$ rpki-client -vvf rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa File: 438B5C5E2CD411EC8884B41FC4F9AE02.roa (raw, json) Hash identifier: 5kZEntap8SxUFuL31LpZ9/fO4biC2dX7IAv5FNiMlp4= Subject key identifier: 6A:DF:8C:28:38:27:47:F9:55:A2:19:C8:94:D0:04:06:13:9E:C2:0E Certificate issuer: /CN=A9185344/serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Certificate serial: 3376 Authority key identifier: 89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa Signing time: Tue 31 Oct 2023 15:20:58 +0000 ROA not before: Tue 31 Oct 2023 15:20:58 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 198247 IP address blocks: 203.171.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 15:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13174 (0x3376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185344/serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Validity Not Before: Oct 31 15:20:58 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65411b5a-844f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ca:ad:81:9f:4a:ee:c8:4b:7e:f5:f7:4a:44: ae:d0:94:de:ce:57:b2:8f:f0:be:05:e5:13:ec:c5: fd:72:56:04:98:7c:5b:3c:74:02:c5:51:9d:71:85: 15:59:a4:8a:05:04:44:30:05:23:b1:09:5b:ac:37: 49:12:92:a7:c3:b0:b2:ac:eb:01:5e:47:82:7c:9b: 05:43:fb:4a:46:74:f2:87:46:7f:54:0b:3b:b6:b6: 4b:d6:e5:7f:75:bf:90:a6:3d:bd:a7:19:fb:c0:d3: f9:e7:05:27:73:cc:85:29:ab:82:9b:fa:c6:dd:d7: 94:21:b3:bc:0e:69:49:38:c9:4d:a1:e4:04:ca:6d: 57:9a:b9:07:12:cd:4b:67:c4:7e:8a:7f:5d:c4:41: 24:5e:4f:04:8d:c8:12:9b:c6:24:76:6b:36:57:8e: c5:a5:fc:45:29:28:8a:49:3e:99:f0:82:bc:42:5a: 02:68:f9:ac:5b:08:ce:d4:d7:6d:75:12:66:ad:b0: 99:c1:0e:37:5e:1a:ad:94:53:8f:e1:58:76:f7:70: 6e:7d:66:53:68:09:e8:8b:37:bb:ee:d0:1b:80:2f: ee:d7:d0:c7:dc:ff:ac:b2:86:33:fb:50:4e:44:f5: ba:a8:42:28:42:bb:d5:10:ae:de:1e:bd:76:63:4d: 83:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DF:8C:28:38:27:47:F9:55:A2:19:C8:94:D0:04:06:13:9E:C2:0E X509v3 Authority Key Identifier: keyid:89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.171.126.0/24 Signature Algorithm: sha256WithRSAEncryption 74:1d:c8:12:ba:de:1e:0a:3d:4f:c2:4b:a7:49:c3:bf:ad:4e: f3:95:16:41:7f:e4:71:bf:d8:f4:af:e6:c7:84:19:74:e3:08: 66:66:5d:7d:4e:9b:1c:47:f8:5f:9c:2e:4c:51:8e:66:0d:47: b6:dc:fb:a0:bd:fe:8b:01:b0:a5:02:ac:26:91:2b:6a:2d:18: e6:be:8f:ce:5a:bf:49:5a:51:f8:1f:4f:01:e0:60:ed:11:f8: d2:ee:79:37:d2:f2:3c:54:cf:03:4e:2c:eb:68:d8:9b:0d:f6: 43:19:b0:f2:88:f2:17:f1:2b:e7:b9:94:3a:42:8d:7e:04:32: 63:2a:a6:98:c4:e7:37:10:6b:e8:de:4d:c4:c8:df:f4:5f:86: db:f5:74:52:c2:7b:e8:2b:98:a9:a0:49:e3:04:b0:23:1e:5f: 21:92:18:b6:b7:bf:10:48:4f:24:09:37:a5:54:e7:9f:0a:af: 55:ef:f5:78:0e:10:7a:dd:30:15:46:32:db:94:52:b5:1d:0a: 8b:fe:92:41:5f:96:2d:c6:ba:2e:fa:28:56:61:f2:d7:89:56: 29:e7:9d:bf:4d:53:f3:ea:2b:49:03:e1:6b:24:45:bd:48:94: 99:b7:78:59:e8:1c:c8:6e:1e:7e:8a:d1:c7:1a:50:31:c8:c7: 31:d2:33:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzNDQxMTAvBgNVBAUTKDg5RkQyN0M1MDY3QjRDRjQxMjI5NkZFQkE2Q0U2RDgz MTE4NTgwMEIwHhcNMjMxMDMxMTUyMDU4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxMWI1YS04NDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cqtgZ9K7shLfvX3SkSu0JTezleyj/C+BeUT7MX9clYEmHxbPHQCxVGdcYUV WaSKBQREMAUjsQlbrDdJEpKnw7CyrOsBXkeCfJsFQ/tKRnTyh0Z/VAs7trZL1uV/ db+Qpj29pxn7wNP55wUnc8yFKauCm/rG3deUIbO8DmlJOMlNoeQEym1XmrkHEs1L Z8R+in9dxEEkXk8EjcgSm8Ykdms2V47FpfxFKSiKST6Z8IK8QloCaPmsWwjO1Ndt dRJmrbCZwQ43XhqtlFOP4Vh293BufWZTaAnoize77tAbgC/u19DH3P+ssoYz+1BO RPW6qEIoQrvVEK7eHr12Y02D0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGrfjCg4 J0f5VaIZyJTQBAYTnsIOMB8GA1UdIwQYMBaAFIn9J8UGe0z0Eilv66bObYMRhYAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTM0NC81MTVDQUJFMDFE QTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQUVNLV19ycHM1dGd4R0Zn QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmMG54UVo3VFBRU0tXX3JwczV0Z3hHRmdBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzNDQvNTE1Q0FCRTAxREExMTFFMkIyQ0Q2RDkzMDhCMDJDRDIvNDM4QjVDNUUy Q0Q0MTFFQzg4ODRCNDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLq34wDQYJKoZIhvcNAQELBQADggEBAHQdyBK63h4KPU/C S6dJw7+tTvOVFkF/5HG/2PSv5seEGXTjCGZmXX1OmxxH+F+cLkxRjmYNR7bc+6C9 /osBsKUCrCaRK2otGOa+j85av0laUfgfTwHgYO0R+NLueTfS8jxUzwNOLOto2JsN 9kMZsPKI8hfxK+e5lDpCjX4EMmMqppjE5zcQa+jeTcTI3/Rfhtv1dFLCe+grmKmg SeMEsCMeXyGSGLa3vxBITyQJN6VU558Kr1Xv9XgOEHrdMBVGMtuUUrUdCov+kkFf li3Gui76KFZh8teJVinnnb9NU/PqK0kD4WskRb1IlJm3eFnoHMhuHn6K0ccaUDHI xzHSM2I= -----END CERTIFICATE-----Generated at Sun May 26 19:10:36 2024 by rpki-client on console-ams.rpki-client.org