$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/40D6370E09EA11EA95045455C4F9AE02.roa File: 40D6370E09EA11EA95045455C4F9AE02.roa (raw, json) Hash identifier: wZRNUd2fCyBuoTSJ470WFsMEQypHqEO+4iPnq7zf5og= Subject key identifier: 1A:8B:9B:22:FB:96:0B:88:4A:00:A4:00:E7:FF:C4:74:20:CF:FE:2D Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 1FB4 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/40D6370E09EA11EA95045455C4F9AE02.roa Signing time: Tue 30 Jan 2024 15:20:50 +0000 ROA not before: Tue 30 Jan 2024 15:20:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135358 IP address blocks: 203.34.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8116 (0x1fb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Jan 30 15:20:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b913d2-2f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:43:79:ba:ed:02:76:89:d6:03:8b:11:f2:da: 4f:ee:a5:80:9e:da:e3:7b:6f:c6:15:4f:a8:63:7b: dd:b5:37:dd:56:78:02:56:63:1b:54:df:7f:ac:1d: 42:b2:f2:b8:2e:03:55:11:9e:22:e6:bc:57:d3:a1: 83:51:8b:90:b4:f1:98:41:e3:4b:eb:10:85:ae:b6: d9:02:fb:b9:6a:10:2e:38:bd:a1:06:e0:0a:c6:69: d1:f2:61:95:8b:36:a5:a1:aa:bc:0d:66:8b:af:21: 3e:97:04:d0:3b:ee:3b:5b:b6:1f:4a:96:33:b0:32: 0f:30:7a:67:aa:ce:a5:6a:7f:c1:74:b5:98:b8:18: be:be:c3:63:16:77:2a:c5:cb:4e:7c:9d:0d:c2:e0: 67:81:45:d2:22:94:bb:fe:e3:52:1b:1f:ef:9d:4f: 4a:a5:78:4c:a8:00:ab:cf:3d:06:99:7b:89:83:93: 80:9d:82:4c:47:76:e8:64:c4:d3:de:d7:4e:44:0d: 55:89:1a:67:56:7e:ce:44:bb:cc:eb:f9:b3:9d:c4: af:9e:c3:19:bb:8d:74:78:15:8d:83:9d:a4:5b:f3: 0a:0b:2e:86:47:30:a3:bf:88:2a:ae:51:e9:5f:50: 1f:eb:e9:35:24:66:ab:71:71:13:0d:2c:ee:13:27: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8B:9B:22:FB:96:0B:88:4A:00:A4:00:E7:FF:C4:74:20:CF:FE:2D X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/40D6370E09EA11EA95045455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.100.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b7:ab:32:f5:2f:f9:e4:bc:0e:6b:5d:d9:66:57:9b:80:aa: f3:c5:b5:3b:ab:28:e9:31:98:47:d3:3b:49:09:35:35:b6:85: 02:c1:fb:2c:cf:7a:fc:62:36:c0:63:dd:9c:ce:0d:f0:7e:7c: b5:61:93:e2:16:f4:cc:a7:31:13:25:97:96:de:dc:7e:b4:33: 1d:ae:b1:5a:93:a3:98:57:5d:ea:69:c6:2a:72:d7:0d:5d:b1: 3f:ea:59:13:86:c1:2d:62:a5:a9:5f:32:89:3b:25:7c:65:fe: 13:87:30:25:df:da:6c:eb:66:ac:cf:51:e4:0e:40:47:d9:98: e7:40:38:f9:d4:aa:03:69:d1:67:e4:02:f4:b2:55:cc:bf:4a: dc:ee:f6:97:0c:31:6e:97:e1:fb:01:bb:f0:51:42:47:2b:ef: b4:3e:3b:ed:21:b3:4d:ba:f8:61:04:4f:ec:5b:d9:92:d0:82: 49:09:c2:45:d4:67:14:10:17:e6:fa:4c:cd:b4:91:16:49:74: ca:49:ba:ff:c6:e1:c9:67:50:93:c5:ea:52:3e:08:dc:e7:78: 6f:cd:d8:e8:90:21:0f:54:ed:70:ee:f6:8b:47:a0:25:7c:6e: 89:f2:68:6c:d1:50:4e:45:b5:39:d3:24:99:47:3f:b6:09:0b: b8:26:00:ec -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjQwMTMwMTUyMDUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MTNkMi0yZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30N5uu0CdonWA4sR8tpP7qWAntrje2/GFU+oY3vdtTfdVngCVmMbVN9/rB1C svK4LgNVEZ4i5rxX06GDUYuQtPGYQeNL6xCFrrbZAvu5ahAuOL2hBuAKxmnR8mGV izaloaq8DWaLryE+lwTQO+47W7YfSpYzsDIPMHpnqs6lan/BdLWYuBi+vsNjFncq xctOfJ0NwuBngUXSIpS7/uNSGx/vnU9KpXhMqACrzz0GmXuJg5OAnYJMR3boZMTT 3tdORA1ViRpnVn7ORLvM6/mzncSvnsMZu410eBWNg52kW/MKCy6GRzCjv4gqrlHp X1Af6+k1JGarcXETDSzuEydCqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqLmyL7 lguISgCkAOf/xHQgz/4tMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4ODUvRDA1MDY4NUExRDk4MTFFMkFFNkIxRjgzMDhCMDJDRDIvNDBENjM3MEUw OUVBMTFFQTk1MDQ1NDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLImQwDQYJKoZIhvcNAQELBQADggEBAGm3qzL1L/nkvA5r XdlmV5uAqvPFtTurKOkxmEfTO0kJNTW2hQLB+yzPevxiNsBj3ZzODfB+fLVhk+IW 9MynMRMll5be3H60Mx2usVqTo5hXXeppxipy1w1dsT/qWROGwS1ipalfMok7JXxl /hOHMCXf2mzrZqzPUeQOQEfZmOdAOPnUqgNp0WfkAvSyVcy/Stzu9pcMMW6X4fsB u/BRQkcr77Q+O+0hs026+GEET+xb2ZLQgkkJwkXUZxQQF+b6TM20kRZJdMpJuv/G 4clnUJPF6lI+CNzneG/N2OiQIQ9U7XDu9otHoCV8bonyaGzRUE5FtTnTJJlHP7YJ C7gmAOw= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org