$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa File: 678847C6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: ialInE2R/2PO4RvwSOA9/uRFxNBO7Maj29kDwNnjfKI= Subject key identifier: 60:50:0B:29:E4:5B:55:DC:3D:3E:B4:A5:D3:B3:0E:E1:F2:F2:C5:82 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0AEC Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa Signing time: Mon 04 Dec 2023 20:08:09 +0000 ROA not before: Mon 04 Dec 2023 20:08:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4202202256 IP address blocks: 202.75.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2796 (0xaec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Dec 4 20:08:09 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e31a9-11c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:0d:0e:a2:ca:ce:a4:5a:4d:d1:5f:67:3b: de:4b:5a:65:07:ec:cd:36:f9:4d:3c:2d:e2:99:83: 1d:f5:3a:47:eb:00:bf:a6:74:13:36:cf:4b:24:56: 6e:25:4d:d8:12:d2:00:ef:b1:a8:da:a9:f2:60:9b: 06:d0:74:9c:84:42:d2:0a:ac:82:b7:a6:d2:b1:74: b1:84:54:2f:f4:10:6d:1d:9d:2a:62:9d:27:6f:d8: 1c:61:2f:5f:83:00:a6:c2:ac:a5:3f:0f:ff:05:40: 98:a6:2b:35:60:fe:41:48:0a:c7:ae:df:a6:58:cf: d3:38:a3:23:32:93:e2:58:f4:ec:74:ac:8b:a7:2b: a7:2f:68:7f:b6:16:c6:91:7f:46:45:32:2c:c9:25: 3c:27:86:a1:dd:17:64:38:b7:72:ac:07:1a:42:05: ab:f9:25:55:60:f3:24:eb:c0:03:a4:17:8f:06:2c: d1:e5:cf:d0:82:b9:ac:a5:48:33:9d:d1:c4:34:e3: 1e:e7:14:e3:3e:eb:8d:be:7e:de:61:8f:bc:0e:89: c2:a6:f7:04:5d:6d:85:8c:b3:a4:c6:b8:d0:6a:b9: 33:9d:ef:86:65:10:91:39:73:d9:ef:6c:5d:43:0d: 30:90:ff:6c:c4:c3:c7:22:5e:b3:8b:67:f5:36:6c: 42:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:50:0B:29:E4:5B:55:DC:3D:3E:B4:A5:D3:B3:0E:E1:F2:F2:C5:82 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.75.45.0/24 Signature Algorithm: sha256WithRSAEncryption a4:d8:7f:59:6a:c6:84:43:d5:28:c0:8b:91:b4:64:d9:c0:0e: 40:34:d7:94:c4:a4:46:67:8a:9f:d1:b6:95:bc:9d:8f:bd:b6: 68:1a:60:db:0e:db:e1:7c:5e:f3:5a:fc:57:f7:28:6a:5c:48: 1d:8b:56:aa:88:cc:c0:43:42:cc:cb:f0:f2:13:0b:c1:ed:63: 88:28:f5:6e:72:be:f7:27:90:c7:97:4c:a4:39:3d:2e:3c:4f: 95:89:de:ad:6b:3d:47:dc:91:1a:d3:11:ba:63:cf:45:b1:0a: 02:50:3d:c1:b6:96:b6:02:c5:f0:fb:c1:dc:de:9e:c9:c2:63: 2e:7e:6c:27:2f:55:2e:fd:90:02:78:0d:09:04:a7:87:7c:f2: cd:5e:1c:70:da:05:21:67:20:6d:13:45:2b:9d:cc:d9:93:c3: 4d:9d:ea:4b:dc:df:19:2d:36:d5:79:cd:1e:99:3f:dc:ba:05: bc:e1:12:3a:30:d2:65:d0:be:c6:dd:33:03:c4:57:28:85:78: 4a:2c:c3:a1:4e:9e:5e:13:e5:3b:9b:7f:46:9e:36:e5:54:5f: a1:29:99:1e:0b:70:c1:35:0c:2c:8e:20:4b:47:1c:12:f6:c1: fe:81:27:6f:58:f6:84:7a:b4:ac:6b:6c:4b:a9:8a:1f:b1:6b: e6:29:e0:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjMxMjA0MjAwODA5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMzFhOS0xMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzMNDqLKzqRaTdFfZzveS1plB+zNNvlNPC3imYMd9TpH6wC/pnQTNs9LJFZu JU3YEtIA77Go2qnyYJsG0HSchELSCqyCt6bSsXSxhFQv9BBtHZ0qYp0nb9gcYS9f gwCmwqylPw//BUCYpis1YP5BSArHrt+mWM/TOKMjMpPiWPTsdKyLpyunL2h/thbG kX9GRTIsySU8J4ah3RdkOLdyrAcaQgWr+SVVYPMk68ADpBePBizR5c/QgrmspUgz ndHENOMe5xTjPuuNvn7eYY+8DonCpvcEXW2FjLOkxrjQarkzne+GZRCROXPZ72xd Qw0wkP9sxMPHIl6zi2f1NmxCrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGBQCynk W1XcPT60pdOzDuHy8sWCMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjc4ODQ3QzY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKSy0wDQYJKoZIhvcNAQELBQADggEBAKTYf1lqxoRD1SjA i5G0ZNnADkA015TEpEZnip/RtpW8nY+9tmgaYNsO2+F8XvNa/Ff3KGpcSB2LVqqI zMBDQszL8PITC8HtY4go9W5yvvcnkMeXTKQ5PS48T5WJ3q1rPUfckRrTEbpjz0Wx CgJQPcG2lrYCxfD7wdzensnCYy5+bCcvVS79kAJ4DQkEp4d88s1eHHDaBSFnIG0T RSudzNmTw02d6kvc3xktNtV5zR6ZP9y6BbzhEjow0mXQvsbdMwPEVyiFeEosw6FO nl4T5Tubf0aeNuVUX6EpmR4LcME1DCyOIEtHHBL2wf6BJ29Y9oR6tKxrbEupih+x a+Yp4J0= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org