$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/675BCACC2A4311EBBD69BE46C4F9AE02.roa File: 675BCACC2A4311EBBD69BE46C4F9AE02.roa (raw, json) Hash identifier: 6ta730U2mYKFekBXxDAwHEzk9V3LznQk3WB3u6hOTa4= Subject key identifier: 07:57:A6:41:34:55:14:ED:FE:F8:64:34:95:F8:3B:0A:6F:73:C1:6E Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0667 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/675BCACC2A4311EBBD69BE46C4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:55 +0000 ROA not before: Thu 20 Jul 2023 22:39:55 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4827 IP address blocks: 203.150.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:55 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7bb-f94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d7:01:00:80:c4:fe:03:98:eb:9c:66:11:60: 33:a4:3a:b5:25:db:2c:63:ea:35:cd:c8:ee:5f:7e: 50:a3:0f:29:37:48:13:9f:a6:f7:09:1c:90:54:5b: f3:c7:55:9e:68:cd:95:65:0a:c7:9f:1d:36:85:1c: b2:a1:bb:af:21:b2:77:8b:85:d2:b5:01:21:30:06: fc:62:f8:1b:67:61:3c:00:44:ab:96:2c:d3:ea:06: f2:f4:db:35:9b:ed:6a:1e:88:26:f8:db:89:da:de: d3:b4:ed:f7:c2:16:57:e4:c3:19:88:fc:cd:9e:45: 98:f1:fe:bf:00:13:a8:e6:70:2a:ab:bc:47:29:6d: c1:7b:4b:8e:ec:3c:d5:4a:af:19:db:4a:28:dc:96: c7:13:9b:05:a1:d7:7c:fc:cc:96:12:05:f3:22:fd: e7:6d:54:5d:ff:10:fe:c4:e5:86:1f:e0:88:fd:83: 5f:82:8b:7e:2c:15:7e:4a:55:f6:cb:94:fa:a6:8e: b6:d8:5a:51:94:b5:d6:91:ba:eb:fc:43:0e:f3:0e: cc:a5:b5:3a:ff:c8:a7:e1:3a:08:56:eb:a6:51:fd: b0:e4:c3:63:10:35:27:73:b9:a0:14:99:ef:f6:c9: ef:b9:9d:82:90:83:f3:b1:a8:b1:71:c0:4c:98:cc: 6f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:57:A6:41:34:55:14:ED:FE:F8:64:34:95:F8:3B:0A:6F:73:C1:6E X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/675BCACC2A4311EBBD69BE46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.25.0/24 Signature Algorithm: sha256WithRSAEncryption c5:70:50:b5:81:07:b8:a9:81:fc:80:94:fa:32:69:dd:66:c7: 3d:d7:7d:e2:16:9e:67:f5:09:c0:57:2a:d8:9c:08:26:d4:0a: f5:8c:24:73:31:42:0d:91:be:86:c9:81:94:42:4b:d3:45:ee: 9b:00:68:b6:19:dc:fa:bd:e5:9b:03:df:1d:29:45:a6:9f:6e: 4d:a7:cd:0a:c2:06:a8:f5:b4:72:4f:27:d6:cd:38:2b:13:0e: 28:74:08:96:e1:49:84:a2:35:06:3f:e4:ce:1b:d5:f9:d3:07: 41:2f:7e:0c:ed:12:ab:b2:d5:d3:19:6e:7d:cc:ff:b2:e6:71: a4:30:ee:3c:31:b8:e5:f2:d5:c8:13:13:cb:87:29:ed:6c:22: fe:2d:2d:30:34:84:ff:e7:70:45:91:b4:d9:9e:df:b0:fe:f0: a7:69:de:c2:78:28:cb:cb:67:19:55:4c:61:b6:75:a8:7b:cf: 05:a4:fb:eb:e3:cd:f6:e9:01:53:51:fe:98:31:60:e0:21:8f: cc:60:7a:33:be:a4:fb:48:5e:11:a1:27:86:b2:55:e3:25:b9: 6c:97:c7:08:b1:2c:f3:59:6e:0b:81:24:82:53:dd:06:70:f9: cc:13:15:2e:16:11:52:8c:65:6b:b2:c7:f4:c3:ad:86:39:6c: c1:a7:60:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTU1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdiYi1mOTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9cBAIDE/gOY65xmEWAzpDq1JdssY+o1zcjuX35Qow8pN0gTn6b3CRyQVFvz x1WeaM2VZQrHnx02hRyyobuvIbJ3i4XStQEhMAb8YvgbZ2E8AESrlizT6gby9Ns1 m+1qHogm+NuJ2t7TtO33whZX5MMZiPzNnkWY8f6/ABOo5nAqq7xHKW3Be0uO7DzV Sq8Z20oo3JbHE5sFodd8/MyWEgXzIv3nbVRd/xD+xOWGH+CI/YNfgot+LBV+SlX2 y5T6po622FpRlLXWkbrr/EMO8w7MpbU6/8in4ToIVuumUf2w5MNjEDUnc7mgFJnv 9snvuZ2CkIPzsaixccBMmMxvwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAdXpkE0 VRTt/vhkNJX4Owpvc8FuMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNjc1QkNBQ0My QTQzMTFFQkJENjlCRTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlhkwDQYJKoZIhvcNAQELBQADggEBAMVwULWBB7ipgfyA lPoyad1mxz3XfeIWnmf1CcBXKticCCbUCvWMJHMxQg2RvobJgZRCS9NF7psAaLYZ 3Pq95ZsD3x0pRaafbk2nzQrCBqj1tHJPJ9bNOCsTDih0CJbhSYSiNQY/5M4b1fnT B0EvfgztEquy1dMZbn3M/7LmcaQw7jwxuOXy1cgTE8uHKe1sIv4tLTA0hP/ncEWR tNme37D+8Kdp3sJ4KMvLZxlVTGG2dah7zwWk++vjzfbpAVNR/pgxYOAhj8xgejO+ pPtIXhGhJ4ayVeMluWyXxwixLPNZbguBJIJT3QZw+cwTFS4WEVKMZWuyx/TDrYY5 bMGnYNM= -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org