$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa File: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (raw, json) Hash identifier: QTFQxSGbHvXz5vkvFn+KK94bpSwxQ7fT3LT2GWe203M= Subject key identifier: 3C:B9:71:48:45:91:E1:D7:9A:30:FA:E9:9D:CA:26:09:09:6A:25:AE Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0944 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa Signing time: Thu 22 Jun 2023 21:52:40 +0000 ROA not before: Thu 22 Jun 2023 21:52:40 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 24462 IP address blocks: 202.77.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jun 22 21:52:40 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494c2a8-ddb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:12:68:e7:a0:64:6f:00:8a:4e:34:72:84:0d: 4e:17:45:0d:8c:bb:37:47:20:95:24:33:bb:68:d1: fd:c2:37:8d:d2:bb:62:b8:ba:fa:df:f1:f6:7b:68: 4a:ae:c1:b4:5f:85:98:07:08:61:26:05:0d:b0:3b: ee:ff:57:15:09:fb:89:da:cf:d7:b9:cd:b1:07:d6: 54:12:80:15:8d:fa:70:d1:0e:2f:ca:2f:1d:b5:d6: 56:e9:24:aa:0d:8f:7f:27:b5:47:e7:dd:e1:94:a1: d0:44:e1:e3:c9:a3:e8:ef:3e:02:49:b0:8e:5b:f2: 43:ba:e3:22:43:fd:11:7c:99:98:48:d7:5a:4e:78: 2a:eb:5b:2e:93:4f:14:8e:1c:98:57:5f:85:e0:e0: 2c:0d:c8:d0:42:4a:56:d1:18:de:f5:b6:1e:41:31: b9:b5:1a:e5:8c:15:35:3e:bd:f5:1e:0b:5e:62:d3: 81:77:f1:5c:60:f8:fe:dd:72:44:f7:bb:36:83:35: 8a:cd:3f:19:d9:5e:60:63:23:29:c8:19:33:5b:d9: 92:16:d5:54:03:a3:f1:8b:21:ab:79:f8:2b:8c:36: 98:5b:d6:83:5c:77:94:31:ec:63:bd:4c:4c:31:dd: ed:50:de:0e:4c:51:14:04:62:36:72:86:13:ff:25: c4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B9:71:48:45:91:E1:D7:9A:30:FA:E9:9D:CA:26:09:09:6A:25:AE X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.51.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:21:26:d9:bd:7b:3a:45:30:1e:57:e0:31:30:62:0f:28:9c: 19:e3:6d:c1:86:2e:49:e7:b1:1b:b8:b2:43:a0:a4:8a:f1:02: 7a:e1:84:ac:74:0b:1d:fa:c7:7b:5f:58:43:cb:d3:c1:49:09: 54:f1:eb:9f:36:34:9e:c4:1a:41:1d:c3:5d:48:d3:64:58:cf: 5b:86:4f:b7:9c:5e:16:76:43:1b:78:44:85:7c:52:76:e6:0d: 8f:fb:bf:bb:fb:20:c6:03:4f:90:e5:20:12:61:68:db:38:69: 04:07:12:f3:ac:19:5f:91:62:f0:8b:4d:93:5a:fc:bf:e9:93: 32:67:2c:a3:3a:26:c1:98:0c:55:f0:61:46:8f:9a:3b:1d:90: a1:d1:c1:19:55:c0:4e:f5:12:2f:2c:2f:6c:ed:6b:44:dd:41: d1:6f:97:9a:28:f3:2b:36:4b:21:99:c6:1d:01:c3:d5:59:32: b4:7e:c9:7b:55:d0:d8:2f:f6:18:ca:40:27:db:8f:0e:27:9e: 5d:ed:58:e9:05:09:84:8f:fe:af:62:03:f3:4a:6c:94:3e:57: 72:d3:51:3b:93:fe:68:0c:09:56:98:a6:66:a1:68:aa:20:ee: 1b:09:88:21:4b:98:b9:63:e3:fa:25:d0:28:92:28:bf:42:a3: 25:c0:51:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjMwNjIyMjE1MjQwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0YzJhOC1kZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhJo56BkbwCKTjRyhA1OF0UNjLs3RyCVJDO7aNH9wjeN0rtiuLr63/H2e2hK rsG0X4WYBwhhJgUNsDvu/1cVCfuJ2s/Xuc2xB9ZUEoAVjfpw0Q4vyi8dtdZW6SSq DY9/J7VH593hlKHQROHjyaPo7z4CSbCOW/JDuuMiQ/0RfJmYSNdaTngq61suk08U jhyYV1+F4OAsDcjQQkpW0Rje9bYeQTG5tRrljBU1Pr31HgteYtOBd/FcYPj+3XJE 97s2gzWKzT8Z2V5gYyMpyBkzW9mSFtVUA6PxiyGrefgrjDaYW9aDXHeUMexjvUxM Md3tUN4OTFEUBGI2coYT/yXExQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDy5cUhF keHXmjD66Z3KJgkJaiWuMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvNjFFRkIyQUNB QzM2MTFFREE1OTk1RjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKTTMwDQYJKoZIhvcNAQELBQADggEBAI0hJtm9ezpFMB5X 4DEwYg8onBnjbcGGLknnsRu4skOgpIrxAnrhhKx0Cx36x3tfWEPL08FJCVTx6582 NJ7EGkEdw11I02RYz1uGT7ecXhZ2Qxt4RIV8UnbmDY/7v7v7IMYDT5DlIBJhaNs4 aQQHEvOsGV+RYvCLTZNa/L/pkzJnLKM6JsGYDFXwYUaPmjsdkKHRwRlVwE71Ei8s L2zta0TdQdFvl5oo8ys2SyGZxh0Bw9VZMrR+yXtV0Ngv9hjKQCfbjw4nnl3tWOkF CYSP/q9iA/NKbJQ+V3LTUTuT/mgMCVaYpmahaKog7hsJiCFLmLlj4/ol0CiSKL9C oyXAUR8= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:08 2024 by rpki-client on console-ams.rpki-client.org