$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa File: 6D5014F2146F11EDB756F727C4F9AE02.roa (raw, json) Hash identifier: sSRGVEBzASY8Umw1zkpTyHPoXEabklGOxKI2hTKzelI= Subject key identifier: 3D:C5:0A:99:02:49:70:04:BB:3C:8A:91:34:4D:C0:AB:02:E5:82:41 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 0131 Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa Signing time: Tue 03 Oct 2023 03:24:00 +0000 ROA not before: Tue 03 Oct 2023 03:24:00 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 56132 IP address blocks: 203.23.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Oct 3 03:24:00 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b8950-dcb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:24:f7:5c:b3:e9:70:a4:82:cc:ea:65:65:db: 85:61:71:72:d0:55:60:9d:65:ee:7e:c7:93:04:94: 5e:61:8d:75:cc:99:4d:28:a9:8d:8a:8f:a8:ca:14: 1f:24:37:02:01:81:98:b2:d0:8f:41:ba:f4:69:e2: aa:1f:cf:c5:83:12:c1:c1:e4:30:78:ac:06:4b:79: e5:19:fa:52:ee:98:c4:54:f6:ab:48:42:24:3e:c4: af:75:d1:de:4d:5e:55:92:ff:31:e5:22:72:12:74: 4b:3e:df:37:2d:4b:0d:9c:1c:48:b7:2c:5a:d3:d9: f1:82:3a:72:40:43:3a:34:f9:2c:61:0a:e2:73:8e: 83:d8:31:44:15:ee:53:2f:70:6e:17:aa:05:5f:bf: 57:32:7b:d1:ab:b0:13:d8:c1:86:b6:f9:7d:f2:f5: 39:a4:67:fd:6f:6b:d8:fa:15:57:5c:d8:12:eb:ed: 7b:fb:b8:d0:e0:4c:c2:b4:ad:ae:7b:56:b9:32:c3: f0:b5:00:9e:5e:05:da:41:b2:8b:ac:8f:7b:be:1b: 2e:83:c2:af:4a:46:e7:cc:ce:07:84:49:ac:a4:12: d8:38:c0:98:6b:f8:fc:6d:f2:7c:54:29:78:6a:1f: 56:69:66:3a:b5:f2:36:59:ea:88:b6:7b:63:c5:e6: dc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C5:0A:99:02:49:70:04:BB:3C:8A:91:34:4D:C0:AB:02:E5:82:41 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.136.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f4:58:40:bf:38:05:36:6b:33:49:78:a6:ec:ff:88:92:93: c5:df:75:18:27:e5:dd:e8:0d:11:1e:2c:24:db:cd:b2:f9:92: 8a:3f:8c:21:7b:f0:2c:b1:01:1d:bc:b9:03:df:bf:41:25:21: 1a:fd:2a:6e:0d:96:b3:0f:4c:31:ba:a7:14:61:4a:6c:6a:dd: 8f:0f:84:d0:15:ca:dc:48:08:33:0b:7e:7f:c8:f0:c5:1d:53: 15:73:80:64:b4:81:9b:6b:2d:f8:83:ed:7c:31:17:36:fe:67: 6f:14:75:db:cb:1b:41:39:be:8c:cd:17:a8:1d:10:7e:1f:bc: a7:37:0e:7f:05:7d:58:32:38:6a:14:7d:26:f0:27:f5:8c:e2: 0a:85:a7:39:6b:21:63:05:04:36:74:56:a0:2f:78:f0:57:f2: f0:00:46:44:e6:36:96:69:3e:34:2c:6f:20:37:4a:2a:42:05: 71:c8:75:98:db:c7:44:bf:f7:79:a2:b5:30:02:ab:ed:e6:d3: 98:2d:c3:34:a0:5a:f3:9e:0a:3a:b5:ed:00:f9:04:0c:b2:b0: c4:c8:83:87:b2:8f:2a:79:96:b4:e6:e4:f8:f1:42:21:01:dd: b0:c3:0b:15:d8:3b:7e:da:79:06:f7:b6:2f:28:ca:f1:df:80: 95:ec:7d:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjMxMDAzMDMyNDAwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiODk1MC1kY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CT3XLPpcKSCzOplZduFYXFy0FVgnWXufseTBJReYY11zJlNKKmNio+oyhQf JDcCAYGYstCPQbr0aeKqH8/FgxLBweQweKwGS3nlGfpS7pjEVParSEIkPsSvddHe TV5Vkv8x5SJyEnRLPt83LUsNnBxItyxa09nxgjpyQEM6NPksYQric46D2DFEFe5T L3BuF6oFX79XMnvRq7AT2MGGtvl98vU5pGf9b2vY+hVXXNgS6+17+7jQ4EzCtK2u e1a5MsPwtQCeXgXaQbKLrI97vhsug8KvSkbnzM4HhEmspBLYOMCYa/j8bfJ8VCl4 ah9WaWY6tfI2WeqItntjxebc0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFD3FCpkC SXAEuzyKkTRNwKsC5YJBMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZGNkYvMTJFMjUxN0MxNDZDMTFFREI3QzQwQTIzQzRGOUFFMDIvNkQ1MDE0RjIx NDZGMTFFREI3NTZGNzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF4gwDQYJKoZIhvcNAQELBQADggEBABv0WEC/OAU2azNJ eKbs/4iSk8XfdRgn5d3oDREeLCTbzbL5koo/jCF78CyxAR28uQPfv0ElIRr9Km4N lrMPTDG6pxRhSmxq3Y8PhNAVytxICDMLfn/I8MUdUxVzgGS0gZtrLfiD7XwxFzb+ Z28UddvLG0E5vozNF6gdEH4fvKc3Dn8FfVgyOGoUfSbwJ/WM4gqFpzlrIWMFBDZ0 VqAvePBX8vAARkTmNpZpPjQsbyA3SipCBXHIdZjbx0S/93mitTACq+3m05gtwzSg WvOeCjq17QD5BAyysMTIg4eyjyp5lrTm5PjxQiEB3bDDCxXYO37aeQb3ti8oyvHf gJXsfZg= -----END CERTIFICATE-----Generated at Mon May 27 05:39:09 2024 by rpki-client on console-fra.rpki-client.org