$ rpki-client -vvf rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/8C3C1C7EC94D11EDA5EF4839C4F9AE02.roa File: 8C3C1C7EC94D11EDA5EF4839C4F9AE02.roa (raw, json) Hash identifier: JSIERUiirVbPFJ8aqP2AfVoC0pzJHMwyydsQwNTDNkQ= Subject key identifier: A4:FD:CF:8B:98:10:AE:1A:C0:8D:01:32:C5:B3:97:CB:11:8D:65:CB Certificate issuer: /CN=A918557B/serialNumber=AB3B12811BA45E6392B005D341F93A0D07F2AB1C Certificate serial: 8A Authority key identifier: AB:3B:12:81:1B:A4:5E:63:92:B0:05:D3:41:F9:3A:0D:07:F2:AB:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qzsSgRukXmOSsAXTQfk6DQfyqxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/8C3C1C7EC94D11EDA5EF4839C4F9AE02.roa Signing time: Wed 13 Dec 2023 05:36:44 +0000 ROA not before: Wed 13 Dec 2023 05:36:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9336 IP address blocks: 203.15.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/qzsSgRukXmOSsAXTQfk6DQfyqxw.crl rsync://rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/qzsSgRukXmOSsAXTQfk6DQfyqxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qzsSgRukXmOSsAXTQfk6DQfyqxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918557B/serialNumber=AB3B12811BA45E6392B005D341F93A0D07F2AB1C Validity Not Before: Dec 13 05:36:44 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=657942ec-9fb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:71:00:54:a7:ed:ca:90:80:9c:d1:54:c4:a7: dd:c9:ac:ee:6b:1e:70:0a:35:b8:ef:b6:fa:0b:1c: bc:e3:e9:60:d5:f4:99:6b:8a:79:08:61:8b:b5:90: ca:30:88:8c:6a:1b:bc:fe:54:3e:08:0f:19:b2:c1: 7e:7c:92:42:57:a7:3e:14:51:72:4d:09:6f:f5:e7: 9a:b4:b1:fd:cc:71:e4:33:9c:de:d3:9e:70:8a:1f: 37:4c:24:23:b5:dc:19:e8:30:f6:bf:f8:12:ec:3c: db:56:55:08:3a:91:1b:97:4b:ec:c5:df:06:f8:b7: cf:76:a8:5e:35:2d:1a:a8:ce:7d:bd:ef:7d:2a:d6: d3:f9:fc:07:ac:14:a3:1a:97:9a:bc:39:40:e1:2e: 16:0e:94:9b:5b:19:0a:8b:2e:f0:d8:6d:ac:42:cf: cd:9f:4c:8c:c6:5d:7a:b5:0a:b3:5e:12:0f:da:9e: 65:f2:32:3e:02:cf:a9:e1:cc:c2:7b:b9:9d:f7:ac: 7c:bc:04:73:f4:87:bc:41:b2:a8:92:69:ff:0d:0c: a5:ad:bb:d2:6d:1d:ab:d8:ea:ad:00:0e:94:67:23: f4:e4:d8:6c:31:23:c4:bf:b9:b6:20:57:02:9c:8d: d5:84:0d:b0:7e:de:ee:f6:34:f3:53:5b:ae:d9:04: ee:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FD:CF:8B:98:10:AE:1A:C0:8D:01:32:C5:B3:97:CB:11:8D:65:CB X509v3 Authority Key Identifier: keyid:AB:3B:12:81:1B:A4:5E:63:92:B0:05:D3:41:F9:3A:0D:07:F2:AB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/qzsSgRukXmOSsAXTQfk6DQfyqxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qzsSgRukXmOSsAXTQfk6DQfyqxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918557B/DB4ED606C94A11ED93016D38C4F9AE02/8C3C1C7EC94D11EDA5EF4839C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.15.172.0/23 Signature Algorithm: sha256WithRSAEncryption 73:7a:04:47:39:00:6c:17:39:30:8f:7d:dd:f1:d5:3f:e1:77: 0d:94:a1:fa:b2:d5:47:fb:1e:78:6d:62:b7:40:63:b3:80:ae: ca:63:ad:23:db:a0:36:42:7a:81:b2:00:1f:66:20:1f:21:0a: cb:78:78:b6:f0:37:1b:0e:38:a6:f2:20:68:e6:88:6e:7f:65: a6:ec:aa:18:83:79:ef:62:05:70:38:04:ea:ff:1c:47:90:b5: 27:37:e5:49:06:05:e5:a1:e6:30:b2:3e:0a:b2:3f:3f:cf:24: d6:50:be:04:aa:50:ea:59:65:dc:da:21:4f:70:88:4f:98:d6: d5:b7:32:4e:16:3e:c4:7f:81:1a:5e:78:e4:6b:83:0b:12:d1: 4c:0b:7a:96:4f:8b:41:7a:47:1f:9e:c4:40:3f:8b:e4:c3:75: 5e:76:e1:63:b7:1e:12:54:68:cf:19:c4:5b:0a:a7:ee:49:84: 0f:69:43:bb:ce:93:d6:6c:ea:fa:f2:46:21:a6:c6:dd:e7:1b: b3:16:35:a3:03:cf:a7:f6:e6:d2:39:61:63:eb:a5:8b:a5:7a: cc:8e:bf:8f:e0:d6:eb:63:22:01:c2:75:01:ee:82:85:f9:10: c8:e1:b3:6c:53:03:60:6c:b7:d4:11:6c:44:43:03:af:4b:96: 88:25:b6:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU1N0IxMTAvBgNVBAUTKEFCM0IxMjgxMUJBNDVFNjM5MkIwMDVEMzQxRjkzQTBE MDdGMkFCMUMwHhcNMjMxMjEzMDUzNjQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5NDJlYy05ZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HEAVKftypCAnNFUxKfdyazuax5wCjW477b6Cxy84+lg1fSZa4p5CGGLtZDK MIiMahu8/lQ+CA8ZssF+fJJCV6c+FFFyTQlv9eeatLH9zHHkM5ze055wih83TCQj tdwZ6DD2v/gS7DzbVlUIOpEbl0vsxd8G+LfPdqheNS0aqM59ve99KtbT+fwHrBSj GpeavDlA4S4WDpSbWxkKiy7w2G2sQs/Nn0yMxl16tQqzXhIP2p5l8jI+As+p4czC e7md96x8vARz9Ie8QbKokmn/DQylrbvSbR2r2OqtAA6UZyP05NhsMSPEv7m2IFcC nI3VhA2wft7u9jTzU1uu2QTugwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKT9z4uY EK4awI0BMsWzl8sRjWXLMB8GA1UdIwQYMBaAFKs7EoEbpF5jkrAF00H5Og0H8qsc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTU3Qi9EQjRFRDYwNkM5 NEExMUVEOTMwMTZEMzhDNEY5QUUwMi9xenNTZ1J1a1htT1NzQVhUUWZrNkRRZnlx eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6c1NnUnVrWG1PU3NBWFRRZms2RFFmeXF4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU1N0IvREI0RUQ2MDZDOTRBMTFFRDkzMDE2RDM4QzRGOUFFMDIvOEMzQzFDN0VD OTREMTFFREE1RUY0ODM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLD6wwDQYJKoZIhvcNAQELBQADggEBAHN6BEc5AGwXOTCP fd3x1T/hdw2Uofqy1Uf7HnhtYrdAY7OArspjrSPboDZCeoGyAB9mIB8hCst4eLbw NxsOOKbyIGjmiG5/ZabsqhiDee9iBXA4BOr/HEeQtSc35UkGBeWh5jCyPgqyPz/P JNZQvgSqUOpZZdzaIU9wiE+Y1tW3Mk4WPsR/gRpeeORrgwsS0UwLepZPi0F6Rx+e xEA/i+TDdV524WO3HhJUaM8ZxFsKp+5JhA9pQ7vOk9Zs6vryRiGmxt3nG7MWNaMD z6f25tI5YWPrpYulesyOv4/g1utjIgHCdQHugoX5EMjhs2xTA2Bst9QRbERDA69L logltmU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org