$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa File: AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: 7G7vtD/CaNkNvkA0//nvhLjdHulWDkI0iotu4Bwmdck= Subject key identifier: DE:1A:41:D1:C1:87:A5:71:A7:D2:0A:3E:DC:10:D8:2F:BC:53:E7:16 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 065E Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:47 +0000 ROA not before: Thu 20 Jul 2023 22:39:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 23644 IP address blocks: 203.151.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7b2-1786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:60:e0:54:f2:cf:69:b7:38:77:6c:82:6c: fc:3a:b7:49:d2:1c:3d:8f:ff:76:cd:67:92:9f:02: 84:45:6f:a2:82:63:61:7f:a9:64:a9:62:74:d6:1b: 46:37:ca:25:3b:4e:26:22:10:68:37:4e:25:19:64: 74:3f:4a:54:14:e6:48:c9:71:a8:0a:3d:23:8a:14: 85:8d:a5:9d:bd:3c:05:f3:83:31:be:05:45:0c:29: 2e:9d:be:6c:22:ed:d5:b6:54:32:a2:d6:89:03:f5: de:95:a5:8d:85:2a:93:8e:6f:b0:f2:28:79:97:66: d6:8f:7e:32:a6:c2:c8:4f:27:2a:fe:c1:a0:8d:27: ba:45:ad:c4:93:08:4d:01:1a:0a:1e:49:d4:07:ed: 1f:5a:8d:18:23:0d:11:15:9c:41:49:c4:89:d5:ea: 21:b8:02:65:eb:68:52:44:a8:21:91:92:a9:13:fd: 05:08:b0:e5:ca:92:c9:d6:bb:29:64:fe:b5:c4:80: c8:3c:92:27:8c:d4:20:1f:88:4b:1a:e4:2b:57:95: 10:b2:cb:70:55:ff:62:57:c6:22:b8:00:50:db:21: 7a:69:e6:16:65:a6:d2:94:56:63:a9:f9:e8:07:ba: ec:20:76:52:3c:45:30:7c:54:fc:ca:a7:1f:e2:b1: d1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1A:41:D1:C1:87:A5:71:A7:D2:0A:3E:DC:10:D8:2F:BC:53:E7:16 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.18.0/24 Signature Algorithm: sha256WithRSAEncryption 69:e2:14:1d:9f:f3:69:bb:42:f0:3d:88:e0:0e:90:be:09:1a: 24:9f:4c:fb:c0:38:74:4a:0b:d5:35:31:34:b4:f0:ad:30:29: 82:56:50:ac:ca:05:f5:3d:45:e9:37:d0:8a:7c:d2:d9:64:07: 56:81:ef:4f:c3:26:1a:d5:51:8a:11:2e:7f:7d:e0:92:92:e2: a9:29:5d:8d:98:7b:96:a0:5e:c6:86:e1:2f:8e:57:ac:b8:4d: b8:93:52:3a:f0:65:6e:8e:1f:60:5b:08:b0:17:b8:c9:3c:1e: 34:21:35:1f:a8:5b:02:4c:d9:2c:83:97:c2:e3:e4:de:6c:42: 03:29:c5:54:ef:57:9a:cc:7b:7b:54:94:3f:ba:fa:92:47:07: 4c:5e:cd:c0:65:b7:45:04:e5:61:09:bb:c5:15:aa:8b:b3:d0: 8e:03:5f:f7:c3:4a:7c:85:49:b6:40:e0:4e:d8:a5:0c:a8:14: a5:06:10:4b:b0:14:96:27:a6:3a:0c:95:70:5c:0a:b7:27:7f: 33:ac:48:40:d1:75:77:93:e8:7d:96:b3:a9:2b:8f:b1:45:f1: c7:78:43:0a:59:f1:8b:e0:e0:fe:14:7b:7a:d8:42:29:b2:2b: 0a:87:47:f0:5f:de:8c:15:4b:19:92:c2:35:99:1c:93:8a:95: 8c:b3:9f:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdiMi0xNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKJg4FTyz2m3OHdsgmz8OrdJ0hw9j/92zWeSnwKERW+igmNhf6lkqWJ01htG N8olO04mIhBoN04lGWR0P0pUFOZIyXGoCj0jihSFjaWdvTwF84MxvgVFDCkunb5s Iu3VtlQyotaJA/XelaWNhSqTjm+w8ih5l2bWj34ypsLITycq/sGgjSe6Ra3EkwhN ARoKHknUB+0fWo0YIw0RFZxBScSJ1eohuAJl62hSRKghkZKpE/0FCLDlypLJ1rsp ZP61xIDIPJInjNQgH4hLGuQrV5UQsstwVf9iV8YiuABQ2yF6aeYWZabSlFZjqfno B7rsIHZSPEUwfFT8yqcf4rHRbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN4aQdHB h6Vxp9IKPtwQ2C+8U+cWMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUVGNTZEN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlxIwDQYJKoZIhvcNAQELBQADggEBAGniFB2f82m7QvA9 iOAOkL4JGiSfTPvAOHRKC9U1MTS08K0wKYJWUKzKBfU9Rek30Ip80tlkB1aB70/D JhrVUYoRLn994JKS4qkpXY2Ye5agXsaG4S+OV6y4TbiTUjrwZW6OH2BbCLAXuMk8 HjQhNR+oWwJM2SyDl8Lj5N5sQgMpxVTvV5rMe3tUlD+6+pJHB0xezcBlt0UE5WEJ u8UVqouz0I4DX/fDSnyFSbZA4E7YpQyoFKUGEEuwFJYnpjoMlXBcCrcnfzOsSEDR dXeT6H2Ws6krj7FF8cd4QwpZ8Yvg4P4Ue3rYQimyKwqHR/Bf3owVSxmSwjWZHJOK lYyzn/8= -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org