$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa File: B201496EF3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: Sjqw2ikR2/zqLFkUM/7bBsMFpToDsPbChfFUrs7MQeI= Subject key identifier: 37:68:E5:41:22:86:C8:2E:01:51:64:0C:BA:04:3A:B3:FD:7E:D7:64 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 18B1 Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa Signing time: Wed 10 May 2023 17:25:59 +0000 ROA not before: Wed 10 May 2023 17:25:59 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 55408 IP address blocks: 202.70.39.0/24 maxlen: 24 202.70.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6321 (0x18b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: May 10 17:25:59 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bd3a6-a20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:b9:cc:9c:35:ac:1e:4b:50:5b:e6:0f:91: 2e:c3:48:64:b9:d9:98:c1:2f:2d:1c:41:54:5a:76: d7:73:f0:6a:a5:a7:28:93:f7:12:83:01:55:d9:fe: 7f:4a:d7:de:69:36:21:63:ad:79:11:e9:ec:f1:7b: 9c:6c:5d:28:11:46:92:f5:e2:5d:84:6a:29:f0:d0: ce:8b:79:3d:f4:bf:b1:3f:79:66:34:02:41:22:09: 88:6e:49:c8:e6:5c:3d:a4:8c:79:75:a1:86:de:e8: 64:db:6d:02:10:81:47:a4:21:60:88:d9:10:fb:7f: 9a:28:54:54:98:f1:1e:0d:63:71:0e:df:14:d9:de: 63:1e:6e:48:ae:02:b2:94:07:cf:3c:3d:ac:60:53: 02:ee:b2:0e:47:40:4c:a4:7f:83:1d:93:5a:51:27: 59:cc:09:b7:0b:ab:4c:e2:4b:53:d4:30:22:65:52: 3e:15:f3:e4:ff:aa:04:f3:c7:10:67:87:09:37:9e: fb:83:90:f6:c4:cf:10:43:1d:44:6a:8f:e5:1a:0b: 39:9b:67:89:ad:c4:92:ee:bb:e0:56:cc:75:77:a9: a1:1b:14:d2:ef:4a:36:8b:b4:ec:28:9e:4c:c3:13: df:79:93:02:2f:7c:5c:bf:22:96:e6:a0:97:9e:7b: 5c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:68:E5:41:22:86:C8:2E:01:51:64:0C:BA:04:3A:B3:FD:7E:D7:64 X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.39.0/24 202.70.46.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:e8:6a:ff:44:b6:b9:de:47:5e:ac:b3:b9:36:6a:77:7e:4c: be:57:b8:b3:7a:e4:0e:28:99:ad:d6:cc:15:cf:f2:2c:9f:87: 16:07:7e:0b:4e:6a:87:b5:a6:1e:36:a2:7b:34:72:ac:4e:4d: c1:af:8a:19:7b:f4:2c:ac:91:26:98:0c:14:b7:c5:22:ad:b5: 9b:31:06:53:cf:40:74:c3:7c:54:f2:e5:69:cb:78:0d:2f:35: 70:47:4c:e9:2d:f0:16:d5:6b:48:ce:59:6f:b3:c5:21:02:6d: 9a:36:97:72:5e:63:48:dd:6f:84:65:fc:72:9a:f3:9b:d8:48: 53:c1:ad:35:26:5a:37:92:48:b8:18:df:3a:2d:ec:75:22:61: f9:72:d3:a6:a2:66:fd:59:d4:4e:90:48:16:d8:4f:a0:6b:09: 4b:12:30:e0:8b:7e:6b:b6:84:bc:19:c1:42:53:97:e7:73:f1: b6:ee:a6:e7:e5:91:ff:c9:86:23:45:5e:15:dd:e0:aa:a4:18: 7f:ef:71:80:08:b2:4b:72:dc:b4:14:85:37:98:38:e3:b5:97: 7d:73:52:e4:f1:34:72:c7:57:63:a2:e2:7e:d1:a6:23:bd:e6: 97:82:b8:77:30:fd:d1:da:4a:65:b5:47:b8:0d:97:ca:64:1e: 1a:47:ed:93 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjMwNTEwMTcyNTU5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViZDNhNi1hMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLK5zJw1rB5LUFvmD5Euw0hkudmYwS8tHEFUWnbXc/Bqpacok/cSgwFV2f5/ StfeaTYhY615Eens8XucbF0oEUaS9eJdhGop8NDOi3k99L+xP3lmNAJBIgmIbknI 5lw9pIx5daGG3uhk220CEIFHpCFgiNkQ+3+aKFRUmPEeDWNxDt8U2d5jHm5IrgKy lAfPPD2sYFMC7rIOR0BMpH+DHZNaUSdZzAm3C6tM4ktT1DAiZVI+FfPk/6oE88cQ Z4cJN577g5D2xM8QQx1Eao/lGgs5m2eJrcSS7rvgVsx1d6mhGxTS70o2i7TsKJ5M wxPfeZMCL3xcvyKW5qCXnntcKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDdo5UEi hsguAVFkDLoEOrP9ftdkMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvODM4MzYyMEE1MEQ1MTFFNzlFQ0U0MDEzQzRGOUFFMDIvQjIwMTQ5NkVG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKRicDBADKRi4wDQYJKoZIhvcNAQELBQADggEBAE/oav9E trneR16ss7k2and+TL5XuLN65A4oma3WzBXP8iyfhxYHfgtOaoe1ph42ons0cqxO TcGvihl79CyskSaYDBS3xSKttZsxBlPPQHTDfFTy5WnLeA0vNXBHTOkt8BbVa0jO WW+zxSECbZo2l3JeY0jdb4Rl/HKa85vYSFPBrTUmWjeSSLgY3zot7HUiYfly06ai Zv1Z1E6QSBbYT6BrCUsSMOCLfmu2hLwZwUJTl+dz8bbupuflkf/JhiNFXhXd4Kqk GH/vcYAIskty3LQUhTeYOOO1l31zUuTxNHLHV2Oi4n7RpiO95peCuHcw/dHaSmW1 R7gNl8pkHhpH7ZM= -----END CERTIFICATE-----Generated at Sun May 12 17:51:29 2024 by rpki-client on console-ams.rpki-client.org