$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa File: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (raw, json) Hash identifier: dacTnDo6kXwS7X9nTb4Pneo4gL1gz4Jx9A34+LKy+gM= Subject key identifier: DA:33:9D:A0:B6:8E:8F:B8:FF:58:FC:82:11:EE:42:FF:7A:49:D6:73 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0803 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa Signing time: Tue 12 Sep 2023 21:18:55 +0000 ROA not before: Tue 12 Sep 2023 21:18:55 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 3300 IP address blocks: 61.14.0.0/18 maxlen: 24 203.187.128.0/19 maxlen: 24 2402:fb00::/32 maxlen: 32 2402:fb00::/34 maxlen: 40 2402:fb00:4000::/34 maxlen: 40 2402:fb00:8000::/34 maxlen: 40 2402:fb00:c000::/34 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 21:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Sep 12 21:18:55 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500d5bf-7ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:56:97:a1:e6:83:94:3d:6a:17:a8:1e:e2:63: a8:e9:54:a0:05:af:17:39:06:c4:08:6f:6f:cc:01: 94:a8:5a:4c:37:d5:75:01:77:e3:07:e9:e2:49:e6: 34:a6:cd:a0:a1:47:2f:14:31:31:09:95:0b:17:75: ad:d0:45:58:63:5a:8a:74:ff:de:95:09:95:3a:6f: 87:8b:c3:9e:15:b5:b4:8e:35:fa:e5:f0:ee:aa:4e: 79:8e:b9:95:c9:de:ce:9f:86:8a:a0:91:9c:ce:8e: da:c9:f7:31:fe:11:0a:e5:d7:c9:ea:0c:da:b6:70: 76:32:da:b3:39:1a:a8:e4:19:1b:1e:c8:30:c7:ab: 3f:ff:26:0e:af:4d:09:3f:b0:4b:76:bd:0e:9e:9b: 0a:cd:25:44:44:83:4d:59:4e:21:96:92:65:a0:ea: f7:6a:f5:16:d9:6f:23:18:92:00:3e:85:d4:49:21: 84:fb:0c:e8:cc:7a:69:07:40:ca:76:7c:77:07:f2: dd:96:5d:b8:08:ea:ed:6d:5b:3a:c8:79:79:14:48: 8c:da:de:05:92:bb:be:f0:48:00:53:eb:ed:8e:ee: 2b:5b:ff:66:8e:a6:7a:4c:b2:2b:bc:78:ef:4a:87: c9:69:08:b0:70:35:71:10:c4:d4:ea:c2:e3:4e:5f: f9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:33:9D:A0:B6:8E:8F:B8:FF:58:FC:82:11:EE:42:FF:7A:49:D6:73 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.0.0/18 203.187.128.0/19 IPv6: 2402:fb00::/32 Signature Algorithm: sha256WithRSAEncryption bb:1c:b9:bc:30:44:36:4c:1a:b6:0c:95:3c:46:42:81:be:19: f3:d9:9a:6e:a0:9b:f3:0e:9f:16:c9:53:28:a3:d2:06:fc:fb: 06:bd:76:c7:f3:fc:e9:48:80:e0:72:00:6a:8f:c7:99:e2:5a: f2:30:ca:44:88:b7:8a:52:80:43:07:3a:82:40:a3:d1:72:a3: 1c:97:72:79:28:ac:f1:1f:1a:9f:6c:13:c0:95:1c:f8:0f:e4: 41:11:39:5d:5e:dd:0f:93:55:63:ac:7f:31:bb:ff:38:e6:16: f7:d0:d4:e1:98:dd:22:c0:18:66:eb:6e:84:cd:e2:32:d5:28: e9:ab:ac:4f:6e:b5:97:7d:e6:97:93:2d:5d:8a:5e:97:31:c5: 78:f5:19:36:f8:1b:71:fb:05:75:31:53:8d:d6:3f:4f:f7:95: 35:c4:92:71:b2:1a:2d:3e:2f:1f:94:bf:c5:d1:29:31:8c:f4: de:48:28:8e:da:55:a8:40:2e:99:a2:89:f3:d2:d9:7a:ba:a4: 78:94:ba:a4:70:40:86:90:3f:dd:66:85:22:d7:e1:7f:a3:a3: f2:16:ef:6f:b6:c5:a4:de:5a:81:86:59:cf:87:fd:46:79:57: d1:1f:53:f1:32:b2:f0:47:d2:97:98:6f:0f:6b:97:55:02:fc: 23:ab:75:f1 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjMwOTEyMjExODU1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwZDViZi03YWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51aXoeaDlD1qF6ge4mOo6VSgBa8XOQbECG9vzAGUqFpMN9V1AXfjB+niSeY0 ps2goUcvFDExCZULF3Wt0EVYY1qKdP/elQmVOm+Hi8OeFbW0jjX65fDuqk55jrmV yd7On4aKoJGczo7ayfcx/hEK5dfJ6gzatnB2MtqzORqo5BkbHsgwx6s//yYOr00J P7BLdr0OnpsKzSVERINNWU4hlpJloOr3avUW2W8jGJIAPoXUSSGE+wzozHppB0DK dnx3B/Ldll24COrtbVs6yHl5FEiM2t4Fkru+8EgAU+vtju4rW/9mjqZ6TLIrvHjv SofJaQiwcDVxEMTU6sLjTl/5AQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNoznaC2 jo+4/1j8ghHuQv96SdZzMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNDRUEvNDA2RUYxNzhBMEMzMTFFQTg3NjQyMzZGQzRGOUFFMDIvNzBGRUQxM0ND RUY2MTFFRDlEREUwQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAY9DgADBAXLu4AwDQQCAAIwBwMFACQC+wAwDQYJKoZIhvcN AQELBQADggEBALscubwwRDZMGrYMlTxGQoG+GfPZmm6gm/MOnxbJUyij0gb8+wa9 dsfz/OlIgOByAGqPx5niWvIwykSIt4pSgEMHOoJAo9FyoxyXcnkorPEfGp9sE8CV HPgP5EEROV1e3Q+TVWOsfzG7/zjmFvfQ1OGY3SLAGGbrboTN4jLVKOmrrE9utZd9 5peTLV2KXpcxxXj1GTb4G3H7BXUxU43WP0/3lTXEknGyGi0+Lx+Uv8XRKTGM9N5I KI7aVahALpmiifPS2Xq6pHiUuqRwQIaQP91mhSLX4X+jo/IW72+2xaTeWoGGWc+H /UZ5V9EfU/EysvBH0peYbw9rl1UC/COrdfE= -----END CERTIFICATE-----Generated at Mon May 20 22:57:17 2024 by rpki-client on console-ams.rpki-client.org