$ rpki-client -vvf rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa File: 2D58477CEC7A11EEBAE5E319C4F9AE02.roa (raw, json) Hash identifier: 2tEUJiaqDG9CdCuxsLfmBMHtTb9F8qAopG5DCApxKao= Subject key identifier: E1:57:9E:9D:27:E4:02:7E:DE:46:C5:CF:4C:8E:2C:CF:F6:3A:56:18 Certificate issuer: /CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Certificate serial: 33A9 Authority key identifier: B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa Signing time: Wed 27 Mar 2024 20:39:59 +0000 ROA not before: Wed 27 Mar 2024 20:39:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 209242 IP address blocks: 202.37.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13225 (0x33a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Validity Not Before: Mar 27 20:39:59 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6604841e-edf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:de:d5:4a:70:36:0e:f2:dd:4c:f9:8e:2e:5b: 34:a1:29:43:52:7b:bc:f5:e2:1b:a2:1d:f0:af:5b: 61:7a:78:9d:09:a3:96:50:02:35:0d:95:0e:e2:15: 41:6c:88:e0:36:cf:89:81:d5:fe:31:93:0a:92:35: 3a:b2:f6:6a:57:0a:d6:cc:34:f7:1b:2e:af:9c:5c: 96:a5:ef:c3:00:7a:6c:8e:48:4a:2a:56:39:fe:0f: 90:cd:f4:3a:e9:fb:a5:1a:03:9b:c6:24:4c:89:36: 8f:b9:80:e5:ca:ba:f0:f8:ce:74:b6:4a:00:06:06: bd:36:df:4b:a2:63:34:93:a6:3e:4c:0a:48:38:6a: fb:09:14:d1:fc:7a:04:b0:4f:69:80:7f:bc:15:6c: ca:f9:1a:8f:cc:19:28:fe:44:08:0e:d4:f0:3d:e0: 62:41:61:f3:63:fd:35:8f:57:57:bb:b0:aa:21:a0: d1:32:0d:cd:2a:e4:bb:37:6d:47:40:e1:32:35:10: 65:a2:9c:05:81:a6:55:66:b8:47:5b:be:ca:e8:84: 5f:ba:dc:67:78:b3:be:42:c2:08:4e:ee:a6:9c:0c: e0:9b:b9:f1:f9:7e:e2:ff:ce:76:1e:e0:cd:7f:df: 3e:4f:41:e6:0b:8a:f0:1c:8e:89:65:71:22:4f:bc: 0b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:57:9E:9D:27:E4:02:7E:DE:46:C5:CF:4C:8E:2C:CF:F6:3A:56:18 X509v3 Authority Key Identifier: keyid:B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.197.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:c6:c9:3c:42:e4:29:04:63:d7:ad:5c:21:0d:30:c6:5b:46: ca:41:7b:27:25:ce:ee:85:b1:0b:06:63:e4:20:46:e8:aa:22: e3:9c:60:50:4a:7d:1e:d8:5f:90:de:22:e1:a6:7f:2b:df:85: b9:9d:7b:c3:df:54:16:d6:4d:29:ba:34:54:8e:6d:ce:a9:97: 78:4f:7f:0a:71:74:5e:2f:c8:85:97:5d:a3:9b:88:8c:fe:c3: 8f:06:c9:bb:bc:79:54:89:c3:5e:45:2f:ac:f3:20:3e:73:35: cd:aa:a8:12:df:d2:6a:7a:a7:ab:e3:9f:7d:a9:eb:0c:35:7d: a3:17:9a:92:3e:f0:3c:0a:40:6c:b0:7f:c3:d2:2d:6c:9f:24: fe:d5:7b:5f:12:97:61:96:5e:3b:dc:d2:fe:53:12:54:e9:23: c5:23:d4:99:31:a8:7d:20:c8:46:ef:9a:1d:01:b2:97:df:05: ca:fd:9b:6d:c8:5a:ff:ce:a1:67:34:9b:af:2c:d5:dd:38:ef: d4:01:75:b6:b6:ad:0b:8d:d3:ae:6e:4e:50:df:8a:e5:eb:af: 28:5f:15:e6:cd:7f:2f:33:21:9e:b0:c7:7c:c7:d6:94:45:43: 14:42:06:3e:0d:21:9d:fc:2d:e5:fa:d7:45:83:7b:b9:81:2b: 78:a5:7c:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzRDIxMTAvBgNVBAUTKEIxQUNGQjg1MTQ5Qjg2QTExMDE1RDYwMTgxMEUzMTRG Njk0OEMxQ0YwHhcNMjQwMzI3MjAzOTU5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0ODQxZS1lZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d7VSnA2DvLdTPmOLls0oSlDUnu89eIboh3wr1thenidCaOWUAI1DZUO4hVB bIjgNs+JgdX+MZMKkjU6svZqVwrWzDT3Gy6vnFyWpe/DAHpsjkhKKlY5/g+QzfQ6 6fulGgObxiRMiTaPuYDlyrrw+M50tkoABga9Nt9LomM0k6Y+TApIOGr7CRTR/HoE sE9pgH+8FWzK+RqPzBko/kQIDtTwPeBiQWHzY/01j1dXu7CqIaDRMg3NKuS7N21H QOEyNRBlopwFgaZVZrhHW77K6IRfutxneLO+QsIITu6mnAzgm7nx+X7i/852HuDN f98+T0HmC4rwHI6JZXEiT7wL2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOFXnp0n 5AJ+3kbFz0yOLM/2OlYYMB8GA1UdIwQYMBaAFLGs+4UUm4ahEBXWAYEOMU9pSMHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODNEMi8xOUM1NUY2QzFE OEIxMUUyOTBDNTc4RTUwOEIwMkNEMi9zYXo3aFJTYmhxRVFGZFlCZ1E0eFQybEl3 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhejdoUlNiaHFFUUZkWUJnUTR4VDJsSXdjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgzRDIvMTlDNTVGNkMxRDhCMTFFMjkwQzU3OEU1MDhCMDJDRDIvMkQ1ODQ3N0NF QzdBMTFFRUJBRTVFMzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJcUwDQYJKoZIhvcNAQELBQADggEBAD/GyTxC5CkEY9et XCENMMZbRspBeyclzu6FsQsGY+QgRuiqIuOcYFBKfR7YX5DeIuGmfyvfhbmde8Pf VBbWTSm6NFSObc6pl3hPfwpxdF4vyIWXXaObiIz+w48Gybu8eVSJw15FL6zzID5z Nc2qqBLf0mp6p6vjn32p6ww1faMXmpI+8DwKQGywf8PSLWyfJP7Ve18Sl2GWXjvc 0v5TElTpI8Uj1JkxqH0gyEbvmh0BspffBcr9m23IWv/OoWc0m68s1d0479QBdba2 rQuN065uTlDfiuXrryhfFebNfy8zIZ6wx3zH1pRFQxRCBj4NIZ38LeX610WDe7mB K3ilfPI= -----END CERTIFICATE-----Generated at Mon May 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org