$ rpki-client -vvf rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa File: D7AD2B6AF90311EBBB71C076C4F9AE02.roa (raw, json) Hash identifier: Psuoe03I76J0g463fjguwhlATa60eBF9bxsvOImODU0= Subject key identifier: 98:94:40:3D:2C:00:34:E1:D5:1D:96:6E:17:2D:E5:5F:F1:79:49:79 Certificate issuer: /CN=A915EB0B/serialNumber=AE3FA65349551660DFF48C497E8378A630B98376 Certificate serial: 03F1 Authority key identifier: AE:3F:A6:53:49:55:16:60:DF:F4:8C:49:7E:83:78:A6:30:B9:83:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa Signing time: Fri 01 Sep 2023 00:51:43 +0000 ROA not before: Fri 01 Sep 2023 00:51:43 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138155 IP address blocks: 202.41.10.0/24 maxlen: 24 2403:6cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.crl rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EB0B/serialNumber=AE3FA65349551660DFF48C497E8378A630B98376 Validity Not Before: Sep 1 00:51:43 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f1359f-53e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:79:29:9b:f6:13:c5:02:c1:47:c8:ae:16:65: 54:a8:4d:3a:7c:ac:1d:d3:d0:c7:55:0c:ca:b3:11: de:fa:1f:ec:65:f1:c0:2a:57:ba:c1:47:7d:0e:e7: fc:fd:95:52:65:29:42:d7:b1:01:e0:2e:69:36:16: 2c:7e:48:ba:71:fd:94:84:f5:04:56:6c:30:74:c2: ba:5c:38:5f:94:ad:7d:db:2f:9d:44:19:55:01:7d: 7d:98:eb:bd:95:20:32:1e:89:b0:82:9f:ba:cd:f5: be:75:45:a6:a8:31:f6:01:e8:22:05:eb:1d:79:f3: 26:2c:ed:b4:95:7d:e0:42:a8:13:23:1b:dd:ab:64: 17:35:4f:49:b8:9a:9c:fe:6f:b8:92:8b:2b:01:be: 88:e4:bf:9a:27:e7:fb:01:d4:89:ec:31:57:72:68: 80:fa:f7:52:0b:7b:b7:0d:0e:59:8e:2a:73:7b:95: 91:e4:2f:6c:71:ba:59:0a:14:41:28:df:bd:42:5f: 84:69:d0:a0:49:c4:c6:96:c8:44:f4:6d:40:53:3f: 6d:00:23:7d:cb:77:04:ff:a8:e4:11:e7:99:0c:9e: 06:b3:dc:2c:65:ee:31:b0:ac:d2:3d:da:bf:48:5d: 93:c2:26:0d:2c:47:18:7c:5c:97:9c:c4:d5:c4:59: 4a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:94:40:3D:2C:00:34:E1:D5:1D:96:6E:17:2D:E5:5F:F1:79:49:79 X509v3 Authority Key Identifier: keyid:AE:3F:A6:53:49:55:16:60:DF:F4:8C:49:7E:83:78:A6:30:B9:83:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.10.0/24 IPv6: 2403:6cc0::/32 Signature Algorithm: sha256WithRSAEncryption a7:42:18:22:8b:b0:dd:88:fe:e4:9a:1f:31:7e:e8:4e:04:8d: c0:71:2d:6b:b4:2d:7c:a0:ca:64:67:83:83:40:b0:e9:67:5c: 12:49:af:03:2a:60:4f:14:66:7c:d4:e3:cf:11:e7:48:34:7b: 1f:17:92:7b:cf:64:d0:5e:10:6c:1e:57:06:cc:49:fb:67:01: 2e:14:4b:44:88:f6:20:d0:da:90:48:18:40:fa:e6:06:3c:2f: 7c:7d:4f:cb:2b:f1:4a:24:08:47:f2:6b:d8:05:6b:aa:8c:7a: 9a:57:8e:57:ae:4d:d2:fb:d1:03:de:ae:58:c3:66:3a:3c:00: 07:33:ee:16:62:ce:8b:7e:75:5c:30:f0:c5:c4:00:ff:a2:f0: 14:e5:ad:34:fd:d3:6f:93:f4:07:af:32:0f:d4:c4:bc:d3:74: 97:10:cc:58:4d:a7:de:18:92:36:fa:f4:bb:44:e9:67:a4:18: ba:44:f4:74:fa:de:65:07:ca:09:fe:7a:67:07:89:b8:60:ff: ad:fa:cd:c2:14:4a:2a:31:1f:4c:4f:01:3e:3a:36:64:1a:ba: f6:bf:a1:6e:3c:da:78:bb:fc:34:db:b2:06:b7:b8:8d:91:3c: d6:bb:76:42:bb:e6:04:96:a9:b5:4e:f6:c6:25:68:e4:c0:81: b5:53:3c:c8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCMEIxMTAvBgNVBAUTKEFFM0ZBNjUzNDk1NTE2NjBERkY0OEM0OTdFODM3OEE2 MzBCOTgzNzYwHhcNMjMwOTAxMDA1MTQzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxMzU5Zi01M2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Xkpm/YTxQLBR8iuFmVUqE06fKwd09DHVQzKsxHe+h/sZfHAKle6wUd9Duf8 /ZVSZSlC17EB4C5pNhYsfki6cf2UhPUEVmwwdMK6XDhflK192y+dRBlVAX19mOu9 lSAyHomwgp+6zfW+dUWmqDH2AegiBesdefMmLO20lX3gQqgTIxvdq2QXNU9JuJqc /m+4kosrAb6I5L+aJ+f7AdSJ7DFXcmiA+vdSC3u3DQ5Zjipze5WR5C9scbpZChRB KN+9Ql+EadCgScTGlshE9G1AUz9tACN9y3cE/6jkEeeZDJ4Gs9wsZe4xsKzSPdq/ SF2TwiYNLEcYfFyXnMTVxFlKSQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJiUQD0s ADTh1R2Wbhct5V/xeUl5MB8GA1UdIwQYMBaAFK4/plNJVRZg3/SMSX6DeKYwuYN2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUIwQi8zQTRDNDYwNkY5 MDAxMUVCQkExOUQ1MjhDNEY5QUUwMi9yai1tVTBsVkZtRGY5SXhKZm9ONHBqQzVn M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JqLW1VMGxWRm1EZjlJeEpmb040cGpDNWczWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVCMEIvM0E0QzQ2MDZGOTAwMTFFQkJBMTlENTI4QzRGOUFFMDIvRDdBRDJCNkFG OTAzMTFFQkJCNzFDMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADKKQowDQQCAAIwBwMFACQDbMAwDQYJKoZIhvcNAQELBQAD ggEBAKdCGCKLsN2I/uSaHzF+6E4EjcBxLWu0LXygymRng4NAsOlnXBJJrwMqYE8U ZnzU488R50g0ex8XknvPZNBeEGweVwbMSftnAS4US0SI9iDQ2pBIGED65gY8L3x9 T8sr8UokCEfya9gFa6qMeppXjleuTdL70QPerljDZjo8AAcz7hZizot+dVww8MXE AP+i8BTlrTT902+T9AevMg/UxLzTdJcQzFhNp94Ykjb69LtE6WekGLpE9HT63mUH ygn+emcHibhg/636zcIUSioxH0xPAT46NmQauva/oW482ni7/DTbsga3uI2RPNa7 dkK75gSWqbVO9sYlaOTAgbVTPMg= -----END CERTIFICATE-----Generated at Tue May 7 03:12:19 2024 by rpki-client on console-fra.rpki-client.org