$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa File: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (raw, json) Hash identifier: G7v93sM93gzZ4BgWqisV58Q1qgwmrLJ0bo2fkE0d3wQ= Subject key identifier: C5:51:25:64:C5:95:82:52:FA:8B:E6:6A:2C:E8:9C:F7:47:19:5C:AA Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: D8 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa Signing time: Tue 27 Feb 2024 05:38:05 +0000 ROA not before: Tue 27 Feb 2024 05:38:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 400289 IP address blocks: 203.23.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Feb 27 05:38:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dd753d-a0c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:16:72:bf:b3:64:b9:38:e0:60:67:54:27:67: fd:11:03:c6:94:45:57:70:fe:d5:42:33:da:ea:90: 26:05:ed:87:c6:56:ff:0a:dd:dd:e8:28:58:75:db: 0f:58:3a:99:7b:6d:ee:cb:5f:98:5f:f5:35:f3:d4: 54:6c:94:0a:4d:ec:22:56:f1:0b:e4:0b:c4:eb:ac: c0:a8:a7:d2:cb:15:44:64:a3:51:56:7e:ee:3b:be: 29:b6:91:9f:89:37:dc:b7:9c:f9:d6:bb:35:56:a5: d3:09:46:2a:e9:72:89:aa:76:1a:2e:68:26:f5:aa: 71:86:82:5c:d0:24:13:4d:e5:d4:a9:c5:a2:29:d8: f1:42:1d:fa:6b:02:18:36:b1:23:a0:12:a1:21:a6: 5f:87:db:58:0b:1d:9e:29:a2:a5:b4:12:97:d7:b5: 22:52:1e:70:3a:a7:05:5b:ae:1f:be:e8:e1:6a:ef: da:3e:66:bc:d2:2f:48:0a:44:f2:d7:5d:f3:bd:a4: 81:01:08:6b:3a:7f:8a:03:1b:38:c0:9d:63:04:d6: 75:8f:cc:e3:65:05:9c:22:b2:84:8b:c7:cd:2d:40: 5f:12:f1:9c:da:61:3e:ed:ff:e7:75:af:63:8d:98: d0:a5:56:ef:7f:17:61:cb:37:a7:93:14:e0:95:15: de:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:51:25:64:C5:95:82:52:FA:8B:E6:6A:2C:E8:9C:F7:47:19:5C:AA X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.164.0/24 Signature Algorithm: sha256WithRSAEncryption 14:39:31:b5:36:c6:6f:04:98:b2:64:c1:86:69:69:c0:d9:a5: bf:e0:b4:d5:39:8f:0a:2e:5b:2f:e7:6d:5c:0c:04:34:b4:1b: a2:72:f0:8a:c6:c4:38:73:e6:6c:70:aa:8a:f6:a2:4b:da:8a: 6f:fc:b1:50:74:95:fc:fa:30:20:c5:e5:b4:5b:b5:b4:6b:95: e1:9f:71:33:c7:15:7a:26:29:33:d0:bb:6a:08:f9:ea:1f:1a: d1:d2:65:a2:dd:ab:73:b6:fb:75:4d:ce:24:68:32:23:5d:92: 36:d0:12:95:b9:ac:5e:76:3a:dd:7b:ed:74:c2:fb:13:8a:30: c2:43:ba:43:b5:6a:b9:f2:78:85:a6:89:49:bf:8e:98:c1:5f: 8f:45:59:d9:16:9f:ff:39:bc:c3:ed:0c:3e:24:d9:79:ea:43: 58:c6:0e:da:af:36:fc:cf:e4:b9:02:e6:20:e7:ad:96:5c:4e: 19:67:36:9d:82:b1:dc:07:56:02:8e:35:cb:e1:e3:69:61:bc: 5f:00:ca:10:2f:60:ff:b5:06:fb:bf:d2:b4:e0:ac:9b:39:53: 81:d0:36:10:4a:ff:a6:47:e2:24:72:52:f0:c8:a8:e2:9a:04: fe:6e:8d:47:9b:ca:51:43:da:80:fb:0b:7b:ed:f3:7c:35:84: e7:cb:d8:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjQwMjI3MDUzODA1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkNzUzZC1hMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RZyv7NkuTjgYGdUJ2f9EQPGlEVXcP7VQjPa6pAmBe2Hxlb/Ct3d6ChYddsP WDqZe23uy1+YX/U189RUbJQKTewiVvEL5AvE66zAqKfSyxVEZKNRVn7uO74ptpGf iTfct5z51rs1VqXTCUYq6XKJqnYaLmgm9apxhoJc0CQTTeXUqcWiKdjxQh36awIY NrEjoBKhIaZfh9tYCx2eKaKltBKX17UiUh5wOqcFW64fvujhau/aPma80i9ICkTy 113zvaSBAQhrOn+KAxs4wJ1jBNZ1j8zjZQWcIrKEi8fNLUBfEvGc2mE+7f/nda9j jZjQpVbvfxdhyzenkxTglRXewwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMVRJWTF lYJS+ovmaizonPdHGVyqMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUyNDAvMjdEREU3RDg5QjdEMTFFREIzQzMzRjVEQzRGOUFFMDIvNURDRTFBMUFB NjNDMTFFRDkzMDYxNjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF6QwDQYJKoZIhvcNAQELBQADggEBABQ5MbU2xm8EmLJk wYZpacDZpb/gtNU5jwouWy/nbVwMBDS0G6Jy8IrGxDhz5mxwqor2okvaim/8sVB0 lfz6MCDF5bRbtbRrleGfcTPHFXomKTPQu2oI+eofGtHSZaLdq3O2+3VNziRoMiNd kjbQEpW5rF52Ot177XTC+xOKMMJDukO1arnyeIWmiUm/jpjBX49FWdkWn/85vMPt DD4k2XnqQ1jGDtqvNvzP5LkC5iDnrZZcThlnNp2CsdwHVgKONcvh42lhvF8AyhAv YP+1Bvu/0rTgrJs5U4HQNhBK/6ZH4iRyUvDIqOKaBP5ujUebylFD2oD7C3vt83w1 hOfL2ME= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:38 2024 by rpki-client on console-fra.rpki-client.org