$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa File: DF6FAF5EAF0111EB96FC344BC4F9AE02.roa (raw, json) Hash identifier: TaFo/D9yI96hpdPsWVoBrQVaYPp/NexAie9UH1w8UvA= Subject key identifier: C8:4C:8C:B8:94:C7:87:B9:0E:C8:1A:6A:B0:8E:CA:C6:07:EF:C0:1A Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 3450 Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa Signing time: Mon 14 Aug 2023 14:30:23 +0000 ROA not before: Mon 14 Aug 2023 14:30:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 32787 IP address blocks: 203.125.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13392 (0x3450) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Aug 14 14:30:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64da3a7e-079f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bb:04:20:09:34:f5:c3:4f:a3:dc:4c:2e:da: f1:36:49:45:0f:6b:af:af:6e:dd:8e:f6:76:6d:5f: aa:97:bc:e0:6d:a6:20:9d:f2:b7:48:d8:c4:c3:18: 3d:e1:ac:a0:70:9f:d2:95:5a:0e:47:76:42:80:d8: 7a:19:b1:0e:fd:0e:49:c2:62:e5:9d:b5:06:32:00: b8:81:87:a8:44:d1:08:84:84:af:5d:92:f1:da:a0: d8:7d:28:82:3d:3e:3f:58:a8:44:ea:34:52:5a:a9: 9f:af:5e:da:15:2c:c0:90:7d:65:f6:1e:22:aa:2b: d8:fa:fe:45:8f:69:a8:ca:17:f6:cb:f6:bf:70:9a: 71:d6:09:f9:d3:18:1f:eb:c9:4c:f3:0a:c5:b3:b8: d8:2a:22:17:4a:49:af:09:aa:ac:63:b2:4c:cc:0b: c1:0b:a3:e3:13:2c:fc:b0:3f:0a:3b:8b:a4:99:b6: f3:d9:43:b1:24:2a:67:0b:44:e4:9e:34:ad:b9:d6: a3:80:b3:12:24:4b:e6:75:3b:21:9c:df:6d:33:84: b9:7c:5f:cf:b2:37:86:9f:a3:e7:36:95:8a:c5:9a: 1c:36:0e:3b:16:90:58:4c:e9:c8:e9:0e:02:a6:f1: 65:5f:38:55:77:f5:ad:ee:63:fe:9c:f5:6c:ff:22: 2d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:4C:8C:B8:94:C7:87:B9:0E:C8:1A:6A:B0:8E:CA:C6:07:EF:C0:1A X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.125.128.0/24 Signature Algorithm: sha256WithRSAEncryption 66:62:2c:d8:09:03:20:7c:4f:42:0f:5f:78:8a:d8:ef:de:a3: ba:f3:08:f1:db:91:35:86:36:78:b1:5a:5d:c6:5e:9b:91:6e: 40:ef:80:a5:1c:9c:39:87:2d:5f:37:46:13:01:20:f2:7f:5c: 85:eb:83:95:d7:27:23:21:7e:ee:3d:9b:e2:3c:e3:94:ce:b3: 7b:06:ec:43:d6:be:00:f5:92:b9:08:cf:e3:06:88:4c:fa:4d: d6:1e:d1:24:99:dd:1c:a8:47:e2:39:f7:19:fc:92:14:2d:f0: 1f:e4:cb:5e:73:8b:17:52:99:e1:1a:6e:3f:64:f2:8b:f0:72: 7a:0b:97:6f:57:ef:ca:ef:4e:b5:a1:53:fe:22:ed:a3:8b:b5: 42:40:0e:5e:81:41:65:1c:9c:1b:74:d0:41:51:db:9c:92:99: c1:db:f3:4d:ee:7d:8a:99:f0:d8:32:a8:e8:49:8d:58:20:84: f0:6e:02:0e:11:1c:85:b6:b2:17:dd:98:cb:0e:7e:8e:5c:a5: 5f:05:df:a6:ef:3b:13:56:f8:03:09:4a:cb:9f:22:96:36:94: c5:c4:56:9a:10:46:58:39:54:44:ce:80:7d:43:46:40:bc:0e: 20:39:aa:a3:85:c1:e7:90:ee:9d:14:38:98:70:99:b8:b9:83: 5b:5f:a9:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjMwODE0MTQzMDIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhM2E3ZS0wNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrsEIAk09cNPo9xMLtrxNklFD2uvr27djvZ2bV+ql7zgbaYgnfK3SNjEwxg9 4aygcJ/SlVoOR3ZCgNh6GbEO/Q5JwmLlnbUGMgC4gYeoRNEIhISvXZLx2qDYfSiC PT4/WKhE6jRSWqmfr17aFSzAkH1l9h4iqivY+v5Fj2moyhf2y/a/cJpx1gn50xgf 68lM8wrFs7jYKiIXSkmvCaqsY7JMzAvBC6PjEyz8sD8KO4ukmbbz2UOxJCpnC0Tk njStudajgLMSJEvmdTshnN9tM4S5fF/PsjeGn6PnNpWKxZocNg47FpBYTOnI6Q4C pvFlXzhVd/Wt7mP+nPVs/yItAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMhMjLiU x4e5DsgaarCOysYH78AaMB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvREY2RkFGNUVB RjAxMTFFQjk2RkMzNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfYAwDQYJKoZIhvcNAQELBQADggEBAGZiLNgJAyB8T0IP X3iK2O/eo7rzCPHbkTWGNnixWl3GXpuRbkDvgKUcnDmHLV83RhMBIPJ/XIXrg5XX JyMhfu49m+I845TOs3sG7EPWvgD1krkIz+MGiEz6TdYe0SSZ3RyoR+I59xn8khQt 8B/ky15zixdSmeEabj9k8ovwcnoLl29X78rvTrWhU/4i7aOLtUJADl6BQWUcnBt0 0EFR25ySmcHb803ufYqZ8NgyqOhJjVgghPBuAg4RHIW2shfdmMsOfo5cpV8F36bv OxNW+AMJSsufIpY2lMXEVpoQRlg5VETOgH1DRkC8DiA5qqOFweeQ7p0UOJhwmbi5 g1tfqaU= -----END CERTIFICATE-----Generated at Thu May 16 15:21:29 2024 by rpki-client on console-ams.rpki-client.org