$ rpki-client -vvf rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/D3CE9058A5AD11ED95DBC66FC4F9AE02.roa File: D3CE9058A5AD11ED95DBC66FC4F9AE02.roa (raw, json) Hash identifier: 47vlfzWlDi/rzCvjry72vsvqm5wYnEkiXvlf9lL/4OI= Subject key identifier: 9D:A4:2E:CE:49:D8:DA:FA:BE:B7:AF:BB:DF:8E:74:48:94:15:7F:99 Certificate issuer: /CN=A918E469/serialNumber=E0D5445B80B1817F62F3C64AA8C8F6D7E13AE103 Certificate serial: B4 Authority key identifier: E0:D5:44:5B:80:B1:81:7F:62:F3:C6:4A:A8:C8:F6:D7:E1:3A:E1:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4NVEW4CxgX9i88ZKqMj21-E64QM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/D3CE9058A5AD11ED95DBC66FC4F9AE02.roa Signing time: Fri 19 Jan 2024 05:26:18 +0000 ROA not before: Fri 19 Jan 2024 05:26:18 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150672 IP address blocks: 203.24.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/4NVEW4CxgX9i88ZKqMj21-E64QM.crl rsync://rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/4NVEW4CxgX9i88ZKqMj21-E64QM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4NVEW4CxgX9i88ZKqMj21-E64QM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E469/serialNumber=E0D5445B80B1817F62F3C64AA8C8F6D7E13AE103 Validity Not Before: Jan 19 05:26:18 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aa07f9-4fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:0e:12:39:76:cf:f2:08:29:c8:9a:ad:0c: fd:c6:14:62:50:05:0f:bb:9c:aa:2c:be:8d:c5:b3: 79:04:3d:bc:b8:4f:c7:cf:fa:1f:96:6d:b2:67:a4: fe:6b:4d:f6:f9:48:99:f9:85:12:28:76:a0:b9:95: 7e:85:b8:b4:03:3b:f8:c4:01:23:5b:e0:0a:fd:fb: 5a:ce:13:33:5a:d2:b7:0a:30:ad:bb:72:f7:d4:f3: 6d:52:83:da:c7:0f:29:ed:3e:17:dd:d5:12:e2:1d: 50:bf:55:7a:11:e1:cb:9f:8c:50:6b:5a:c2:cb:cb: 3e:5a:49:b0:cb:2a:ee:1d:d2:72:a5:1d:b1:d3:eb: a2:96:fb:5c:b2:9e:c6:24:f2:77:d2:fe:e0:d5:84: 00:09:1f:97:2f:31:c1:07:27:97:63:99:85:c6:8f: 8d:42:f1:78:c0:e2:70:fb:10:b2:88:47:7a:7b:fc: 4b:76:23:24:21:b0:49:55:be:b4:44:51:6f:ea:dc: 46:5f:cb:f9:ec:ab:4d:cc:a0:e5:2c:82:af:e4:3f: 24:1a:33:65:82:20:37:1c:c6:e7:cb:e4:3e:a4:e2: 15:af:ee:b0:21:b9:80:7c:85:15:68:e8:f7:52:5b: cd:2b:6e:6a:22:78:ee:41:51:b7:fc:b8:a3:29:05: 74:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A4:2E:CE:49:D8:DA:FA:BE:B7:AF:BB:DF:8E:74:48:94:15:7F:99 X509v3 Authority Key Identifier: keyid:E0:D5:44:5B:80:B1:81:7F:62:F3:C6:4A:A8:C8:F6:D7:E1:3A:E1:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/4NVEW4CxgX9i88ZKqMj21-E64QM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4NVEW4CxgX9i88ZKqMj21-E64QM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E469/EFA563C8A5A911ED8FE30553C4F9AE02/D3CE9058A5AD11ED95DBC66FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.9.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b3:9c:11:77:71:66:e6:c9:5d:a7:e6:7d:e5:7e:c8:8e:0c: 24:30:29:0d:d0:97:54:05:30:41:d2:ef:3f:33:ec:0d:30:5d: a2:60:85:53:37:14:83:c2:06:a5:32:46:d4:b8:9f:bf:5d:da: ce:b0:ec:5a:52:a8:45:ac:8d:0c:fc:fc:1a:26:a5:17:08:23: 01:60:38:26:6f:7a:b2:fb:40:9a:76:05:29:f8:fc:c6:0d:84: 35:80:bc:52:69:c6:14:d7:bb:c6:1d:07:af:6d:0b:e2:23:6f: 8b:bb:ab:35:2e:bb:0e:02:eb:f4:50:85:05:71:6a:b9:68:5f: f1:0f:a9:8d:8d:7f:ab:4b:3b:c9:d2:0e:8c:72:9f:72:b3:16: 4d:0e:0e:c0:5e:7d:a1:de:3c:9b:8e:3c:54:7e:14:4f:5e:e3: 63:99:43:9c:32:49:a7:35:87:b4:70:ef:34:fb:7f:3a:ed:aa: ad:bb:10:a7:b8:fe:00:ca:cb:93:f3:31:8f:da:08:05:ad:3e: 00:75:fe:3f:59:a6:b0:c4:39:1c:a6:bd:ae:17:25:72:96:43: f7:4e:38:38:ad:ba:d0:5d:f3:cb:7c:69:b8:0c:5e:34:6e:58: cf:c1:f4:27:19:2a:0b:bb:cc:5b:72:c0:cc:13:a7:97:17:69: b2:e1:bf:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0NjkxMTAvBgNVBAUTKEUwRDU0NDVCODBCMTgxN0Y2MkYzQzY0QUE4QzhGNkQ3 RTEzQUUxMDMwHhcNMjQwMTE5MDUyNjE4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFhMDdmOS00ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EoOEjl2z/IIKciarQz9xhRiUAUPu5yqLL6NxbN5BD28uE/Hz/oflm2yZ6T+ a032+UiZ+YUSKHaguZV+hbi0Azv4xAEjW+AK/ftazhMzWtK3CjCtu3L31PNtUoPa xw8p7T4X3dUS4h1Qv1V6EeHLn4xQa1rCy8s+WkmwyyruHdJypR2x0+uilvtcsp7G JPJ30v7g1YQACR+XLzHBByeXY5mFxo+NQvF4wOJw+xCyiEd6e/xLdiMkIbBJVb60 RFFv6txGX8v57KtNzKDlLIKv5D8kGjNlgiA3HMbny+Q+pOIVr+6wIbmAfIUVaOj3 UlvNK25qInjuQVG3/LijKQV0VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ2kLs5J 2Nr6vrevu9+OdEiUFX+ZMB8GA1UdIwQYMBaAFODVRFuAsYF/YvPGSqjI9tfhOuED MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTQ2OS9FRkE1NjNDOEE1 QTkxMUVEOEZFMzA1NTNDNEY5QUUwMi80TlZFVzRDeGdYOWk4OFpLcU1qMjEtRTY0 UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzROVkVXNEN4Z1g5aTg4WktxTWoyMS1FNjRRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0NjkvRUZBNTYzQzhBNUE5MTFFRDhGRTMwNTUzQzRGOUFFMDIvRDNDRTkwNThB NUFEMTFFRDk1REJDNjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGAkwDQYJKoZIhvcNAQELBQADggEBAH6znBF3cWbmyV2n 5n3lfsiODCQwKQ3Ql1QFMEHS7z8z7A0wXaJghVM3FIPCBqUyRtS4n79d2s6w7FpS qEWsjQz8/BompRcIIwFgOCZverL7QJp2BSn4/MYNhDWAvFJpxhTXu8YdB69tC+Ij b4u7qzUuuw4C6/RQhQVxarloX/EPqY2Nf6tLO8nSDoxyn3KzFk0ODsBefaHePJuO PFR+FE9e42OZQ5wySac1h7Rw7zT7fzrtqq27EKe4/gDKy5PzMY/aCAWtPgB1/j9Z prDEORymva4XJXKWQ/dOODitutBd88t8abgMXjRuWM/B9CcZKgu7zFtywMwTp5cX abLhv+A= -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org