$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa File: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (raw, json) Hash identifier: DtvxKj0Hyg1ZkY+rgK4KM0aAb9imIsk6lhgI64euGAk= Subject key identifier: F3:40:0B:B7:BD:1A:8B:FF:5E:EB:F8:AF:A9:71:1E:2E:96:91:98:01 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1B61 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa Signing time: Thu 28 Sep 2023 16:34:02 +0000 ROA not before: Thu 28 Sep 2023 16:34:02 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17557 IP address blocks: 113.203.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 16:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7009 (0x1b61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 28 16:34:02 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515aaf9-f8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:55:6c:fb:11:72:69:3d:4b:3e:e7:9d:dd:78: 91:40:7b:6d:44:ec:91:e6:d9:27:b6:b8:91:5d:d5: a0:cf:70:55:0d:27:25:46:76:17:a6:f9:d8:61:1a: be:0c:71:0d:47:1a:f9:dd:9e:8b:5a:4d:2f:0a:a2: c2:66:fd:1b:1b:f7:e2:f7:16:3b:0d:19:01:55:e6: 4c:fb:70:a2:b3:5b:ac:83:ec:46:6f:18:81:13:5a: 0f:d9:a9:82:82:89:fd:90:62:b4:b2:7c:bb:c3:4c: fb:03:fe:5a:6c:bb:df:a5:c6:2d:00:9b:70:b5:f2: a1:b4:4d:eb:37:73:e9:11:e0:2d:20:9c:51:97:19: cb:97:98:80:8a:a4:2e:81:2e:8b:a7:43:3d:b4:f3: cb:dc:08:10:1c:0a:72:75:83:c2:7e:8b:2a:0d:86: 90:f7:fe:e8:7d:a5:af:7b:29:ba:ad:11:33:92:8c: 4d:2b:5c:00:d2:1a:5d:08:f9:3c:b5:a7:50:ae:3b: a4:eb:27:ed:39:80:24:18:26:10:0f:98:9c:ed:a0: d8:7e:a0:76:26:65:19:61:8a:db:54:c6:2f:88:32: 03:ce:99:9c:2b:8c:06:05:9b:f3:c5:57:0e:c1:98: f4:37:a8:74:1b:28:16:35:e5:6f:4c:a0:8c:34:eb: 00:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:40:0B:B7:BD:1A:8B:FF:5E:EB:F8:AF:A9:71:1E:2E:96:91:98:01 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/2F9A7A1648FC11EBBAE0991CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.206.0/24 Signature Algorithm: sha256WithRSAEncryption c5:6a:9c:59:30:06:73:4e:dd:6d:02:6d:59:92:c9:1f:3c:79: ac:54:59:4f:a6:a0:62:4a:62:89:5f:19:51:80:cf:a6:d5:24: 12:ba:31:d0:cb:81:02:a5:99:5a:c2:f1:73:e1:6e:c4:23:27: c4:f2:b8:22:b3:1f:c9:65:06:f3:4f:ad:62:0c:ec:a5:22:06: 00:12:37:08:7b:a6:3b:01:c8:e5:66:fc:49:1a:a6:a4:70:5f: df:45:65:e6:ce:d8:9d:2f:31:47:d7:f9:7e:1c:d5:5d:f6:d7: bb:d1:fd:9c:17:10:c6:3e:78:23:29:3e:93:eb:a1:02:54:db: f1:08:23:ae:6e:57:e7:31:46:b2:c4:50:7b:45:05:08:80:42: 63:5a:1a:a2:a9:a1:87:38:50:2a:84:fd:37:d2:73:80:9a:76: 9b:39:3f:32:77:68:1b:40:56:b5:19:87:3c:5d:ac:a1:a2:89: 24:02:19:24:4b:dd:4e:dc:fb:91:a1:fe:8d:07:90:a2:ea:f5: 47:23:6b:f3:e6:f9:c0:ba:1f:36:e8:6a:ba:d3:9a:45:1c:59: c8:16:29:d0:94:d5:6c:4b:e6:60:92:31:0b:a1:2f:e4:f7:f5: 46:02:cd:5d:4a:f8:11:0e:72:66:85:63:f1:89:b9:36:8a:8d: 6a:71:d9:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjMwOTI4MTYzNDAyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1YWFmOS1mOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFVs+xFyaT1LPued3XiRQHttROyR5tkntriRXdWgz3BVDSclRnYXpvnYYRq+ DHENRxr53Z6LWk0vCqLCZv0bG/fi9xY7DRkBVeZM+3Cis1usg+xGbxiBE1oP2amC gon9kGK0sny7w0z7A/5abLvfpcYtAJtwtfKhtE3rN3PpEeAtIJxRlxnLl5iAiqQu gS6Lp0M9tPPL3AgQHApydYPCfosqDYaQ9/7ofaWveym6rREzkoxNK1wA0hpdCPk8 tadQrjuk6yftOYAkGCYQD5ic7aDYfqB2JmUZYYrbVMYviDIDzpmcK4wGBZvzxVcO wZj0N6h0GygWNeVvTKCMNOsA7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPNAC7e9 Gov/Xuv4r6lxHi6WkZgBMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvMkY5QTdBMTY0 OEZDMTFFQkJBRTA5OTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABxy84wDQYJKoZIhvcNAQELBQADggEBAMVqnFkwBnNO3W0C bVmSyR88eaxUWU+moGJKYolfGVGAz6bVJBK6MdDLgQKlmVrC8XPhbsQjJ8TyuCKz H8llBvNPrWIM7KUiBgASNwh7pjsByOVm/EkapqRwX99FZebO2J0vMUfX+X4c1V32 17vR/ZwXEMY+eCMpPpProQJU2/EII65uV+cxRrLEUHtFBQiAQmNaGqKpoYc4UCqE /TfSc4Cadps5PzJ3aBtAVrUZhzxdrKGiiSQCGSRL3U7c+5Gh/o0HkKLq9Ucja/Pm +cC6HzboarrTmkUcWcgWKdCU1WxL5mCSMQuhL+T39UYCzV1K+BEOcmaFY/GJuTaK jWpx2Yw= -----END CERTIFICATE-----Generated at Tue May 14 19:55:15 2024 by rpki-client on console-fra.rpki-client.org