$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa File: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: tHb15GKnbhl+QUldtxKN6ztwODnt3XykQcrw0PJXhdU= Subject key identifier: 32:04:09:32:45:45:C9:53:DD:5E:20:CA:FB:1E:9E:2C:56:0F:09:DF Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0656 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:39 +0000 ROA not before: Thu 20 Jul 2023 22:39:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132063 IP address blocks: 203.154.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7ab-cf33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:88:9a:73:bf:89:77:f5:01:1d:6b:26:93:56: a7:f1:27:86:85:dd:9f:96:8d:1a:a7:11:13:32:f6: e9:b1:fc:23:d1:a0:65:99:80:41:56:9b:11:5f:97: 4c:ca:a5:0e:b2:86:df:9c:c5:f0:54:3b:0a:e5:d5: e9:bf:7c:59:93:ef:29:1d:65:91:ab:8f:5a:d8:30: f8:bc:02:33:a7:3d:09:b7:b4:47:c2:25:12:65:80: 67:57:f4:ad:05:ba:85:44:b9:2c:df:b8:40:6b:48: 4d:e2:75:fa:55:3d:7d:06:46:64:69:3b:4d:1e:77: aa:a8:50:a9:3f:82:65:21:43:d0:3e:9e:fa:d2:9e: 3d:6a:2c:dc:b1:0c:a4:f4:fc:fb:87:d7:8e:67:60: ad:e9:3b:1a:86:71:ed:8a:1b:a3:e4:65:10:20:8c: 1f:a2:83:de:57:9a:ec:47:1f:e2:71:5c:25:c0:40: 96:81:49:c5:e5:4e:d8:83:f3:d3:08:1b:ab:b3:5c: 5c:04:9f:9e:49:cb:69:66:72:97:b8:76:a7:4c:e8: e6:bd:46:2e:cf:9c:30:6f:ee:7c:09:8a:b8:26:5c: 46:20:f8:be:0e:e3:61:e4:d9:0b:f8:f3:d0:9a:c2: 3f:e2:aa:1c:f4:38:56:a4:a1:d0:c9:65:05:20:93: 6d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:04:09:32:45:45:C9:53:DD:5E:20:CA:FB:1E:9E:2C:56:0F:09:DF X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.154.137.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:0b:b9:e4:47:d9:36:31:c2:6e:8f:53:f6:b0:66:96:a9:7e: 34:b1:68:b7:f7:e3:ba:d0:2d:02:f3:a0:f3:3e:d2:be:6a:a7: 5e:f6:16:d9:f2:b6:20:65:9d:ba:10:69:e8:a2:48:70:ee:8a: 6d:20:61:9c:da:cc:b8:7f:4c:c6:b9:dc:de:f4:d7:b4:bd:30: 3a:16:0c:1d:b0:e2:79:87:36:f5:0c:24:29:d0:4f:11:23:30: 9e:a4:bb:54:45:95:2c:31:5e:2c:5b:16:d1:d5:f5:d3:a4:e4: 9b:5e:69:73:ea:4e:ac:b5:f7:8d:89:41:73:8d:6f:70:ef:0d: 59:64:7d:a5:de:a0:28:cc:43:51:86:68:d5:db:7c:6d:e8:c8: 04:cf:b6:af:ef:c9:fe:d9:17:38:7b:a6:b2:d0:58:1d:10:a4: 41:c9:a3:a6:94:01:17:2a:9d:29:b4:f0:5d:9d:ca:b1:5d:af: 83:cb:e4:c5:9b:1f:e5:08:9d:05:58:38:cb:25:13:78:b5:cf: c9:e8:17:05:d1:ea:d6:bc:d5:c2:3d:d2:24:38:2e:2c:9a:6c: 2e:15:f4:fd:cd:15:f7:04:be:fc:0f:cd:b0:b9:ee:41:09:79: d4:68:b5:7c:32:55:85:b6:0d:63:58:fe:05:78:7f:70:62:26: f4:f0:a6:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdhYi1jZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Yiac7+Jd/UBHWsmk1an8SeGhd2flo0apxETMvbpsfwj0aBlmYBBVpsRX5dM yqUOsobfnMXwVDsK5dXpv3xZk+8pHWWRq49a2DD4vAIzpz0Jt7RHwiUSZYBnV/St BbqFRLks37hAa0hN4nX6VT19BkZkaTtNHneqqFCpP4JlIUPQPp760p49aizcsQyk 9Pz7h9eOZ2Ct6TsahnHtihuj5GUQIIwfooPeV5rsRx/icVwlwECWgUnF5U7Yg/PT CBurs1xcBJ+eSctpZnKXuHanTOjmvUYuz5wwb+58CYq4JlxGIPi+DuNh5NkL+PPQ msI/4qoc9DhWpKHQyWUFIJNt7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDIECTJF RclT3V4gyvsenixWDwnfMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUFEMkRBOUEy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmokwDQYJKoZIhvcNAQELBQADggEBAE8LueRH2TYxwm6P U/awZpapfjSxaLf347rQLQLzoPM+0r5qp172FtnytiBlnboQaeiiSHDuim0gYZza zLh/TMa53N7017S9MDoWDB2w4nmHNvUMJCnQTxEjMJ6ku1RFlSwxXixbFtHV9dOk 5JteaXPqTqy1942JQXONb3DvDVlkfaXeoCjMQ1GGaNXbfG3oyATPtq/vyf7ZFzh7 prLQWB0QpEHJo6aUARcqnSm08F2dyrFdr4PL5MWbH+UInQVYOMslE3i1z8noFwXR 6ta81cI90iQ4LiyabC4V9P3NFfcEvvwPzbC57kEJedRotXwyVYW2DWNY/gV4f3Bi JvTwptE= -----END CERTIFICATE-----Generated at Sun May 26 23:57:04 2024 by rpki-client on console-fra.rpki-client.org