$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/7AC0001CB95111ECB43B4F4EC4F9AE02.roa File: 7AC0001CB95111ECB43B4F4EC4F9AE02.roa (raw, json) Hash identifier: S5AsMPv8S6L87zMqQmEk6i3S8es5+Z5iVo43pHsbwFc= Subject key identifier: 28:D4:CB:B1:3D:68:1F:B6:BB:EE:08:30:CC:E6:A8:91:C5:66:6C:F6 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 3552 Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/7AC0001CB95111ECB43B4F4EC4F9AE02.roa Signing time: Tue 30 Apr 2024 02:15:41 +0000 ROA not before: Tue 30 Apr 2024 02:15:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 19905 IP address blocks: 118.201.1.0/24 maxlen: 24 118.201.205.0/24 maxlen: 24 118.201.218.0/24 maxlen: 24 118.201.219.0/24 maxlen: 24 203.126.129.0/24 maxlen: 24 203.127.23.0/24 maxlen: 24 203.127.89.0/24 maxlen: 24 203.127.137.0/24 maxlen: 24 203.127.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Apr 30 02:15:41 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6630544d-74c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:75:77:c8:de:3e:09:dd:3e:12:6d:43:af: 28:72:2d:01:c5:48:6b:5d:12:d1:63:a8:f1:46:f9: 8d:d4:f9:a6:e9:78:58:8b:39:7b:17:08:c4:18:e7: bd:8d:19:d3:aa:59:4c:49:8e:83:a7:07:4b:79:4c: 7b:60:f4:5e:0b:7a:15:6b:c2:95:60:74:91:09:a5: 01:3a:3e:af:ca:eb:dd:eb:20:0f:db:18:b7:e2:e9: 60:1b:b7:fa:5e:da:c0:fe:cc:70:f9:10:fb:4d:59: 88:90:b6:1f:e4:4f:e4:63:7b:ea:c8:68:6e:03:04: ee:c8:42:64:69:2f:56:50:bc:e6:80:8f:f6:b2:5d: 8c:3e:ca:8c:55:87:72:51:cd:9b:f0:d9:32:8a:aa: c1:a0:ff:a2:86:36:1a:d8:d6:12:b3:1e:10:e1:24: c7:60:1e:f7:16:67:23:60:1e:6b:f3:66:c2:3e:c6: 0f:67:83:ed:e7:1c:f5:c3:0e:29:9a:a0:45:de:4b: b8:9d:ae:ab:6a:c1:44:6b:f8:9b:73:ce:06:44:23: ba:9c:90:9e:68:e0:fa:62:63:cf:0f:d8:fc:b3:7f: 18:aa:06:22:b5:e4:48:a8:b7:12:db:88:f0:8c:ee: e3:fa:12:f8:d5:e5:f4:61:1f:c4:64:2f:43:2a:d7: ec:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D4:CB:B1:3D:68:1F:B6:BB:EE:08:30:CC:E6:A8:91:C5:66:6C:F6 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/7AC0001CB95111ECB43B4F4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.201.1.0/24 118.201.205.0/24 118.201.218.0/23 203.126.129.0/24 203.127.23.0/24 203.127.89.0/24 203.127.137.0/24 203.127.140.0/24 Signature Algorithm: sha256WithRSAEncryption 19:11:f7:01:63:99:f3:39:a0:ad:0e:f8:19:8c:b1:f0:e3:a6: cd:fd:4e:5a:79:5b:9a:83:63:d6:1f:9d:ba:51:b2:69:9b:3a: e1:4e:60:3b:1e:5a:9c:9f:aa:18:6e:e5:1a:74:3e:7b:61:b1: ea:a9:fa:c5:1b:46:20:03:8e:df:08:88:7b:b5:90:5d:52:f3: e2:22:94:1e:1b:de:32:6a:e8:d4:13:57:c1:6e:4c:18:48:e9: 04:4c:38:99:19:a6:89:2c:36:55:49:f4:19:40:f3:b7:92:be: 74:c9:2c:58:23:9b:d1:49:99:12:e6:84:7f:44:cd:90:9e:08: cd:a7:7d:e5:f6:8f:4a:41:be:3b:e2:16:b7:28:c0:6a:76:4b: e7:08:df:2d:26:b0:d4:71:f9:63:bb:47:b4:20:db:2f:8f:c0: 53:f9:f4:0d:9d:b3:67:ae:24:a1:ba:ed:fb:c9:ca:8a:4a:c7: 4c:a6:66:f4:c6:9f:19:a2:ab:5f:54:3c:0f:0c:42:4f:a6:64: 41:ea:27:56:36:38:9c:2c:0c:d7:46:b7:e1:d5:31:57:a4:06: 3d:41:1b:a3:66:c3:a8:56:5e:c7:7d:b9:62:ac:ac:4e:a2:7d: 15:76:36:2c:82:05:9a:ea:ae:21:73:c9:54:c1:34:16:88:6e: f6:f0:c9:73 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjQwNDMwMDIxNTQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMwNTQ0ZC03NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ft1d8jePgndPhJtQ68oci0BxUhrXRLRY6jxRvmN1Pmm6XhYizl7FwjEGOe9 jRnTqllMSY6DpwdLeUx7YPReC3oVa8KVYHSRCaUBOj6vyuvd6yAP2xi34ulgG7f6 XtrA/sxw+RD7TVmIkLYf5E/kY3vqyGhuAwTuyEJkaS9WULzmgI/2sl2MPsqMVYdy Uc2b8NkyiqrBoP+ihjYa2NYSsx4Q4STHYB73FmcjYB5r82bCPsYPZ4Pt5xz1ww4p mqBF3ku4na6rasFEa/ibc84GRCO6nJCeaOD6YmPPD9j8s38YqgYiteRIqLcS24jw jO7j+hL41eX0YR/EZC9DKtfsVQIDAQABo4ICvzCCArswHQYDVR0OBBYEFCjUy7E9 aB+2u+4IMMzmqJHFZmz2MB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvN0FDMDAwMUNC OTUxMTFFQ0I0M0I0RjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBAB2yQEDBAB2yc0DBAF2ydoDBADLfoEDBADLfxcDBADLf1kD BADLf4kDBADLf4wwDQYJKoZIhvcNAQELBQADggEBABkR9wFjmfM5oK0O+BmMsfDj ps39Tlp5W5qDY9YfnbpRsmmbOuFOYDseWpyfqhhu5Rp0Pnthseqp+sUbRiADjt8I iHu1kF1S8+IilB4b3jJq6NQTV8FuTBhI6QRMOJkZpoksNlVJ9BlA87eSvnTJLFgj m9FJmRLmhH9EzZCeCM2nfeX2j0pBvjviFrcowGp2S+cI3y0msNRx+WO7R7Qg2y+P wFP59A2ds2euJKG67fvJyopKx0ymZvTGnxmiq19UPA8MQk+mZEHqJ1Y2OJwsDNdG t+HVMVekBj1BG6Nmw6hWXsd9uWKsrE6ifRV2NiyCBZrqriFzyVTBNBaIbvbwyXM= -----END CERTIFICATE-----Generated at Thu May 2 17:43:08 2024 by rpki-client on console-fra.rpki-client.org