$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa File: 55493366013C11ED9864F33CC4F9AE02.roa (raw, json) Hash identifier: 2R4EMtxs1H6OH5LJphovDrt4SRy+g9G/bKELYH0B26Y= Subject key identifier: E3:B4:C5:E3:CE:FE:B1:51:1F:E1:2D:F0:D9:7A:A9:EE:0D:66:5B:C7 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 070B Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa Signing time: Wed 10 Apr 2024 10:49:36 +0000 ROA not before: Wed 10 Apr 2024 10:49:36 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135381 IP address blocks: 202.44.217.0/24 maxlen: 24 202.44.218.0/24 maxlen: 24 202.44.229.0/24 maxlen: 24 202.44.230.0/24 maxlen: 24 202.44.231.0/24 maxlen: 24 202.44.232.0/24 maxlen: 24 202.44.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Apr 10 10:49:36 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66166ec0-6822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:ac:4c:20:ee:e3:37:c8:26:f0:95:66:ba: bf:f1:98:f9:78:6c:72:e6:b2:e2:6f:5f:da:28:4c: 1a:52:72:1a:2d:59:33:fc:59:b0:56:d2:fc:65:a4: 8d:f3:9f:32:43:9a:0b:73:b2:4c:89:f8:4f:99:f2: 9e:76:5a:cd:45:27:3c:d6:c8:76:05:76:89:0f:19: 7c:9c:1f:fc:23:a4:f0:83:01:be:06:a5:fe:2f:0b: f8:e8:27:c4:c4:f7:6b:69:7a:0f:48:fb:43:4a:0a: a0:5f:1e:bb:da:dc:aa:c0:55:88:d4:18:46:73:13: 25:5c:db:37:c8:6e:f5:a9:65:1d:8e:da:12:89:53: 60:44:d6:b2:a7:a8:f3:5a:f5:85:6f:a8:ae:b7:db: 00:51:63:40:c5:67:f8:2d:58:89:6d:fa:ad:95:d3: 8d:de:f8:ac:26:8b:af:54:02:98:63:82:ea:d4:8d: 10:9f:7b:b9:54:2e:80:fe:65:83:35:1f:dc:83:ab: 19:d9:0f:62:91:ad:b5:09:ee:3a:c8:88:e7:90:ed: d4:8b:cd:1f:eb:71:f3:12:7b:b0:81:dc:2f:79:34: f9:13:d4:49:d2:eb:96:e6:6b:f9:e0:28:51:b2:42: 3b:63:a6:d2:1b:21:21:6a:81:0b:21:86:03:4a:12: d5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B4:C5:E3:CE:FE:B1:51:1F:E1:2D:F0:D9:7A:A9:EE:0D:66:5B:C7 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.217.0-202.44.218.255 202.44.229.0-202.44.233.255 Signature Algorithm: sha256WithRSAEncryption 68:3a:07:7c:17:00:8f:48:e9:a9:79:7b:4c:6d:b3:e3:40:48: be:06:8d:70:44:e1:09:8a:1d:6a:ae:7d:9c:62:35:ec:ea:4d: ba:78:38:1e:ac:fd:af:6a:6f:c5:db:c9:34:06:41:c6:32:fd: 84:d4:27:74:bf:89:69:e0:90:57:27:58:48:8a:24:01:4c:58: f2:61:bb:20:81:19:f9:a0:0c:d1:6e:06:46:f2:ea:3a:c6:c8: 45:41:bb:22:82:52:91:b0:bc:9b:33:33:ae:08:a6:db:21:68: 28:b5:8e:56:cf:65:49:a3:fe:14:fc:e7:8d:71:2c:f2:56:bd: 21:bd:2a:03:66:1d:ec:81:df:7e:14:b8:5d:be:a6:06:af:8b: 60:8f:cd:b7:31:f1:c7:ff:ca:17:f9:b8:2d:27:fc:24:4a:86: f3:bb:65:47:6c:1c:c7:77:ee:4c:61:aa:c7:8b:e7:3a:7e:be: c5:b4:6f:53:42:18:76:aa:77:30:98:42:1f:58:ed:9c:30:d0: 72:fe:da:0f:87:40:1c:e6:c0:36:26:63:c5:6c:48:32:bc:47: 7d:60:2d:42:c7:b1:3a:9f:15:22:ce:33:c9:a1:23:50:3e:fb: a9:e5:71:33:14:de:f1:c4:fc:bf:59:35:90:32:95:22:60:cf: af:43:84:06 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjQwNDEwMTA0OTM2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2NmVjMC02ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjWsTCDu4zfIJvCVZrq/8Zj5eGxy5rLib1/aKEwaUnIaLVkz/FmwVtL8ZaSN 858yQ5oLc7JMifhPmfKedlrNRSc81sh2BXaJDxl8nB/8I6TwgwG+BqX+Lwv46CfE xPdraXoPSPtDSgqgXx672tyqwFWI1BhGcxMlXNs3yG71qWUdjtoSiVNgRNayp6jz WvWFb6iut9sAUWNAxWf4LViJbfqtldON3visJouvVAKYY4Lq1I0Qn3u5VC6A/mWD NR/cg6sZ2Q9ika21Ce46yIjnkO3Ui80f63HzEnuwgdwveTT5E9RJ0uuW5mv54ChR skI7Y6bSGyEhaoELIYYDShLVFwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFOO0xePO /rFRH+Et8Nl6qe4NZlvHMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNTU0OTMzNjYw MTNDMTFFRDk4NjRGMzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAMos2QMEAMos2jAMAwQAyizlAwQByizoMA0GCSqGSIb3 DQEBCwUAA4IBAQBoOgd8FwCPSOmpeXtMbbPjQEi+Bo1wROEJih1qrn2cYjXs6k26 eDgerP2vam/F28k0BkHGMv2E1Cd0v4lp4JBXJ1hIiiQBTFjyYbsggRn5oAzRbgZG 8uo6xshFQbsiglKRsLybMzOuCKbbIWgotY5Wz2VJo/4U/OeNcSzyVr0hvSoDZh3s gd9+FLhdvqYGr4tgj823MfHH/8oX+bgtJ/wkSobzu2VHbBzHd+5MYarHi+c6fr7F tG9TQhh2qncwmEIfWO2cMNBy/toPh0Ac5sA2JmPFbEgyvEd9YC1Cx7E6nxUizjPJ oSNQPvup5XEzFN7xxPy/WTWQMpUiYM+vQ4QG -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org