$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa File: C39CEEAAE17C11EC93AB7473C4F9AE02.roa (raw, json) Hash identifier: /ti2JINA2nYWAWohJ2+2UYSf28lNI5hYgZxCtnH38X8= Subject key identifier: 4D:72:E9:0A:65:E7:F5:B8:5D:E0:60:40:23:0B:D0:9B:4B:30:9A:9E Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0367 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa Signing time: Thu 27 Jul 2023 02:03:41 +0000 ROA not before: Thu 27 Jul 2023 02:03:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133481 IP address blocks: 203.170.208.0/24 maxlen: 24 203.170.209.0/24 maxlen: 24 203.170.212.0/24 maxlen: 24 203.170.213.0/24 maxlen: 24 203.170.216.0/24 maxlen: 24 203.170.217.0/24 maxlen: 24 203.170.218.0/24 maxlen: 24 203.170.219.0/24 maxlen: 24 203.170.220.0/24 maxlen: 24 203.170.221.0/24 maxlen: 24 203.170.222.0/24 maxlen: 24 203.170.223.0/24 maxlen: 24 203.170.240.0/24 maxlen: 24 203.170.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 27 02:03:41 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1d07c-d42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:f8:5c:16:09:20:bb:4a:71:79:95:bf:5e: 6d:29:38:71:0a:f1:42:37:7f:35:5b:b6:2e:30:7c: af:4c:d6:5b:83:48:24:c9:0c:de:05:72:c7:c4:50: ef:b3:c5:d6:8a:64:de:20:c6:29:7e:9c:9e:05:51: 6f:12:fd:67:b2:b9:3a:78:c6:f2:cb:f4:2e:7b:5a: 12:a5:c8:7c:d4:be:89:a3:1d:34:a6:5e:75:cf:88: 30:e9:bb:23:f9:a7:0b:f0:c0:99:5e:f2:aa:6a:ec: fe:04:80:ad:bc:75:0a:60:6c:a5:f8:04:39:9d:f9: 81:0c:d8:ad:d0:06:a8:3b:f1:03:28:15:15:c0:c3: 43:1c:ba:6d:ea:54:77:94:e2:45:a5:c4:59:7f:f3: 6e:a7:39:69:f8:f8:5a:56:e6:eb:90:da:35:b5:b3: c6:cd:a8:7f:77:69:4d:5c:2c:c8:2c:74:27:da:0e: 86:a5:6f:29:c9:b1:fd:b9:15:57:59:33:c4:3e:d4: e4:74:42:03:45:76:f7:4e:ee:fd:0f:ea:5b:da:96: b2:f7:9a:32:fc:f4:dc:30:c2:8a:96:d2:20:7b:12: 10:34:c1:bd:25:96:ce:6a:11:a4:87:01:af:c7:de: f6:e2:83:7e:87:45:79:b3:37:77:e1:32:c2:82:77: 54:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:72:E9:0A:65:E7:F5:B8:5D:E0:60:40:23:0B:D0:9B:4B:30:9A:9E X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.208.0/23 203.170.212.0/23 203.170.216.0/21 203.170.240.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:c7:21:d8:e4:f3:e0:7d:70:3a:f2:9c:f4:5f:36:3b:65:08: 55:80:6c:32:88:ab:e0:ee:27:e8:1f:3f:a0:ab:71:9c:50:0a: 70:9b:05:0d:aa:42:a0:8e:cc:55:24:cb:1a:fb:57:ee:6d:95: bd:08:90:82:43:b1:1e:58:3f:b7:4f:2d:08:38:22:0c:e2:20: 7c:e0:d0:43:a8:b2:3d:bc:81:3f:6f:4b:bf:13:94:73:67:b2: 71:d9:d8:a5:72:da:ae:e7:f9:21:b1:83:9e:c5:3d:f5:ff:25: 6c:b8:4d:2a:00:f1:03:8f:15:23:04:be:2a:51:d7:7a:b3:05: 44:6a:13:24:f3:f6:f7:ca:f0:81:41:64:91:54:a5:ab:1c:06: 0d:10:ee:a4:c9:e0:65:2d:6b:da:b5:e3:0f:d6:17:04:7f:46: 9a:e8:8c:2a:db:bf:09:68:9e:d0:d8:75:0e:68:a3:08:7b:1c: 5b:6e:8d:3f:49:6a:aa:5b:27:62:6b:b8:64:e3:4a:24:8b:ba: 39:5f:d2:fc:c2:12:4b:ce:81:3e:ee:c4:9a:bd:de:6d:b2:07: ea:70:0b:12:aa:b0:bd:32:db:1d:60:d2:92:82:36:b3:f8:f5: 9f:db:fe:2a:01:da:96:a3:fa:ea:5c:db:b0:38:ce:71:ab:a8: 0f:43:af:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjMwNzI3MDIwMzQxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZDA3Yy1kNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbL4XBYJILtKcXmVv15tKThxCvFCN381W7YuMHyvTNZbg0gkyQzeBXLHxFDv s8XWimTeIMYpfpyeBVFvEv1nsrk6eMbyy/Que1oSpch81L6Jox00pl51z4gw6bsj +acL8MCZXvKqauz+BICtvHUKYGyl+AQ5nfmBDNit0AaoO/EDKBUVwMNDHLpt6lR3 lOJFpcRZf/Nupzlp+PhaVubrkNo1tbPGzah/d2lNXCzILHQn2g6GpW8pybH9uRVX WTPEPtTkdEIDRXb3Tu79D+pb2pay95oy/PTcMMKKltIgexIQNMG9JZbOahGkhwGv x9724oN+h0V5szd34TLCgndU5QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFE1y6Qpl 5/W4XeBgQCML0JtLMJqeMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzM5Q0VFQUFF MTdDMTFFQzkzQUI3NDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAHLqtADBAHLqtQDBAPLqtgDBAHLqvAwDQYJKoZIhvcNAQEL BQADggEBAHrHIdjk8+B9cDrynPRfNjtlCFWAbDKIq+DuJ+gfP6CrcZxQCnCbBQ2q QqCOzFUkyxr7V+5tlb0IkIJDsR5YP7dPLQg4IgziIHzg0EOosj28gT9vS78TlHNn snHZ2KVy2q7n+SGxg57FPfX/JWy4TSoA8QOPFSMEvipR13qzBURqEyTz9vfK8IFB ZJFUpascBg0Q7qTJ4GUta9q14w/WFwR/RprojCrbvwlontDYdQ5oowh7HFtujT9J aqpbJ2JruGTjSiSLujlf0vzCEkvOgT7uxJq93m2yB+pwCxKqsL0y2x1g0pKCNrP4 9Z/b/ioB2paj+upc27A4znGrqA9Dr+Q= -----END CERTIFICATE-----Generated at Wed May 1 04:49:20 2024 by rpki-client on console-ams.rpki-client.org