$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AB656EC82A4111EBA1B1BB3DC4F9AE02.roa File: AB656EC82A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: KPBVmLDj2miMk0iCns+BdrVEybJEudko0DHUwlDDU0U= Subject key identifier: 88:AD:22:AC:0A:D3:EE:40:52:34:15:3C:B9:B3:F1:D7:3A:4C:40:B6 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0751 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AB656EC82A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 02 Jul 2024 23:11:11 +0000 ROA not before: Tue 02 Jul 2024 23:11:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132201 IP address blocks: 203.150.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 2 23:11:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684890f-ac35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:b3:34:26:09:c9:66:7e:64:00:0a:51:ec: ec:da:5c:07:93:01:6a:6d:b8:79:0f:78:3a:2e:5f: 72:93:31:00:fe:a0:4e:bc:cd:22:5e:ad:8b:44:2d: 88:f6:29:e2:5b:b2:cc:42:2d:37:6c:d6:63:a8:e1: 66:5a:67:b7:56:b2:2f:fe:2e:be:0f:b9:1d:de:36: 5b:62:72:80:4b:6e:25:95:fe:79:42:1e:a8:15:5d: 1b:72:01:0d:b8:28:3b:31:f6:5e:05:11:ef:da:17: 34:44:8e:2d:0a:80:3e:1e:4a:f1:20:a4:c4:06:33: a9:01:47:a1:b7:01:f0:89:fb:50:22:a7:a7:38:83: 9c:52:52:fa:9d:45:6d:57:51:ad:57:ff:d4:de:af: 34:28:89:bf:fe:73:0d:cb:6e:41:ff:81:f0:7e:ef: bc:16:2e:1c:1e:4e:17:c9:41:cf:55:6d:27:3c:53: 79:b4:92:cb:4a:1d:51:41:18:1e:86:8d:e6:5f:b9: a0:16:7f:c3:b7:f4:fb:0f:61:f8:9e:b0:ad:97:83: 1b:88:0d:3f:35:1c:3f:8f:80:18:7e:44:ae:a1:0b: 4f:a7:5f:42:24:06:19:f3:83:bf:1e:8e:a2:d6:e1: d7:e1:eb:48:15:58:0f:e9:38:ff:68:c1:08:e5:79: 04:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AD:22:AC:0A:D3:EE:40:52:34:15:3C:B9:B3:F1:D7:3A:4C:40:B6 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AB656EC82A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.27.0/24 Signature Algorithm: sha256WithRSAEncryption dd:1b:c9:c7:11:8e:e4:92:b9:4b:48:c4:b8:5a:80:51:eb:b8: 35:89:d9:2c:9b:17:4f:93:d5:02:23:5c:b5:b6:dd:1c:81:77: cf:31:10:1d:ed:e6:2b:04:9c:c0:1c:fd:4b:fd:13:ec:a3:71: c6:4e:c9:fe:d3:70:b9:16:a5:b8:df:62:77:74:b2:22:3b:95: 05:e4:00:b3:d9:cd:3a:30:14:ef:e3:04:41:07:2f:f0:9e:6b: 7d:e9:57:b8:22:16:20:31:7c:fc:58:b0:0a:7f:64:1f:87:36: d2:8b:27:02:29:7f:9f:75:27:fc:2c:4b:6e:f0:a3:05:a7:df: d8:be:f9:78:0d:8f:25:9f:f0:5e:64:57:06:76:a9:e7:c2:af: a2:8d:da:dc:a2:28:2b:33:7a:34:84:4e:82:16:ec:f3:b5:b4: 60:dd:2b:cd:08:5d:f3:47:24:9f:92:f5:f8:2d:cf:1b:57:70: 6e:87:8d:65:ba:85:63:4a:7c:3b:44:67:0c:ae:ef:fa:18:43: 90:71:be:29:7a:47:7c:fb:e3:c5:1f:bd:0c:d7:ef:a1:e4:3b: 87:13:95:c7:4e:f1:da:a7:4e:1e:7c:fc:1c:98:18:00:e8:6f: 45:e7:5e:d5:56:89:cb:60:45:ec:c1:dd:7e:f8:72:b2:a0:6c: 13:d6:66:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjQwNzAyMjMxMTExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ODkwZi1hYzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/+zNCYJyWZ+ZAAKUezs2lwHkwFqbbh5D3g6Ll9ykzEA/qBOvM0iXq2LRC2I 9iniW7LMQi03bNZjqOFmWme3VrIv/i6+D7kd3jZbYnKAS24llf55Qh6oFV0bcgEN uCg7MfZeBRHv2hc0RI4tCoA+HkrxIKTEBjOpAUehtwHwiftQIqenOIOcUlL6nUVt V1GtV//U3q80KIm//nMNy25B/4Hwfu+8Fi4cHk4XyUHPVW0nPFN5tJLLSh1RQRge ho3mX7mgFn/Dt/T7D2H4nrCtl4MbiA0/NRw/j4AYfkSuoQtPp19CJAYZ84O/Ho6i 1uHX4etIFVgP6Tj/aMEI5XkEUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIitIqwK 0+5AUjQVPLmz8dc6TEC2MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUI2NTZFQzgy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlhswDQYJKoZIhvcNAQELBQADggEBAN0byccRjuSSuUtI xLhagFHruDWJ2SybF0+T1QIjXLW23RyBd88xEB3t5isEnMAc/Uv9E+yjccZOyf7T cLkWpbjfYnd0siI7lQXkALPZzTowFO/jBEEHL/Cea33pV7giFiAxfPxYsAp/ZB+H NtKLJwIpf591J/wsS27wowWn39i++XgNjyWf8F5kVwZ2qefCr6KN2tyiKCszejSE ToIW7PO1tGDdK80IXfNHJJ+S9fgtzxtXcG6HjWW6hWNKfDtEZwyu7/oYQ5Bxvil6 R3z748UfvQzX76HkO4cTlcdO8dqnTh58/ByYGADob0XnXtVWictgRezB3X74crKg bBPWZnQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org