$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/34F0D27CAE8911ED98BE3276C4F9AE02.roa File: 34F0D27CAE8911ED98BE3276C4F9AE02.roa (raw, json) Hash identifier: k95GkiJ2XdxbgDj3SX1TLVKRKHbXA9jZshfxEjAaKyI= Subject key identifier: E6:F3:2F:83:C9:66:78:18:B6:A1:7C:05:0B:F2:3E:46:82:1D:DA:45 Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Certificate serial: 71 Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/34F0D27CAE8911ED98BE3276C4F9AE02.roa Signing time: Fri 09 Jun 2023 07:05:45 +0000 ROA not before: Fri 09 Jun 2023 07:05:45 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132789 IP address blocks: 203.171.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Validity Not Before: Jun 9 07:05:45 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6482cf49-9dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:81:2c:af:bf:34:38:67:12:fe:ad:02:fd:6c: f2:21:02:f2:b5:2c:31:cf:63:da:5e:4c:45:5e:63: ac:0b:fb:d9:86:c7:e9:21:55:ce:0d:10:c1:75:3d: 3a:95:e0:00:c0:4a:13:5f:a0:0b:fc:0d:0e:b3:dc: ff:d8:c0:12:46:b9:31:eb:18:fd:33:89:c8:c9:44: ee:f8:c8:4d:38:11:45:75:08:e0:27:a4:25:20:cf: f9:ac:1e:3f:0b:bb:2a:90:43:83:db:10:34:78:98: e2:d3:ca:c9:f9:11:a8:38:62:d1:c6:de:8f:a6:8d: 71:f5:08:7e:8c:45:b9:55:81:a7:e8:f3:17:a6:35: 13:48:d8:8e:f6:a5:a3:2e:43:75:6a:d3:62:8e:97: c4:23:4e:53:00:96:07:62:57:2a:4f:37:4b:76:ad: 5c:db:ae:56:5a:5d:ab:88:cd:f0:52:27:cf:43:b6: 37:2e:aa:5e:ed:5b:84:cf:e7:d9:af:ee:e3:ac:0c: 0a:41:88:1c:b8:77:26:ed:dd:cb:03:fb:d1:f4:5d: e7:98:db:13:0c:1d:9c:d7:ae:a6:91:2b:36:e6:7f: 9e:7b:70:52:e1:87:83:8d:51:65:fe:2f:9c:f9:7a: 2f:46:9f:ae:2a:68:95:19:9d:77:b1:f8:f5:b3:91: 3f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F3:2F:83:C9:66:78:18:B6:A1:7C:05:0B:F2:3E:46:82:1D:DA:45 X509v3 Authority Key Identifier: keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/34F0D27CAE8911ED98BE3276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.171.253.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a8:3a:8f:0b:4b:97:11:cc:28:4a:1d:45:e6:d5:25:59:e2: a2:c7:c8:ee:5d:91:35:ed:1e:26:e4:2d:22:ba:45:1a:0d:3b: 47:c8:0d:90:52:8e:24:a7:d0:64:69:7e:a2:b1:1f:c2:82:99: f8:50:28:15:a1:7b:b8:41:1d:aa:74:4f:ef:0b:55:f3:58:ef: cd:9f:37:bc:9f:7c:2e:9a:fd:94:51:96:1f:ab:f1:d8:5e:65: 86:bf:31:4b:fa:52:cc:69:d5:be:c5:4e:af:c8:dd:74:ef:12: df:86:17:e9:4e:62:4a:8e:8c:74:68:5f:8e:33:fe:9c:73:e2: d6:c2:97:49:d2:22:dd:a2:35:a0:2d:2c:04:f7:ae:94:4d:4c: 9e:92:ef:2f:8d:79:12:83:63:79:5b:30:28:4d:b5:5c:ca:46: e5:ca:1a:b5:e4:db:c2:4b:68:8c:53:02:4b:20:66:fd:eb:4e: 57:0d:80:29:05:83:2c:a6:f6:04:08:cd:b8:1b:44:a7:f1:19: 2c:99:b8:9e:04:28:0c:e3:29:9b:cc:57:09:5f:fd:3f:81:5a: 08:0b:96:e5:af:3f:e6:13:44:d2:91:55:8d:97:0e:06:7c:d1: bd:ec:31:72:47:4b:2a:64:ef:b4:08:65:47:52:5a:13:e5:df: 8b:a0:35:47 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NENFNzExMC8GA1UEBRMoRjI4RDZEMTFDM0M1NTQ2RTQyNDE4MThBNzNCNDcwRUVD QTZENzI4MzAeFw0yMzA2MDkwNzA1NDVaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ODJjZjQ5LTlkYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOgSyvvzQ4ZxL+rQL9bPIhAvK1LDHPY9peTEVeY6wL+9mGx+khVc4NEMF1PTqV 4ADAShNfoAv8DQ6z3P/YwBJGuTHrGP0zicjJRO74yE04EUV1COAnpCUgz/msHj8L uyqQQ4PbEDR4mOLTysn5Eag4YtHG3o+mjXH1CH6MRblVgafo8xemNRNI2I72paMu Q3Vq02KOl8QjTlMAlgdiVypPN0t2rVzbrlZaXauIzfBSJ89Dtjcuql7tW4TP59mv 7uOsDApBiBy4dybt3csD+9H0XeeY2xMMHZzXrqaRKzbmf557cFLhh4ONUWX+L5z5 ei9Gn64qaJUZnXex+PWzkT+fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5vMvg8lm eBi2oXwFC/I+RoId2kUwHwYDVR0jBBgwFoAU8o1tEcPFVG5CQYGKc7Rw7sptcoMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0Q0U3LzVCMkIxMzFDNjBD RDExRUQ4NEY3NUY0Q0M0RjlBRTAyLzhvMXRFY1BGVkc1Q1FZR0tjN1J3N3NwdGNv TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOG8xdEVjUEZWRzVDUVlHS2M3Unc3c3B0Y29NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NENFNy81QjJCMTMxQzYwQ0QxMUVEODRGNzVGNENDNEY5QUUwMi8zNEYwRDI3Q0FF ODkxMUVEOThCRTMyNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMur/TANBgkqhkiG9w0BAQsFAAOCAQEAA6g6jwtLlxHMKEod RebVJVniosfI7l2RNe0eJuQtIrpFGg07R8gNkFKOJKfQZGl+orEfwoKZ+FAoFaF7 uEEdqnRP7wtV81jvzZ83vJ98Lpr9lFGWH6vx2F5lhr8xS/pSzGnVvsVOr8jddO8S 34YX6U5iSo6MdGhfjjP+nHPi1sKXSdIi3aI1oC0sBPeulE1MnpLvL415EoNjeVsw KE21XMpG5coateTbwktojFMCSyBm/etOVw2AKQWDLKb2BAjNuBtEp/EZLJm4ngQo DOMpm8xXCV/9P4FaCAuW5a8/5hNE0pFVjZcOBnzRvewxckdLKmTvtAhlR1JaE+Xf i6A1Rw== -----END CERTIFICATE-----Generated at Sun May 19 05:48:49 2024 by rpki-client on console-fra.rpki-client.org