$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/682125602A4311EBBD69BE46C4F9AE02.roa File: 682125602A4311EBBD69BE46C4F9AE02.roa (raw, json) Hash identifier: Njaq6l4tKoxWcQFeBWzcwmGig3TQmIAcsF40Ug/eIDA= Subject key identifier: 5D:B7:0A:51:63:B5:E2:9C:6F:17:B7:39:EA:A5:07:BD:0E:F5:95:53 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0668 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/682125602A4311EBBD69BE46C4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:56 +0000 ROA not before: Thu 20 Jul 2023 22:39:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55932 IP address blocks: 203.151.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7bb-457c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f9:ba:0f:3a:cf:8f:0f:4b:ad:5c:ce:17:41: 7d:5f:98:43:f2:eb:60:e6:00:82:d6:58:14:08:52: 03:c2:a6:97:80:39:3c:25:dd:49:53:c0:af:db:c6: 9d:a6:90:18:67:00:c3:12:25:28:87:d3:0c:aa:b0: a5:57:e4:29:6e:b6:b0:be:42:fc:ab:24:2b:1d:87: 13:25:8f:27:5b:e4:c4:f8:a7:87:ac:0b:80:fe:62: 4b:3a:07:07:64:86:a4:02:55:3f:47:6a:71:e9:a8: bb:3e:49:1b:a7:e7:5e:2e:46:87:db:d1:e1:5e:28: 62:d9:fa:ef:a2:6d:aa:82:64:bd:73:6e:b5:06:7a: de:70:d0:9e:c0:a9:a1:46:db:ed:7d:42:1c:a3:56: a6:74:c1:04:ea:db:b7:69:8c:43:c1:79:d3:da:c2: 82:e8:45:bb:47:2f:b4:06:4e:7d:ae:c7:1a:a1:8f: 43:74:e8:a7:3e:51:46:f6:fb:99:46:f9:a7:6a:e4: 09:5c:00:f3:0d:2b:db:4d:d2:81:2f:33:a0:c8:7d: 69:73:4e:5e:84:7c:e2:3c:be:33:55:b5:08:c1:4b: ff:68:f4:22:8c:c4:a7:dd:16:96:96:54:25:b3:f4: ae:41:93:f1:8f:21:55:3c:1f:f5:bc:c6:99:8d:ff: d1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B7:0A:51:63:B5:E2:9C:6F:17:B7:39:EA:A5:07:BD:0E:F5:95:53 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/682125602A4311EBBD69BE46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.159.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:c8:ae:13:34:10:1c:a5:87:d9:46:0f:65:dd:53:73:4c:28: 4c:19:c6:d3:13:6a:4b:db:3b:7d:88:f3:a9:dd:cb:af:82:ee: 0d:ce:4a:61:a7:45:b3:9c:d0:91:6e:85:ce:d7:47:1b:d3:b3: 5a:54:6d:1d:51:72:e9:bc:99:2f:50:f4:b4:50:0c:0f:0b:35: 65:f3:28:22:00:54:07:e4:2f:0e:af:67:3b:70:c3:8f:5f:bc: 1e:1b:03:16:15:18:51:f1:ef:b0:bc:41:f3:dc:4f:8a:07:c6: 46:a7:3a:7f:e9:cd:a7:5d:68:50:5e:c7:64:4d:ba:45:66:a9: 92:2f:57:4e:e0:cd:d1:3f:5e:69:05:f9:28:d5:eb:63:68:bc: ab:cc:74:1d:f4:1d:d8:aa:df:18:70:a9:3f:09:53:f7:01:b0: ad:79:f7:4d:d0:80:25:83:1f:c3:84:2b:de:a5:36:75:89:96: a4:73:ea:08:4c:e3:7d:d1:96:8c:65:cb:e6:6d:91:86:b2:e3: 8e:0a:94:12:42:6b:13:ab:bb:fc:fe:f5:3c:fd:a1:75:e5:dd: 7c:1d:c4:fa:54:ce:0d:e9:7f:24:f2:3b:62:e4:58:38:4b:f0: 80:8f:35:54:03:ea:b8:8c:4d:ac:2f:8c:98:d7:fa:1b:af:80: 1d:9f:0e:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTU2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdiYi00NTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfm6DzrPjw9LrVzOF0F9X5hD8utg5gCC1lgUCFIDwqaXgDk8Jd1JU8Cv28ad ppAYZwDDEiUoh9MMqrClV+QpbrawvkL8qyQrHYcTJY8nW+TE+KeHrAuA/mJLOgcH ZIakAlU/R2px6ai7Pkkbp+deLkaH29HhXihi2frvom2qgmS9c261BnrecNCewKmh RtvtfUIco1amdMEE6tu3aYxDwXnT2sKC6EW7Ry+0Bk59rscaoY9DdOinPlFG9vuZ RvmnauQJXADzDSvbTdKBLzOgyH1pc05ehHziPL4zVbUIwUv/aPQijMSn3RaWllQl s/SuQZPxjyFVPB/1vMaZjf/RQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF23ClFj teKcbxe3OeqlB70O9ZVTMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNjgyMTI1NjAy QTQzMTFFQkJENjlCRTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLl58wDQYJKoZIhvcNAQELBQADggEBADvIrhM0EBylh9lG D2XdU3NMKEwZxtMTakvbO32I86ndy6+C7g3OSmGnRbOc0JFuhc7XRxvTs1pUbR1R cum8mS9Q9LRQDA8LNWXzKCIAVAfkLw6vZztww49fvB4bAxYVGFHx77C8QfPcT4oH xkanOn/pzaddaFBex2RNukVmqZIvV07gzdE/XmkF+SjV62NovKvMdB30Hdiq3xhw qT8JU/cBsK15903QgCWDH8OEK96lNnWJlqRz6ghM433Rloxly+ZtkYay444KlBJC axOru/z+9Tz9oXXl3XwdxPpUzg3pfyTyO2LkWDhL8ICPNVQD6riMTawvjJjX+huv gB2fDq4= -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org