$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa File: 9765FB988A5D11EE9E6AA223C4F9AE02.roa (raw, json) Hash identifier: MnjINYkorDILZv5PMKnnjc6F0RbE8gzx6qGbM8gv8J4= Subject key identifier: F0:46:8A:6D:F7:42:B4:AC:10:A3:C2:FC:F6:0A:AD:87:2B:A2:9A:9C Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 066B Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa Signing time: Fri 24 Nov 2023 00:08:27 +0000 ROA not before: Fri 24 Nov 2023 00:08:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 394869 IP address blocks: 61.245.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Nov 24 00:08:27 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655fe97b-3a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:39:d9:fa:48:e3:6d:e0:6b:42:3b:cc:36: 07:8a:7a:ec:0e:bf:ee:f2:71:48:26:14:77:71:cb: cc:ab:8f:c2:1c:b2:73:b8:d2:e4:c2:c5:68:be:7c: cc:60:a3:48:47:48:a5:bb:65:a3:83:1f:bf:58:bf: 6d:ba:53:7c:53:ec:bc:53:1a:c6:9c:04:8f:b5:64: 94:a5:63:c6:78:be:35:33:95:9e:90:b7:e2:c3:0e: 85:bd:15:bd:f8:75:7e:2c:ef:aa:c9:6e:09:7b:ac: ec:85:67:c0:32:12:09:36:69:f6:cc:33:fc:6f:01: 6b:08:57:f2:da:b7:0a:ce:1c:3a:c2:8a:ff:7d:5d: 40:e2:ac:22:d9:de:a5:6f:e3:74:64:0c:14:63:f9: 39:dd:8a:98:99:74:cf:75:1c:b4:4d:d6:8f:7d:4f: 73:61:d3:06:80:80:7b:e1:dd:76:64:86:dd:06:b2: d0:38:ae:84:88:31:b4:84:79:18:09:e0:e3:30:af: c8:63:d1:43:9e:69:18:87:e6:fb:3b:e2:cd:5e:fd: 16:da:d6:99:a4:0d:8a:4e:15:13:d8:a8:d9:51:d4: 1a:8c:b3:52:e0:c4:20:25:e2:ca:31:9d:45:ce:4d: 46:07:5e:db:ea:41:fb:16:9a:3c:83:24:ea:4d:33: 55:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:46:8A:6D:F7:42:B4:AC:10:A3:C2:FC:F6:0A:AD:87:2B:A2:9A:9C X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/9765FB988A5D11EE9E6AA223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.31.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:50:b9:94:ad:ef:b3:8e:87:81:06:0d:18:6d:79:ce:c6:8c: 48:30:ce:83:af:7b:97:e5:c2:93:0b:94:0e:cc:ca:32:4c:d8: c5:f6:28:dd:f5:35:ed:ff:93:c9:09:e8:fd:ed:ea:af:5b:20: 51:94:98:3a:cb:dd:fd:ab:b4:20:f5:ee:41:16:59:87:e9:d9: a8:e4:4f:16:49:d7:c9:ea:8f:6f:d8:d2:46:f9:5f:03:07:da: c6:58:c0:6a:ab:eb:75:82:d1:71:64:33:9d:b2:b2:17:f1:f8: 96:41:b9:cc:3f:14:24:2b:6d:05:1a:42:b6:ae:a6:53:d8:d3: b0:94:29:37:ab:e7:3e:0a:2f:db:6d:de:e2:4f:1e:ff:dd:c2: 71:52:d3:f7:66:ed:eb:51:60:87:a4:92:cc:56:7e:d1:25:d4: f6:97:ae:7e:9e:c9:cc:fd:5e:46:52:e5:d4:12:59:72:6b:e3: 84:64:c9:3e:83:6a:31:5d:d6:c4:68:8b:b8:cc:17:c9:93:e7: 6d:6d:85:d6:0d:77:43:c9:06:40:6a:14:87:c5:e9:29:86:7f: 11:7a:b2:b6:32:98:6b:2a:6d:68:c0:dc:0b:0e:5f:ca:94:1b: 27:33:a1:74:b2:80:61:ca:b2:1a:fa:80:27:de:32:cc:90:04: 6d:7d:f1:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjMxMTI0MDAwODI3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVmZTk3Yi0zYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuto52fpI423ga0I7zDYHinrsDr/u8nFIJhR3ccvMq4/CHLJzuNLkwsVovnzM YKNIR0ilu2Wjgx+/WL9tulN8U+y8UxrGnASPtWSUpWPGeL41M5WekLfiww6FvRW9 +HV+LO+qyW4Je6zshWfAMhIJNmn2zDP8bwFrCFfy2rcKzhw6wor/fV1A4qwi2d6l b+N0ZAwUY/k53YqYmXTPdRy0TdaPfU9zYdMGgIB74d12ZIbdBrLQOK6EiDG0hHkY CeDjMK/IY9FDnmkYh+b7O+LNXv0W2taZpA2KThUT2KjZUdQajLNS4MQgJeLKMZ1F zk1GB17b6kH7Fpo8gyTqTTNVgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPBGim33 QrSsEKPC/PYKrYcropqcMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvOTc2NUZCOTg4 QTVEMTFFRTlFNkFBMjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA99R8wDQYJKoZIhvcNAQELBQADggEBAB1QuZSt77OOh4EG DRhtec7GjEgwzoOve5flwpMLlA7MyjJM2MX2KN31Ne3/k8kJ6P3t6q9bIFGUmDrL 3f2rtCD17kEWWYfp2ajkTxZJ18nqj2/Y0kb5XwMH2sZYwGqr63WC0XFkM52yshfx +JZBucw/FCQrbQUaQrauplPY07CUKTer5z4KL9tt3uJPHv/dwnFS0/dm7etRYIek ksxWftEl1PaXrn6eycz9XkZS5dQSWXJr44RkyT6DajFd1sRoi7jMF8mT521thdYN d0PJBkBqFIfF6SmGfxF6srYymGsqbWjA3AsOX8qUGyczoXSygGHKshr6gCfeMsyQ BG198fg= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:12 2024 by rpki-client on console-ams.rpki-client.org