$ rpki-client -vvf rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/438C7C387D6F11ECBCDC721DC4F9AE02.roa File: 438C7C387D6F11ECBCDC721DC4F9AE02.roa (raw, json) Hash identifier: s7La7AzKs62exHQeYK290Giop8oTpAbMjlkT19F5an4= Subject key identifier: 47:79:B5:73:E7:DE:8C:0C:67:ED:B8:1F:15:81:50:97:9C:E9:0C:43 Certificate issuer: /CN=A9157E9C/serialNumber=E99FF0448B0BDA3771CDC4A96C59F7C9F9C87944 Certificate serial: 0289 Authority key identifier: E9:9F:F0:44:8B:0B:DA:37:71:CD:C4:A9:6C:59:F7:C9:F9:C8:79:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/438C7C387D6F11ECBCDC721DC4F9AE02.roa Signing time: Thu 29 Jun 2023 01:48:59 +0000 ROA not before: Thu 29 Jun 2023 01:48:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149305 IP address blocks: 203.22.214.0/24 maxlen: 24 2401:2fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.crl rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157E9C/serialNumber=E99FF0448B0BDA3771CDC4A96C59F7C9F9C87944 Validity Not Before: Jun 29 01:48:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649ce30b-043d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:81:98:a1:91:3a:32:1d:86:70:20:83:72: 3f:fa:1a:15:2f:13:91:4b:2c:ac:4a:5c:35:fe:9e: aa:7f:f2:5c:4d:a1:31:2d:1d:81:8d:9e:53:80:3e: ee:90:d2:88:3e:ec:33:ba:22:30:8a:cf:05:da:ee: c3:2a:0d:90:c1:ef:2b:0b:96:0d:94:96:9d:f0:25: 9f:74:93:5c:07:14:5d:d0:2c:5d:3f:9f:0e:65:99: c9:e8:f6:28:28:d2:d0:fc:ab:35:56:de:ba:6a:a4: 34:d6:1d:0a:3e:49:3c:39:63:e4:90:76:a6:88:4a: e2:a7:83:ee:12:8f:90:df:14:21:ae:6f:36:af:3d: a2:f5:74:56:c1:9f:1e:76:cd:95:3f:be:99:4d:c9: ca:08:f3:f2:fc:7b:49:fa:46:b7:0c:b6:b7:90:23: 13:73:d3:82:90:2f:47:35:9f:34:fc:08:2b:a0:65: f9:41:95:77:a1:52:a8:cb:02:d1:3f:f2:aa:4e:89: ee:d4:07:d7:13:c8:0b:3a:bf:22:2a:07:ea:ed:fb: c0:b3:19:47:fe:c5:6c:b3:c4:19:ef:8a:66:02:18: 5c:2b:34:08:e0:53:37:dc:b9:61:d1:bc:cf:45:17: 54:13:75:1f:8d:1d:ef:77:0c:c7:a0:b2:f4:64:3b: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:79:B5:73:E7:DE:8C:0C:67:ED:B8:1F:15:81:50:97:9C:E9:0C:43 X509v3 Authority Key Identifier: keyid:E9:9F:F0:44:8B:0B:DA:37:71:CD:C4:A9:6C:59:F7:C9:F9:C8:79:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Z_wRIsL2jdxzcSpbFn3yfnIeUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157E9C/50C993CE7D6311ECAC5C7F1EC4F9AE02/438C7C387D6F11ECBCDC721DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.22.214.0/24 IPv6: 2401:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption a4:9b:ac:6b:09:87:4c:88:d5:19:23:f9:95:65:03:64:f8:96: 10:d8:82:1d:da:f5:66:e5:fb:4c:5a:f2:9d:17:06:a1:46:28: 83:13:6f:5e:45:9d:2b:cf:48:f2:36:b2:74:d2:03:d8:7d:0c: a0:e1:b6:c0:4c:d5:36:c8:9e:1d:b6:70:5a:5a:ee:67:1c:ad: b0:79:0c:52:84:96:95:92:2c:d3:96:de:43:1e:7c:0b:21:6a: c2:da:ac:5d:35:27:fa:07:5b:5b:a9:d9:5e:15:dd:5c:76:21: 59:e1:76:ab:0d:e7:18:0a:6d:9b:28:0e:67:02:11:2d:a5:e3: 96:62:b7:4e:40:80:5e:5a:e6:2c:6a:1e:6f:a5:6f:0a:0f:70: 2f:ba:4e:e7:db:6d:c0:aa:85:f4:86:a0:93:93:b4:c1:00:f3: 1c:8a:ad:f4:4e:e0:64:05:f7:53:be:1a:35:3d:b1:5d:ee:27: c2:f4:4a:5c:53:b7:51:90:bd:1d:7c:43:52:67:4a:ca:53:ab: d2:17:f1:57:3c:30:df:21:df:ab:ad:ae:d7:77:0d:e3:91:92: 75:3b:6c:72:10:05:e4:62:95:24:80:bd:0c:f8:05:88:7d:f0: 99:a8:32:6f:8f:38:89:06:0f:d9:4f:15:3b:b2:36:88:d7:10: 62:6d:87:81 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdFOUMxMTAvBgNVBAUTKEU5OUZGMDQ0OEIwQkRBMzc3MUNEQzRBOTZDNTlGN0M5 RjlDODc5NDQwHhcNMjMwNjI5MDE0ODU5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljZTMwYi0wNDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUiBmKGROjIdhnAgg3I/+hoVLxORSyysSlw1/p6qf/JcTaExLR2BjZ5TgD7u kNKIPuwzuiIwis8F2u7DKg2Qwe8rC5YNlJad8CWfdJNcBxRd0CxdP58OZZnJ6PYo KNLQ/Ks1Vt66aqQ01h0KPkk8OWPkkHamiErip4PuEo+Q3xQhrm82rz2i9XRWwZ8e ds2VP76ZTcnKCPPy/HtJ+ka3DLa3kCMTc9OCkC9HNZ80/AgroGX5QZV3oVKoywLR P/KqTonu1AfXE8gLOr8iKgfq7fvAsxlH/sVss8QZ74pmAhhcKzQI4FM33Llh0bzP RRdUE3UfjR3vdwzHoLL0ZDtT+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEd5tXPn 3owMZ+24HxWBUJec6QxDMB8GA1UdIwQYMBaAFOmf8ESLC9o3cc3EqWxZ98n5yHlE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0U5Qy81MEM5OTNDRTdE NjMxMUVDQUM1QzdGMUVDNEY5QUUwMi82Wl93UklzTDJqZHh6Y1NwYkZuM3lmbkll VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZaX3dSSXNMMmpkeHpjU3BiRm4zeWZuSWVVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdFOUMvNTBDOTkzQ0U3RDYzMTFFQ0FDNUM3RjFFQzRGOUFFMDIvNDM4QzdDMzg3 RDZGMTFFQ0JDREM3MjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADLFtYwDQQCAAIwBwMFACQBL8AwDQYJKoZIhvcNAQELBQAD ggEBAKSbrGsJh0yI1Rkj+ZVlA2T4lhDYgh3a9Wbl+0xa8p0XBqFGKIMTb15FnSvP SPI2snTSA9h9DKDhtsBM1TbInh22cFpa7mccrbB5DFKElpWSLNOW3kMefAshasLa rF01J/oHW1up2V4V3Vx2IVnhdqsN5xgKbZsoDmcCES2l45Zit05AgF5a5ixqHm+l bwoPcC+6TufbbcCqhfSGoJOTtMEA8xyKrfRO4GQF91O+GjU9sV3uJ8L0SlxTt1GQ vR18Q1JnSspTq9IX8Vc8MN8h36utrtd3DeORknU7bHIQBeRilSSAvQz4BYh98Jmo Mm+POIkGD9lPFTuyNojXEGJth4E= -----END CERTIFICATE-----Generated at Fri May 17 03:50:06 2024 by rpki-client on console-fra.rpki-client.org