$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa File: 1576F19ABC5C11EB831EC25AC4F9AE02.roa (raw, json) Hash identifier: J+HUVLzpg9DfIEC2aItCq7S9BgN/Nt/u82pwdj8huc8= Subject key identifier: E7:68:74:B8:95:93:93:61:AD:1F:47:EA:B6:5C:42:60:86:07:66:F1 Certificate issuer: /CN=A9122EBD/serialNumber=DA6E941CDBFE01AAEE091B3F95595D6D4018316D Certificate serial: 046E Authority key identifier: DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa Signing time: Wed 05 Jul 2023 00:11:04 +0000 ROA not before: Wed 05 Jul 2023 00:11:03 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 4826 IP address blocks: 203.23.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.crl rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EBD/serialNumber=DA6E941CDBFE01AAEE091B3F95595D6D4018316D Validity Not Before: Jul 5 00:11:03 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a4b517-be8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1e:b2:44:fb:73:32:7f:ef:c3:c2:40:cf:7b: 56:39:26:c7:2e:fe:aa:54:0e:33:5a:29:ed:9c:b7: 36:51:d9:3d:d9:42:2a:ef:68:34:24:94:f0:2f:dc: 25:2f:2d:de:0f:93:a6:ac:2f:81:6d:43:ae:d8:f9: 16:39:53:a5:04:50:8a:e7:8c:6f:05:f6:e3:ad:58: 88:3b:26:78:ec:4c:d6:e0:08:fc:b0:99:56:11:ca: 1b:f0:ec:22:66:45:11:d7:52:4e:a8:df:5b:97:41: fc:1a:a5:3c:d4:33:fd:45:c3:33:9a:29:e8:2f:3d: 7e:bd:bb:6e:a5:3c:33:aa:3c:06:a9:57:a0:47:7d: 3b:cb:d8:63:52:20:5c:e3:db:f3:f9:14:e5:e5:93: 77:5e:b3:bc:9d:98:a4:ef:05:5a:c6:a3:26:d2:c2: e9:dc:8d:4a:ad:d9:0e:3e:e6:46:47:4c:1b:26:38: 12:6d:53:1f:19:e0:63:b7:4f:4d:41:bd:bc:c8:09: dc:20:f6:22:a5:da:79:22:28:ef:2c:9a:cc:0e:a4: 28:9c:52:20:b9:56:dd:41:d6:8b:64:7f:34:f0:f7: 57:cd:ad:57:74:f1:8b:ad:21:2a:59:9b:ca:58:4d: 81:9d:97:3d:89:22:81:4a:0d:83:39:3b:db:73:74: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:68:74:B8:95:93:93:61:AD:1F:47:EA:B6:5C:42:60:86:07:66:F1 X509v3 Authority Key Identifier: keyid:DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.76.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:67:51:a4:6c:82:2e:ad:6b:28:de:f2:24:07:40:5e:2a:81: a2:51:81:36:d2:2c:7a:60:b2:fa:6b:37:07:21:70:f5:9e:fc: e7:ee:82:f2:7d:5a:54:59:8f:aa:37:16:6e:6e:47:ac:cb:c1: 2a:e6:38:c1:b7:c8:5a:90:3c:4e:51:fa:51:7e:93:c0:e5:9a: 0d:d0:5b:59:4f:88:c3:4d:32:6c:6e:d3:37:ca:a2:96:cf:6f: 90:81:da:b8:87:e0:58:27:3a:6e:37:f0:f9:24:7e:b3:13:39: 5d:1c:7b:7a:e6:5f:be:e4:5a:8d:e0:7f:cc:56:82:d2:25:c7: 98:58:56:8f:92:ee:9a:62:3a:d3:b4:3c:6a:dc:ce:33:fc:8f: 6b:56:d2:b9:7c:3a:0e:00:63:e4:cd:00:af:ce:10:4c:2a:a3: 29:85:2d:1d:d6:b8:c5:14:b9:1b:43:20:d4:f1:c3:4e:f2:e0: b8:76:53:33:d8:54:11:4b:a4:df:8c:a8:77:5d:7d:60:c5:ce: a3:a7:93:be:d0:67:c5:b2:65:01:df:75:3b:40:a5:80:42:ab: ec:90:b7:1d:ca:99:c2:58:e8:1b:af:b8:f9:0f:3a:f7:46:00: a8:e2:34:1b:ef:e0:91:b7:69:a4:17:a7:64:41:56:d6:3d:41: d8:be:7f:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQkQxMTAvBgNVBAUTKERBNkU5NDFDREJGRTAxQUFFRTA5MUIzRjk1NTk1RDZE NDAxODMxNkQwHhcNMjMwNzA1MDAxMTAzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0YjUxNy1iZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB6yRPtzMn/vw8JAz3tWOSbHLv6qVA4zWintnLc2Udk92UIq72g0JJTwL9wl Ly3eD5OmrC+BbUOu2PkWOVOlBFCK54xvBfbjrViIOyZ47EzW4Aj8sJlWEcob8Owi ZkUR11JOqN9bl0H8GqU81DP9RcMzminoLz1+vbtupTwzqjwGqVegR307y9hjUiBc 49vz+RTl5ZN3XrO8nZik7wVaxqMm0sLp3I1KrdkOPuZGR0wbJjgSbVMfGeBjt09N Qb28yAncIPYipdp5IijvLJrMDqQonFIguVbdQdaLZH808PdXza1XdPGLrSEqWZvK WE2BnZc9iSKBSg2DOTvbc3SYdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdodLiV k5NhrR9H6rZcQmCGB2bxMB8GA1UdIwQYMBaAFNpulBzb/gGq7gkbP5VZXW1AGDFt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVCRC8zMTIwMDY1RUJD NUExMUVCOEUxRDkyNThDNEY5QUUwMi8ybTZVSE52LUFhcnVDUnNfbFZsZGJVQVlN VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtNlVITnYtQWFydUNSc19sVmxkYlVBWU1XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJFQkQvMzEyMDA2NUVCQzVBMTFFQjhFMUQ5MjU4QzRGOUFFMDIvMTU3NkYxOUFC QzVDMTFFQjgzMUVDMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF0wwDQYJKoZIhvcNAQELBQADggEBAB5nUaRsgi6tayje 8iQHQF4qgaJRgTbSLHpgsvprNwchcPWe/OfugvJ9WlRZj6o3Fm5uR6zLwSrmOMG3 yFqQPE5R+lF+k8Dlmg3QW1lPiMNNMmxu0zfKopbPb5CB2riH4FgnOm438PkkfrMT OV0ce3rmX77kWo3gf8xWgtIlx5hYVo+S7ppiOtO0PGrczjP8j2tW0rl8Og4AY+TN AK/OEEwqoymFLR3WuMUUuRtDINTxw07y4Lh2UzPYVBFLpN+MqHddfWDFzqOnk77Q Z8WyZQHfdTtApYBCq+yQtx3KmcJY6BuvuPkPOvdGAKjiNBvv4JG3aaQXp2RBVtY9 Qdi+f7Q= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org