$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa File: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (raw, json) Hash identifier: MKJ6wSfP6XkzEtx9sCGk4W8PlTZnlQN1NFofE/hMOCk= Subject key identifier: D5:65:94:71:8C:A8:66:B8:62:33:89:B0:DC:65:C0:DD:9E:30:E0:17 Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: 02 Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa Signing time: Tue 29 Aug 2023 14:58:34 +0000 ROA not before: Tue 29 Aug 2023 14:58:34 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135372 IP address blocks: 203.142.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: Aug 29 14:58:34 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ee079a-0f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:60:53:ca:bc:93:c3:b5:67:9e:5f:c9:52: 0f:b1:d3:8a:27:79:ed:4a:8c:bc:05:94:36:13:71: ba:83:ce:39:2b:da:ba:99:91:65:94:a1:6f:5d:b9: b9:53:23:38:1b:ea:46:f4:b4:7c:36:85:38:dd:d3: af:93:b3:a9:f5:37:d3:d7:37:7d:c2:3b:f3:d2:10: 7f:f7:67:7a:e3:1b:ee:8f:96:98:a2:92:25:14:6b: bd:80:b1:29:59:ae:05:42:8c:1b:88:1e:26:33:9e: 9d:b0:ea:9e:66:14:28:9c:d3:5b:e8:94:aa:c8:93: 9d:86:79:81:dd:e9:09:ff:42:84:b4:17:05:9f:00: 3d:1c:0e:59:c1:5a:2e:0c:e8:8a:6d:a5:67:ad:3b: 5d:90:39:a2:6d:dd:4a:f3:4d:d5:47:d7:8c:c2:91: 73:9d:a6:d8:4f:25:42:5a:52:1e:8f:b3:8d:50:2e: e7:1b:f0:42:91:03:6b:d9:3d:a1:51:05:22:7f:71: 70:d0:e2:4c:dd:b0:db:5a:77:4c:38:74:59:93:2e: 22:76:d2:f7:a9:d1:dd:9f:18:f8:19:63:7f:02:1d: c3:ba:25:22:8f:39:e3:6b:31:d2:c3:92:24:e8:8a: 32:bb:3e:9d:25:12:be:c5:39:f3:bb:65:49:04:b6: 57:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:65:94:71:8C:A8:66:B8:62:33:89:B0:DC:65:C0:DD:9E:30:E0:17 X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.142.10.0/24 Signature Algorithm: sha256WithRSAEncryption cd:ba:3e:b1:46:11:f5:1f:e1:5b:95:1a:de:ec:29:93:fd:bc: e9:9a:58:86:d3:f8:02:1f:2a:9f:97:a5:21:d2:b4:0e:8e:b1: bb:d3:bf:0c:60:2c:d9:fb:4b:aa:f4:bf:4f:ec:93:ce:87:49: 09:9b:da:62:50:e3:97:fc:dd:58:31:9d:1e:1f:22:3b:10:81: dc:36:ca:8b:73:7e:b0:f9:c4:1f:f6:8e:08:1e:f5:ee:70:d9: b7:1b:4d:76:6a:89:2f:17:39:62:a7:c7:42:11:dc:25:94:43: 29:c0:86:51:2f:fa:6d:36:35:4d:80:a6:81:2f:f4:53:92:c9: fc:82:9e:a4:db:d9:cc:a0:d9:25:02:0e:1a:82:40:a2:3a:27: f1:e9:e2:e6:47:d0:89:e4:74:c4:f6:13:61:99:25:36:c6:34: 07:23:9d:d6:df:01:7d:fe:cf:6b:94:04:27:af:5d:cb:2c:ac: 69:22:35:7c:96:7a:b0:a6:b6:64:d6:13:65:13:17:ca:b2:b7: 37:3c:fa:04:9d:07:39:23:42:df:b4:7a:92:92:32:35:8c:af: 17:5e:83:05:37:81:35:d3:78:76:84:a3:1d:89:a1:de:da:9f: e5:4f:18:ae:ad:05:83:db:b0:2c:0f:a3:2e:86:9b:d5:02:ed: 0d:15:90:56 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY0RDExMC8GA1UEBRMoMEMzN0EwMUNCNjMzNjIzNDRGQjczOTY3NjBGRDk0RDlD OUI5N0M3QTAeFw0yMzA4MjkxNDU4MzRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZWUwNzlhLTBmMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvgWBTyryTw7Vnnl/JUg+x04onee1KjLwFlDYTcbqDzjkr2rqZkWWUoW9dublT Izgb6kb0tHw2hTjd06+Ts6n1N9PXN33CO/PSEH/3Z3rjG+6PlpiikiUUa72AsSlZ rgVCjBuIHiYznp2w6p5mFCic01volKrIk52GeYHd6Qn/QoS0FwWfAD0cDlnBWi4M 6IptpWetO12QOaJt3UrzTdVH14zCkXOdpthPJUJaUh6Ps41QLucb8EKRA2vZPaFR BSJ/cXDQ4kzdsNtad0w4dFmTLiJ20vep0d2fGPgZY38CHcO6JSKPOeNrMdLDkiTo ijK7Pp0lEr7FOfO7ZUkEtleTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1WWUcYyo ZrhiM4mw3GXA3Z4w4BcwHwYDVR0jBBgwFoAUDDegHLYzYjRPtzlnYP2U2cm5fHow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjRELzJCQkU0MDE0NDY3 QzExRUU5MkQ2NDYzQ0M0RjlBRTAyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZI by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRERlZ0hMWXpZalJQdHpsbllQMlUyY201ZkhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi84NjVCM0Y3QzQ2 N0MxMUVFQkRFM0Q0M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMuOCjANBgkqhkiG9w0BAQsFAAOCAQEAzbo+sUYR9R/hW5Ua 3uwpk/286ZpYhtP4Ah8qn5elIdK0Do6xu9O/DGAs2ftLqvS/T+yTzodJCZvaYlDj l/zdWDGdHh8iOxCB3DbKi3N+sPnEH/aOCB717nDZtxtNdmqJLxc5YqfHQhHcJZRD KcCGUS/6bTY1TYCmgS/0U5LJ/IKepNvZzKDZJQIOGoJAojon8eni5kfQieR0xPYT YZklNsY0ByOd1t8Bff7Pa5QEJ69dyyysaSI1fJZ6sKa2ZNYTZRMXyrK3Nzz6BJ0H OSNC37R6kpIyNYyvF16DBTeBNdN4doSjHYmh3tqf5U8Yrq0Fg9uwLA+jLoab1QLt DRWQVg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org