$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa File: 1514A670A47B11E9867CBF58C4F9AE02.roa (raw, json) Hash identifier: htayBHNq2388wzfeUk6mScgxkfdkMgscJMqhLgJbPPk= Subject key identifier: D6:6C:2E:76:3E:7A:D2:1A:61:1F:08:EF:34:3B:3A:AB:16:7F:EF:79 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 3456 Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa Signing time: Mon 14 Aug 2023 14:30:29 +0000 ROA not before: Mon 14 Aug 2023 14:30:29 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 7700 IP address blocks: 118.201.16.0/21 maxlen: 21 118.201.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 14:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13398 (0x3456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Aug 14 14:30:29 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64da3a84-0064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:75:cd:e7:3b:0e:e4:49:0e:fe:8a:a0:3a: b7:66:5f:45:01:47:81:6e:bb:55:89:50:d8:7c:87: 64:a7:be:1c:e7:c4:fb:71:09:56:92:7d:d9:27:f8: e2:ff:d4:d9:ad:3e:f2:34:33:bc:2f:49:6c:f2:ec: f0:41:52:6b:54:82:c2:f7:13:83:14:1e:ab:8f:3d: 56:77:f6:0e:e8:e7:cf:31:b6:bd:a7:1d:dc:7a:b9: 5e:08:6b:76:8d:3d:02:8e:39:b1:00:13:1b:fc:7b: 70:5c:4e:de:0b:e9:45:44:65:c2:62:90:0e:63:5e: 0a:51:bf:ef:2a:68:e4:36:ee:74:ee:1a:5b:fb:44: ae:19:62:25:8e:1e:03:45:ae:b5:df:c3:1c:cf:bb: cc:e5:0c:bf:a1:2e:13:4f:4a:ce:c0:8c:a8:84:48: 5f:0e:1d:a6:cc:61:2d:d7:06:e4:53:43:6e:c1:13: 3b:50:bc:76:48:d8:98:06:e6:7c:01:53:6d:ca:07: 1d:4e:c9:ab:45:7d:b5:fb:40:26:c7:3c:66:7f:24: 0d:b7:c2:53:a6:88:a7:5f:e5:b6:12:19:45:27:22: b5:1f:ad:2d:13:95:92:c0:81:c0:6c:26:95:b4:50: 3a:85:d9:fa:13:c1:03:13:2c:73:23:a5:86:0c:f4: eb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6C:2E:76:3E:7A:D2:1A:61:1F:08:EF:34:3B:3A:AB:16:7F:EF:79 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.201.16.0/20 Signature Algorithm: sha256WithRSAEncryption 97:f4:b3:1c:7e:77:1e:7e:6b:86:12:99:3e:67:32:a3:db:f4: d8:ad:12:f5:7f:59:d1:a2:0f:24:2b:0b:f3:50:d4:bc:46:e4: d0:27:28:ad:56:c0:6d:92:f9:ae:8a:69:b2:79:23:fa:01:41: 43:74:4b:f8:97:76:27:68:1a:ce:97:8b:55:b1:de:19:cd:4b: 78:6d:43:0c:44:27:b3:b1:e4:c4:06:e4:e7:87:ba:41:6f:c5: eb:3c:93:3d:b8:34:0b:7a:6c:bb:80:c9:7c:80:ef:b0:46:f2: 86:f3:8b:ba:54:75:a2:ee:71:55:67:a8:da:dd:2c:89:76:c8: f2:1a:66:97:6e:49:ff:ce:8c:b8:29:de:5b:0d:0a:ea:1a:b5: 47:88:28:7e:35:5f:3e:a7:ba:08:bc:4d:68:5b:8c:04:08:4c: f8:54:7e:a0:c7:20:f0:65:9c:ec:0c:90:b4:68:47:23:f4:dd: ce:4f:e6:9b:ce:ad:10:6a:e0:c0:71:6b:f0:48:d7:ac:08:83: bd:44:7e:fb:58:db:61:b2:3a:0d:75:fc:a1:2a:ee:4c:f1:51: f4:ec:41:60:ae:ce:09:09:24:fc:b6:e4:de:bc:78:ab:25:93: 93:73:f8:91:0f:d6:24:b1:d7:4d:0b:89:d6:2f:a8:28:ef:ce: 09:af:2a:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjMwODE0MTQzMDI5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhM2E4NC0wMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqV1zec7DuRJDv6KoDq3Zl9FAUeBbrtViVDYfIdkp74c58T7cQlWkn3ZJ/ji /9TZrT7yNDO8L0ls8uzwQVJrVILC9xODFB6rjz1Wd/YO6OfPMba9px3cerleCGt2 jT0CjjmxABMb/HtwXE7eC+lFRGXCYpAOY14KUb/vKmjkNu507hpb+0SuGWIljh4D Ra6138Mcz7vM5Qy/oS4TT0rOwIyohEhfDh2mzGEt1wbkU0NuwRM7ULx2SNiYBuZ8 AVNtygcdTsmrRX21+0AmxzxmfyQNt8JTpoinX+W2EhlFJyK1H60tE5WSwIHAbCaV tFA6hdn6E8EDEyxzI6WGDPTrLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNZsLnY+ etIaYR8I7zQ7OqsWf+95MB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvMTUxNEE2NzBB NDdCMTFFOTg2N0NCRjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR2yRAwDQYJKoZIhvcNAQELBQADggEBAJf0sxx+dx5+a4YS mT5nMqPb9NitEvV/WdGiDyQrC/NQ1LxG5NAnKK1WwG2S+a6KabJ5I/oBQUN0S/iX didoGs6Xi1Wx3hnNS3htQwxEJ7Ox5MQG5OeHukFvxes8kz24NAt6bLuAyXyA77BG 8obzi7pUdaLucVVnqNrdLIl2yPIaZpduSf/OjLgp3lsNCuoatUeIKH41Xz6nugi8 TWhbjAQITPhUfqDHIPBlnOwMkLRoRyP03c5P5pvOrRBq4MBxa/BI16wIg71EfvtY 22GyOg11/KEq7kzxUfTsQWCuzgkJJPy25N68eKslk5Nz+JEP1iSx100LidYvqCjv zgmvKsE= -----END CERTIFICATE-----Generated at Wed May 22 16:49:07 2024 by rpki-client on console-fra.rpki-client.org