$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/5F0436A08AAF11EE93D5E566C4F9AE02.roa File: 5F0436A08AAF11EE93D5E566C4F9AE02.roa (raw, json) Hash identifier: q2fpWBQBWYePtYihUGjOVL8mmk80EdiJq6EPZvTWn4g= Subject key identifier: 70:BA:F7:02:5D:8A:C0:82:48:C9:B4:69:1D:B1:74:7A:DE:69:9D:AB Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 06B0 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/5F0436A08AAF11EE93D5E566C4F9AE02.roa Signing time: Fri 24 Nov 2023 09:53:51 +0000 ROA not before: Fri 24 Nov 2023 09:53:51 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151959 IP address blocks: 203.151.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Nov 24 09:53:51 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=656072af-243c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8e:ea:93:e5:c6:57:1e:3b:79:4a:ea:6c:01: 48:f6:66:e6:a8:b2:7f:0e:7f:e6:46:c1:1a:b1:05: 40:d3:99:df:78:21:12:cd:c8:63:ce:0b:da:55:1b: c3:ae:2d:82:a5:50:67:c3:37:31:be:b7:54:d6:5c: 27:36:dd:08:94:2c:55:f1:fe:28:46:de:68:2e:47: 9c:d4:2b:f6:5e:3e:76:9b:43:14:f3:c5:a0:2f:b4: 67:f8:27:bf:1b:da:3c:c8:b2:dc:c8:e7:7b:11:9b: c9:45:cf:7a:86:bb:3c:de:87:5d:f8:3c:30:96:38: 39:66:a2:f2:d3:ba:d4:2b:75:0e:54:ce:25:bf:a2: 9a:96:8f:11:df:9b:cd:36:eb:f6:6f:c4:93:3a:08: a7:24:96:80:b6:42:77:bd:a3:80:9c:1f:ac:e0:85: 6a:b0:43:57:1c:de:27:cd:e3:d9:67:2a:36:b0:95: 9f:5a:8d:37:ac:88:3a:52:98:da:00:fb:47:13:e8: 93:f7:cd:07:e2:97:71:91:5c:22:bd:57:04:18:37: 40:1f:72:a8:66:96:ca:fa:7c:af:92:46:a3:35:7f: 34:2b:d1:e6:99:2c:24:b4:cf:15:a2:76:b3:95:2a: b6:05:98:7f:33:91:b1:0f:dc:fd:53:a0:0c:3d:9e: 50:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:BA:F7:02:5D:8A:C0:82:48:C9:B4:69:1D:B1:74:7A:DE:69:9D:AB X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/5F0436A08AAF11EE93D5E566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.185.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:e4:58:82:2e:c4:34:c4:6d:54:88:2c:56:97:29:1e:af:ba: c9:bb:18:af:ef:da:0c:18:04:7f:2b:06:a4:2b:28:3e:dc:5a: 4a:e1:fa:f2:e3:fa:00:4a:1d:0a:cb:f1:75:2c:8a:87:1f:db: 8f:94:b3:d2:2a:d7:81:74:1b:0c:9f:0d:e5:0e:dd:cd:88:aa: e3:e9:a6:20:cc:4d:d6:64:90:8f:a2:bc:04:b1:ef:38:54:7d: 89:6b:16:2c:c3:0e:a2:ee:f5:02:a3:e5:66:11:f0:41:be:d7: 8d:79:bb:93:89:d8:bc:90:ae:96:1d:b0:8f:5c:cf:bc:14:92: a3:6c:5b:4f:55:3c:c9:7d:83:7f:ce:5f:38:c3:d4:f2:6c:7d: c2:84:38:e5:37:aa:86:7e:0e:d0:63:fd:92:7d:ba:30:4e:5a: 76:4b:8f:51:83:b6:59:ad:33:8d:91:59:86:5e:f3:ef:4c:9c: d2:65:04:d8:7d:a6:2c:92:c3:c7:2c:84:57:eb:8a:de:b5:5f: 11:94:a6:31:e8:f2:c4:a8:2a:e1:d5:4b:a8:27:d6:cb:22:ae: 35:c8:3c:5c:e5:13:e0:52:01:b5:d0:50:e2:2d:53:30:c3:37: ad:c0:76:7d:9b:b5:05:42:24:cc:36:fe:fd:56:9c:01:c9:fd: 5a:d3:b5:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMxMTI0MDk1MzUxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwNzJhZi0yNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o7qk+XGVx47eUrqbAFI9mbmqLJ/Dn/mRsEasQVA05nfeCESzchjzgvaVRvD ri2CpVBnwzcxvrdU1lwnNt0IlCxV8f4oRt5oLkec1Cv2Xj52m0MU88WgL7Rn+Ce/ G9o8yLLcyOd7EZvJRc96hrs83odd+Dwwljg5ZqLy07rUK3UOVM4lv6Kalo8R35vN Nuv2b8STOginJJaAtkJ3vaOAnB+s4IVqsENXHN4nzePZZyo2sJWfWo03rIg6Upja APtHE+iT980H4pdxkVwivVcEGDdAH3KoZpbK+nyvkkajNX80K9HmmSwktM8Vonaz lSq2BZh/M5GxD9z9U6AMPZ5QXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHC69wJd isCCSMm0aR2xdHreaZ2rMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNUYwNDM2QTA4 QUFGMTFFRTkzRDVFNTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLl7kwDQYJKoZIhvcNAQELBQADggEBAG3kWIIuxDTEbVSI LFaXKR6vusm7GK/v2gwYBH8rBqQrKD7cWkrh+vLj+gBKHQrL8XUsiocf24+Us9Iq 14F0GwyfDeUO3c2IquPppiDMTdZkkI+ivASx7zhUfYlrFizDDqLu9QKj5WYR8EG+ 1415u5OJ2LyQrpYdsI9cz7wUkqNsW09VPMl9g3/OXzjD1PJsfcKEOOU3qoZ+DtBj /ZJ9ujBOWnZLj1GDtlmtM42RWYZe8+9MnNJlBNh9piySw8cshFfrit61XxGUpjHo 8sSoKuHVS6gn1ssirjXIPFzlE+BSAbXQUOItUzDDN63Adn2btQVCJMw2/v1WnAHJ /VrTtRg= -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org