$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa File: 0B5C0778D0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: 1ZtFopmCCVD7KT2BdPii78KMDgCQkvnDuz2kc/+aBJQ= Subject key identifier: 3B:C0:F3:B0:00:EC:9C:57:9A:14:D9:58:1A:FA:3A:90:C7:C0:9C:D3 Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 074E Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa Signing time: Sat 24 Feb 2024 22:10:38 +0000 ROA not before: Sat 24 Feb 2024 22:10:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56192 IP address blocks: 202.0.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1870 (0x74e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Validity Not Before: Feb 24 22:10:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65da695d-58dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:8a:c1:a7:97:9e:55:87:69:fd:f4:0a:b7: 47:12:9e:31:73:96:50:07:3d:c7:f7:7c:39:7a:e7: a0:ce:7a:57:6c:16:c1:37:de:7c:3d:08:8d:d3:61: c2:89:d2:3a:81:3c:1a:2d:98:1f:a3:28:7c:7a:46: aa:0a:7e:c9:24:b8:2a:1a:7a:10:8c:7f:49:6d:b9: 95:1b:5e:9e:8a:05:36:b9:41:37:4f:fc:2e:39:51: 2f:ba:e8:37:20:c6:45:70:04:d7:f3:1e:45:47:0e: e2:84:c5:72:03:ef:6e:a2:20:91:85:3e:84:9b:69: 98:8a:d8:61:88:4f:ea:2c:7a:62:d3:dc:69:ab:cc: 87:e5:27:3c:1f:80:39:c4:b0:99:49:82:3d:71:e2: fb:86:c6:60:be:05:b3:80:0d:8a:4d:1c:e8:e0:4b: 39:7d:d5:4a:d8:70:d5:5d:fb:30:66:ee:16:f3:5f: 7f:a9:68:a7:6b:a3:db:f7:37:d9:19:4d:9a:62:c4: 98:59:b3:57:32:cf:eb:af:02:c1:19:65:9b:7d:8b: 9b:66:71:ea:39:3b:5b:ef:85:c2:d1:b9:af:72:2d: af:c3:00:c2:c3:ab:33:02:ab:1e:bd:4e:86:95:d9: 5d:a6:5b:a5:1b:30:e7:36:4a:51:0b:14:c7:f2:9d: c7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C0:F3:B0:00:EC:9C:57:9A:14:D9:58:1A:FA:3A:90:C7:C0:9C:D3 X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.110.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:db:28:c9:e8:69:cd:dd:be:9c:28:d7:16:1b:c4:d8:62:fb: ea:d7:f8:a8:4d:bb:88:20:0a:ac:84:c3:96:b1:04:1f:07:99: 03:02:cb:f7:b4:5d:85:02:83:93:46:36:a9:fd:7c:fa:d6:d0: 98:29:4d:88:fd:74:ca:52:ed:fb:62:fc:cd:de:7f:87:28:86: d8:dd:d0:9d:73:cf:f3:d4:2c:77:d9:e3:2e:a6:d2:72:2d:a0: 13:fa:71:87:8e:00:92:bb:24:af:23:1c:39:05:c8:ca:d6:ea: 9c:44:e7:4f:b5:76:a9:d5:3a:16:d2:63:58:91:09:8d:c8:d2: 85:31:c3:bd:99:36:ad:b7:ac:b6:99:00:49:ce:6d:bb:d5:bc: 03:65:ba:cf:d0:dc:1f:2e:28:b1:37:af:49:70:98:7b:d4:ef: fc:5e:b4:c2:ef:0c:10:b6:e3:c0:46:23:97:23:f1:2b:62:45: a5:24:56:26:7e:6e:02:44:5c:39:a9:7d:24:51:53:bb:37:0c: 4e:74:57:ee:56:84:75:5c:f6:2f:2d:0a:70:f5:bf:c2:d4:54: f6:06:e8:26:44:d1:03:a0:ae:ae:bd:47:8a:a6:dc:76:49:83: 46:a7:6e:ee:c5:bd:1b:76:df:66:1f:6f:16:52:b5:6a:32:7f: ea:65:09:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjQwMjI0MjIxMDM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhNjk1ZC01OGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGKKwaeXnlWHaf30CrdHEp4xc5ZQBz3H93w5euegznpXbBbBN958PQiN02HC idI6gTwaLZgfoyh8ekaqCn7JJLgqGnoQjH9JbbmVG16eigU2uUE3T/wuOVEvuug3 IMZFcATX8x5FRw7ihMVyA+9uoiCRhT6Em2mYithhiE/qLHpi09xpq8yH5Sc8H4A5 xLCZSYI9ceL7hsZgvgWzgA2KTRzo4Es5fdVK2HDVXfswZu4W819/qWina6Pb9zfZ GU2aYsSYWbNXMs/rrwLBGWWbfYubZnHqOTtb74XC0bmvci2vwwDCw6szAqsevU6G ldldplulGzDnNkpRCxTH8p3H9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDvA87AA 7JxXmhTZWBr6OpDHwJzTMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEI1QzA3NzhE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKAG4wDQYJKoZIhvcNAQELBQADggEBAFzbKMnoac3dvpwo 1xYbxNhi++rX+KhNu4ggCqyEw5axBB8HmQMCy/e0XYUCg5NGNqn9fPrW0JgpTYj9 dMpS7fti/M3ef4cohtjd0J1zz/PULHfZ4y6m0nItoBP6cYeOAJK7JK8jHDkFyMrW 6pxE50+1dqnVOhbSY1iRCY3I0oUxw72ZNq23rLaZAEnObbvVvANlus/Q3B8uKLE3 r0lwmHvU7/xetMLvDBC248BGI5cj8StiRaUkViZ+bgJEXDmpfSRRU7s3DE50V+5W hHVc9i8tCnD1v8LUVPYG6CZE0QOgrq69R4qm3HZJg0anbu7FvRt232YfbxZStWoy f+plCZk= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org