$ rpki-client -vvf rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa File: 38003F04CA8211EAA3838931C4F9AE02.roa (raw, json) Hash identifier: ZhT9VI27PKDytmI9SXJDcHjMH8fcz38embDIJ/ZKbEE= Subject key identifier: 27:3D:D8:B4:6E:13:07:23:AA:9D:3F:50:88:DA:24:62:18:BD:3B:CF Certificate issuer: /CN=A9180562/serialNumber=9C0E1BFCB81F192D2FCCACE799E15DF1ADBC412D Certificate serial: 1CC2 Authority key identifier: 9C:0E:1B:FC:B8:1F:19:2D:2F:CC:AC:E7:99:E1:5D:F1:AD:BC:41:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa Signing time: Fri 28 Jul 2023 16:33:12 +0000 ROA not before: Fri 28 Jul 2023 16:33:12 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 5087 IP address blocks: 103.1.176.0/22 maxlen: 24 116.12.64.0/18 maxlen: 24 116.206.20.0/22 maxlen: 24 203.143.0.0/18 maxlen: 24 2405:5400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.crl rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7362 (0x1cc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180562/serialNumber=9C0E1BFCB81F192D2FCCACE799E15DF1ADBC412D Validity Not Before: Jul 28 16:33:12 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c3edc7-d9bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:8f:c3:c5:32:ee:ab:83:c9:19:9f:e7:c5: 67:b1:20:85:a5:02:14:bb:b2:6b:1f:9c:10:30:7f: e0:11:26:11:2a:ac:fc:1e:97:d4:e6:02:e4:a1:92: 94:18:82:db:7f:99:a6:fb:2d:9a:c1:51:d8:54:da: 13:5a:1f:37:ea:6b:35:2c:4d:82:b5:6a:d4:cb:4f: 96:17:40:3f:d8:ab:d0:7a:94:fa:ad:54:2c:a9:36: 3f:26:62:f8:2c:1c:bb:1a:5d:bc:4e:33:9e:98:06: ba:75:14:49:08:f3:98:8c:06:0c:10:b8:f4:a2:fc: 69:48:c0:47:06:36:58:a9:49:6f:79:93:21:2d:a5: 84:75:bc:76:a0:22:d5:fe:d6:61:39:d2:be:c4:42: 50:20:13:b1:a8:de:d9:c0:5d:52:64:b9:d2:4b:44: 75:ea:f9:c8:20:d7:04:e6:d7:f5:2b:71:52:35:82: 5d:0a:7d:8b:e2:d1:4e:90:02:d8:0c:77:cb:24:6e: 42:d9:f3:7a:bb:d7:f8:68:90:d0:3f:e2:2c:fe:56: 40:86:d2:0c:f1:ed:30:36:51:52:ef:c0:eb:e9:3d: b5:4d:ba:ce:a0:5a:a3:24:c3:76:b4:b7:d1:da:2e: 2b:b4:9c:52:53:70:40:c1:40:94:48:c9:28:36:79: c1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3D:D8:B4:6E:13:07:23:AA:9D:3F:50:88:DA:24:62:18:BD:3B:CF X509v3 Authority Key Identifier: keyid:9C:0E:1B:FC:B8:1F:19:2D:2F:CC:AC:E7:99:E1:5D:F1:AD:BC:41:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.176.0/22 116.12.64.0/18 116.206.20.0/22 203.143.0.0/18 IPv6: 2405:5400::/32 Signature Algorithm: sha256WithRSAEncryption 68:75:83:0f:93:bf:d1:49:46:a6:4f:fd:5d:6d:03:4f:60:70: 69:01:44:cd:19:34:46:2e:10:fd:71:e0:24:be:da:1f:82:fb: e2:a1:1b:5c:a2:e5:39:b5:c9:1e:38:76:5e:a0:88:21:4d:23: f2:77:71:75:6a:06:b4:80:8a:47:12:dd:b5:f8:ba:c3:f7:21: 62:46:dc:f9:48:2a:22:bc:a8:a4:3f:0d:1b:84:9d:2b:9f:d6: e9:60:29:89:03:70:f9:55:76:a6:b3:3f:96:87:b9:92:56:40: 55:99:fb:f4:45:a3:d9:90:eb:87:32:4c:84:0e:a5:4c:1d:14: 6b:da:3d:3d:82:33:04:fb:6c:93:32:71:7a:b5:86:42:25:b1: d0:12:36:5e:18:1d:c1:5f:b4:9a:f6:eb:91:74:bb:d5:43:f7: 3f:c1:e7:56:d6:74:a3:0b:d4:19:c6:eb:e3:de:19:de:6e:4b: 86:02:23:7b:48:ea:bb:d8:75:4c:14:15:ff:4a:cb:9b:76:ad: 8d:5d:7a:24:82:e4:2d:13:6d:26:97:85:3f:20:f2:1f:2d:f6: 5a:63:3d:c2:34:91:cf:da:58:52:17:7e:27:43:66:22:b1:c2: 96:88:80:0d:53:80:82:36:cf:36:6a:e0:78:5a:91:14:0b:90: dc:20:b7:11 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICHMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1NjIxMTAvBgNVBAUTKDlDMEUxQkZDQjgxRjE5MkQyRkNDQUNFNzk5RTE1REYx QURCQzQxMkQwHhcNMjMwNzI4MTYzMzEyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzZWRjNy1kOWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUWPw8Uy7quDyRmf58VnsSCFpQIUu7JrH5wQMH/gESYRKqz8HpfU5gLkoZKU GILbf5mm+y2awVHYVNoTWh836ms1LE2CtWrUy0+WF0A/2KvQepT6rVQsqTY/JmL4 LBy7Gl28TjOemAa6dRRJCPOYjAYMELj0ovxpSMBHBjZYqUlveZMhLaWEdbx2oCLV /tZhOdK+xEJQIBOxqN7ZwF1SZLnSS0R16vnIINcE5tf1K3FSNYJdCn2L4tFOkALY DHfLJG5C2fN6u9f4aJDQP+Is/lZAhtIM8e0wNlFS78Dr6T21TbrOoFqjJMN2tLfR 2i4rtJxSU3BAwUCUSMkoNnnB/QIDAQABo4ICtjCCArIwHQYDVR0OBBYEFCc92LRu Ewcjqp0/UIjaJGIYvTvPMB8GA1UdIwQYMBaAFJwOG/y4HxktL8ys55nhXfGtvEEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDU2Mi9DNjE0Rjk1ODhC OEMxMUU2OEUxODVBM0VDNEY5QUUwMi9uQTRiX0xnZkdTMHZ6S3pubWVGZDhhMjhR UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BNGJfTGdmR1MwdnpLem5tZUZkOGEyOFFTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1NjIvQzYxNEY5NTg4QjhDMTFFNjhFMTg1QTNFQzRGOUFFMDIvMzgwMDNGMDRD QTgyMTFFQUEzODM4OTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnAbADBAZ0DEADBAJ0zhQDBAbLjwAwDQQCAAIwBwMFACQF VAAwDQYJKoZIhvcNAQELBQADggEBAGh1gw+Tv9FJRqZP/V1tA09gcGkBRM0ZNEYu EP1x4CS+2h+C++KhG1yi5Tm1yR44dl6giCFNI/J3cXVqBrSAikcS3bX4usP3IWJG 3PlIKiK8qKQ/DRuEnSuf1ulgKYkDcPlVdqazP5aHuZJWQFWZ+/RFo9mQ64cyTIQO pUwdFGvaPT2CMwT7bJMycXq1hkIlsdASNl4YHcFftJr265F0u9VD9z/B51bWdKML 1BnG6+PeGd5uS4YCI3tI6rvYdUwUFf9Ky5t2rY1deiSC5C0TbSaXhT8g8h8t9lpj PcI0kc/aWFIXfidDZiKxwpaIgA1TgII2zzZq4HhakRQLkNwgtxE= -----END CERTIFICATE-----Generated at Thu May 16 18:26:06 2024 by rpki-client on console-fra.rpki-client.org