$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/95EA616A8D7011EB9739D53DC4F9AE02.roa File: 95EA616A8D7011EB9739D53DC4F9AE02.roa (raw, json) Hash identifier: NLsBfxhmyzL8wia5TxVb8XE94lu1DGJrmrPwjzX2gow= Subject key identifier: 75:B4:D8:53:83:42:B5:20:8A:FC:BA:A4:36:7F:7E:96:46:67:CF:5F Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 04F9 Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/95EA616A8D7011EB9739D53DC4F9AE02.roa Signing time: Thu 20 Jul 2023 23:39:58 +0000 ROA not before: Thu 20 Jul 2023 23:39:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135880 IP address blocks: 202.14.152.0/24 maxlen: 24 203.20.94.0/24 maxlen: 24 203.24.48.0/24 maxlen: 24 203.30.135.0/24 maxlen: 24 203.30.231.0/24 maxlen: 24 203.30.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 01:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Jul 20 23:39:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9c5ce-05a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:9e:8c:dc:ed:e9:61:81:e3:80:3c:07:72: 05:22:49:ec:57:b4:77:f0:d7:16:85:1e:04:60:40: f2:cf:03:c7:ba:e4:4b:9c:10:0c:71:7c:65:f1:1e: 53:30:90:96:dd:8c:0c:a9:dc:61:ba:f2:2f:f1:14: f9:90:39:e3:59:39:58:9f:25:8a:f6:37:ea:fb:c2: 27:3a:e8:29:1e:7f:a5:50:8e:78:50:54:4e:28:c2: 6d:b2:09:26:fe:ed:5b:2a:15:83:c2:2c:70:6f:f6: af:5d:c1:e2:7f:ca:70:2e:af:06:d6:75:c8:83:11: 85:9f:8e:49:37:0d:0e:2b:69:13:10:44:43:de:f3: a8:8b:a0:43:ff:d2:96:c8:98:24:9a:a4:80:06:ca: 52:e5:80:a5:ce:b5:ac:f8:c2:6c:ad:1b:e4:c2:ac: 53:c5:fe:eb:75:32:9e:7a:9e:37:fc:07:1d:02:52: 71:52:24:88:1c:75:bb:d2:ef:28:04:5d:06:d4:82: f2:c1:db:9d:f0:60:ca:fa:75:e1:cc:57:dd:79:95: 83:76:4d:bd:4b:1b:41:11:b2:a2:09:fa:0e:a4:78: 79:fe:a0:e2:93:49:39:76:15:dd:4d:dd:0a:b6:2a: 4d:6d:28:de:68:e4:38:dd:d9:16:45:fd:fe:b3:4f: 38:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B4:D8:53:83:42:B5:20:8A:FC:BA:A4:36:7F:7E:96:46:67:CF:5F X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/95EA616A8D7011EB9739D53DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.152.0/24 203.20.94.0/24 203.24.48.0/24 203.30.135.0/24 203.30.231.0/24 203.30.234.0/24 Signature Algorithm: sha256WithRSAEncryption 23:2f:3d:7d:57:df:c1:d9:15:28:1d:0a:40:00:ed:b8:a2:fc: d4:1f:7a:59:63:1e:ae:e2:93:c3:60:0f:78:04:52:fd:51:78: b0:02:2a:bc:fb:0b:35:65:02:ed:f0:68:dc:65:6b:b6:b1:a9: b4:45:4c:b8:4c:56:ca:9a:80:7e:25:40:6f:8b:d6:7b:7c:43: 09:c1:4d:26:9d:bb:46:bb:93:d0:c5:11:10:50:f0:6a:9f:9e: 04:56:f6:47:ff:d1:68:66:fb:b0:cd:c0:66:4f:3a:ee:d0:e1: ed:2e:eb:58:90:df:00:ff:40:4e:e5:70:43:aa:9e:2c:7f:f8: 67:49:e6:52:ac:20:4d:ae:8c:5b:6d:8b:50:9e:fc:17:fa:38: 98:73:c0:19:a1:5e:46:7f:68:13:ba:57:60:0f:0e:42:bc:78: 6a:4d:12:20:3a:44:94:a2:d5:40:c6:8f:8a:20:df:03:0e:3a: 93:eb:b2:7b:07:de:62:33:44:3f:f2:f3:5f:10:ca:8f:bc:60: 69:c1:ea:fc:dd:e8:90:86:7d:4d:29:72:ce:b4:ac:fb:a5:24: 77:0b:34:29:13:03:62:34:aa:87:d0:d2:19:eb:5e:30:ec:0c: 25:c3:d8:17:87:20:c7:89:db:c0:3d:1c:f7:07:93:15:7c:c2: 77:02:70:24 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjMwNzIwMjMzOTU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YzVjZS0wNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw6ejNzt6WGB44A8B3IFIknsV7R38NcWhR4EYEDyzwPHuuRLnBAMcXxl8R5T MJCW3YwMqdxhuvIv8RT5kDnjWTlYnyWK9jfq+8InOugpHn+lUI54UFROKMJtsgkm /u1bKhWDwixwb/avXcHif8pwLq8G1nXIgxGFn45JNw0OK2kTEERD3vOoi6BD/9KW yJgkmqSABspS5YClzrWs+MJsrRvkwqxTxf7rdTKeep43/AcdAlJxUiSIHHW70u8o BF0G1ILywdud8GDK+nXhzFfdeZWDdk29SxtBEbKiCfoOpHh5/qDik0k5dhXdTd0K tipNbSjeaOQ43dkWRf3+s084QwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHW02FOD QrUgivy6pDZ/fpZGZ89fMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1M0QvODRCNThGNjY4Q0ZCMTFFQjlEQzYyQzNCQzRGOUFFMDIvOTVFQTYxNkE4 RDcwMTFFQjk3MzlENTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBADKDpgDBADLFF4DBADLGDADBADLHocDBADLHucDBADLHuow DQYJKoZIhvcNAQELBQADggEBACMvPX1X38HZFSgdCkAA7bii/NQfelljHq7ik8Ng D3gEUv1ReLACKrz7CzVlAu3waNxla7axqbRFTLhMVsqagH4lQG+L1nt8QwnBTSad u0a7k9DFERBQ8GqfngRW9kf/0Whm+7DNwGZPOu7Q4e0u61iQ3wD/QE7lcEOqnix/ +GdJ5lKsIE2ujFtti1Ce/Bf6OJhzwBmhXkZ/aBO6V2APDkK8eGpNEiA6RJSi1UDG j4og3wMOOpPrsnsH3mIzRD/y818Qyo+8YGnB6vzd6JCGfU0pcs60rPulJHcLNCkT A2I0qofQ0hnrXjDsDCXD2BeHIMeJ28A9HPcHkxV8wncCcCQ= -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:08 2024 by rpki-client on console-ams.rpki-client.org