$ rpki-client -vvf rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa File: 73DDDA0206FF11ED8C6B565FC4F9AE02.roa (raw, json) Hash identifier: +9tCipDB0aaHUVuA7yo8ZYQuS8o9q/CaWZgtKqaXci0= Subject key identifier: 0C:37:C3:22:89:0F:40:BB:DC:EC:B0:35:71:6B:1E:FC:32:39:4F:E8 Certificate issuer: /CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Certificate serial: 06FD Authority key identifier: 32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa Signing time: Sat 04 May 2024 23:31:47 +0000 ROA not before: Sat 04 May 2024 23:31:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4739 IP address blocks: 203.215.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Validity Not Before: May 4 23:31:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6636c563-50c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b1:74:ee:c1:e3:da:55:7b:b6:0b:2b:eb:00: b2:0c:94:53:41:22:d5:f7:9e:d4:33:44:6b:da:ec: 9c:52:19:b0:20:3b:b2:17:61:8a:78:0b:b0:44:be: b6:e5:7e:9f:4a:6f:cf:a1:7c:7d:f2:22:97:be:b8: 33:83:34:37:94:ad:17:0c:d6:ed:f5:c1:c3:05:e5: 11:0b:a0:ec:88:6d:74:ad:8f:f5:d1:2b:db:46:fe: 4b:1c:67:53:81:c6:9f:fd:af:2c:c7:7f:34:db:cb: d6:65:ed:96:aa:d7:39:8a:88:c7:4a:b9:23:cb:72: 8a:e1:15:be:fe:d2:5d:53:8d:05:7b:dd:7a:b0:e9: ca:bc:39:6d:02:83:3b:b4:29:38:4c:04:ce:33:37: d0:fc:36:66:f8:ac:ec:a1:ed:c5:a0:ca:d7:f0:ec: 16:2c:f1:d5:d5:87:4e:77:fe:5d:4f:dd:e1:64:14: 84:a1:4d:84:8d:62:89:f2:08:b9:81:ff:f5:16:53: ef:99:10:2e:7a:e5:9c:d3:7f:f1:2c:c1:a0:a2:15: a2:1d:ff:97:0d:e9:9b:2e:42:c4:4a:4f:6d:ca:0c: 77:7c:9d:24:20:7e:40:02:f5:3b:37:de:02:c2:12: 90:ac:c1:f9:a0:ed:d2:32:3a:35:8b:94:36:09:43: 34:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:37:C3:22:89:0F:40:BB:DC:EC:B0:35:71:6B:1E:FC:32:39:4F:E8 X509v3 Authority Key Identifier: keyid:32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/73DDDA0206FF11ED8C6B565FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.215.29.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:c8:a0:02:1c:38:33:c2:19:bc:9e:25:5d:1d:c1:c5:36:af: 20:e8:b8:a6:b0:67:2a:3e:43:2e:18:99:73:72:82:6e:97:d2: 5b:95:ad:78:f4:e5:df:05:eb:75:65:37:66:45:c8:b8:7f:41: 7e:d0:89:9f:ca:b3:c7:c6:f2:d4:d7:af:b4:1a:f0:c2:a0:71: ab:8e:52:b0:4c:64:fe:06:86:62:2a:cc:7d:f9:c9:86:9d:a7: d1:f7:d5:7b:e4:21:0f:08:14:93:35:c1:58:ee:01:70:79:26: 69:78:56:93:19:37:fe:5b:40:4d:db:f8:aa:db:7a:6d:2f:bb: d1:fb:9a:a7:e6:85:64:56:4e:f0:aa:ce:c0:87:1a:22:8d:c1: f1:ea:6e:31:b5:6b:5a:a0:51:f7:6d:70:64:86:26:ba:b2:62: 1c:e5:c9:80:8c:bd:75:74:38:f0:e1:31:80:5c:03:5b:c3:1d: 07:ca:17:86:1b:75:d8:29:4a:ca:6d:46:6f:f5:89:38:9f:31: cc:5f:1a:ed:0a:ea:a2:a1:c0:c4:65:0a:63:bc:01:57:e2:33: cf:e5:a0:0c:1d:86:be:a4:6c:c5:4a:bf:ae:b8:f5:c0:7d:0b: ff:e2:76:21:ba:52:4c:d1:4c:66:6c:96:b6:6d:78:22:ec:70: d1:49:5f:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwQTMxMTAvBgNVBAUTKDMyNDJCQUUwMEJBOUYwREY0RTlFREE2RkU1QzA4RjEy OUY5MTY4ODEwHhcNMjQwNTA0MjMzMTQ3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2YzU2My01MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrF07sHj2lV7tgsr6wCyDJRTQSLV957UM0Rr2uycUhmwIDuyF2GKeAuwRL62 5X6fSm/PoXx98iKXvrgzgzQ3lK0XDNbt9cHDBeURC6DsiG10rY/10SvbRv5LHGdT gcaf/a8sx38028vWZe2Wqtc5iojHSrkjy3KK4RW+/tJdU40Fe916sOnKvDltAoM7 tCk4TATOMzfQ/DZm+Kzsoe3FoMrX8OwWLPHV1YdOd/5dT93hZBSEoU2EjWKJ8gi5 gf/1FlPvmRAueuWc03/xLMGgohWiHf+XDembLkLESk9tygx3fJ0kIH5AAvU7N94C whKQrMH5oO3SMjo1i5Q2CUM0wwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAw3wyKJ D0C73OywNXFrHvwyOU/oMB8GA1UdIwQYMBaAFDJCuuALqfDfTp7ab+XAjxKfkWiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjBBMy83NTQ1NDVCQzAz QjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhOOU9udHB2NWNDUEVwLVJh SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rSzY0QXVwOE45T250cHY1Y0NQRXAtUmFJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIwQTMvNzU0NTQ1QkMwM0I3MTFFQjk3RkJFNTY4QzRGOUFFMDIvNzNERERBMDIw NkZGMTFFRDhDNkI1NjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL1x0wDQYJKoZIhvcNAQELBQADggEBAAzIoAIcODPCGbye JV0dwcU2ryDouKawZyo+Qy4YmXNygm6X0luVrXj05d8F63VlN2ZFyLh/QX7QiZ/K s8fG8tTXr7Qa8MKgcauOUrBMZP4GhmIqzH35yYadp9H31XvkIQ8IFJM1wVjuAXB5 Jml4VpMZN/5bQE3b+Krbem0vu9H7mqfmhWRWTvCqzsCHGiKNwfHqbjG1a1qgUfdt cGSGJrqyYhzlyYCMvXV0OPDhMYBcA1vDHQfKF4YbddgpSsptRm/1iTifMcxfGu0K 6qKhwMRlCmO8AVfiM8/loAwdhr6kbMVKv6649cB9C//idiG6UkzRTGZslrZteCLs cNFJX3E= -----END CERTIFICATE-----Generated at Thu May 16 23:48:40 2024 by rpki-client on console-fra.rpki-client.org