$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa File: 0B989CC8BC6711EAA9856B6AC4F9AE02.roa (raw, json) Hash identifier: 5zezAVPu8MXIV6thnT06nirotLzo4Zlt4bmiSDDXrOA= Subject key identifier: A5:5E:F6:E3:75:35:FB:05:24:2C:83:F4:04:11:EE:CB:3A:75:45:4E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D28 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:24 +0000 ROA not before: Tue 02 Jan 2024 16:54:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17799 IP address blocks: 218.30.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7464 (0x1d28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:24 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fc0-30a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:03:04:63:3f:75:30:e0:32:ba:26:16:9d: dc:3c:d7:68:46:04:45:52:21:99:cc:91:db:66:d9: 6d:83:97:72:f2:7c:40:ad:6a:ba:a4:c5:eb:ae:75: 2a:29:22:ed:56:6a:46:38:86:8c:d9:d2:f6:d0:6c: 8c:63:39:85:9b:79:c1:98:c0:ce:52:aa:f9:33:20: 52:db:1a:cf:b2:c3:32:76:75:be:1b:ff:5a:85:e4: 57:e3:fb:7a:4f:36:cf:6a:7d:88:40:a8:f0:3e:ea: 43:2b:2b:87:82:a8:9d:bf:58:bf:98:b5:8a:65:d6: 95:2c:bf:95:9b:6d:92:97:fc:58:bd:9f:f1:a4:13: a1:1d:51:7f:55:6e:47:42:5b:db:77:5b:ab:0c:a2: 22:80:d3:f3:f3:84:88:d5:02:97:57:5f:2e:41:00: 28:ce:03:15:bc:8a:dc:db:bb:02:1d:6a:46:85:0e: db:c9:3c:16:28:eb:d6:3b:84:6b:fb:18:d1:5a:80: a8:cf:6a:1b:42:11:80:a7:0d:40:72:87:b9:41:f4: bc:d1:80:26:08:f0:b5:b6:1f:b1:57:9c:56:04:35: 68:f7:d3:03:3a:48:cf:1a:f8:93:ba:1e:93:84:aa: 56:b8:22:09:af:b4:c8:30:59:b2:6d:e8:65:be:3f: b6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5E:F6:E3:75:35:FB:05:24:2C:83:F4:04:11:EE:CB:3A:75:45:4E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.170.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d4:75:77:76:4e:79:0b:24:74:a9:e2:60:dd:a8:48:0f:84: 71:c6:75:52:04:e1:9b:03:80:ea:82:c9:dd:e3:99:92:37:00: bc:ca:80:4f:82:7e:d8:96:15:57:47:67:42:7d:7a:4e:05:13: 91:b1:e8:f9:03:1d:ff:0d:31:bf:bf:31:be:35:18:99:b7:ba: 71:4d:cc:5f:dd:00:21:0f:f7:6d:bd:b9:fb:1c:ee:be:bc:fb: 9b:a6:e1:5c:e2:a9:7a:b2:db:72:55:d1:a8:5e:9e:98:57:cd: 07:a4:52:dd:2f:7f:8f:20:f6:d7:26:ce:c6:85:16:69:52:e3: 57:bc:20:1b:6d:32:a0:ed:f4:89:c6:53:6a:6b:23:f8:f4:93: 0f:88:fc:5e:82:ae:bb:f7:46:39:dd:64:69:8e:d5:85:94:1f: 0e:fd:b1:8d:53:18:5d:91:cc:ca:1e:07:5d:c8:a2:ff:98:ad: 79:17:f6:eb:65:23:d2:fb:c5:32:87:21:3b:70:93:33:c9:b5: e2:b3:e9:08:ee:08:8d:74:37:a9:b7:1d:4a:73:64:da:c5:11: f7:be:c3:78:e9:ad:1a:c5:cb:9f:b6:a6:c2:22:92:cf:34:7a: 57:d3:12:c7:b9:8d:e5:20:c5:c7:55:4f:16:34:92:0a:7c:db: 67:78:04:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjMC0zMGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvADBGM/dTDgMromFp3cPNdoRgRFUiGZzJHbZtltg5dy8nxArWq6pMXrrnUq KSLtVmpGOIaM2dL20GyMYzmFm3nBmMDOUqr5MyBS2xrPssMydnW+G/9aheRX4/t6 TzbPan2IQKjwPupDKyuHgqidv1i/mLWKZdaVLL+Vm22Sl/xYvZ/xpBOhHVF/VW5H Qlvbd1urDKIigNPz84SI1QKXV18uQQAozgMVvIrc27sCHWpGhQ7byTwWKOvWO4Rr +xjRWoCoz2obQhGApw1Acoe5QfS80YAmCPC1th+xV5xWBDVo99MDOkjPGviTuh6T hKpWuCIJr7TIMFmybehlvj+2AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKVe9uN1 NfsFJCyD9AQR7ss6dUVOMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMEI5ODlDQzhC QzY3MTFFQUE5ODU2QjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaHqowDQYJKoZIhvcNAQELBQADggEBAH7UdXd2TnkLJHSp 4mDdqEgPhHHGdVIE4ZsDgOqCyd3jmZI3ALzKgE+CftiWFVdHZ0J9ek4FE5Gx6PkD Hf8NMb+/Mb41GJm3unFNzF/dACEP9229ufsc7r68+5um4VziqXqy23JV0ahenphX zQekUt0vf48g9tcmzsaFFmlS41e8IBttMqDt9InGU2prI/j0kw+I/F6Crrv3Rjnd ZGmO1YWUHw79sY1TGF2RzMoeB13Iov+YrXkX9utlI9L7xTKHITtwkzPJteKz6Qju CI10N6m3HUpzZNrFEfe+w3jprRrFy5+2psIiks80elfTEse5jeUgxcdVTxY0kgp8 22d4BFk= -----END CERTIFICATE-----Generated at Thu May 16 17:51:20 2024 by rpki-client on console-ams.rpki-client.org