$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa File: C714F71CBF9B11EA9CDFD642C4F9AE02.roa (raw, json) Hash identifier: GnD5dbf5VEEkrhOTivMT3f5ghZW+rtbDFX5WMeD/3XE= Subject key identifier: 23:9F:C0:15:16:81:68:C9:3A:41:27:C3:C4:F2:0D:64:32:C0:7F:8F Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 07A5 Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:54 +0000 ROA not before: Thu 02 Nov 2023 22:09:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 198247 IP address blocks: 117.55.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Nov 2 22:09:54 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65441e32-a616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e5:82:69:bf:9b:5f:03:63:18:7a:c8:67:1b: 69:33:df:86:f9:ec:67:94:72:18:06:e0:62:ed:6b: bc:76:a7:41:27:28:1c:b7:d7:cc:8a:a2:f0:79:86: be:45:a3:da:b3:82:f8:03:54:66:d8:53:a1:a9:4e: f2:9f:14:02:9d:82:5e:11:5a:03:f6:60:4b:d4:38: 1b:f9:87:51:56:59:a1:85:cc:ff:74:f9:d6:32:ee: 61:4c:de:eb:42:d2:a2:1e:4a:cf:66:ae:54:c7:fb: d0:83:69:28:01:c6:40:81:8e:cf:62:72:ab:86:0f: 38:f2:7d:3a:b0:52:43:02:34:8c:76:c3:f0:bf:b7: 71:80:d6:cd:2a:ca:63:07:9a:d1:cc:34:c0:35:5f: 33:6a:3c:79:c7:f6:17:62:28:f9:3a:01:e7:29:7c: e3:21:9a:bf:e7:29:f5:41:d6:ea:f7:00:e5:16:44: 70:98:68:ba:83:b3:d2:f2:2c:12:fc:fe:c6:71:60: 8a:8a:9d:9a:ab:ff:89:13:cc:5c:d0:a0:a0:85:24: e0:f9:e0:c3:b7:76:d4:82:62:3a:fc:10:76:be:09: a8:61:ea:ee:d3:f2:05:3b:59:1c:5e:fb:89:7b:b8: d3:f4:59:75:3d:8b:b9:a5:ac:79:da:74:ed:48:88: f0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9F:C0:15:16:81:68:C9:3A:41:27:C3:C4:F2:0D:64:32:C0:7F:8F X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.196.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:ef:0d:50:22:10:56:a0:4a:2c:8c:d3:b6:8a:02:58:e2:34: f2:94:95:ba:ce:63:e2:f2:d7:4d:f0:39:d0:f3:e7:17:aa:81: ad:f2:17:e2:3b:9c:7f:02:e4:56:ee:19:f2:eb:09:d5:ec:44: 1f:1e:7e:83:39:17:72:b7:ec:97:75:83:3d:bf:c9:35:42:b9: e3:e0:a0:04:82:b8:e1:d8:c9:f7:ca:2a:99:bc:b2:02:67:b1: 8b:68:4c:75:0d:a5:c9:ce:ec:9b:e6:14:e1:a8:26:e1:6f:4f: ba:7d:7e:d9:05:5b:de:f6:9a:54:11:02:c8:bd:14:18:1a:05: 6b:39:f8:80:4b:2a:1b:b1:dc:3e:f3:bc:c4:03:2d:2a:d4:8c: dc:ea:ee:c9:1d:e7:fe:63:ac:be:8c:0e:77:c1:0c:32:0d:5e: c1:99:b9:d1:ac:6f:79:fd:83:e6:ca:e0:99:2f:74:a4:d6:86: a8:b7:28:79:b2:35:39:bd:f6:3c:3d:1a:34:7b:40:25:2b:03: 6b:2f:f9:eb:b0:79:3e:53:8c:b7:66:c2:49:1e:cf:9c:ad:4f: 03:11:84:54:55:2f:5e:03:4a:73:e0:30:41:7c:cf:28:bf:ee: 08:47:59:c8:0c:ed:00:44:bc:68:5c:1e:68:83:c7:9d:7e:0d: cd:b9:b8:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjMxMTAyMjIwOTU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUzMi1hNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOWCab+bXwNjGHrIZxtpM9+G+exnlHIYBuBi7Wu8dqdBJygct9fMiqLweYa+ RaPas4L4A1Rm2FOhqU7ynxQCnYJeEVoD9mBL1Dgb+YdRVlmhhcz/dPnWMu5hTN7r QtKiHkrPZq5Ux/vQg2koAcZAgY7PYnKrhg848n06sFJDAjSMdsPwv7dxgNbNKspj B5rRzDTANV8zajx5x/YXYij5OgHnKXzjIZq/5yn1Qdbq9wDlFkRwmGi6g7PS8iwS /P7GcWCKip2aq/+JE8xc0KCghSTg+eDDt3bUgmI6/BB2vgmoYeru0/IFO1kcXvuJ e7jT9Fl1PYu5pax52nTtSIjwAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCOfwBUW gWjJOkEnw8TyDWQywH+PMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvQzcxNEY3MUNC RjlCMTFFQTlDREZENjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8QwDQYJKoZIhvcNAQELBQADggEBAA7vDVAiEFagSiyM 07aKAljiNPKUlbrOY+Ly103wOdDz5xeqga3yF+I7nH8C5FbuGfLrCdXsRB8efoM5 F3K37Jd1gz2/yTVCuePgoASCuOHYyffKKpm8sgJnsYtoTHUNpcnO7JvmFOGoJuFv T7p9ftkFW972mlQRAsi9FBgaBWs5+IBLKhux3D7zvMQDLSrUjNzq7skd5/5jrL6M DnfBDDINXsGZudGsb3n9g+bK4JkvdKTWhqi3KHmyNTm99jw9GjR7QCUrA2sv+euw eT5TjLdmwkkez5ytTwMRhFRVL14DSnPgMEF8zyi/7ghHWcgM7QBEvGhcHmiDx51+ Dc25uAc= -----END CERTIFICATE-----Generated at Sun May 26 23:05:25 2024 by rpki-client on console-ams.rpki-client.org