$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa File: 1DCB662A3DF211EB81F4CE73C4F9AE02.roa (raw, json) Hash identifier: Y8GAQQenL9K2JlpSH7yc2GZt8IkFaj4y/vj6lw0dZ9Y= Subject key identifier: E9:6A:A7:04:82:49:81:EF:D7:01:0F:37:16:70:A8:9C:47:2D:E8:DF Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 14AC Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa Signing time: Fri 26 May 2023 17:57:57 +0000 ROA not before: Fri 26 May 2023 17:57:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 0 IP address blocks: 27.111.228.0/22 maxlen: 24 202.79.198.0/24 maxlen: 24 202.79.199.0/24 maxlen: 24 202.79.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 17:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5292 (0x14ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: May 26 17:57:57 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6470f324-e26d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6e:4a:5d:fb:a8:4e:29:0e:49:93:3c:b9:7b: f3:0b:59:ea:a0:3e:8e:5c:69:c3:47:e4:91:bf:67: 44:c0:76:60:1a:a8:f4:ca:b6:30:36:12:e9:1a:f5: ec:9a:1d:12:32:ef:34:5c:08:cb:a3:5f:f2:39:4c: 87:61:5f:e7:df:cd:01:44:76:53:13:53:aa:c3:e9: 1d:63:eb:9c:a2:58:61:d5:8b:72:ec:81:9b:f4:3d: a8:c6:4c:bc:3b:b9:f4:c1:4b:06:ba:a7:ae:17:03: 8a:2f:93:ba:e4:61:cd:76:d5:71:f7:4b:de:08:f7: 79:a2:a0:4f:2a:20:bc:93:c4:23:f8:02:83:47:98: fc:83:3a:8c:87:eb:16:36:d3:17:a0:e8:f6:70:3f: 80:0d:dd:06:58:6f:73:7d:02:22:f6:dd:02:cc:cb: 59:5a:1c:21:52:ff:8c:e3:fd:47:80:84:38:94:56: c2:a0:03:4c:f0:2e:cf:12:64:6d:84:75:30:32:50: 32:48:85:16:8b:ff:56:bc:7e:b9:4a:86:08:ae:6a: 4f:07:76:76:03:9c:06:b0:ac:0d:c5:bd:72:dd:bb: 39:79:25:21:77:d9:8c:76:67:ba:05:96:cf:fd:75: 1e:a1:99:45:4e:9d:b3:ef:02:32:4d:94:e8:20:40: 14:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6A:A7:04:82:49:81:EF:D7:01:0F:37:16:70:A8:9C:47:2D:E8:DF X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.228.0/22 202.79.198.0-202.79.200.255 Signature Algorithm: sha256WithRSAEncryption 37:5e:6a:23:b6:dd:da:34:19:4c:14:83:9c:50:e2:1d:86:53: d5:5a:e3:83:21:fc:fe:3a:3e:12:79:c6:15:0a:99:f4:8d:dd: 08:59:33:df:f3:c2:b7:08:a4:04:fd:f8:ba:a5:8d:13:3f:07: 6a:bb:2a:f2:17:84:3e:94:94:88:56:2b:9d:84:8b:4f:12:3a: db:bb:d8:60:0a:9e:78:a4:40:ea:bb:65:b6:71:0f:ea:83:10: 56:9e:0c:15:be:c1:60:cd:e5:4c:e4:d4:f5:c3:52:f8:e8:d5: c5:66:fa:6f:d0:11:48:53:b3:52:2c:33:35:da:0e:15:3f:9e: 7d:e0:bf:8a:d2:19:ab:97:c8:50:22:40:11:d9:a9:21:11:f4: cf:93:ed:da:7a:89:50:d9:ca:0a:ac:60:2b:85:60:6b:48:4d: 44:91:3a:43:34:eb:4c:24:6c:1b:b6:83:68:3a:9e:15:4b:ca: 61:3f:7b:5e:a7:92:93:c8:9f:08:d9:a9:92:50:a9:26:09:80: 86:97:9c:d0:a9:18:79:70:a9:21:4c:a9:05:b4:92:b1:3a:59: da:e4:85:f9:04:93:32:1d:44:cd:42:0e:7d:86:a9:05:dd:74: 4d:ce:b7:35:b0:3e:85:85:74:e5:16:6d:fa:65:c8:66:b2:11: d9:f3:48:b4 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjMwNTI2MTc1NzU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcwZjMyNC1lMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5G5KXfuoTikOSZM8uXvzC1nqoD6OXGnDR+SRv2dEwHZgGqj0yrYwNhLpGvXs mh0SMu80XAjLo1/yOUyHYV/n380BRHZTE1Oqw+kdY+ucolhh1Yty7IGb9D2oxky8 O7n0wUsGuqeuFwOKL5O65GHNdtVx90veCPd5oqBPKiC8k8Qj+AKDR5j8gzqMh+sW NtMXoOj2cD+ADd0GWG9zfQIi9t0CzMtZWhwhUv+M4/1HgIQ4lFbCoANM8C7PEmRt hHUwMlAySIUWi/9WvH65SoYIrmpPB3Z2A5wGsKwNxb1y3bs5eSUhd9mMdme6BZbP /XUeoZlFTp2z7wIyTZToIEAUFwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOlqpwSC SYHv1wEPNxZwqJxHLejfMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMURDQjY2MkEz REYyMTFFQjgxRjRDRTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAIbb+QwDAMEAcpPxgMEAMpPyDANBgkqhkiG9w0BAQsFAAOC AQEAN15qI7bd2jQZTBSDnFDiHYZT1VrjgyH8/jo+EnnGFQqZ9I3dCFkz3/PCtwik BP34uqWNEz8Harsq8heEPpSUiFYrnYSLTxI627vYYAqeeKRA6rtltnEP6oMQVp4M Fb7BYM3lTOTU9cNS+OjVxWb6b9ARSFOzUiwzNdoOFT+efeC/itIZq5fIUCJAEdmp IRH0z5Pt2nqJUNnKCqxgK4Vga0hNRJE6QzTrTCRsG7aDaDqeFUvKYT97XqeSk8if CNmpklCpJgmAhpec0KkYeXCpIUypBbSSsTpZ2uSF+QSTMh1EzUIOfYapBd10Tc63 NbA+hYV05RZt+mXIZrIR2fNItA== -----END CERTIFICATE-----Generated at Thu Apr 18 18:16:03 2024 by rpki-client on console-fra.rpki-client.org