$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0AE76722A4111EBA1B1BB3DC4F9AE02.roa File: B0AE76722A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: AlnrYwxjaR8KvVs0YBr2SYbQ2XF6tojoTZ5UEz4EQlw= Subject key identifier: 72:59:C0:80:1A:6C:8D:58:D5:3E:10:0E:3F:3A:E4:98:BC:3B:4B:BA Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0661 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0AE76722A4111EBA1B1BB3DC4F9AE02.roa Signing time: Thu 20 Jul 2023 22:39:49 +0000 ROA not before: Thu 20 Jul 2023 22:39:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38231 IP address blocks: 203.154.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 20 22:39:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9b7b5-7497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:fe:2d:e8:a0:93:a1:9b:cc:93:43:ba:e4: 04:f9:bf:f2:ae:94:dd:8c:d9:e8:11:c8:e8:6f:42: a4:78:30:06:62:3f:dc:06:4d:49:64:53:c5:cf:72: 21:f2:bf:cc:1c:9d:f6:cf:5c:69:19:59:47:ad:d1: 2d:e8:01:b8:03:b2:04:c2:78:6e:71:0c:5b:b3:62: 4c:42:cd:8d:06:49:dc:24:b5:e6:3d:e0:5f:78:79: bf:b5:0a:55:b8:5a:d6:e6:65:a9:63:e3:ec:38:fe: 71:21:8f:0c:a0:6d:9b:25:68:65:8a:6d:1e:3e:a7: cb:da:3a:e0:e4:9b:a5:ef:a2:07:ea:cc:aa:34:c2: ae:1e:b8:69:a0:85:b3:b2:a4:4c:6c:c5:fa:9c:8b: a2:b3:1e:74:80:95:53:cf:e3:39:1c:01:7c:e1:66: 78:2f:40:b8:3d:3b:c5:ed:80:b8:1c:01:aa:33:93: 9d:f2:db:ca:12:af:8f:d0:67:a0:65:0f:44:80:b5: b0:ed:1f:b6:47:b6:43:17:4c:71:8f:42:ec:d9:80: 2d:a6:a1:54:df:a7:01:ed:8d:fd:3d:65:01:0a:30: 7d:6f:eb:17:b3:16:dc:65:94:05:08:ba:2d:d7:32: a2:f1:96:a2:41:03:92:02:92:26:9a:9d:c9:5e:a9: 03:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:59:C0:80:1A:6C:8D:58:D5:3E:10:0E:3F:3A:E4:98:BC:3B:4B:BA X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0AE76722A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.154.227.0/24 Signature Algorithm: sha256WithRSAEncryption 18:30:63:3a:1c:f6:07:1a:d3:0c:bc:99:a0:13:65:05:d0:0f: eb:f0:75:63:2e:e6:cc:95:6c:43:e7:08:6f:f1:65:f1:d2:66: 4a:8b:f6:1b:7d:62:32:65:b7:21:0d:39:c3:d2:4f:48:6e:2e: cd:6a:e8:5d:1e:be:8b:9d:a8:d3:5d:c9:ad:07:76:59:4a:74: a4:98:3e:c2:f9:e0:12:0a:14:8c:b4:6b:c5:76:01:65:92:75: 0d:69:84:5c:0d:36:66:98:8f:8e:ca:12:02:b2:2d:97:c7:01: d8:84:4a:c2:ee:b2:3a:c3:b1:72:ca:db:36:f8:70:1c:cd:8f: 92:3e:d5:e7:6a:82:87:1b:93:6c:c7:a7:1c:83:da:25:fd:64: 10:4d:4c:9a:29:5b:c9:a2:3b:18:ab:ec:84:0e:8c:97:fb:73: ec:95:c8:9c:20:3e:ed:de:ef:c5:6d:bb:df:70:bf:d4:9c:76: da:e3:3f:cb:54:51:3b:91:56:ba:06:30:b9:94:b2:b3:e8:f7: 57:ab:94:2d:88:57:12:0c:08:5c:5e:e9:98:18:2b:0c:6a:ad: f4:fa:44:5d:78:24:12:2c:25:35:49:1d:9a:6e:b2:54:cf:5b: e5:a6:63:c6:35:e0:d5:b3:0c:74:b5:03:0e:3b:2f:b2:eb:53: 0a:b0:d2:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjMwNzIwMjIzOTQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YjdiNS03NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZv+Leigk6GbzJNDuuQE+b/yrpTdjNnoEcjob0KkeDAGYj/cBk1JZFPFz3Ih 8r/MHJ32z1xpGVlHrdEt6AG4A7IEwnhucQxbs2JMQs2NBkncJLXmPeBfeHm/tQpV uFrW5mWpY+PsOP5xIY8MoG2bJWhlim0ePqfL2jrg5Jul76IH6syqNMKuHrhpoIWz sqRMbMX6nIuisx50gJVTz+M5HAF84WZ4L0C4PTvF7YC4HAGqM5Od8tvKEq+P0Geg ZQ9EgLWw7R+2R7ZDF0xxj0Ls2YAtpqFU36cB7Y39PWUBCjB9b+sXsxbcZZQFCLot 1zKi8ZaiQQOSApImmp3JXqkDNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJZwIAa bI1Y1T4QDj865Ji8O0u6MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQjBBRTc2NzIy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmuMwDQYJKoZIhvcNAQELBQADggEBABgwYzoc9gca0wy8 maATZQXQD+vwdWMu5syVbEPnCG/xZfHSZkqL9ht9YjJltyENOcPST0huLs1q6F0e voudqNNdya0HdllKdKSYPsL54BIKFIy0a8V2AWWSdQ1phFwNNmaYj47KEgKyLZfH AdiESsLusjrDsXLK2zb4cBzNj5I+1edqgocbk2zHpxyD2iX9ZBBNTJopW8miOxir 7IQOjJf7c+yVyJwgPu3e78Vtu99wv9ScdtrjP8tUUTuRVroGMLmUsrPo91erlC2I VxIMCFxe6ZgYKwxqrfT6RF14JBIsJTVJHZpuslTPW+WmY8Y14NWzDHS1Aw47L7Lr Uwqw0mQ= -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org