$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/D29F544CFCD711EEB654B271C4F9AE02.roa File: D29F544CFCD711EEB654B271C4F9AE02.roa (raw, json) Hash identifier: 8POm2P67+br1AW6EfcB6Tl6WMfM8KsW8mz0RMDZzK4w= Subject key identifier: EA:F6:90:13:3D:1D:14:C4:87:58:28:6A:E3:2E:97:D4:27:C4:05:06 Certificate issuer: /CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Certificate serial: 010A Authority key identifier: 91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/D29F544CFCD711EEB654B271C4F9AE02.roa Signing time: Wed 17 Apr 2024 16:30:38 +0000 ROA not before: Wed 17 Apr 2024 16:30:38 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 19198 IP address blocks: 203.55.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F84/serialNumber=91C4976DEAD3DE8778E5C0DCFF2603971AC2D4DB Validity Not Before: Apr 17 16:30:38 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=661ff92d-4d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:3d:c8:bb:50:8d:ae:ec:62:f6:9c:e5:23: b1:35:90:c3:b0:8e:8e:21:d1:ab:2f:a3:6a:f0:e4: 48:fe:8e:24:7e:17:9b:cd:a9:47:23:b8:56:6a:11: 0f:e3:b3:52:e0:70:61:46:e6:bd:65:c4:92:17:f5: 4a:0c:76:86:fd:79:d5:d0:d4:69:8b:69:c1:93:e4: d6:a3:0c:ac:ff:b8:48:53:ac:fc:ca:fd:ad:fe:a7: 11:12:90:ea:28:12:50:f8:30:c4:cf:b6:48:4e:ab: 5c:db:3a:7b:8a:c6:b7:f7:86:a2:18:4c:87:d0:86: 80:ae:5d:5e:b9:f8:c7:fc:71:b3:8a:90:54:fe:03: 3e:46:94:38:2b:38:43:3c:b6:9c:3b:7b:00:2a:e8: 88:9d:50:94:aa:74:2e:36:f0:3b:39:f5:65:79:c5: 18:e1:7a:d7:28:9c:29:d6:06:b0:db:b9:85:0c:7a: 37:d2:5b:4f:46:f8:f4:a6:b8:ef:d3:66:79:15:1d: 80:79:db:f0:22:d7:4d:16:71:d7:48:73:fe:6d:e1: d3:bc:0f:4e:f1:3b:80:13:1b:69:c3:aa:3b:6d:1f: e3:6c:49:70:47:a8:fc:89:9a:b4:3d:5e:42:cc:a1: 7b:01:13:5b:70:70:22:e3:c7:7b:70:73:e4:71:78: 15:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F6:90:13:3D:1D:14:C4:87:58:28:6A:E3:2E:97:D4:27:C4:05:06 X509v3 Authority Key Identifier: keyid:91:C4:97:6D:EA:D3:DE:87:78:E5:C0:DC:FF:26:03:97:1A:C2:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/kcSXberT3od45cDc_yYDlxrC1Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcSXberT3od45cDc_yYDlxrC1Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F84/F43A3F046F2F11EDA84A6933C4F9AE02/D29F544CFCD711EEB654B271C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.55.215.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:bf:55:e3:26:5e:62:4b:b8:7c:bb:65:0e:40:25:08:15:63: a4:68:e1:67:8e:ee:de:e0:d0:52:ae:7e:54:d9:30:4d:85:43: 84:cd:24:68:ba:95:70:b8:18:20:06:57:c7:32:aa:ac:cc:25: 9b:37:a3:ff:dd:19:14:05:4d:67:0d:51:32:19:7a:8c:f3:2d: 0c:ce:4a:a0:79:39:41:11:cd:44:b3:29:3e:2b:bd:03:aa:53: 41:6e:9d:ba:b1:19:44:44:ab:61:c8:6a:c1:9b:35:6b:53:12: ce:7f:5b:bb:67:74:bc:4e:a5:37:a0:4e:40:29:76:9d:ca:13: 95:c0:7e:5d:11:0f:a9:3a:73:dc:31:b2:19:e1:98:33:c5:51: e2:fb:2e:05:b5:f4:0d:31:ea:10:51:4c:d1:e5:0f:89:b6:d0: 3a:9a:9e:fd:ea:fd:ef:4e:92:b8:e6:ae:eb:c3:c1:1b:bb:e4: 4e:49:cd:65:7c:6c:15:fb:4f:91:0e:91:57:a6:e8:ce:9a:b5: b1:2b:8d:76:e2:ce:ca:48:c4:91:31:fb:4e:cd:e9:9b:16:c7: 59:26:fe:5c:5c:21:3f:6c:5e:d4:94:e5:d0:37:c3:44:25:ae: c6:07:03:f5:f4:f1:1b:bd:10:b9:98:97:c6:ad:6b:ab:7a:75: 6f:93:09:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGODQxMTAvBgNVBAUTKDkxQzQ5NzZERUFEM0RFODc3OEU1QzBEQ0ZGMjYwMzk3 MUFDMkQ0REIwHhcNMjQwNDE3MTYzMDM4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmZjkyZC00ZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouM9yLtQja7sYvac5SOxNZDDsI6OIdGrL6Nq8ORI/o4kfhebzalHI7hWahEP 47NS4HBhRua9ZcSSF/VKDHaG/XnV0NRpi2nBk+TWowys/7hIU6z8yv2t/qcREpDq KBJQ+DDEz7ZITqtc2zp7isa394aiGEyH0IaArl1eufjH/HGzipBU/gM+RpQ4KzhD PLacO3sAKuiInVCUqnQuNvA7OfVlecUY4XrXKJwp1gaw27mFDHo30ltPRvj0prjv 02Z5FR2AedvwItdNFnHXSHP+beHTvA9O8TuAExtpw6o7bR/jbElwR6j8iZq0PV5C zKF7ARNbcHAi48d7cHPkcXgV4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOr2kBM9 HRTEh1goauMul9QnxAUGMB8GA1UdIwQYMBaAFJHEl23q096HeOXA3P8mA5cawtTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y4NC9GNDNBM0YwNDZG MkYxMUVEQTg0QTY5MzNDNEY5QUUwMi9rY1NYYmVyVDNvZDQ1Y0RjX3lZRGx4ckMx TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjU1hiZXJUM29kNDVjRGNfeVlEbHhyQzFOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGODQvRjQzQTNGMDQ2RjJGMTFFREE4NEE2OTMzQzRGOUFFMDIvRDI5RjU0NENG Q0Q3MTFFRUI2NTRCMjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLN9cwDQYJKoZIhvcNAQELBQADggEBAA2/VeMmXmJLuHy7 ZQ5AJQgVY6Ro4WeO7t7g0FKuflTZME2FQ4TNJGi6lXC4GCAGV8cyqqzMJZs3o//d GRQFTWcNUTIZeozzLQzOSqB5OUERzUSzKT4rvQOqU0FunbqxGUREq2HIasGbNWtT Es5/W7tndLxOpTegTkApdp3KE5XAfl0RD6k6c9wxshnhmDPFUeL7LgW19A0x6hBR TNHlD4m20Dqanv3q/e9OkrjmruvDwRu75E5JzWV8bBX7T5EOkVem6M6atbErjXbi zspIxJEx+07N6ZsWx1km/lxcIT9sXtSU5dA3w0QlrsYHA/X08Ru9ELmYl8ata6t6 dW+TCbo= -----END CERTIFICATE-----Generated at Fri May 17 06:18:04 2024 by rpki-client on console-fra.rpki-client.org