$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa File: 1F5CD892C35111EE9D744F36C4F9AE02.roa (raw, json) Hash identifier: kWNVfDLs1+2Y53t+8wep1l/lz0MK8fqRm6f70PeE45Y= Subject key identifier: C7:06:DE:7D:CB:7E:08:1E:6F:50:A5:AE:3D:0C:B6:A9:0D:95:C6:2D Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 33A1 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa Signing time: Sun 04 Feb 2024 11:32:48 +0000 ROA not before: Sun 04 Feb 2024 11:32:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 7485 IP address blocks: 210.246.198.0/24 maxlen: 24 210.246.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13217 (0x33a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Feb 4 11:32:48 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65bf75e0-f32f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ca:64:4a:59:30:a4:db:69:46:b8:f5:40:c1: 27:a0:e3:42:dc:05:6d:7a:80:b3:a6:7f:18:75:eb: 7a:4f:96:ca:83:73:d5:22:29:c6:8e:1c:47:ba:a5: c6:5a:80:23:1c:f8:e3:23:6d:ae:ee:dd:a9:7e:1b: 5e:54:30:25:97:1c:68:88:0a:5e:64:13:12:c2:9a: 00:ae:83:c6:40:ae:a2:28:65:9f:f0:98:61:9d:e1: f1:cd:dc:08:98:72:d9:6d:a3:44:57:a9:60:53:2c: a7:c4:f7:9f:27:11:a2:53:03:38:da:a3:3f:b7:e6: f4:87:76:a5:66:ca:7d:ac:d6:7b:ca:ad:7f:16:3a: 18:09:a0:3c:cf:ed:1d:48:39:51:ff:92:b1:1c:c7: 30:a8:9b:6c:35:b3:10:97:0a:67:b8:31:ec:61:74: 11:e2:ba:9d:e8:e2:5c:c9:cf:6b:ac:db:e1:0a:9c: 43:76:11:e2:51:2d:8d:79:72:c2:d4:56:90:ec:df: 4b:3d:21:bc:8a:71:3d:cd:00:02:e8:5f:2b:d2:80: 24:e7:af:ca:16:7d:98:69:e8:cd:5d:1a:a2:75:d7: 9d:4b:ed:40:c0:6f:b0:52:17:57:c3:53:01:cf:1f: e3:55:65:3e:04:d1:61:34:4d:57:d3:7a:de:06:0e: c6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:06:DE:7D:CB:7E:08:1E:6F:50:A5:AE:3D:0C:B6:A9:0D:95:C6:2D X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.246.198.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:14:d1:f1:e4:bd:05:5e:6d:50:2b:da:2f:3c:0c:c4:1c:c3: 24:63:66:47:a8:56:8e:3e:fa:76:c5:06:04:11:5c:2b:4f:44: 1f:d4:45:06:07:70:21:86:01:e3:ac:8f:1c:9f:64:dc:0d:7c: e1:04:eb:1e:59:5a:53:3a:64:66:43:db:ab:c4:d0:0c:e4:4e: 1b:1c:6b:b3:c4:88:70:bc:c0:b5:f0:a7:6c:f4:90:78:22:47: e8:1d:bc:57:30:e2:0d:91:b4:2a:18:e1:58:a3:0c:95:bf:dd: f5:11:aa:fa:5a:f2:52:60:47:e2:e5:a0:84:5c:70:d2:d5:e7: 71:c1:bf:c4:68:a7:47:75:11:fa:ec:fe:45:b4:7d:1f:c8:c1: 8d:4b:e1:76:9a:39:40:87:ba:55:55:50:7c:a0:6f:22:39:ae: 96:fc:8e:fb:63:35:b2:f6:2a:d6:da:d4:1b:81:da:56:54:00: 34:9f:76:ef:03:f9:1b:e1:64:73:59:c0:59:06:fc:e7:75:44: f5:11:14:45:24:5a:06:0a:4e:e8:3f:54:06:75:1a:11:bf:9f: 81:74:15:a9:7e:dc:3b:c1:37:4d:3d:99:49:0d:f1:9a:59:2a: cc:33:dc:b0:09:65:68:33:2f:3c:e0:b8:d5:e8:70:34:67:04: e4:c5:35:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjQwMjA0MTEzMjQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJmNzVlMC1mMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8pkSlkwpNtpRrj1QMEnoONC3AVteoCzpn8Ydet6T5bKg3PVIinGjhxHuqXG WoAjHPjjI22u7t2pfhteVDAllxxoiApeZBMSwpoAroPGQK6iKGWf8JhhneHxzdwI mHLZbaNEV6lgUyynxPefJxGiUwM42qM/t+b0h3alZsp9rNZ7yq1/FjoYCaA8z+0d SDlR/5KxHMcwqJtsNbMQlwpnuDHsYXQR4rqd6OJcyc9rrNvhCpxDdhHiUS2NeXLC 1FaQ7N9LPSG8inE9zQAC6F8r0oAk56/KFn2YaejNXRqiddedS+1AwG+wUhdXw1MB zx/jVWU+BNFhNE1X03reBg7G5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMcG3n3L fggeb1Clrj0MtqkNlcYtMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1QjAvNDBDOEQ1QTYxRDgzMTFFMjgyM0E1RkQ4MDhCMDJDRDIvMUY1Q0Q4OTJD MzUxMTFFRTlENzQ0RjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHS9sYwDQYJKoZIhvcNAQELBQADggEBAI4U0fHkvQVebVAr 2i88DMQcwyRjZkeoVo4++nbFBgQRXCtPRB/URQYHcCGGAeOsjxyfZNwNfOEE6x5Z WlM6ZGZD26vE0AzkThsca7PEiHC8wLXwp2z0kHgiR+gdvFcw4g2RtCoY4VijDJW/ 3fURqvpa8lJgR+LloIRccNLV53HBv8Rop0d1Efrs/kW0fR/IwY1L4XaaOUCHulVV UHygbyI5rpb8jvtjNbL2Ktba1BuB2lZUADSfdu8D+RvhZHNZwFkG/Od1RPURFEUk WgYKTug/VAZ1GhG/n4F0Fal+3DvBN009mUkN8ZpZKswz3LAJZWgzLzzguNXocDRn BOTFNSY= -----END CERTIFICATE-----Generated at Fri May 31 15:08:08 2024 by rpki-client on console-fra.rpki-client.org