$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24783DA46F3211EDA3DCF033C4F9AE02.roa File: 24783DA46F3211EDA3DCF033C4F9AE02.roa (raw, json) Hash identifier: eUbBDdkLdeYenUKLmnUljE7SJrGekXVsi4VKV+9PjNg= Subject key identifier: EA:8A:F8:B3:D5:F1:AB:3C:29:7B:2A:9B:B4:C1:34:32:44:B9:C2:FB Certificate issuer: /CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Certificate serial: 75 Authority key identifier: 91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24783DA46F3211EDA3DCF033C4F9AE02.roa Signing time: Sun 09 Jul 2023 03:42:59 +0000 ROA not before: Sun 09 Jul 2023 03:42:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 14618 IP address blocks: 203.55.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Validity Not Before: Jul 9 03:42:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64aa2cc3-4607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:96:50:ed:13:71:70:3e:3b:ff:15:d8:4e: 81:54:6e:c7:c9:7d:2c:1e:ab:50:c4:42:b1:61:92: 7f:d4:8b:1b:30:40:4f:b8:4b:34:1d:19:f9:c1:31: 63:64:23:ab:ad:fb:7c:ab:1c:74:56:4b:9a:e0:cc: 34:f2:35:81:ff:45:46:f1:f7:5d:00:eb:b5:87:6c: 08:0a:d7:25:d4:dd:4a:14:f7:a9:9a:67:ff:70:70: 7e:09:c3:69:95:0d:27:92:f0:cf:25:30:d8:ac:8a: 1d:be:d9:c6:6a:48:b8:09:db:a0:aa:1a:55:03:ff: b5:2a:d6:ce:7c:09:e2:9f:e2:ca:a6:71:29:4d:c7: 22:4c:89:77:15:12:8c:1b:fe:9d:02:bb:19:3f:40: 43:c6:a9:8b:fa:7b:1c:1e:ea:2a:2f:18:96:e7:2c: ed:fc:32:39:a3:9c:a1:a5:3e:97:e9:5e:12:a2:9b: 8b:3c:11:7f:5c:74:3f:7f:aa:01:e3:ae:9c:5a:e4: 12:f0:6d:c6:27:d9:07:8c:51:db:52:61:43:32:3f: ed:5c:e9:ee:1c:1e:61:f4:e2:76:00:25:7a:76:b6: fd:3f:2e:a7:da:f1:7e:f8:b3:4c:06:34:ae:69:74: a9:e7:47:11:e7:6e:d1:5f:aa:c2:4d:83:1b:3e:1d: de:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8A:F8:B3:D5:F1:AB:3C:29:7B:2A:9B:B4:C1:34:32:44:B9:C2:FB X509v3 Authority Key Identifier: keyid:91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/24783DA46F3211EDA3DCF033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.55.215.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:b8:2f:37:cf:c1:c5:78:79:1a:75:7a:85:85:41:dc:d3:51: be:34:a2:19:35:78:f9:18:28:67:06:77:d9:fd:cf:29:ee:63: e9:16:3d:ae:12:5c:1f:37:e8:3b:20:bd:e1:d4:39:4f:e0:c1: ea:5b:e0:bb:27:6f:7f:c6:6a:dd:3b:5c:92:cb:e6:dc:9b:e6: df:fa:09:45:76:35:82:39:89:04:2d:8a:b7:36:8a:fa:31:fd: b8:24:67:c7:b2:b4:2d:fc:96:eb:cd:a5:5f:86:c0:47:a7:40: 7b:fd:a2:06:91:58:35:dc:38:dc:45:a1:cc:0d:a7:ba:fc:a0: 2a:8d:f9:92:29:61:de:87:af:45:3e:5a:3e:33:d3:c4:b2:91: 81:9d:37:25:3a:df:73:82:b1:04:9d:9e:02:b0:83:b8:60:62: 4e:b1:67:0e:35:1e:62:fa:4a:ec:07:2a:1d:0b:2c:34:fa:55: af:e5:98:fc:fc:b4:e0:82:89:d2:37:1d:aa:e3:9f:49:bf:b6: 30:8f:77:66:50:8f:e2:7d:40:57:71:4d:90:76:cc:a7:59:d0: 55:00:1f:f6:b0:cc:5a:0e:ad:ad:f2:35:30:9a:fb:69:cb:f8: a8:d4:2c:5e:d3:4c:be:2e:e0:50:ad:28:b7:dd:94:9b:da:9b: 11:b8:c4:a3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy M0Y4NDExMC8GA1UEBRMoOTFDNDk3NkRFQUQzREU4Nzc4RTVDMERDRkYyNjAzOTcx QUMyRDREQjAeFw0yMzA3MDkwMzQyNTlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YWEyY2MzLTQ2MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKBJZQ7RNxcD47/xXYToFUbsfJfSweq1DEQrFhkn/UixswQE+4SzQdGfnBMWNk I6ut+3yrHHRWS5rgzDTyNYH/RUbx910A67WHbAgK1yXU3UoU96maZ/9wcH4Jw2mV DSeS8M8lMNisih2+2cZqSLgJ26CqGlUD/7Uq1s58CeKf4sqmcSlNxyJMiXcVEowb /p0Cuxk/QEPGqYv6exwe6iovGJbnLO38MjmjnKGlPpfpXhKim4s8EX9cdD9/qgHj rpxa5BLwbcYn2QeMUdtSYUMyP+1c6e4cHmH04nYAJXp2tv0/Lqfa8X74s0wGNK5p dKnnRxHnbtFfqsJNgxs+Hd6rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6or4s9Xx qzwpeyqbtME0MkS5wvswHwYDVR0jBBgwFoAUkcSXberT3od45cDc/yYDlxrC1Nsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzRjg0L0Y0M0EzRjA0NkYy RjExRURBODRBNjkzM0M0RjlBRTAyL2tjU1hiZXJUM29kNDVjRGNfeVlEbHhyQzFO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva2NTWGJlclQzb2Q0NWNEY195WURseHJDMU5zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0Y4NC9GNDNBM0YwNDZGMkYxMUVEQTg0QTY5MzNDNEY5QUUwMi8yNDc4M0RBNDZG MzIxMUVEQTNEQ0YwMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMs31zANBgkqhkiG9w0BAQsFAAOCAQEALLgvN8/BxXh5GnV6 hYVB3NNRvjSiGTV4+RgoZwZ32f3PKe5j6RY9rhJcHzfoOyC94dQ5T+DB6lvguydv f8Zq3Ttcksvm3Jvm3/oJRXY1gjmJBC2KtzaK+jH9uCRnx7K0LfyW682lX4bAR6dA e/2iBpFYNdw43EWhzA2nuvygKo35kilh3oevRT5aPjPTxLKRgZ03JTrfc4KxBJ2e ArCDuGBiTrFnDjUeYvpK7AcqHQssNPpVr+WY/Py04IKJ0jcdquOfSb+2MI93ZlCP 4n1AV3FNkHbMp1nQVQAf9rDMWg6trfI1MJr7acv4qNQsXtNMvi7gUK0ot92Um9qb EbjEow== -----END CERTIFICATE-----Generated at Sun May 5 06:13:34 2024 by rpki-client on console-ams.rpki-client.org