$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa File: 70970B107C9811EEA876DA2DC4F9AE02.roa (raw, json) Hash identifier: sHaHg9/ZEy3FERUEfrG4jIGoDgh8jdysF5zBd2/CKb8= Subject key identifier: FD:AD:E1:D2:B8:F9:62:CC:C4:A6:F5:07:18:65:1E:08:7D:66:09:B8 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 02BA Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa Signing time: Mon 06 Nov 2023 11:34:26 +0000 ROA not before: Mon 06 Nov 2023 11:34:26 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 200017 IP address blocks: 203.32.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Nov 6 11:34:26 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6548cf42-c622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:78:16:a5:34:1b:65:13:4c:32:dd:3f:08:88: 8c:da:e8:cf:c4:80:e1:21:49:66:56:04:b7:ed:b7: 9a:80:53:a6:a9:11:44:8d:97:b7:0f:97:d3:71:71: 56:0b:fb:94:0f:3f:4b:af:2f:3b:78:6e:8d:42:11: 0e:86:d7:19:6c:ca:bd:a9:cf:57:72:ae:df:18:61: ee:c7:42:e1:a5:88:cd:12:bb:44:92:94:a4:62:12: dd:d5:d0:ad:a3:20:d3:84:3d:6c:f3:af:2a:a5:2f: c3:ec:c6:04:96:77:14:98:e5:8e:63:73:48:b1:84: 3c:b4:8c:b9:06:83:54:10:63:5d:67:04:dc:4d:48: 25:cf:93:35:9e:d8:4c:b5:45:ae:32:01:15:df:c0: d1:f4:59:fd:c3:b1:dd:66:cd:37:ba:1e:30:7d:58: f4:96:fe:9e:59:05:a2:87:78:aa:1d:bc:b7:30:b1: 97:31:c7:d0:22:68:79:59:c9:f8:30:70:6a:46:0f: 4a:cb:a9:ce:01:2a:97:cb:bc:8b:90:fc:f8:d0:2c: 08:e4:1c:cf:5f:ad:6b:2c:14:5a:8e:58:e3:d7:78: 2f:4b:ea:62:58:53:0a:bc:67:9e:fd:65:de:9a:56: c4:c9:41:67:25:d8:31:a8:ed:7f:ac:ae:ce:97:48: 47:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AD:E1:D2:B8:F9:62:CC:C4:A6:F5:07:18:65:1E:08:7D:66:09:B8 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.40.0/24 Signature Algorithm: sha256WithRSAEncryption 47:2b:c0:32:e4:30:a6:63:49:e5:1e:28:a8:cb:9a:bc:c5:b8: 9a:4a:78:fd:f7:40:ee:be:a8:53:09:d1:05:98:fb:8d:3d:a5: 3b:3d:02:a3:b5:db:06:85:be:20:8a:ba:76:1e:12:63:7f:00: ba:68:00:6a:96:79:b4:19:19:a4:6b:e6:d6:3a:64:80:0c:0a: f9:69:ff:29:1d:32:eb:7a:86:8f:c4:97:61:8e:09:e3:ca:17: 19:c3:9e:5e:a9:0f:c8:29:0f:11:32:8c:90:af:51:29:47:d1: e4:b8:bf:a5:a8:18:22:0c:3a:8c:c9:28:7a:bc:89:42:97:41: 5e:11:1f:9c:61:a8:88:56:45:cf:d8:d3:37:5d:1f:31:e8:d7: 00:56:eb:59:d4:6f:a9:2d:ea:0c:9c:77:52:56:ab:84:bc:fc: 54:97:b4:2a:2f:e6:da:02:98:fe:c0:15:1c:9a:66:96:98:7d: f8:2e:0d:14:65:fc:65:26:77:44:3a:6f:94:1a:a3:3f:57:c6: f7:91:24:36:57:c1:07:d0:10:7c:4e:ea:b2:c0:81:8f:d9:a0: fc:7b:32:32:70:66:68:6b:b9:ab:37:94:e5:7a:b7:71:7f:bb: 12:da:7b:38:ca:45:6e:f5:63:08:e2:de:3e:32:28:03:b6:c9: f9:0d:7c:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjMxMTA2MTEzNDI2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ4Y2Y0Mi1jNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXgWpTQbZRNMMt0/CIiM2ujPxIDhIUlmVgS37beagFOmqRFEjZe3D5fTcXFW C/uUDz9Lry87eG6NQhEOhtcZbMq9qc9Xcq7fGGHux0LhpYjNErtEkpSkYhLd1dCt oyDThD1s868qpS/D7MYElncUmOWOY3NIsYQ8tIy5BoNUEGNdZwTcTUglz5M1nthM tUWuMgEV38DR9Fn9w7HdZs03uh4wfVj0lv6eWQWih3iqHby3MLGXMcfQImh5Wcn4 MHBqRg9Ky6nOASqXy7yLkPz40CwI5BzPX61rLBRajljj13gvS+piWFMKvGee/WXe mlbEyUFnJdgxqO1/rK7Ol0hHtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP2t4dK4 +WLMxKb1BxhlHgh9Zgm4MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvNzA5NzBCMTA3 Qzk4MTFFRUE4NzZEQTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICgwDQYJKoZIhvcNAQELBQADggEBAEcrwDLkMKZjSeUe KKjLmrzFuJpKeP33QO6+qFMJ0QWY+409pTs9AqO12waFviCKunYeEmN/ALpoAGqW ebQZGaRr5tY6ZIAMCvlp/ykdMut6ho/El2GOCePKFxnDnl6pD8gpDxEyjJCvUSlH 0eS4v6WoGCIMOozJKHq8iUKXQV4RH5xhqIhWRc/Y0zddHzHo1wBW61nUb6kt6gyc d1JWq4S8/FSXtCov5toCmP7AFRyaZpaYffguDRRl/GUmd0Q6b5Qaoz9XxveRJDZX wQfQEHxO6rLAgY/ZoPx7MjJwZmhruas3lOV6t3F/uxLaezjKRW71Ywji3j4yKAO2 yfkNfFY= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:21 2024 by rpki-client on console-ams.rpki-client.org