$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa File: 1DD8238C836E11EEBBF2912FC4F9AE02.roa (raw, json) Hash identifier: dXDZSfPSyoqfwEaaeMTI4l7Przd6gT4wRfVGbGvRZvM= Subject key identifier: 26:A0:8E:8A:29:DD:FC:D4:7B:6A:78:7F:02:24:CB:93:BE:A8:9E:A1 Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Certificate serial: 39 Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa Signing time: Sat 17 Feb 2024 07:09:18 +0000 ROA not before: Sat 17 Feb 2024 07:09:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4826 IP address blocks: 203.223.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Validity Not Before: Feb 17 07:09:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65d05b9e-191e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:fd:69:01:ac:a9:ac:dc:82:bf:ee:6d:15: 2b:e3:45:30:b7:54:83:97:01:89:81:79:88:5c:17: f4:f8:6c:6d:6f:da:72:40:3b:71:e1:d6:21:86:0d: cb:ce:f3:02:7f:07:01:33:5f:6a:ad:ef:34:ba:2b: 4f:39:44:56:9e:6a:83:b6:5d:e0:fa:32:6d:83:58: 45:e1:2b:3a:06:fd:66:a6:a4:4d:c6:ac:aa:36:88: 13:ea:f0:96:b4:6a:d9:42:9c:ec:cd:b1:8c:9a:39: 8b:61:4d:32:36:48:ae:a1:c2:fd:55:3d:66:e7:54: 23:e3:50:c5:ff:28:98:07:85:f1:07:5e:a6:30:b2: 6e:0e:18:de:34:63:81:da:8d:62:67:4d:7e:36:12: a0:ee:bd:38:cb:f1:e1:ea:d6:e2:ad:96:a6:58:0e: ed:e3:33:b3:40:27:e2:6d:0b:d8:b1:11:8d:fa:9d: 4d:fc:8e:5b:5b:eb:d5:45:0b:81:c5:a7:6f:71:d4: e1:27:a5:95:17:38:fe:fb:8e:23:d0:97:7d:c8:74: 60:cc:39:46:aa:7f:32:e3:0d:7a:fd:7f:a8:65:c3: 3e:29:d7:97:58:12:e3:1c:74:1e:d4:25:8b:ca:cb: bf:7a:7a:68:51:c5:07:dd:be:1d:0f:9b:d3:1f:48: 3f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A0:8E:8A:29:DD:FC:D4:7B:6A:78:7F:02:24:CB:93:BE:A8:9E:A1 X509v3 Authority Key Identifier: keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.223.179.0/24 Signature Algorithm: sha256WithRSAEncryption c0:43:e5:ee:d3:5f:69:44:71:da:38:65:a1:11:70:58:33:0e: fc:d4:a1:10:3a:4b:d6:2f:db:72:27:71:5d:2b:7f:29:84:f9: 18:c8:0f:3d:0f:2a:6f:75:14:55:c6:8a:18:2b:e9:3c:9d:f0: 67:60:de:82:33:7f:74:1f:1c:33:c1:5a:41:83:61:05:bb:11: 90:33:9a:08:60:06:6e:3f:de:a7:2e:3c:98:16:fe:46:ad:ea: dd:a8:71:7d:66:e5:05:91:40:22:8e:76:74:6f:bd:e3:20:2d: 29:7c:f7:be:9a:0b:88:ab:18:c0:89:e1:d3:49:8a:ad:4f:83: a3:da:5f:af:16:c4:22:38:5c:f1:6a:24:80:60:e8:6e:73:57: fa:5b:4c:02:41:e9:53:00:5e:cf:6a:f6:c9:91:28:b8:2f:e1: fe:de:ab:da:e8:cb:5f:3d:66:cd:70:c5:12:5d:ad:2b:5e:59: ca:84:e3:25:bc:81:58:84:a2:24:04:da:a5:b5:c9:39:2d:f9: 11:fc:64:82:66:29:0d:1e:80:8e:00:37:aa:09:d3:7b:69:58: cf:7e:76:ed:dd:69:fa:f4:c9:b0:0e:e0:c7:75:3d:38:ce:71: 7f:99:27:73:c5:5b:73:17:84:52:68:ad:28:d7:de:3e:76:2e: 92:53:39:12 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz Q0MwQzExMC8GA1UEBRMoQUQ3NjVFNEFENUMwQUIzRUY0ODQxRDNFMzQ4NDI4MEJF QUNCQ0MyRDAeFw0yNDAyMTcwNzA5MThaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDA1YjllLTE5MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvjP1pAayprNyCv+5tFSvjRTC3VIOXAYmBeYhcF/T4bG1v2nJAO3Hh1iGGDcvO 8wJ/BwEzX2qt7zS6K085RFaeaoO2XeD6Mm2DWEXhKzoG/WampE3GrKo2iBPq8Ja0 atlCnOzNsYyaOYthTTI2SK6hwv1VPWbnVCPjUMX/KJgHhfEHXqYwsm4OGN40Y4Ha jWJnTX42EqDuvTjL8eHq1uKtlqZYDu3jM7NAJ+JtC9ixEY36nU38jltb69VFC4HF p29x1OEnpZUXOP77jiPQl33IdGDMOUaqfzLjDXr9f6hlwz4p15dYEuMcdB7UJYvK y796emhRxQfdvh0Pm9MfSD8BAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJqCOiind /NR7anh/AiTLk76onqEwHwYDVR0jBBgwFoAUrXZeStXAqz70hB0+NIQoC+rLzC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDQzBDLzg0MjU4NTZBODM1 NzExRUVBQkVCMkEzRkM0RjlBRTAyL3JYWmVTdFhBcXo3MGhCMC1OSVFvQy1yTHpD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclhaZVN0WEFxejcwaEIwLU5JUW9DLXJMekMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0MwQy84NDI1ODU2QTgzNTcxMUVFQUJFQjJBM0ZDNEY5QUUwMi8xREQ4MjM4Qzgz NkUxMUVFQkJGMjkxMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMvfszANBgkqhkiG9w0BAQsFAAOCAQEAwEPl7tNfaURx2jhl oRFwWDMO/NShEDpL1i/bcidxXSt/KYT5GMgPPQ8qb3UUVcaKGCvpPJ3wZ2DegjN/ dB8cM8FaQYNhBbsRkDOaCGAGbj/epy48mBb+Rq3q3ahxfWblBZFAIo52dG+94yAt KXz3vpoLiKsYwInh00mKrU+Do9pfrxbEIjhc8WokgGDobnNX+ltMAkHpUwBez2r2 yZEouC/h/t6r2ujLXz1mzXDFEl2tK15ZyoTjJbyBWISiJATapbXJOS35EfxkgmYp DR6AjgA3qgnTe2lYz3527d1p+vTJsA7gx3U9OM5xf5knc8VbcxeEUmitKNfePnYu klM5Eg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org