$ rpki-client -vvf rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B6928054843011EAB4270B83C4F9AE02.roa File: B6928054843011EAB4270B83C4F9AE02.roa (raw, json) Hash identifier: IvieDBIWYD7SEWEg8q7DQzhCW5pSv0jVUWMmKbpL9M0= Subject key identifier: BE:E5:91:70:9A:94:F8:A1:6E:59:6B:48:7B:0F:70:D5:14:96:CB:FF Certificate issuer: /CN=A916B33E/serialNumber=D0072EDEB67E1752AB752263A4FD9450DD3A33EC Certificate serial: 1734 Authority key identifier: D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B6928054843011EAB4270B83C4F9AE02.roa Signing time: Wed 02 Aug 2023 17:14:17 +0000 ROA not before: Wed 02 Aug 2023 17:14:17 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45152 IP address blocks: 203.98.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.crl rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5940 (0x1734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B33E/serialNumber=D0072EDEB67E1752AB752263A4FD9450DD3A33EC Validity Not Before: Aug 2 17:14:17 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ca8ee8-baf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:36:7a:c2:36:69:ca:34:30:9f:cb:00:aa:69: a7:b6:40:c4:4b:9b:cf:f6:d7:d7:1e:6d:44:d8:a6: ee:49:c5:22:4e:af:d3:72:04:36:95:fe:09:a0:79: ae:a1:91:48:ac:e9:b1:73:ad:be:4b:44:24:fe:b6: 9e:9c:4c:a3:e9:0c:69:82:2a:d1:dd:e1:98:80:ab: c3:ff:ae:90:0e:3f:b5:c0:82:1c:9e:48:51:ef:22: d9:36:22:92:e6:8c:c8:55:91:79:45:09:92:66:67: 28:70:11:85:ca:9c:7c:9c:b0:87:c1:b4:db:02:64: f6:63:e8:a7:75:ef:c7:71:5f:73:3f:c2:21:4f:6f: fb:8c:47:8f:0a:94:52:14:05:dc:8d:ed:df:2b:c5: 84:08:05:be:ee:df:fe:1f:6a:c0:3c:fe:ae:90:f4: 3d:71:fb:0a:8b:d5:eb:0f:b2:6c:fc:f5:12:1f:5d: d2:aa:ed:7d:d5:c1:d0:8b:dc:d7:f5:cf:93:23:2d: 54:a5:ba:6a:27:6d:c2:fd:41:0f:1b:39:86:52:79: d0:b6:92:97:b3:a7:a9:8a:b6:56:11:af:67:06:26: b6:74:22:8f:67:8e:82:10:57:42:3a:48:04:ea:ef: e6:78:a6:45:a8:22:dc:0f:14:1a:36:10:54:9c:e8: 34:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E5:91:70:9A:94:F8:A1:6E:59:6B:48:7B:0F:70:D5:14:96:CB:FF X509v3 Authority Key Identifier: keyid:D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B6928054843011EAB4270B83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.98.80.0/24 Signature Algorithm: sha256WithRSAEncryption 34:79:60:bf:97:a1:d9:57:33:81:a4:5d:4d:a8:6c:de:b7:7c: 41:e0:83:90:44:f8:6f:c7:5c:b4:6d:4d:ce:22:93:3b:07:32: d8:85:6b:8a:3e:5b:97:74:b8:08:3e:fb:12:ec:39:ac:fc:38: 74:fc:37:06:bc:5d:70:b0:35:c6:0e:e7:65:7e:e9:76:1c:89: 86:cd:d1:12:d1:38:6e:86:ff:29:19:f4:f5:27:19:9b:a6:31: 43:12:b1:f9:80:2d:8a:05:6b:bf:8e:a1:74:b9:11:83:05:c2: 3c:42:71:be:b4:66:47:53:d2:ba:aa:bb:a4:97:64:58:fe:38: 25:04:56:b4:d1:cf:cf:d9:4d:3d:3f:f3:79:a6:9e:6b:51:9e: 1b:4f:96:8a:1e:5f:1a:ad:e1:5e:8c:b8:dc:2a:c0:9d:86:ae: 4c:95:d9:32:e8:9e:95:90:7d:79:40:a4:f2:89:1b:8b:6b:90: 0e:2c:d7:80:22:68:d7:6e:a6:91:52:c9:b0:32:2d:3e:60:48: 9a:c2:01:f4:2e:7d:9c:4f:4e:85:80:06:fc:89:48:1a:17:54: 63:89:b6:df:14:1a:3b:68:9e:7f:73:b8:b7:69:74:02:93:f9: 9f:47:2d:13:a2:c0:dd:bc:02:b5:25:bc:5b:e7:61:60:42:75: 8d:36:70:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIzM0UxMTAvBgNVBAUTKEQwMDcyRURFQjY3RTE3NTJBQjc1MjI2M0E0RkQ5NDUw REQzQTMzRUMwHhcNMjMwODAyMTcxNDE3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhOGVlOC1iYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojZ6wjZpyjQwn8sAqmmntkDES5vP9tfXHm1E2KbuScUiTq/TcgQ2lf4JoHmu oZFIrOmxc62+S0Qk/raenEyj6QxpgirR3eGYgKvD/66QDj+1wIIcnkhR7yLZNiKS 5ozIVZF5RQmSZmcocBGFypx8nLCHwbTbAmT2Y+inde/HcV9zP8IhT2/7jEePCpRS FAXcje3fK8WECAW+7t/+H2rAPP6ukPQ9cfsKi9XrD7Js/PUSH13Squ191cHQi9zX 9c+TIy1UpbpqJ23C/UEPGzmGUnnQtpKXs6epirZWEa9nBia2dCKPZ46CEFdCOkgE 6u/meKZFqCLcDxQaNhBUnOg0AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL7lkXCa lPihbllrSHsPcNUUlsv/MB8GA1UdIwQYMBaAFNAHLt62fhdSq3UiY6T9lFDdOjPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjMzRS8yRjY2QjU3QUI4 M0UxMUU3QTAxRDY2NTBDNEY5QUUwMi8wQWN1M3JaLUYxS3JkU0pqcFAyVVVOMDZN LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBY3UzclotRjFLcmRTSmpwUDJVVU4wNk0tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIzM0UvMkY2NkI1N0FCODNFMTFFN0EwMUQ2NjUwQzRGOUFFMDIvQjY5MjgwNTQ4 NDMwMTFFQUI0MjcwQjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLYlAwDQYJKoZIhvcNAQELBQADggEBADR5YL+XodlXM4Gk XU2obN63fEHgg5BE+G/HXLRtTc4ikzsHMtiFa4o+W5d0uAg++xLsOaz8OHT8Nwa8 XXCwNcYO52V+6XYciYbN0RLROG6G/ykZ9PUnGZumMUMSsfmALYoFa7+OoXS5EYMF wjxCcb60ZkdT0rqqu6SXZFj+OCUEVrTRz8/ZTT0/83mmnmtRnhtPlooeXxqt4V6M uNwqwJ2GrkyV2TLonpWQfXlApPKJG4trkA4s14AiaNduppFSybAyLT5gSJrCAfQu fZxPToWABvyJSBoXVGOJtt8UGjtonn9zuLdpdAKT+Z9HLROiwN28ArUlvFvnYWBC dY02cEo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:06 2024 by rpki-client on console-ams.rpki-client.org