$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa File: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (raw, json) Hash identifier: gOnJUoocSgq2EqmjrPm1pF8ZPeNarvBagTpUETzImxU= Subject key identifier: D2:1B:F7:C7:3C:4C:AA:5C:75:6E:EB:A9:E8:6D:8D:76:A5:AF:86:10 Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 33BE Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa Signing time: Tue 02 Apr 2024 16:59:07 +0000 ROA not before: Tue 02 Apr 2024 16:59:07 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 7545 IP address blocks: 14.202.192.0/24 maxlen: 24 60.241.61.0/24 maxlen: 24 203.219.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13246 (0x33be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Apr 2 16:59:07 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=660c395b-3358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bd:86:c9:ab:8d:8e:6f:01:10:85:24:fb:dc: 33:eb:21:3a:9d:ab:f9:1d:cf:6d:ad:19:63:7c:5c: 75:28:bb:5a:b5:cd:5e:0e:fb:a3:ad:e0:63:37:9e: 9e:ca:fe:d8:63:c5:fa:79:57:fa:68:00:cb:79:4a: b9:43:e7:f2:cd:7f:a8:ce:70:bb:06:8a:9a:e9:4f: 9d:17:5e:46:b3:61:65:52:f9:13:8e:d5:40:d2:53: e9:78:61:c2:73:fa:3e:fa:bb:f8:2a:f1:61:a2:2b: 7a:01:60:43:b3:c3:93:f4:ca:ef:84:9f:df:d6:33: f5:3d:1b:71:d6:4f:c9:be:66:06:67:a0:c5:b7:8c: d4:d8:16:3e:6d:d4:51:3b:47:e6:f6:16:c3:48:fe: 53:97:64:31:9a:ad:5c:83:99:a5:e6:d3:95:90:6a: 8d:01:1d:b9:a1:a3:d7:c2:9c:ab:65:3c:1a:0a:f1: be:85:8e:ea:11:aa:06:7d:fd:ed:f3:5c:fc:97:b9: 1e:02:d8:11:1f:cd:08:50:d7:18:a1:e7:78:24:a2: 72:c8:fe:1d:79:94:9c:dc:e3:38:40:a0:32:47:3f: cd:8b:57:2f:a3:92:7c:f9:8f:fc:fb:2c:3b:32:f5: 94:f1:98:8e:c9:04:e9:d2:9a:4f:00:93:ae:82:f3: 48:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1B:F7:C7:3C:4C:AA:5C:75:6E:EB:A9:E8:6D:8D:76:A5:AF:86:10 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.202.192.0/24 60.241.61.0/24 203.219.48.0/22 Signature Algorithm: sha256WithRSAEncryption 83:22:42:1e:82:02:7c:78:2e:86:e7:af:c3:3d:8b:a3:aa:9b: 0d:6f:1f:4f:07:25:42:d4:2e:c0:7f:13:d6:f8:23:67:97:65: 4e:b6:c5:e4:3e:74:d5:77:80:08:3b:6e:78:f0:db:03:e5:16: 61:ff:b8:8a:06:36:28:84:36:15:b3:ae:34:ad:66:f0:df:ab: 41:96:6a:e4:51:ce:c9:5b:7b:35:e5:00:fd:9a:b0:76:c9:25: 03:b8:ed:9a:61:1e:c7:53:9b:19:38:e9:c9:54:f6:e5:7b:c5: 85:20:2f:95:c3:9a:ee:60:aa:09:3e:20:79:46:27:b9:5a:95: 0c:fe:91:79:39:b0:57:19:19:3d:3c:bc:fb:5f:0a:34:1a:a1: 0c:b0:31:65:c2:94:f3:26:e9:9c:aa:1e:ef:22:6a:96:a8:b9: 5c:4b:79:9c:df:00:97:05:55:7d:8e:78:64:e2:fb:d6:7d:0a: 68:c4:08:52:e4:fb:3f:ff:e6:92:6b:64:35:2b:56:cc:96:e0: 82:96:00:2d:fb:d4:ed:07:f1:f3:e1:e1:1d:a3:5a:11:cb:3c: 71:af:89:fc:d8:4a:13:84:2f:a4:7f:dd:7d:7a:b9:75:e4:ee: c5:32:bb:da:1f:9c:4a:64:18:7e:85:b6:62:0e:b9:d9:ce:29: 50:24:63:fe -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICM74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjQwNDAyMTY1OTA3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjMzk1Yi0zMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3r2GyauNjm8BEIUk+9wz6yE6nav5Hc9trRljfFx1KLtatc1eDvujreBjN56e yv7YY8X6eVf6aADLeUq5Q+fyzX+oznC7Boqa6U+dF15Gs2FlUvkTjtVA0lPpeGHC c/o++rv4KvFhoit6AWBDs8OT9MrvhJ/f1jP1PRtx1k/JvmYGZ6DFt4zU2BY+bdRR O0fm9hbDSP5Tl2Qxmq1cg5ml5tOVkGqNAR25oaPXwpyrZTwaCvG+hY7qEaoGff3t 81z8l7keAtgRH80IUNcYoed4JKJyyP4deZSc3OM4QKAyRz/Ni1cvo5J8+Y/8+yw7 MvWU8ZiOyQTp0ppPAJOugvNI6QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNIb98c8 TKpcdW7rqehtjXalr4YQMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdFNEQvRUExQjFENkExRDg1MTFFMjk3OUZFN0RDMDhCMDJDRDIvMkZBNTdCOUE5 N0I2MTFFREFFOUQ0MzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAOysADBAA88T0DBALL2zAwDQYJKoZIhvcNAQELBQADggEB AIMiQh6CAnx4Lobnr8M9i6Oqmw1vH08HJULULsB/E9b4I2eXZU62xeQ+dNV3gAg7 bnjw2wPlFmH/uIoGNiiENhWzrjStZvDfq0GWauRRzslbezXlAP2asHbJJQO47Zph HsdTmxk46clU9uV7xYUgL5XDmu5gqgk+IHlGJ7lalQz+kXk5sFcZGT08vPtfCjQa oQywMWXClPMm6ZyqHu8iapaouVxLeZzfAJcFVX2OeGTi+9Z9CmjECFLk+z//5pJr ZDUrVsyW4IKWAC371O0H8fPh4R2jWhHLPHGvifzYShOEL6R/3X16uXXk7sUyu9of nEpkGH6FtmIOudnOKVAkY/4= -----END CERTIFICATE-----Generated at Sat May 18 15:58:20 2024 by rpki-client on console-ams.rpki-client.org