$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa File: AFF73BD2BA0811EAB2479081C4F9AE02.roa (raw, json) Hash identifier: 6j0mRcRbQWC2KHo0Q75xLK5JMfu2d9Dqs1Uxd5LR1xc= Subject key identifier: 2F:B5:03:43:33:BC:5F:AD:6D:03:50:58:59:DC:A0:E4:02:9A:0E:60 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 2334 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa Signing time: Mon 14 Aug 2023 16:12:48 +0000 ROA not before: Mon 14 Aug 2023 16:12:48 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 19905 IP address blocks: 203.208.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9012 (0x2334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Aug 14 16:12:48 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64da5280-1175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5b:c0:b8:04:6a:4b:7f:ba:17:9f:b8:4b:95: 69:bc:5c:63:ee:92:12:12:0a:33:09:91:1d:aa:a4: 2b:f3:54:5b:b8:a3:20:ee:7b:ea:d7:9c:f9:cb:fa: ae:6b:6e:2b:2f:57:9c:62:7f:16:e4:47:19:10:17: ee:14:e2:3a:63:dc:12:fb:5d:d0:3d:ca:0d:1d:38: 5d:89:8b:86:87:6f:51:41:c9:df:c4:61:c3:14:44: bd:b0:57:f8:fb:bb:56:d3:6a:40:da:59:41:d4:6a: 4b:a3:94:7c:38:d8:cc:a4:38:d9:ca:c1:73:62:0d: 73:63:f4:00:4e:36:8d:b7:b5:2b:88:b9:c8:a3:8c: 60:fc:a3:90:c8:3d:11:10:9b:65:c6:fb:7f:84:08: 8a:d7:1b:6e:5b:b9:a2:3e:3e:7f:34:39:84:37:57: 48:51:50:94:12:8c:e4:df:5a:10:82:7e:d6:44:bf: 95:9d:7d:9c:6b:8e:9d:75:50:b3:c6:61:3e:41:5b: 95:84:41:b2:17:a9:f3:ed:55:10:f6:5d:61:b5:88: 15:8f:63:4e:40:a2:b2:23:55:cd:dd:1d:aa:9d:b8: 52:c6:5e:39:37:74:e8:fa:5a:b6:18:f3:80:51:31: 57:3b:e6:10:c4:03:2c:9c:81:ff:b2:e3:06:ba:a1: 3d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B5:03:43:33:BC:5F:AD:6D:03:50:58:59:DC:A0:E4:02:9A:0E:60 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.208.223.0/24 Signature Algorithm: sha256WithRSAEncryption 77:9a:1b:43:81:0c:6a:44:a7:3f:27:97:79:3a:bf:0b:4d:49: 34:6c:59:3c:e5:2f:97:0d:b4:e4:44:1a:21:bc:cf:1b:d2:40: 51:25:e3:1c:72:bb:00:99:06:1a:c1:82:e9:07:01:5a:cf:b4: 8a:1d:12:01:98:72:10:a4:a5:0d:21:5f:a8:65:89:95:79:c3: 4b:40:29:67:c7:f6:e2:2f:a7:88:a8:08:0f:c5:8a:69:5b:08: 10:e4:70:12:b9:79:2e:86:a4:36:6c:1e:70:f5:78:3b:13:63: d5:f0:95:03:73:58:56:ae:ac:5e:a3:2d:90:03:37:dc:9a:bb: 29:1b:33:07:26:39:b9:13:7e:59:87:51:63:90:0d:de:e5:88: d9:35:ae:da:e1:88:13:50:c8:f3:8e:48:27:26:f4:f4:3c:38: f1:ad:44:16:b7:3d:4f:e4:5f:1a:f7:e8:0c:58:1e:24:ba:d0: 39:7e:00:94:a7:b5:4e:ce:96:28:29:1b:77:91:4b:90:c9:c2: 49:4e:fd:81:18:89:f1:ae:01:ef:02:dd:a6:20:6c:05:a5:79: b8:38:96:ae:b4:18:81:eb:25:7a:25:14:c5:82:30:a0:f8:8e: c4:5b:02:47:15:2f:36:a0:cf:3b:58:30:ce:b8:bc:54:b4:d3: fa:3f:d7:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjMwODE0MTYxMjQ4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhNTI4MC0xMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lvAuARqS3+6F5+4S5VpvFxj7pISEgozCZEdqqQr81RbuKMg7nvq15z5y/qu a24rL1ecYn8W5EcZEBfuFOI6Y9wS+13QPcoNHThdiYuGh29RQcnfxGHDFES9sFf4 +7tW02pA2llB1GpLo5R8ONjMpDjZysFzYg1zY/QATjaNt7UriLnIo4xg/KOQyD0R EJtlxvt/hAiK1xtuW7miPj5/NDmEN1dIUVCUEozk31oQgn7WRL+VnX2ca46ddVCz xmE+QVuVhEGyF6nz7VUQ9l1htYgVj2NOQKKyI1XN3R2qnbhSxl45N3To+lq2GPOA UTFXO+YQxAMsnIH/suMGuqE99QIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+1A0Mz vF+tbQNQWFncoOQCmg5gMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvQUZGNzNCRDJC QTA4MTFFQUIyNDc5MDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0N8wDQYJKoZIhvcNAQELBQADggEBAHeaG0OBDGpEpz8n l3k6vwtNSTRsWTzlL5cNtOREGiG8zxvSQFEl4xxyuwCZBhrBgukHAVrPtIodEgGY chCkpQ0hX6hliZV5w0tAKWfH9uIvp4ioCA/FimlbCBDkcBK5eS6GpDZsHnD1eDsT Y9XwlQNzWFaurF6jLZADN9yauykbMwcmObkTflmHUWOQDd7liNk1rtrhiBNQyPOO SCcm9PQ8OPGtRBa3PU/kXxr36AxYHiS60Dl+AJSntU7OligpG3eRS5DJwklO/YEY ifGuAe8C3aYgbAWlebg4lq60GIHrJXolFMWCMKD4jsRbAkcVLzagzztYMM64vFS0 0/o/18A= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:01 2024 by rpki-client on console-fra.rpki-client.org