C6011EEAF58FB61C4F9AE02.roa Signing time: Sat 20 Jan 2024 14:30:08 +0000 ROA not before: Sat 20 Jan 2024 14:30:08 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132040 IP address blocks: 198.48.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 14:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13254 (0x33c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Jan 20 14:30:08 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65abd8f0-93a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:f8:5c:a3:f8:3e:d9:9e:6f:34:bf:5f:03: f0:b0:08:1d:f0:6c:a9:ef:6d:93:4e:25:19:57:59: 8f:f7:33:81:59:ce:c3:1f:aa:63:45:d7:55:3f:0e: 5a:40:be:d1:e0:56:51:e1:63:87:16:50:0d:1d:d7: f9:ad:88:ab:a8:95:20:e1:12:3c:a8:34:17:9a:b2: a6:11:7c:02:ad:ff:5c:b9:9e:34:fe:7c:14:9e:a5: 9a:4d:6d:fa:5c:ab:24:58:bd:ce:da:b9:86:31:59: 80:90:35:8a:78:b6:e0:a5:a2:11:4b:fd:8f:81:af: f6:d7:9a:2d:98:49:5a:bf:8e:b7:8e:80:cf:13:6c: 48:1f:64:bf:56:e4:a1:63:d9:f7:84:b1:c1:3e:01: 0a:b3:85:a2:fd:c8:a2:1e:6b:56:92:71:0b:42:2c: 2a:97:ea:e9:d3:9f:95:09:28:8e:3f:af:cf:bc:49: 94:06:6e:37:ba:0a:b6:b8:dd:95:0d:76:e5:4f:11: f8:78:96:3b:bf:09:21:36:2f:64:c4:a0:39:c9:06: 67:8a:c7:49:b1:df:63:7a:4e:00:6e:75:e5:b5:ab: 58:3e:79:fa:b8:c8:d5:94:8a:e0:05:6a:ab:83:50: 50:e0:bd:5e:e1:51:32:54:37:f2:a3:be:d7:ef:12: f2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BB:4E:E9:B9:68:8C:F7:93:ED:10:CC:C6:B1:82:52:45:A5:0D:99 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/3768DFB41C6011EEAF58FB61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.48.0.0/22 Signature Algorithm: sha256WithRSAEncryption c5:4b:22:01:d2:d4:b6:d7:2e:3f:90:70:b3:e7:d7:dd:19:60: 62:35:90:c3:4c:f6:1c:9f:48:5c:da:1c:6c:02:7a:4a:4e:cf: da:28:14:10:fd:67:c3:9e:20:1d:9d:23:e2:4a:51:84:85:69: a3:aa:af:f3:55:b6:18:29:6b:f8:cb:7a:13:c0:65:16:b3:90: e8:aa:da:62:ab:18:42:eb:79:c3:44:ac:e5:3d:b9:28:32:01: fa:a9:48:b1:1a:36:47:73:dc:3a:26:50:c7:d9:e7:87:fb:e7: 26:21:ee:bf:20:ee:b3:0d:98:5f:33:88:f6:a2:7b:87:df:f4: f8:95:e2:af:6b:ee:d0:56:2b:e0:63:03:e0:f3:f0:51:a0:2c: 37:bb:a9:4a:af:d1:73:33:ad:bc:b5:12:70:5d:20:06:21:a9: f0:38:70:40:cf:14:e1:58:b0:db:3e:2d:c2:57:d8:2d:83:47: 01:53:68:f5:bd:77:c8:3b:f2:2a:86:73:71:a4:a1:15:15:f4: 7e:34:5f:60:03:b7:59:24:e4:be:00:8c:1b:5f:c2:65:6f:9a: a9:e1:dc:2e:8d:a1:c3:99:8c:dd:1c:e9:9b:91:3f:64:1f:e9: e5:36:b9:a6:7e:11:70:54:e5:fc:c5:6c:12:9f:0d:c0:01:8b: d6:4f:5a:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjQwMTIwMTQzMDA4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFiZDhmMC05M2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsP4XKP4PtmebzS/XwPwsAgd8Gyp722TTiUZV1mP9zOBWc7DH6pjRddVPw5a QL7R4FZR4WOHFlANHdf5rYirqJUg4RI8qDQXmrKmEXwCrf9cuZ40/nwUnqWaTW36 XKskWL3O2rmGMVmAkDWKeLbgpaIRS/2Pga/215otmElav463joDPE2xIH2S/VuSh Y9n3hLHBPgEKs4Wi/ciiHmtWknELQiwql+rp05+VCSiOP6/PvEmUBm43ugq2uN2V DXblTxH4eJY7vwkhNi9kxKA5yQZnisdJsd9jek4AbnXltatYPnn6uMjVlIrgBWqr g1BQ4L1e4VEyVDfyo77X7xLyEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLW7Tum5 aIz3k+0QzMaxglJFpQ2ZMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ4ODAvNEU4NjQ1MEMxRDZBMTFFMkJCNzAxNEE4MDhCMDJDRDIvMzc2OERGQjQx QzYwMTFFRUFGNThGQjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALGMAAwDQYJKoZIhvcNAQELBQADggEBAMVLIgHS1LbXLj+Q cLPn190ZYGI1kMNM9hyfSFzaHGwCekpOz9ooFBD9Z8OeIB2dI+JKUYSFaaOqr/NV thgpa/jLehPAZRazkOiq2mKrGELrecNErOU9uSgyAfqpSLEaNkdz3DomUMfZ54f7 5yYh7r8g7rMNmF8ziPaie4ff9PiV4q9r7tBWK+BjA+Dz8FGgLDe7qUqv0XMzrby1 EnBdIAYhqfA4cEDPFOFYsNs+LcJX2C2DRwFTaPW9d8g78iqGc3GkoRUV9H40X2AD t1kk5L4AjBtfwmVvmqnh3C6NocOZjN0c6ZuRP2Qf6eU2uaZ+EXBU5fzFbBKfDcAB i9ZPWmU= -----END CERTIFICATE-----Generated at Tue May 28 15:25:26 2024 by rpki-client on console-fra.rpki-client.org