$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa File: 4C3CD438DAD011EAB216C959C4F9AE02.roa (raw, json) Hash identifier: bgvuyMMJ17vI3si/M0ITLHrIsXVvTBYwXMBWvALSf5Q= Subject key identifier: 0D:21:B4:7C:87:B3:76:B6:CE:9C:D5:75:F0:18:F1:FA:2F:98:E9:0E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71E2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa Signing time: Wed 10 May 2023 16:50:24 +0000 ROA not before: Wed 10 May 2023 16:50:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 9501 IP address blocks: 202.53.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29154 (0x71e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:50:24 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb50-26aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3c:ed:5d:d0:13:d5:bb:00:e4:0d:48:c4:2b: 7c:86:b8:60:6a:27:fb:bf:a0:67:a7:82:80:1f:74: 71:d2:1b:5e:b3:bf:74:2a:53:95:90:03:d9:22:26: fd:75:9e:55:76:99:f0:70:60:67:31:b0:67:1b:ee: 27:bb:84:09:1d:e5:14:3a:9b:f3:a7:3e:b9:99:d6: e6:a8:f7:6e:82:f9:0e:31:e8:9f:a2:95:bf:93:9c: c8:4f:36:06:9f:9b:41:8d:25:a3:51:b6:a9:8e:b1: 66:4e:d6:b6:10:8e:cd:ad:8e:85:fd:f4:f0:84:f0: ef:74:4f:d6:f1:2c:74:33:3f:46:35:15:2d:5c:d5: 92:1c:fb:d5:f4:ac:46:c9:ea:99:f4:40:dc:81:06: fe:ae:d8:99:e6:6d:13:18:68:cd:16:3b:5f:e6:72: da:20:80:3d:9e:fe:09:da:21:08:05:0d:aa:03:26: b7:a3:b2:84:8a:cc:81:51:9b:30:32:a7:85:14:c5: 7d:c9:a2:cd:e8:0d:cd:14:8f:c6:4b:91:83:b9:32: b6:26:9e:be:b6:d3:58:7b:4b:b4:4f:32:99:34:14: 19:39:80:a1:d6:ca:c3:33:38:ac:54:45:af:d1:2a: 2d:a0:ed:60:e1:d9:77:6d:63:52:fe:cf:12:4b:fb: bb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:21:B4:7C:87:B3:76:B6:CE:9C:D5:75:F0:18:F1:FA:2F:98:E9:0E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C3CD438DAD011EAB216C959C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.96.0/20 Signature Algorithm: sha256WithRSAEncryption 71:22:5b:fa:ba:36:d9:d1:69:42:cd:92:5b:56:5c:8e:39:89: c3:4a:17:8b:79:34:e6:30:7b:c3:d5:9b:2b:5d:21:9e:bb:45: a0:ab:42:09:be:12:f7:6a:e8:cf:2e:6d:a8:27:f2:12:ba:5a: 75:2e:b8:9f:46:20:0e:e4:f9:e8:a6:e8:23:65:c7:ea:1f:7d: bb:c9:3a:d7:6e:92:5f:55:23:bc:62:34:f3:c3:11:b3:e1:95: 7a:31:25:1f:8a:b1:4c:d1:9c:14:e7:3f:68:2f:d4:20:57:25: 86:e4:e1:6e:27:5a:98:57:54:98:fa:47:7e:9f:5f:82:b1:58: 45:2b:33:6e:03:8b:89:47:1b:d6:66:1a:db:08:10:5a:46:0d: 3b:94:cc:e0:b4:e3:d1:e6:69:27:1b:f7:23:6a:61:f8:4f:b6: 19:44:59:cd:8e:65:82:cc:54:0f:ec:e5:ce:d3:a1:ba:74:b7: 94:c4:00:ad:3f:ef:f5:18:61:3e:b6:60:7b:7d:b5:03:bf:62: db:5f:2b:7d:38:99:cd:09:38:59:c7:b0:b0:11:04:fa:57:e5: c8:a0:01:31:d3:df:a0:f8:f8:92:b7:68:9a:be:5e:37:34:2e: ec:55:2c:9e:7b:4f:e9:f9:84:4d:6d:5f:f7:a7:01:62:42:13: de:c3:27:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICceIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY1MDI0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2I1MC0yNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTztXdAT1bsA5A1IxCt8hrhgaif7v6Bnp4KAH3Rx0htes790KlOVkAPZIib9 dZ5VdpnwcGBnMbBnG+4nu4QJHeUUOpvzpz65mdbmqPdugvkOMeifopW/k5zITzYG n5tBjSWjUbapjrFmTta2EI7NrY6F/fTwhPDvdE/W8Sx0Mz9GNRUtXNWSHPvV9KxG yeqZ9EDcgQb+rtiZ5m0TGGjNFjtf5nLaIIA9nv4J2iEIBQ2qAya3o7KEisyBUZsw MqeFFMV9yaLN6A3NFI/GS5GDuTK2Jp6+ttNYe0u0TzKZNBQZOYCh1srDMzisVEWv 0SotoO1g4dl3bWNS/s8SS/u7eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA0htHyH s3a2zpzVdfAY8fovmOkOMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEMzQ0Q0MzhE QUQwMTFFQUIyMTZDOTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKNWAwDQYJKoZIhvcNAQELBQADggEBAHEiW/q6NtnRaULN kltWXI45icNKF4t5NOYwe8PVmytdIZ67RaCrQgm+Evdq6M8ubagn8hK6WnUuuJ9G IA7k+eim6CNlx+offbvJOtdukl9VI7xiNPPDEbPhlXoxJR+KsUzRnBTnP2gv1CBX JYbk4W4nWphXVJj6R36fX4KxWEUrM24Di4lHG9ZmGtsIEFpGDTuUzOC049HmaScb 9yNqYfhPthlEWc2OZYLMVA/s5c7Tobp0t5TEAK0/7/UYYT62YHt9tQO/YttfK304 mc0JOFnHsLARBPpX5cigATHT36D4+JK3aJq+Xjc0LuxVLJ57T+n5hE1tX/enAWJC E97DJ6A= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:32 2024 by rpki-client on console-ams.rpki-client.org