$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa File: BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa (raw, json) Hash identifier: RRFN/7h+ZgjbsWUzSwsUYT9FZUv4xZbXsQu+3aX5MFA= Subject key identifier: D5:A0:D0:5C:D9:47:E8:D5:B3:FD:81:4C:FA:25:49:D9:BA:32:B5:18 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0124 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa Signing time: Tue 17 Oct 2023 04:15:22 +0000 ROA not before: Tue 17 Oct 2023 04:15:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 218.33.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 04:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Oct 17 04:15:22 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652e0a5a-83b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d2:b2:79:af:c6:76:4e:91:ab:1e:ed:eb:1a: 74:c4:d4:01:dd:fc:41:c4:de:e1:a4:8c:78:f6:e3: 98:d2:57:36:80:ad:c3:95:8f:2a:8d:fc:08:d3:7d: 77:4a:02:73:31:20:2a:ce:00:29:79:42:88:04:e7: c2:f6:92:93:b8:09:5f:23:f2:f6:09:8c:1a:74:91: 4a:94:c8:a0:2b:f8:4a:c9:ad:6d:9f:15:a4:a8:f8: 98:ed:d2:73:2d:8f:74:a0:64:0d:3a:ea:b7:67:48: 9f:c4:b1:6c:4a:e2:e3:74:6a:1a:cd:29:ae:10:5c: 19:3f:3b:9f:7c:92:34:97:9b:b1:28:90:d4:b3:f2: f2:3f:4f:6a:b3:2b:a6:a5:89:54:e9:7d:ef:6c:de: 98:2c:49:c4:3d:f9:dd:d9:3d:0f:df:36:2b:c4:11: 35:7c:95:fa:0c:49:9e:24:f2:f5:54:90:3f:86:6c: 1f:5a:db:21:ce:f3:cf:50:e0:ea:55:e2:60:4b:83: 17:2a:74:88:69:d7:07:d1:43:fd:5f:f0:1c:3e:bd: 45:a0:c6:17:5f:8b:4e:89:45:10:c8:aa:03:4b:ce: 90:56:07:6b:59:80:ee:80:3f:dc:c1:e5:aa:62:cc: 10:89:be:3e:7b:cb:74:bb:be:15:12:ab:93:84:91: 4b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A0:D0:5C:D9:47:E8:D5:B3:FD:81:4C:FA:25:49:D9:BA:32:B5:18 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.33.0.0/18 Signature Algorithm: sha256WithRSAEncryption 58:12:2f:4d:2c:c5:75:ac:d4:35:99:69:bd:ec:c6:b1:b3:6a: df:96:5d:78:d4:c2:86:5e:0a:e2:6d:a8:16:48:34:1d:f4:6c: bc:25:f3:64:f6:4a:39:f3:00:e5:6d:4b:24:6d:0d:a5:f7:3c: bb:2d:7d:31:fa:97:e5:35:38:e6:6a:46:50:98:88:1f:75:d8: cf:84:2b:d4:77:8c:71:cf:3f:6e:8d:f0:3c:54:52:30:7f:9b: a4:bc:52:86:78:fd:71:e9:79:27:47:d7:44:7a:5d:a5:3a:74: 80:02:69:06:0d:62:6f:28:5a:a2:3f:b8:da:af:b8:32:e1:dd: 67:51:c5:cf:87:ee:a3:29:5d:af:08:d3:83:5e:c5:77:3c:70: 01:a0:95:5d:d2:e4:3e:2e:2a:78:e6:7d:08:36:17:a4:ab:ad: 56:a3:a1:46:3e:f4:6d:61:37:98:d2:01:0c:71:99:bb:47:07: 75:49:56:f6:c1:9b:6a:91:0d:38:53:dd:d3:66:ba:a8:6d:e7: 04:d3:ff:9e:be:c8:ee:17:3a:f9:39:d9:52:5b:15:4a:52:18: 44:0c:23:23:4d:df:b8:fa:8b:5a:53:35:00:cb:dd:a1:eb:88: 32:50:96:3b:01:bf:da:fa:c5:e6:a6:6d:72:9d:a1:29:79:d4: 4c:25:f8:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjMxMDE3MDQxNTIyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJlMGE1YS04M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNKyea/Gdk6Rqx7t6xp0xNQB3fxBxN7hpIx49uOY0lc2gK3DlY8qjfwI0313 SgJzMSAqzgApeUKIBOfC9pKTuAlfI/L2CYwadJFKlMigK/hKya1tnxWkqPiY7dJz LY90oGQNOuq3Z0ifxLFsSuLjdGoazSmuEFwZPzuffJI0l5uxKJDUs/LyP09qsyum pYlU6X3vbN6YLEnEPfnd2T0P3zYrxBE1fJX6DEmeJPL1VJA/hmwfWtshzvPPUODq VeJgS4MXKnSIadcH0UP9X/AcPr1FoMYXX4tOiUUQyKoDS86QVgdrWYDugD/cweWq YswQib4+e8t0u74VEquThJFLzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNWg0FzZ R+jVs/2BTPolSdm6MrUYMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQkVGOUU5M0Uz RTZBMTFFREI1OEEyQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAbaIQAwDQYJKoZIhvcNAQELBQADggEBAFgSL00sxXWs1DWZ ab3sxrGzat+WXXjUwoZeCuJtqBZINB30bLwl82T2SjnzAOVtSyRtDaX3PLstfTH6 l+U1OOZqRlCYiB912M+EK9R3jHHPP26N8DxUUjB/m6S8UoZ4/XHpeSdH10R6XaU6 dIACaQYNYm8oWqI/uNqvuDLh3WdRxc+H7qMpXa8I04NexXc8cAGglV3S5D4uKnjm fQg2F6SrrVajoUY+9G1hN5jSAQxxmbtHB3VJVvbBm2qRDThT3dNmuqht5wTT/56+ yO4XOvk52VJbFUpSGEQMIyNN37j6i1pTNQDL3aHriDJQljsBv9r6xeambXKdoSl5 1Ewl+Fk= -----END CERTIFICATE-----Generated at Mon Apr 15 07:55:16 2024 by rpki-client on console-fra.rpki-client.org