$ rpki-client -vvf rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/62D6FB5474D811EB99569279C4F9AE02.roa File: 62D6FB5474D811EB99569279C4F9AE02.roa (raw, json) Hash identifier: 22SG0N7IDRpw/UfyebZlKgm6Mx25si98uz9Q1Sh3QKY= Subject key identifier: 75:32:43:61:3E:0D:DD:F4:FC:75:B1:CF:7A:B0:ED:54:8D:DA:D7:27 Certificate issuer: /CN=A9181EBC/serialNumber=BD48BAFA32AD2E93B889CF3E3869AC034A172312 Certificate serial: 0549 Authority key identifier: BD:48:BA:FA:32:AD:2E:93:B8:89:CF:3E:38:69:AC:03:4A:17:23:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUi6-jKtLpO4ic8-OGmsA0oXIxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/62D6FB5474D811EB99569279C4F9AE02.roa Signing time: Wed 06 Sep 2023 23:30:51 +0000 ROA not before: Wed 06 Sep 2023 23:30:51 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4637 IP address blocks: 203.19.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/vUi6-jKtLpO4ic8-OGmsA0oXIxI.crl rsync://rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/vUi6-jKtLpO4ic8-OGmsA0oXIxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUi6-jKtLpO4ic8-OGmsA0oXIxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181EBC/serialNumber=BD48BAFA32AD2E93B889CF3E3869AC034A172312 Validity Not Before: Sep 6 23:30:51 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f90bab-2a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:51:0e:2a:75:6f:ac:92:28:c5:78:9e:8d: 9c:98:ff:39:46:22:7b:6f:a0:db:c1:aa:94:00:0b: df:d3:7c:1c:19:a0:83:b8:6a:75:48:87:57:8f:11: c5:2b:fd:69:a2:14:35:f9:9f:eb:b2:62:0b:e9:93: 9a:94:73:40:72:75:7d:c7:d8:af:3a:62:9a:c4:ec: 37:b4:e5:f8:40:06:71:08:aa:5f:d8:9e:4a:40:f8: 9d:7d:e8:14:84:2a:ba:17:7b:01:fa:3f:54:b3:cb: f5:f5:48:c1:a2:90:4b:19:bb:75:be:ec:f2:24:0f: 19:db:27:e8:29:28:35:6a:99:ae:ea:38:3a:03:92: 04:63:1f:af:79:f6:fb:1c:5c:60:a0:16:0c:8a:a9: 36:3c:aa:24:3d:7b:20:8e:16:a9:d4:a2:01:f4:1b: e9:ea:8d:0a:36:17:fe:ca:a5:b7:4f:f9:c3:bd:a8: 26:92:e8:0d:af:de:78:dc:32:e6:66:41:5e:7c:71: fd:df:b4:cb:4b:be:7a:a2:bf:20:a5:77:25:b1:76: 7b:88:c3:44:75:13:eb:9e:58:2c:ea:c2:83:6e:18: f7:70:a4:fa:1e:c4:b3:c2:b7:54:ee:79:a2:2e:f7: 53:ff:6b:82:8e:36:3d:f2:e9:cd:e2:23:e3:84:1e: 71:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:32:43:61:3E:0D:DD:F4:FC:75:B1:CF:7A:B0:ED:54:8D:DA:D7:27 X509v3 Authority Key Identifier: keyid:BD:48:BA:FA:32:AD:2E:93:B8:89:CF:3E:38:69:AC:03:4A:17:23:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/vUi6-jKtLpO4ic8-OGmsA0oXIxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUi6-jKtLpO4ic8-OGmsA0oXIxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181EBC/3883414874D611EBBCBDFA73C4F9AE02/62D6FB5474D811EB99569279C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.234.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:fb:58:18:04:e3:1d:f4:d0:c9:6c:3f:20:48:0b:64:3f:10: d0:50:03:d8:a1:f3:93:1b:a6:3f:29:d4:bf:93:ba:96:75:54: b3:9d:0e:50:6c:29:39:5d:34:74:0e:a4:01:93:0e:14:bf:8d: 6c:5e:9d:ec:5a:53:f3:2c:71:84:fc:95:21:1f:dc:17:c7:8d: 97:f5:c5:8a:13:26:bd:09:9c:33:bd:30:d2:41:28:71:67:14: 4a:af:87:ad:ff:99:bd:02:19:3f:d1:63:34:47:7b:fb:be:ac: d4:be:28:60:83:57:51:c7:63:aa:5d:ec:03:0f:3d:ef:fb:81: d1:86:d8:46:ff:55:c3:b1:e3:22:63:c8:6b:bc:f0:ed:59:d2: d2:42:99:57:21:6c:6e:38:9b:15:85:24:03:34:75:ce:86:a1: 15:2f:b4:22:02:58:57:12:10:a4:54:79:83:6f:52:69:1d:14: 54:68:2d:c5:84:8c:5d:fc:22:2e:f7:86:a6:e5:10:c2:1f:98: 4b:6b:54:36:2a:8b:c1:38:c8:a5:b2:8e:33:17:36:3f:ed:38: fc:dd:f8:b2:4d:6c:2e:d5:8c:0f:2c:1c:74:8c:66:de:79:5d: a3:23:9a:09:1f:27:aa:27:d1:a6:e3:fc:d2:e3:56:49:c6:fd: 2c:db:fe:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFFQkMxMTAvBgNVBAUTKEJENDhCQUZBMzJBRDJFOTNCODg5Q0YzRTM4NjlBQzAz NEExNzIzMTIwHhcNMjMwOTA2MjMzMDUxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5MGJhYi0yYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeNRDip1b6ySKMV4no2cmP85RiJ7b6DbwaqUAAvf03wcGaCDuGp1SIdXjxHF K/1pohQ1+Z/rsmIL6ZOalHNAcnV9x9ivOmKaxOw3tOX4QAZxCKpf2J5KQPidfegU hCq6F3sB+j9Us8v19UjBopBLGbt1vuzyJA8Z2yfoKSg1apmu6jg6A5IEYx+vefb7 HFxgoBYMiqk2PKokPXsgjhap1KIB9Bvp6o0KNhf+yqW3T/nDvagmkugNr9543DLm ZkFefHH937TLS756or8gpXclsXZ7iMNEdRPrnlgs6sKDbhj3cKT6HsSzwrdU7nmi LvdT/2uCjjY98unN4iPjhB5xKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHUyQ2E+ Dd30/HWxz3qw7VSN2tcnMB8GA1UdIwQYMBaAFL1IuvoyrS6TuInPPjhprANKFyMS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUVCQy8zODgzNDE0ODc0 RDYxMUVCQkNCREZBNzNDNEY5QUUwMi92VWk2LWpLdExwTzRpYzgtT0dtc0Ewb1hJ eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZVaTYtakt0THBPNGljOC1PR21zQTBvWEl4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODFFQkMvMzg4MzQxNDg3NEQ2MTFFQkJDQkRGQTczQzRGOUFFMDIvNjJENkZCNTQ3 NEQ4MTFFQjk5NTY5Mjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLE+owDQYJKoZIhvcNAQELBQADggEBAJ/7WBgE4x300Mls PyBIC2Q/ENBQA9ih85Mbpj8p1L+TupZ1VLOdDlBsKTldNHQOpAGTDhS/jWxenexa U/MscYT8lSEf3BfHjZf1xYoTJr0JnDO9MNJBKHFnFEqvh63/mb0CGT/RYzRHe/u+ rNS+KGCDV1HHY6pd7AMPPe/7gdGG2Eb/VcOx4yJjyGu88O1Z0tJCmVchbG44mxWF JAM0dc6GoRUvtCICWFcSEKRUeYNvUmkdFFRoLcWEjF38Ii73hqblEMIfmEtrVDYq i8E4yKWyjjMXNj/tOPzd+LJNbC7VjA8sHHSMZt55XaMjmgkfJ6on0abj/NLjVknG /Szb/sw= -----END CERTIFICATE-----Generated at Tue May 7 00:53:20 2024 by rpki-client on console-ams.rpki-client.org