$ rpki-client -vvf rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa File: 0B1C25AA364011EB8D09CB13C4F9AE02.roa (raw, json) Hash identifier: IslJg9CSyS3AEKLylYiuMbNG00rB4kCpHedmNW+na0M= Subject key identifier: 31:73:C7:2B:93:50:1E:78:89:90:3C:E4:85:B4:45:B0:FD:EC:D4:37 Certificate issuer: /CN=A915D6D4/serialNumber=BDE7B18BDD7F7F684D22A2FB812EE5903489DAE2 Certificate serial: 0601 Authority key identifier: BD:E7:B1:8B:DD:7F:7F:68:4D:22:A2:FB:81:2E:E5:90:34:89:DA:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa Signing time: Fri 06 Oct 2023 14:50:37 +0000 ROA not before: Fri 06 Oct 2023 14:50:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45655 IP address blocks: 202.129.202.0/23 maxlen: 23 202.129.202.0/24 maxlen: 24 202.129.203.0/24 maxlen: 24 202.168.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.crl rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1537 (0x601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D6D4/serialNumber=BDE7B18BDD7F7F684D22A2FB812EE5903489DAE2 Validity Not Before: Oct 6 14:50:37 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65201ebd-8e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:30:fb:fd:e3:98:0f:a2:23:8f:f5:83:29:8d: 4c:65:33:b3:7b:b6:3e:df:da:07:7e:50:89:8b:83: ab:58:00:34:a7:4d:51:86:cd:ba:9f:aa:4f:3a:29: 61:b7:45:c5:36:31:fc:2a:9c:13:12:94:4a:0a:4b: 1c:98:e1:66:d3:8f:0d:7b:08:df:4a:45:5d:2d:3a: e8:2d:26:6f:12:f3:64:52:8d:a7:93:bd:65:5b:05: ad:03:4c:8f:59:72:2a:b5:cc:be:8f:e9:82:03:d2: a6:08:56:50:bc:2f:c1:8d:20:97:2b:ba:90:8b:ae: 5c:78:b9:61:cf:47:3c:2c:6e:53:3b:aa:bf:b6:34: 7c:10:17:fa:c2:3f:f7:66:42:20:f2:ec:bb:bd:81: 6f:0f:44:12:fb:1c:0e:0f:cc:e7:fc:51:13:01:e2: 71:a4:09:82:c0:d2:9a:86:be:36:80:54:ac:e2:e5: 4d:27:30:e7:bf:6d:cd:0f:ed:90:2d:79:de:69:a5: 72:11:63:f2:ec:8c:43:99:7f:bc:58:32:c2:f6:bc: 4e:7d:60:a2:e4:2b:7b:67:f5:fa:77:cc:ce:51:57: 63:63:d8:24:82:fa:4f:40:17:8e:10:67:a0:d7:81: 2c:4b:ed:65:0c:da:68:d5:b2:12:c9:46:18:00:15: fc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:73:C7:2B:93:50:1E:78:89:90:3C:E4:85:B4:45:B0:FD:EC:D4:37 X509v3 Authority Key Identifier: keyid:BD:E7:B1:8B:DD:7F:7F:68:4D:22:A2:FB:81:2E:E5:90:34:89:DA:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.202.0/23 202.168.91.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:59:4d:e2:8e:3c:4a:9e:82:f8:b1:93:29:32:45:25:e3:f0: 08:dc:09:f0:bb:9e:39:46:fe:0d:ef:80:03:18:07:e8:e2:24: 7d:92:15:6c:cc:03:07:09:41:50:cd:49:5b:b9:0d:7b:eb:ab: 1b:e0:85:dc:9c:24:29:d6:00:68:f0:17:46:7e:62:ee:1c:f8: 92:f6:3f:96:e9:0f:d2:7f:30:c1:fa:b9:53:f5:27:51:64:ef: b4:be:01:89:05:40:d4:00:92:15:e5:4e:02:36:38:8d:e9:d6: b3:fe:98:7d:d6:78:8d:1e:87:af:d9:02:82:d3:7e:20:22:f5: 8f:61:da:79:6f:66:c1:5b:06:6a:6d:b2:df:b2:5c:2f:3d:3c: 51:85:92:af:12:bb:8f:da:c8:bb:b3:c1:bd:2e:6d:75:f3:db: d5:2c:94:27:5e:bc:7f:50:f6:00:0b:08:59:d5:02:cc:05:f6: a8:59:18:16:a6:44:fb:f0:83:eb:dd:c1:9b:44:f8:0a:1a:a6: d9:58:0d:62:6d:9e:0c:f7:6d:90:fa:a4:5a:e3:f9:0e:f1:5b: ca:d0:e7:0a:61:62:a8:80:fc:2a:ff:3a:90:62:8e:fe:b5:2d: bd:e6:85:1f:a1:d7:0b:50:9f:30:fb:30:36:02:2c:aa:ce:aa: 21:29:a5:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2RDQxMTAvBgNVBAUTKEJERTdCMThCREQ3RjdGNjg0RDIyQTJGQjgxMkVFNTkw MzQ4OURBRTIwHhcNMjMxMDA2MTQ1MDM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwMWViZC04ZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zD7/eOYD6Ijj/WDKY1MZTOze7Y+39oHflCJi4OrWAA0p01Rhs26n6pPOilh t0XFNjH8KpwTEpRKCkscmOFm048NewjfSkVdLTroLSZvEvNkUo2nk71lWwWtA0yP WXIqtcy+j+mCA9KmCFZQvC/BjSCXK7qQi65ceLlhz0c8LG5TO6q/tjR8EBf6wj/3 ZkIg8uy7vYFvD0QS+xwOD8zn/FETAeJxpAmCwNKahr42gFSs4uVNJzDnv23ND+2Q LXneaaVyEWPy7IxDmX+8WDLC9rxOfWCi5Ct7Z/X6d8zOUVdjY9gkgvpPQBeOEGeg 14EsS+1lDNpo1bISyUYYABX8tQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDFzxyuT UB54iZA85IW0RbD97NQ3MB8GA1UdIwQYMBaAFL3nsYvdf39oTSKi+4Eu5ZA0idri MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDZENC9DMzAxNzE0MjFE OEIxMUUyQUYwQ0E2RTYwOEIwMkNEMi92ZWV4aTkxX2YyaE5JcUw3Z1M3bGtEU0oy dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZlZXhpOTFfZjJoTklxTDdnUzdsa0RTSjJ1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ2RDQvQzMwMTcxNDIxRDhCMTFFMkFGMENBNkU2MDhCMDJDRDIvMEIxQzI1QUEz NjQwMTFFQjhEMDlDQjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKgcoDBADKqFswDQYJKoZIhvcNAQELBQADggEBAF1ZTeKO PEqegvixkykyRSXj8AjcCfC7njlG/g3vgAMYB+jiJH2SFWzMAwcJQVDNSVu5DXvr qxvghdycJCnWAGjwF0Z+Yu4c+JL2P5bpD9J/MMH6uVP1J1Fk77S+AYkFQNQAkhXl TgI2OI3p1rP+mH3WeI0eh6/ZAoLTfiAi9Y9h2nlvZsFbBmptst+yXC89PFGFkq8S u4/ayLuzwb0ubXXz29UslCdevH9Q9gALCFnVAswF9qhZGBamRPvwg+vdwZtE+Aoa ptlYDWJtngz3bZD6pFrj+Q7xW8rQ5wphYqiA/Cr/OpBijv61Lb3mhR+h1wtQnzD7 MDYCLKrOqiEppQg= -----END CERTIFICATE-----Generated at Thu May 16 15:21:29 2024 by rpki-client on console-ams.rpki-client.org