$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5233C98A04D211E9BA47303FC4F9AE02.roa File: 5233C98A04D211E9BA47303FC4F9AE02.roa (raw, json) Hash identifier: v2283cpDyDacyl8IC80U2pWTcRWBSe0NX6aQ4/KT5XM= Subject key identifier: E1:86:90:F8:CC:4F:47:BB:12:A9:F5:52:35:AB:64:F5:8F:3F:4E:0E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D30 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5233C98A04D211E9BA47303FC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:32 +0000 ROA not before: Tue 02 Jan 2024 16:54:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4808 IP address blocks: 218.30.223.0/24 maxlen: 24 218.30.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7472 (0x1d30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:32 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fc7-3558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:85:69:a4:21:a1:35:5c:25:a2:82:80:a9: 31:e5:16:61:b8:09:e0:27:01:09:f0:e7:b4:c7:c8: fe:96:3d:3a:bd:02:ff:6f:61:78:5d:c4:b5:94:64: 21:5f:da:6b:32:a7:d7:9a:3d:c8:f0:20:6c:c5:11: 81:e5:41:1e:6e:09:1c:b6:b3:77:f9:28:9a:54:9e: b9:c1:4a:ce:9e:6a:37:ae:3b:e5:89:2c:fc:b1:72: c3:fd:22:ae:88:48:58:65:ef:30:41:45:2b:07:9a: 97:89:2d:6e:f4:a4:a8:cb:ac:cd:bf:f0:59:1b:3c: 24:8b:96:34:fc:89:7f:65:88:81:86:86:1e:b0:1e: a6:92:c8:15:aa:6f:53:ec:89:18:6c:f4:b2:70:03: ad:a8:9e:5e:d5:52:a1:68:d8:eb:f8:e8:46:3d:ab: bf:8a:f5:60:d4:0f:9e:3d:86:75:06:02:60:4e:28: 85:7a:eb:5a:b6:2b:68:2d:3a:a1:2f:ed:5e:0c:ff: cf:b5:7b:28:be:91:e9:a8:3b:28:5c:ba:27:b7:7b: 20:62:77:05:b1:ef:c9:32:34:4a:07:a4:15:62:b6: f1:de:a1:94:f9:68:37:49:9b:a2:76:5d:de:6b:1d: 43:9c:ca:6d:d5:df:7e:33:89:37:da:34:8e:bf:cd: 2c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:86:90:F8:CC:4F:47:BB:12:A9:F5:52:35:AB:64:F5:8F:3F:4E:0E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/5233C98A04D211E9BA47303FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.223.0/24 218.30.254.0/24 Signature Algorithm: sha256WithRSAEncryption 00:b8:21:37:ce:7e:11:83:6c:03:53:f1:6f:e0:2a:f0:73:58: 80:38:97:a8:16:f5:3a:5e:cd:d4:f7:bd:48:83:03:71:4e:5b: 51:3c:9d:4c:70:2f:cf:3f:c0:f5:31:d7:2b:52:87:78:f7:f7: 81:c9:51:16:b8:39:eb:b6:66:d5:9b:88:b2:f6:2b:ce:4e:dd: 27:66:33:12:aa:c4:a2:95:f9:45:9f:9d:92:17:e0:70:d1:f0: 5d:79:c5:e2:8f:f3:20:68:22:b1:21:24:6b:0a:56:26:99:e8: 70:92:ad:a4:ce:a2:06:81:f9:c1:bc:c9:60:b8:dc:54:2f:5f: bc:e6:a6:fe:48:ec:22:da:e5:9e:76:82:16:87:c4:9d:82:fe: 29:79:68:69:db:6f:99:ef:5b:ac:12:cf:61:80:4d:31:f0:43: ee:e9:07:62:a1:4a:9a:73:20:c6:52:84:83:ce:b4:b6:50:47: 69:8b:5f:4a:35:37:c2:b9:71:39:5d:3d:ff:aa:3e:6d:55:54: ce:07:78:c3:e2:f8:95:84:8c:79:3f:f6:b9:fe:34:c3:2c:35: 5b:2c:12:c5:9e:10:1e:ff:52:f7:21:07:8f:ca:87:41:7f:9e: e3:18:cb:26:4d:3f:ab:8b:e3:c8:55:a3:d0:de:67:53:c4:15: 3a:16:51:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjNy0zNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjmFaaQhoTVcJaKCgKkx5RZhuAngJwEJ8Oe0x8j+lj06vQL/b2F4XcS1lGQh X9prMqfXmj3I8CBsxRGB5UEebgkctrN3+SiaVJ65wUrOnmo3rjvliSz8sXLD/SKu iEhYZe8wQUUrB5qXiS1u9KSoy6zNv/BZGzwki5Y0/Il/ZYiBhoYesB6mksgVqm9T 7IkYbPSycAOtqJ5e1VKhaNjr+OhGPau/ivVg1A+ePYZ1BgJgTiiFeutatitoLTqh L+1eDP/PtXsovpHpqDsoXLont3sgYncFse/JMjRKB6QVYrbx3qGU+Wg3SZuidl3e ax1DnMpt1d9+M4k32jSOv80suQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOGGkPjM T0e7Eqn1UjWrZPWPP04OMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNTIzM0M5OEEw NEQyMTFFOUJBNDczMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADaHt8DBADaHv4wDQYJKoZIhvcNAQELBQADggEBAAC4ITfO fhGDbANT8W/gKvBzWIA4l6gW9TpezdT3vUiDA3FOW1E8nUxwL88/wPUx1ytSh3j3 94HJURa4Oeu2ZtWbiLL2K85O3SdmMxKqxKKV+UWfnZIX4HDR8F15xeKP8yBoIrEh JGsKViaZ6HCSraTOogaB+cG8yWC43FQvX7zmpv5I7CLa5Z52ghaHxJ2C/il5aGnb b5nvW6wSz2GATTHwQ+7pB2KhSppzIMZShIPOtLZQR2mLX0o1N8K5cTldPf+qPm1V VM4HeMPi+JWEjHk/9rn+NMMsNVssEsWeEB7/UvchB4/Kh0F/nuMYyyZNP6uL48hV o9DeZ1PEFToWUWI= -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org