$ rpki-client -vvf rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa File: AF17D342228A11EDBBB7C135C4F9AE02.roa (raw, json) Hash identifier: nQ99fDaMcLKmER+eUIwMPGK91XO4OfQ7KVVTWmAakBo= Subject key identifier: 03:0D:13:84:C8:B6:0D:49:49:4C:79:3E:F7:4C:F8:9B:D6:48:62:36 Certificate issuer: /CN=A917544F/serialNumber=B601214C9628C9F421D36734B381CDEC92894748 Certificate serial: 0127 Authority key identifier: B6:01:21:4C:96:28:C9:F4:21:D3:67:34:B3:81:CD:EC:92:89:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa Signing time: Fri 03 Nov 2023 04:35:11 +0000 ROA not before: Fri 03 Nov 2023 04:35:11 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 37931 IP address blocks: 203.19.222.0/24 maxlen: 24 203.89.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.crl rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917544F/serialNumber=B601214C9628C9F421D36734B381CDEC92894748 Validity Not Before: Nov 3 04:35:11 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6544787f-4187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:92:b3:bb:35:7e:b0:62:b6:55:a8:57:b3: 81:3f:19:be:02:f4:04:ae:86:2f:b2:cc:d2:c9:82: bd:b4:82:e7:de:f0:95:54:e3:67:90:a3:0e:74:34: 8c:21:c6:19:a6:2c:b8:3b:2c:2c:aa:e3:e3:2c:62: 82:cd:4f:d4:ce:8c:32:c0:df:93:de:c1:07:a5:9c: 59:6d:99:5f:6e:87:20:2f:0c:bf:4e:45:e2:6f:30: 45:dd:49:8d:01:0d:ab:9b:50:6c:b1:41:55:47:8d: 86:c5:e5:f8:bd:b8:79:1c:78:3f:44:b3:d0:75:60: 31:eb:77:90:96:32:aa:b7:0d:5e:52:35:c6:74:5a: 75:10:4e:2f:3b:f5:e3:d0:c2:32:e6:a7:1d:9a:68: f7:6e:0d:74:f6:63:e7:cf:8d:2d:5b:be:2d:31:01: aa:3c:3d:7a:a8:b2:71:17:29:7a:94:11:9d:f0:d3: f8:74:e1:1b:f7:86:35:72:c3:12:a8:ec:85:39:2e: c7:63:47:60:40:60:17:14:2f:ee:f6:bf:13:03:87: cf:75:39:d9:e7:db:fa:95:23:97:3d:91:72:b7:d5: 44:e9:9e:e9:8a:9f:55:c1:74:77:5f:d3:4a:10:51: 18:fd:b4:2d:2e:14:ad:fa:e9:40:9a:38:37:bc:4c: 8e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0D:13:84:C8:B6:0D:49:49:4C:79:3E:F7:4C:F8:9B:D6:48:62:36 X509v3 Authority Key Identifier: keyid:B6:01:21:4C:96:28:C9:F4:21:D3:67:34:B3:81:CD:EC:92:89:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.222.0/24 203.89.5.0/24 Signature Algorithm: sha256WithRSAEncryption c4:95:53:ea:28:0f:c5:60:26:a2:64:12:34:0e:4a:5b:81:e1: ca:a7:40:f4:af:63:cb:56:6b:f2:c6:92:73:04:c5:ff:1c:a2: 3c:97:2e:36:01:e2:49:6c:7d:77:cb:c4:3b:9c:13:09:b6:57: 5c:df:29:40:45:12:cd:94:8b:e2:ee:a8:c4:e3:fc:b4:8d:3a: f6:80:a6:9a:1f:15:bd:da:0c:02:7d:22:d2:7a:74:54:54:39: f7:0d:e1:a8:15:15:f1:5c:8c:7d:d9:ce:74:e5:d4:69:16:9c: 96:84:9e:9a:db:04:1e:b0:f0:5f:b0:0f:6d:ae:eb:42:9c:98: 21:3f:d8:7c:89:fc:46:29:b9:3d:ae:88:2b:cc:ab:f9:62:42: e2:93:05:d0:54:5c:94:29:b1:60:a7:e4:a9:13:b4:f6:ea:7d: af:be:be:dc:ef:76:f9:4f:60:d3:24:90:12:39:5d:04:95:ff: b6:23:68:7b:11:93:c2:e6:10:9b:73:a7:44:be:11:3e:45:80: eb:68:48:c4:66:b0:a1:ce:a0:96:29:af:c7:a9:b5:39:b6:ad: ab:72:72:e0:26:f6:a1:07:a0:7d:da:a6:6f:bf:90:26:78:f6: 90:e5:2a:0e:60:04:cb:67:5a:d9:f5:e5:48:12:6b:40:d1:ea: ac:77:cc:b9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0NEYxMTAvBgNVBAUTKEI2MDEyMTRDOTYyOEM5RjQyMUQzNjczNEIzODFDREVD OTI4OTQ3NDgwHhcNMjMxMTAzMDQzNTExWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0Nzg3Zi00MTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsySs7s1frBitlWoV7OBPxm+AvQEroYvsszSyYK9tILn3vCVVONnkKMOdDSM IcYZpiy4OywsquPjLGKCzU/UzowywN+T3sEHpZxZbZlfbocgLwy/TkXibzBF3UmN AQ2rm1BssUFVR42GxeX4vbh5HHg/RLPQdWAx63eQljKqtw1eUjXGdFp1EE4vO/Xj 0MIy5qcdmmj3bg109mPnz40tW74tMQGqPD16qLJxFyl6lBGd8NP4dOEb94Y1csMS qOyFOS7HY0dgQGAXFC/u9r8TA4fPdTnZ59v6lSOXPZFyt9VE6Z7pip9VwXR3X9NK EFEY/bQtLhSt+ulAmjg3vEyOfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAMNE4TI tg1JSUx5PvdM+JvWSGI2MB8GA1UdIwQYMBaAFLYBIUyWKMn0IdNnNLOBzeySiUdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTQ0Ri85MDEyQ0E0NDIy ODgxMUVEODkxNTVFMzVDNEY5QUUwMi90Z0VoVEpZb3lmUWgwMmMwczRITjdKS0pS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnRWhUSllveWZRaDAyYzBzNEhON0pLSlIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU0NEYvOTAxMkNBNDQyMjg4MTFFRDg5MTU1RTM1QzRGOUFFMDIvQUYxN0QzNDIy MjhBMTFFREJCQjdDMTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLE94DBADLWQUwDQYJKoZIhvcNAQELBQADggEBAMSVU+oo D8VgJqJkEjQOSluB4cqnQPSvY8tWa/LGknMExf8cojyXLjYB4klsfXfLxDucEwm2 V1zfKUBFEs2Ui+LuqMTj/LSNOvaAppofFb3aDAJ9ItJ6dFRUOfcN4agVFfFcjH3Z znTl1GkWnJaEnprbBB6w8F+wD22u60KcmCE/2HyJ/EYpuT2uiCvMq/liQuKTBdBU XJQpsWCn5KkTtPbqfa++vtzvdvlPYNMkkBI5XQSV/7YjaHsRk8LmEJtzp0S+ET5F gOtoSMRmsKHOoJYpr8eptTm2ratycuAm9qEHoH3apm+/kCZ49pDlKg5gBMtnWtn1 5UgSa0DR6qx3zLk= -----END CERTIFICATE-----Generated at Fri May 17 06:18:07 2024 by rpki-client on console-fra.rpki-client.org