$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/3E8B52A4C34F11EE8EFD7916C4F9AE02.roa File: 3E8B52A4C34F11EE8EFD7916C4F9AE02.roa (raw, json) Hash identifier: +yYkETmiz4f1WjO0VI/D0V/XhkpjRjIPDeg46cPjkmg= Subject key identifier: F3:07:82:57:8A:41:47:BD:9A:8F:8F:B5:AC:93:A1:FF:B6:81:19:4B Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 33AB Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/3E8B52A4C34F11EE8EFD7916C4F9AE02.roa Signing time: Sun 04 Feb 2024 11:41:37 +0000 ROA not before: Sun 04 Feb 2024 11:41:37 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4741 IP address blocks: 203.149.0.0/18 maxlen: 18 210.246.64.0/18 maxlen: 18 210.246.128.0/17 maxlen: 17 2403:c000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13227 (0x33ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Feb 4 11:41:37 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65bf77f1-8477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:74:a5:be:5c:33:99:75:72:1b:2e:de:85: 87:3a:a2:ca:8f:75:db:7a:94:af:37:e7:3a:65:c2: d0:66:c4:56:fd:4e:b9:21:a5:d6:26:b7:48:e4:58: 9a:a8:6f:bd:16:0c:a3:27:70:ee:e7:1a:33:a8:1f: 32:1d:55:90:0a:a4:c6:5b:8f:82:d7:5e:33:af:46: bb:e9:67:00:32:e1:f2:48:e6:e4:69:c6:4e:69:d5: ad:7f:48:9a:66:63:b7:97:a0:82:e6:fd:36:08:73: b5:bd:d2:f6:18:b8:8a:80:2e:47:ce:c4:81:29:bd: 12:09:29:1d:29:d3:aa:ea:71:1e:d1:29:91:6a:ab: f1:41:d0:1d:ec:c5:b7:d0:fe:3c:d4:44:03:b4:8e: ec:bd:93:af:8d:93:b7:ca:88:03:cb:de:37:57:fc: 80:d5:06:04:b8:58:89:38:31:fd:a4:0f:aa:a7:5f: 8b:e2:0e:fc:a8:ab:cb:27:08:d1:97:c7:69:52:ab: 36:20:64:8d:84:d2:05:b1:3f:b7:f1:b4:52:a9:66: bb:8a:89:2c:ee:66:a2:aa:ee:be:98:21:c0:05:b4: 1b:53:3d:0d:3f:0e:51:b0:fb:58:18:af:37:d7:8f: 30:9a:da:de:60:7d:14:52:18:83:42:8c:f6:1d:db: 08:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:07:82:57:8A:41:47:BD:9A:8F:8F:B5:AC:93:A1:FF:B6:81:19:4B X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/3E8B52A4C34F11EE8EFD7916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.149.0.0/18 210.246.64.0-210.246.255.255 IPv6: 2403:c000::/32 Signature Algorithm: sha256WithRSAEncryption 49:16:fd:9e:fb:dd:d0:2d:93:6f:55:b4:57:7a:63:26:39:37: ed:da:97:6c:f2:b0:ba:f7:e9:4d:fa:b6:94:5f:63:ef:92:cd: 3e:09:dd:72:72:e6:f4:27:63:ec:4a:54:df:47:57:69:64:b9: e1:d2:96:9e:db:55:a5:52:8c:fc:eb:fc:5f:69:35:77:91:97: e3:7d:df:a5:34:93:ce:f1:68:37:36:fb:0c:ae:4f:89:a7:8b: e6:59:87:ff:85:2a:98:38:85:90:c8:dc:7a:69:fe:eb:49:22: 6e:6e:8b:a0:5a:f5:5b:79:05:04:5b:5e:74:f0:e1:66:14:50: 9b:1e:5e:ef:30:dd:47:16:c4:f7:04:41:d2:e0:17:0a:0f:ce: ed:9c:0f:be:e0:de:ed:cf:a6:b3:69:47:58:0e:82:e7:b7:3d: 2f:5f:cd:17:c9:fa:59:d7:c5:bf:39:4f:65:ce:fe:0b:43:ec: 46:7a:65:9f:12:b0:94:5f:d6:d6:12:60:91:f8:83:af:ac:78: c2:1e:84:6c:f7:35:05:90:58:0a:62:23:31:83:8a:b5:39:df: f7:11:c3:db:af:50:f3:f2:cc:7b:53:e5:a8:ff:cc:a8:b4:d1: 5f:0e:d7:fa:d2:9d:ad:12:a3:06:92:0f:26:d7:21:70:9d:43: a8:7d:7d:a5 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICM6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjQwMjA0MTE0MTM3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJmNzdmMS04NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hx0pb5cM5l1chsu3oWHOqLKj3XbepSvN+c6ZcLQZsRW/U65IaXWJrdI5Fia qG+9FgyjJ3Du5xozqB8yHVWQCqTGW4+C114zr0a76WcAMuHySObkacZOadWtf0ia ZmO3l6CC5v02CHO1vdL2GLiKgC5HzsSBKb0SCSkdKdOq6nEe0SmRaqvxQdAd7MW3 0P481EQDtI7svZOvjZO3yogDy943V/yA1QYEuFiJODH9pA+qp1+L4g78qKvLJwjR l8dpUqs2IGSNhNIFsT+38bRSqWa7ioks7maiqu6+mCHABbQbUz0NPw5RsPtYGK83 148wmtreYH0UUhiDQoz2HdsILQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFPMHgleK QUe9mo+PtayTof+2gRlLMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1QjAvNDBDOEQ1QTYxRDgzMTFFMjgyM0E1RkQ4MDhCMDJDRDIvM0U4QjUyQTRD MzRGMTFFRThFRkQ3OTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBkEAgABMBMDBAbLlQAwCwMEBtL2QAMDANL2MA0EAgACMAcDBQAkA8AAMA0G CSqGSIb3DQEBCwUAA4IBAQBJFv2e+93QLZNvVbRXemMmOTft2pds8rC69+lN+raU X2Pvks0+Cd1ycub0J2PsSlTfR1dpZLnh0pae21WlUoz86/xfaTV3kZfjfd+lNJPO 8Wg3NvsMrk+Jp4vmWYf/hSqYOIWQyNx6af7rSSJubougWvVbeQUEW1508OFmFFCb Hl7vMN1HFsT3BEHS4BcKD87tnA++4N7tz6azaUdYDoLntz0vX80XyfpZ18W/OU9l zv4LQ+xGemWfErCUX9bWEmCR+IOvrHjCHoRs9zUFkFgKYiMxg4q1Od/3EcPbr1Dz 8sx7U+Wo/8yotNFfDtf60p2tEqMGkg8m1yFwnUOofX2l -----END CERTIFICATE-----Generated at Thu May 16 16:14:30 2024 by rpki-client on console-fra.rpki-client.org