$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa File: 1347AA9019FE11ECB459B141C4F9AE02.roa (raw, json) Hash identifier: Ttn15R/2S0g9Iwpzx7uYzM1uyUX8bVHv0/bnifX+j4M= Subject key identifier: 1B:64:56:93:5E:28:A9:2C:B0:F1:D6:15:94:12:E0:A2:BC:47:B4:CF Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 0419 Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa Signing time: Tue 19 Mar 2024 01:53:48 +0000 ROA not before: Tue 19 Mar 2024 01:53:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.20.197.0/24 maxlen: 24 203.20.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Mar 19 01:53:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65f8f02c-eec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:e3:8b:c7:fe:50:82:44:7f:af:a5:ee:5c: 11:bd:d4:bf:7a:91:be:19:63:40:11:4b:4b:47:d1: 25:47:34:e6:d4:37:3c:a9:5d:9a:b7:79:b4:d6:cf: 3d:83:a4:96:5d:58:6a:49:33:46:8b:9a:3a:12:85: b4:5c:11:51:6f:20:62:12:80:ff:32:f4:29:c6:63: 3a:05:56:5b:43:d0:26:bb:9b:8f:4e:86:26:d0:d0: 1b:15:07:f9:d9:99:be:7d:a1:04:98:8d:e0:64:7c: 07:70:4d:93:bb:1f:17:1f:c9:61:5d:75:84:61:1d: c4:ac:00:e0:cd:71:a5:dc:5f:da:d2:45:ef:5f:93: 2d:11:76:6b:67:52:7a:a7:cb:33:35:d4:75:af:82: a6:43:57:70:b5:3f:7f:ff:79:ef:42:8d:4d:52:30: 0e:f9:b5:e6:b6:aa:04:2f:72:a1:0f:b0:b2:70:13: 9a:ae:d3:ee:dc:b0:cd:fb:56:bc:d4:e9:f1:cb:1a: 3a:4d:ca:c9:e0:70:50:dc:ad:56:21:c6:17:7a:81: 32:90:94:38:7c:11:f9:f1:ad:47:0d:22:b7:9a:4f: 86:60:6f:f6:9b:93:d5:2e:64:27:c8:0d:82:39:90: d1:19:e3:9e:0e:84:33:17:c6:69:15:b9:91:50:6a: c5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:64:56:93:5E:28:A9:2C:B0:F1:D6:15:94:12:E0:A2:BC:47:B4:CF X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.197.0/24 203.20.199.0/24 Signature Algorithm: sha256WithRSAEncryption d1:60:2d:c8:13:3e:a6:8b:bd:d9:41:66:bb:62:d0:34:84:31: d3:59:ab:5d:e5:37:60:43:be:49:00:fa:15:e8:b0:3e:6f:df: 7b:c5:f0:3e:f4:10:bb:dd:fa:2a:ac:55:c1:93:2f:36:b8:50: d7:0f:ed:de:6a:c8:d1:2e:c7:7d:34:78:99:db:3f:bd:aa:81: fb:ec:6c:f4:a8:aa:d6:09:54:26:e3:55:48:5a:1f:b9:3a:db: 36:42:09:f6:16:c4:5a:c4:86:92:5c:2e:f0:49:0b:80:40:c2: f6:f3:1e:8b:e8:ae:60:dc:76:df:ef:b7:c5:8a:b8:15:ea:12: 23:03:1a:76:cc:82:03:d4:8f:c7:51:c6:c4:32:c4:44:6f:bc: d8:e8:35:89:5e:09:af:67:64:fd:30:0d:00:fb:be:a9:52:32: 87:bc:98:08:47:69:6e:29:d5:95:28:66:c1:6d:9c:a4:39:6c: b6:ee:44:0c:db:81:a3:e6:d0:d0:ec:c8:25:76:74:56:e3:a2: c2:a1:1e:35:7e:f8:d6:0f:f5:90:f6:ed:53:01:b9:55:54:a8: b1:b6:b6:75:0a:03:44:47:3a:8a:a4:15:e8:0e:b0:fa:e5:c7: 42:ce:5f:ab:ff:ee:bd:fe:42:52:ea:0f:cc:c0:5f:22:fe:63: 76:b0:3b:78 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjQwMzE5MDE1MzQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4ZjAyYy1lZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4Lji8f+UIJEf6+l7lwRvdS/epG+GWNAEUtLR9ElRzTm1Dc8qV2at3m01s89 g6SWXVhqSTNGi5o6EoW0XBFRbyBiEoD/MvQpxmM6BVZbQ9Amu5uPToYm0NAbFQf5 2Zm+faEEmI3gZHwHcE2Tux8XH8lhXXWEYR3ErADgzXGl3F/a0kXvX5MtEXZrZ1J6 p8szNdR1r4KmQ1dwtT9//3nvQo1NUjAO+bXmtqoEL3KhD7CycBOartPu3LDN+1a8 1Onxyxo6TcrJ4HBQ3K1WIcYXeoEykJQ4fBH58a1HDSK3mk+GYG/2m5PVLmQnyA2C OZDRGeOeDoQzF8ZpFbmRUGrFzwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBtkVpNe KKkssPHWFZQS4KK8R7TPMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvMTM0N0FBOTAx OUZFMTFFQ0I0NTlCMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLFMUDBADLFMcwDQYJKoZIhvcNAQELBQADggEBANFgLcgT PqaLvdlBZrti0DSEMdNZq13lN2BDvkkA+hXosD5v33vF8D70ELvd+iqsVcGTLza4 UNcP7d5qyNEux300eJnbP72qgfvsbPSoqtYJVCbjVUhaH7k62zZCCfYWxFrEhpJc LvBJC4BAwvbzHovormDcdt/vt8WKuBXqEiMDGnbMggPUj8dRxsQyxERvvNjoNYle Ca9nZP0wDQD7vqlSMoe8mAhHaW4p1ZUoZsFtnKQ5bLbuRAzbgaPm0NDsyCV2dFbj osKhHjV++NYP9ZD27VMBuVVUqLG2tnUKA0RHOoqkFegOsPrlx0LOX6v/7r3+QlLq D8zAXyL+Y3awO3g= -----END CERTIFICATE-----Generated at Tue May 21 03:39:30 2024 by rpki-client on console-ams.rpki-client.org