$ rpki-client -vvf rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa File: D1B6FD008D6D11EB9DB49A32C4F9AE02.roa (raw, json) Hash identifier: Rd7WpqOVyyHIrQ7bigfHf0ZFfioUoy7ae5iVD6Io9QI= Subject key identifier: 4A:57:A7:70:4F:AC:52:E4:9B:FC:C5:9D:5B:4F:E5:8F:9B:70:BB:7D Certificate issuer: /CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Certificate serial: 0510 Authority key identifier: BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa Signing time: Fri 14 Jul 2023 23:19:49 +0000 ROA not before: Fri 14 Jul 2023 23:19:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 1221 IP address blocks: 203.5.32.0/24 maxlen: 24 203.5.33.0/24 maxlen: 24 203.5.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 21:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1296 (0x510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Validity Not Before: Jul 14 23:19:48 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b1d814-36fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:b4:39:42:ae:92:51:a0:96:d7:74:d6:c5:ba: 80:95:02:94:e7:a8:55:c1:20:4a:ba:7b:41:cf:47: c0:88:31:d1:3c:50:9e:88:27:cb:02:07:8b:72:33: 91:28:cd:8b:34:ef:90:5a:9e:73:4f:23:1d:e4:3f: a6:3a:ae:c7:38:60:35:29:19:30:ce:b3:25:b4:ee: 6a:6b:87:16:05:42:e4:6f:d4:75:dd:21:c5:66:fb: 53:27:07:8b:1b:d7:b3:e0:ad:26:fe:64:45:39:65: 00:8c:86:a6:99:cd:87:76:8b:fa:c4:88:28:56:79: 8a:b2:12:12:cd:fe:35:27:2a:f2:ec:f6:20:6f:c3: 07:c3:0f:0d:01:63:41:af:e6:16:31:12:3c:01:15: 92:cb:55:cf:20:fd:8a:87:d2:10:f1:d5:6d:f6:43: c7:2e:49:45:5f:a3:4a:79:3d:35:02:f6:b8:92:27: 8f:bc:9f:cc:c9:2c:e0:b0:7d:8c:1d:c8:08:a2:14: c6:83:bb:58:f9:dc:ea:f6:24:97:54:ca:5f:d1:c0: b4:20:ee:d7:ab:cb:33:73:65:f7:4a:62:11:ca:d1: d4:53:f3:ec:a6:f0:f5:24:75:51:94:f0:0d:34:0e: 69:eb:31:a5:d2:49:fd:f6:92:29:71:14:d2:dd:fa: 7e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:57:A7:70:4F:AC:52:E4:9B:FC:C5:9D:5B:4F:E5:8F:9B:70:BB:7D X509v3 Authority Key Identifier: keyid:BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.32.0/23 203.5.37.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:92:68:58:d7:fc:bb:5c:3e:b7:5e:91:da:79:71:e8:4a:0c: 3f:6f:e4:b7:f0:f8:ab:be:fa:83:95:b5:e1:d5:fc:11:d7:7d: cf:81:b3:16:44:d8:40:21:ac:12:c3:53:5b:d2:be:d7:3d:e3: b9:4f:98:2c:bf:e2:8e:9b:48:d0:82:aa:9f:7f:df:5e:6a:e1: 95:83:3e:a0:af:3c:20:68:26:e7:3a:af:db:19:5b:fd:13:99: b5:29:53:fe:2f:b5:4e:c9:ef:51:07:8d:25:f1:5f:b7:52:8e: be:10:cb:17:da:eb:31:b8:96:b8:91:6b:aa:fe:e8:12:64:58: d6:5f:48:05:e2:ab:9a:c9:79:73:96:1b:6d:e6:45:52:fe:77: 48:e9:80:3a:67:4a:b0:d6:25:0d:74:dd:72:73:e0:e7:9b:14: 7d:76:41:db:82:ae:2e:ed:85:9a:fc:8c:d1:66:37:e2:24:6b: 15:73:8f:eb:bd:85:63:a7:61:69:b4:8b:f1:24:fe:a7:3f:2d: d4:ba:98:ea:81:84:50:38:c6:bb:6f:ca:47:cd:6b:ac:6c:ea: d6:dc:db:f1:0d:91:6c:ee:22:f3:da:fa:9f:84:ac:91:fd:27: 3c:cd:ff:a8:4b:f3:64:36:5a:b3:b6:35:9b:d5:6f:78:6d:fc: c9:ac:94:f4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4OEIxMTAvBgNVBAUTKEJBNDlGMkUwMkE2MzVERDA3NUY1NjQxNjZGMTExRjVG QURFNUE3Q0IwHhcNMjMwNzE0MjMxOTQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZDgxNC0zNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/rQ5Qq6SUaCW13TWxbqAlQKU56hVwSBKuntBz0fAiDHRPFCeiCfLAgeLcjOR KM2LNO+QWp5zTyMd5D+mOq7HOGA1KRkwzrMltO5qa4cWBULkb9R13SHFZvtTJweL G9ez4K0m/mRFOWUAjIammc2Hdov6xIgoVnmKshISzf41Jyry7PYgb8MHww8NAWNB r+YWMRI8ARWSy1XPIP2Kh9IQ8dVt9kPHLklFX6NKeT01Ava4kiePvJ/MySzgsH2M HcgIohTGg7tY+dzq9iSXVMpf0cC0IO7Xq8szc2X3SmIRytHUU/PspvD1JHVRlPAN NA5p6zGl0kn99pIpcRTS3fp+7wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEpXp3BP rFLkm/zFnVtP5Y+bcLt9MB8GA1UdIwQYMBaAFLpJ8uAqY13QdfVkFm8RH1+t5afL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTg4Qi9GMzZCNzlCMDgw NzcxMUVCQjkyNUYxNTRDNEY5QUUwMi91a255NENwalhkQjE5V1FXYnhFZlg2M2xw OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vrbnk0Q3BqWGRCMTlXUVdieEVmWDYzbHA4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4OEIvRjM2Qjc5QjA4MDc3MTFFQkI5MjVGMTU0QzRGOUFFMDIvRDFCNkZEMDA4 RDZEMTFFQjlEQjQ5QTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHLBSADBADLBSUwDQYJKoZIhvcNAQELBQADggEBAF+SaFjX /LtcPrdekdp5cehKDD9v5Lfw+Ku++oOVteHV/BHXfc+BsxZE2EAhrBLDU1vSvtc9 47lPmCy/4o6bSNCCqp9/315q4ZWDPqCvPCBoJuc6r9sZW/0TmbUpU/4vtU7J71EH jSXxX7dSjr4Qyxfa6zG4lriRa6r+6BJkWNZfSAXiq5rJeXOWG23mRVL+d0jpgDpn SrDWJQ103XJz4OebFH12QduCri7thZr8jNFmN+IkaxVzj+u9hWOnYWm0i/Ek/qc/ LdS6mOqBhFA4xrtvykfNa6xs6tbc2/ENkWzuIvPa+p+ErJH9JzzN/6hL82Q2WrO2 NZvVb3ht/MmslPQ= -----END CERTIFICATE-----Generated at Sun Jun 23 00:34:20 2024 by rpki-client on console-fra.rpki-client.org