$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa File: 7C3A615CFD2A11EE9030911CC4F9AE02.roa (raw, json) Hash identifier: Z3h6NuJ7F/OT5htBR5jTLFWw65abTiKY4hXaMA/q9hs= Subject key identifier: A2:D7:D1:34:D5:2E:B2:6F:A2:0E:03:71:BD:E5:29:52:7B:A0:85:FF Certificate issuer: /CN=A915FDA7/serialNumber=0BDBAC15225F1BF9B614B2A347A1B96C4A0F969C Certificate serial: 0A Authority key identifier: 0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa Signing time: Wed 01 May 2024 01:58:29 +0000 ROA not before: Wed 01 May 2024 01:58:29 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38305 IP address blocks: 202.14.106.0/24 maxlen: 24 202.27.239.0/24 maxlen: 24 202.37.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDA7/serialNumber=0BDBAC15225F1BF9B614B2A347A1B96C4A0F969C Validity Not Before: May 1 01:58:29 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6631a1c5-bac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:4a:8c:dd:6c:20:7b:e2:60:31:8e:84:a5:51: eb:4d:70:ac:e9:ea:ae:78:83:54:b1:0e:bd:c4:77: a5:97:11:26:b0:20:b7:4d:8c:9a:3d:29:9e:28:2e: 6e:7b:33:2b:53:fd:81:f7:dd:29:78:5d:96:b7:9d: 05:ba:75:1c:a0:97:69:c9:92:68:58:be:01:7c:d2: de:78:11:96:41:61:0c:16:c1:57:4a:88:a8:2b:b6: 27:22:09:53:7c:93:c3:ed:3f:89:f0:b0:5d:df:31: 4d:36:80:26:79:ec:d8:89:0f:16:3a:d8:69:2c:f1: cd:6d:b1:2e:38:e9:13:0a:6e:dc:df:83:32:d8:dc: fd:b9:f7:22:21:f6:91:5a:48:9e:f9:4d:4b:5b:42: 07:79:c3:d5:c3:c4:ec:e1:ca:af:42:f9:63:6e:fa: cd:ca:bb:02:9c:ce:ba:16:aa:e1:f6:27:97:05:e3: df:83:52:ae:b7:65:08:cd:15:aa:84:a5:32:3b:b2: ba:3f:60:c4:3b:02:e5:41:69:96:1c:e0:3c:f7:2f: 25:59:17:23:0e:1a:0b:e6:ee:72:5d:9c:3c:de:5c: 97:b0:61:61:9c:ed:51:84:c2:14:da:8f:18:17:0d: 5e:49:2b:13:f8:86:ca:52:79:77:52:cd:52:30:b7: cf:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D7:D1:34:D5:2E:B2:6F:A2:0E:03:71:BD:E5:29:52:7B:A0:85:FF X509v3 Authority Key Identifier: keyid:0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.106.0/24 202.27.239.0/24 202.37.99.0/24 Signature Algorithm: sha256WithRSAEncryption 61:af:b5:cd:9f:26:d6:b6:82:5c:49:ca:d1:ab:01:e0:c2:6b: 75:9d:e5:81:41:80:dc:09:85:6a:c4:65:7f:81:f6:b3:82:da: 25:dd:7b:a4:dc:0d:c4:04:8e:dd:40:1b:27:11:a8:8c:4b:7d: c2:a6:02:31:e4:84:fc:f6:1d:f2:f9:a1:09:31:64:62:27:6a: e5:f0:86:ad:25:f4:e4:34:c6:de:dd:8a:02:de:48:d7:bf:02: 8a:a6:92:b4:a9:0f:2d:fc:3e:73:01:b2:e0:12:8d:38:35:09: cd:59:16:a7:28:b8:45:21:b7:6a:20:60:08:6b:62:34:ab:3d: 9c:aa:29:7f:88:12:b7:fb:70:ba:d8:fb:1d:95:ec:a3:2c:74: f2:d0:6a:9e:35:fe:ad:3b:22:56:1e:1d:65:c4:19:6a:b9:a4: 7a:8c:53:d9:6b:d1:0a:e4:18:da:e7:4b:42:1b:2f:5f:a2:87: 35:ad:09:2d:9a:26:f7:2e:1e:bb:78:09:98:a3:21:9f:6f:fe: 99:c2:b7:7b:c3:6f:f0:40:49:2c:41:8e:94:46:5a:b2:80:0d: 48:46:b4:5d:17:b4:c9:d4:fa:98:d5:d8:97:40:69:1a:a1:0f: b4:de:d9:71:e7:dd:69:35:9b:3e:7f:4a:e3:af:b1:7c:c7:dd: d5:99:49:74 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkRBNzExMC8GA1UEBRMoMEJEQkFDMTUyMjVGMUJGOUI2MTRCMkEzNDdBMUI5NkM0 QTBGOTY5QzAeFw0yNDA1MDEwMTU4MjlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzFhMWM1LWJhYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5SozdbCB74mAxjoSlUetNcKzp6q54g1SxDr3Ed6WXESawILdNjJo9KZ4oLm57 MytT/YH33Sl4XZa3nQW6dRygl2nJkmhYvgF80t54EZZBYQwWwVdKiKgrticiCVN8 k8PtP4nwsF3fMU02gCZ57NiJDxY62Gks8c1tsS446RMKbtzfgzLY3P259yIh9pFa SJ75TUtbQgd5w9XDxOzhyq9C+WNu+s3KuwKczroWquH2J5cF49+DUq63ZQjNFaqE pTI7sro/YMQ7AuVBaZYc4Dz3LyVZFyMOGgvm7nJdnDzeXJewYWGc7VGEwhTajxgX DV5JKxP4hspSeXdSzVIwt88VAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUotfRNNUu sm+iDgNxveUpUnughf8wHwYDVR0jBBgwFoAUC9usFSJfG/m2FLKjR6G5bEoPlpww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREE3LzRGNDgxQUM4RkQy OTExRUVBNjI5QUU2MkM0RjlBRTAyL0M5dXNGU0pmR19tMkZMS2pSNkc1YkVvUGxw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzl1c0ZTSmZHX20yRkxLalI2RzViRW9QbHB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkRBNy80RjQ4MUFDOEZEMjkxMUVFQTYyOUFFNjJDNEY5QUUwMi83QzNBNjE1Q0ZE MkExMUVFOTAzMDkxMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAMoOagMEAMob7wMEAMolYzANBgkqhkiG9w0BAQsFAAOCAQEA Ya+1zZ8m1raCXEnK0asB4MJrdZ3lgUGA3AmFasRlf4H2s4LaJd17pNwNxASO3UAb JxGojEt9wqYCMeSE/PYd8vmhCTFkYidq5fCGrSX05DTG3t2KAt5I178CiqaStKkP Lfw+cwGy4BKNODUJzVkWpyi4RSG3aiBgCGtiNKs9nKopf4gSt/twutj7HZXsoyx0 8tBqnjX+rTsiVh4dZcQZarmkeoxT2WvRCuQY2udLQhsvX6KHNa0JLZom9y4eu3gJ mKMhn2/+mcK3e8Nv8EBJLEGOlEZasoANSEa0XRe0ydT6mNXYl0BpGqEPtN7Zcefd aTWbPn9K46+xfMfd1ZlJdA== -----END CERTIFICATE-----Generated at Thu Jun 13 10:45:07 2024 by rpki-client on console-fra.rpki-client.org