$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa File: AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: urC4NuR/R429VkDWz8/b7qYtrq7EGSbFJAt48UXYc/A= Subject key identifier: 5B:FA:8B:FF:D7:4B:5E:0D:CC:B1:B3:7B:D0:D9:E7:CA:B7:D8:AB:6F Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 065F Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:47 +0000 ROA not before: Thu 20 Jul 2023 22:39:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24083 IP address blocks: 210.4.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7b3-7762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:b5:1b:f2:6d:10:05:de:43:b0:fa:d4:bf: 45:5f:c0:8a:34:96:fe:28:a3:64:78:42:fd:fa:50: bd:0f:20:9b:15:02:c0:2d:bb:e2:55:82:14:2e:e2: a5:f7:ab:4e:25:0e:d5:56:b6:af:a7:f3:7d:66:a3: 14:9a:03:09:3d:3e:fe:65:1f:ab:13:83:7b:0c:ab: 8d:08:43:ec:d5:2d:39:83:66:b2:f9:88:36:4b:6f: 89:61:e1:0c:d5:2d:1c:e4:ce:f8:36:54:3f:85:a4: 3c:7f:2b:5a:36:ca:0c:e2:f6:41:8b:01:e1:bd:36: 4b:90:f6:a0:d0:51:5a:57:56:1a:73:d5:e5:ad:d6: 37:4e:ba:84:0a:ed:de:dc:19:00:85:35:75:0a:ec: c8:0d:b4:2e:4d:25:db:b6:16:9e:96:52:53:81:f4: 9f:e5:18:d3:6e:0e:d4:05:99:40:21:62:40:cf:ff: 7f:79:4b:35:d9:98:35:43:40:ee:00:d6:48:ec:09: 3d:98:87:4d:26:46:91:d9:88:83:ac:c1:85:83:9d: 82:61:62:22:46:c5:06:9b:54:0d:84:e7:8f:05:f8: 58:9f:01:08:0c:a1:38:d8:23:89:c5:ee:3d:34:0f: a8:8e:ac:23:73:72:bf:80:c4:7f:b4:9d:c8:cd:79: c5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FA:8B:FF:D7:4B:5E:0D:CC:B1:B3:7B:D0:D9:E7:CA:B7:D8:AB:6F X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.4.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:0d:78:52:ab:08:0b:5b:9f:7d:cd:40:d7:ac:19:71:51:5c: 64:a7:7c:ce:c9:8e:7c:0c:32:43:88:37:c8:e3:0d:3d:73:6f: 07:73:0e:01:08:37:cc:0b:d1:ea:1f:63:46:40:7b:39:e3:bb: 02:92:c4:ba:53:4f:97:c3:8b:f0:31:6b:03:75:16:bd:fc:69: e8:a7:d2:8f:74:1f:6f:66:de:f2:83:d7:11:22:e3:e9:91:b1: 83:c5:c5:e7:0b:2e:ea:86:cb:3b:82:be:eb:47:4f:be:37:4d: ed:78:c5:ab:73:41:e8:c9:fa:2f:bf:a9:ae:4b:61:8c:aa:08: c1:76:9e:d0:08:e6:97:a5:aa:46:2f:ca:7b:83:06:f8:d5:5a: 30:d3:cb:0f:de:7d:eb:47:f4:d8:12:c7:c2:f8:45:15:2e:4a: 4d:07:6f:ba:91:ec:f4:53:4d:ab:1d:39:0b:7e:fa:be:49:22: b8:40:9a:58:7e:d3:4e:cd:79:fe:43:de:76:12:8a:60:91:5f: 3d:85:56:27:d4:12:39:b3:6c:78:53:a3:53:26:46:0a:00:7e: e0:ad:d7:27:6f:9b:8a:1b:9d:4f:e6:d1:cd:45:17:75:c8:66: 64:df:5e:95:9c:c8:17:93:8c:d7:ff:8a:42:69:24:cf:c2:2a: 6c:82:73:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdiMy03NzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8e1G/JtEAXeQ7D61L9FX8CKNJb+KKNkeEL9+lC9DyCbFQLALbviVYIULuKl 96tOJQ7VVravp/N9ZqMUmgMJPT7+ZR+rE4N7DKuNCEPs1S05g2ay+Yg2S2+JYeEM 1S0c5M74NlQ/haQ8fytaNsoM4vZBiwHhvTZLkPag0FFaV1Yac9XlrdY3TrqECu3e 3BkAhTV1CuzIDbQuTSXbthaellJTgfSf5RjTbg7UBZlAIWJAz/9/eUs12Zg1Q0Du ANZI7Ak9mIdNJkaR2YiDrMGFg52CYWIiRsUGm1QNhOePBfhYnwEIDKE42COJxe49 NA+ojqwjc3K/gMR/tJ3IzXnFuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFv6i//X S14NzLGze9DZ58q32KtvMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUY5NkQwN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSBIswDQYJKoZIhvcNAQELBQADggEBAE8NeFKrCAtbn33N QNesGXFRXGSnfM7JjnwMMkOIN8jjDT1zbwdzDgEIN8wL0eofY0ZAeznjuwKSxLpT T5fDi/AxawN1Fr38aein0o90H29m3vKD1xEi4+mRsYPFxecLLuqGyzuCvutHT743 Te14xatzQejJ+i+/qa5LYYyqCMF2ntAI5pelqkYvynuDBvjVWjDTyw/efetH9NgS x8L4RRUuSk0Hb7qR7PRTTasdOQt++r5JIrhAmlh+007Nef5D3nYSimCRXz2FVifU EjmzbHhTo1MmRgoAfuCt1ydvm4obnU/m0c1FF3XIZmTfXpWcyBeTjNf/ikJpJM/C KmyCc60= -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org