$ rpki-client -vvf rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa File: 3B9F9ED8FE9811EC9965A444C4F9AE02.roa (raw, json) Hash identifier: OKeYJ2DZmtU3gbV57powHLVplqjvdJHP0g4S+AjP7LY= Subject key identifier: 83:D6:C1:5E:9A:7F:1E:24:2F:7E:73:0C:20:E9:57:A3:51:77:47:AE Certificate issuer: /CN=A9175251/serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Certificate serial: 0565 Authority key identifier: 6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa Signing time: Fri 19 May 2023 01:08:15 +0000 ROA not before: Fri 19 May 2023 01:08:15 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 24393 IP address blocks: 202.122.40.0/24 maxlen: 24 202.122.41.0/24 maxlen: 24 202.122.42.0/24 maxlen: 24 202.122.43.0/24 maxlen: 24 202.122.44.0/24 maxlen: 24 202.122.45.0/24 maxlen: 24 202.122.46.0/24 maxlen: 24 202.122.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175251/serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Validity Not Before: May 19 01:08:15 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6466cbff-189a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:42:27:fc:e5:48:c8:c7:3d:43:1b:62:73: cc:fa:5d:8c:1b:fe:49:dc:40:c0:bc:74:da:95:fb: e7:61:fa:6f:32:97:8a:1e:9c:5b:8a:5d:97:5a:f8: 86:b2:ec:87:58:90:79:89:8f:1a:9e:08:15:1d:5a: 4b:2a:f8:ca:41:40:5f:33:b3:ad:62:e3:61:94:d1: 6a:c8:55:de:91:9a:81:e0:52:27:47:c8:85:a7:28: f7:b5:70:10:e8:16:07:02:15:a3:e8:28:ef:e5:78: 12:0e:b4:8d:44:34:9f:70:78:3f:e6:e2:6e:a7:28: fc:46:ea:d5:73:bb:9e:f9:85:26:d3:32:2d:35:6e: fc:2e:a5:fd:9f:e2:9c:2d:d2:29:ab:e4:fd:c2:50: 77:59:dd:94:12:8a:ae:63:3d:c5:17:25:28:2f:c8: 86:4a:0b:e9:85:1e:80:f2:5a:82:26:28:3c:95:14: 72:a2:e0:a5:9f:a1:47:7a:2b:a1:a2:84:c4:7c:24: b9:8e:6f:b3:18:8e:b1:fa:f8:88:de:2c:a8:79:ce: cc:11:d8:9e:55:96:64:0a:77:e9:e5:1b:d0:73:99: d5:b2:a3:2d:99:db:cf:e3:9a:3c:26:5b:a2:88:ab: ec:c6:92:aa:29:da:66:4d:04:9e:44:91:94:df:12: e0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D6:C1:5E:9A:7F:1E:24:2F:7E:73:0C:20:E9:57:A3:51:77:47:AE X509v3 Authority Key Identifier: keyid:6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.122.40.0/21 Signature Algorithm: sha256WithRSAEncryption cd:88:4b:5d:b7:40:6f:94:31:f5:f6:5b:07:5d:90:3d:a1:4f: 6a:5d:ac:f0:84:72:9e:48:7d:6d:07:1a:6c:9b:5b:09:d3:d2: 31:2d:7e:60:16:3a:3b:23:2c:b7:25:ad:00:84:9b:a3:50:ae: 2f:a6:79:d3:e0:9e:cd:c7:ef:7e:a9:d2:5d:df:5c:98:0a:0b: 55:f9:da:a8:90:e1:c9:fd:d7:a9:46:c3:cb:fe:a8:96:cc:0f: 52:c6:c5:81:08:73:3b:c4:00:c4:07:e2:c3:9d:73:08:04:40: ae:db:28:14:47:f8:c0:ca:c0:12:d3:91:2a:6e:73:ac:31:ed: ff:7f:c7:cb:ef:fd:fb:68:62:78:47:20:49:73:b4:4b:62:1b: 39:cd:08:35:cd:f2:ed:10:21:ff:24:6c:4f:9a:2c:23:f8:69: 3b:eb:98:a9:a1:bc:de:42:dd:68:24:10:64:b4:5d:8e:0f:8f: 28:f1:c9:19:6f:e1:d2:b7:1e:b5:d8:1d:4f:cf:93:6e:6d:63: 2d:ad:73:2e:8a:b7:da:6a:d9:f7:08:53:a4:90:c0:4d:37:eb: a7:70:c5:39:2e:99:e1:c5:5c:3b:2d:1f:54:15:ed:53:bc:37: 3f:44:20:c1:87:8b:7d:82:69:f7:7d:c6:b4:2d:f4:17:7f:37: 7b:ed:2e:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyNTExMTAvBgNVBAUTKDZFNUIyNDgxMTM4NkFBNEE4MkQ4MUY3MkM1REQyNDk5 Mjg2RkJGRDQwHhcNMjMwNTE5MDEwODE1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY2Y2JmZi0xODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7RCJ/zlSMjHPUMbYnPM+l2MG/5J3EDAvHTalfvnYfpvMpeKHpxbil2XWviG suyHWJB5iY8anggVHVpLKvjKQUBfM7OtYuNhlNFqyFXekZqB4FInR8iFpyj3tXAQ 6BYHAhWj6Cjv5XgSDrSNRDSfcHg/5uJupyj8RurVc7ue+YUm0zItNW78LqX9n+Kc LdIpq+T9wlB3Wd2UEoquYz3FFyUoL8iGSgvphR6A8lqCJig8lRRyouCln6FHeiuh ooTEfCS5jm+zGI6x+viI3iyoec7MEdieVZZkCnfp5RvQc5nVsqMtmdvP45o8Jlui iKvsxpKqKdpmTQSeRJGU3xLgyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIPWwV6a fx4kL35zDCDpV6NRd0euMB8GA1UdIwQYMBaAFG5bJIEThqpKgtgfcsXdJJkob7/U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI1MS84MUJGQTMyMjUz RUYxMUVCOTdEMzhDMTZDNEY5QUUwMi9ibHNrZ1JPR3FrcUMyQjl5eGQwa21TaHZ2 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jsc2tnUk9HcWtxQzJCOXl4ZDBrbVNodnY5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyNTEvODFCRkEzMjI1M0VGMTFFQjk3RDM4QzE2QzRGOUFFMDIvM0I5RjlFRDhG RTk4MTFFQzk5NjVBNDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKeigwDQYJKoZIhvcNAQELBQADggEBAM2IS123QG+UMfX2 WwddkD2hT2pdrPCEcp5IfW0HGmybWwnT0jEtfmAWOjsjLLclrQCEm6NQri+medPg ns3H736p0l3fXJgKC1X52qiQ4cn916lGw8v+qJbMD1LGxYEIczvEAMQH4sOdcwgE QK7bKBRH+MDKwBLTkSpuc6wx7f9/x8vv/ftoYnhHIElztEtiGznNCDXN8u0QIf8k bE+aLCP4aTvrmKmhvN5C3WgkEGS0XY4PjyjxyRlv4dK3HrXYHU/Pk25tYy2tcy6K t9pq2fcIU6SQwE0366dwxTkumeHFXDstH1QV7VO8Nz9EIMGHi32Cafd9xrQt9Bd/ N3vtLvI= -----END CERTIFICATE-----Generated at Tue May 7 01:58:21 2024 by rpki-client on console-fra.rpki-client.org