$ rpki-client -vvf rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa File: 10854F3E516B11EC86C3243EC4F9AE02.roa (raw, json) Hash identifier: NYcbhJMX2HUH5RpIZxAT0CFCtB2vsxf0S9nsYsAX39I= Subject key identifier: F6:FA:6D:80:DF:83:2D:E0:29:A4:1B:BF:51:18:72:3E:9E:DF:D4:CE Certificate issuer: /CN=A91830A5/serialNumber=EC4AE356CC0232298D3CD9FD20413567DBB7FC25 Certificate serial: 0394 Authority key identifier: EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa Signing time: Wed 03 Apr 2024 03:05:15 +0000 ROA not before: Wed 03 Apr 2024 03:05:15 +0000 ROA not after: Thu 01 Aug 2024 00:00:00 +0000 asID: 58434 IP address blocks: 203.96.252.0/22 maxlen: 22 203.147.92.0/22 maxlen: 22 2402:2f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.crl rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 916 (0x394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91830A5/serialNumber=EC4AE356CC0232298D3CD9FD20413567DBB7FC25 Validity Not Before: Apr 3 03:05:15 2024 GMT Not After : Aug 1 00:00:00 2024 GMT Subject: CN=660cc76a-539e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:28:ca:c5:1d:f2:e4:d8:66:2e:45:9a:33:ea: 60:81:d6:cf:8e:8b:b6:7c:79:f9:9c:1a:65:77:06: 16:5f:7f:3d:10:4e:82:93:7b:f8:e4:2d:29:65:06: 71:59:4e:0a:0e:e4:6d:47:2c:63:09:f0:2a:24:fe: cf:9f:8b:d6:b5:d6:fb:18:ab:11:7f:af:b0:5f:5f: e4:56:ea:bf:7a:3a:4d:4d:72:e8:fc:42:e1:20:63: 1a:a2:2c:f9:1c:b7:4f:44:9a:13:9c:d4:39:43:56: 2a:54:0b:31:9e:a2:88:f1:9c:b5:5a:c3:47:02:bb: 02:42:2a:f5:2a:e3:f2:ff:32:12:df:0c:2f:ee:06: 6d:4e:de:48:ce:f6:52:07:b1:25:67:71:98:2b:f7: 0d:6d:6c:d6:a9:64:75:d4:ed:c7:1c:cc:b9:f6:c1: 8b:9a:59:af:a3:7d:c3:8a:bf:fe:bf:05:c8:b0:2c: d3:24:3b:0c:17:b9:3f:87:53:e8:51:fe:82:80:2a: 9f:d4:8a:e1:93:f4:e3:0e:ff:36:7d:e3:6e:f3:6d: 18:15:d5:c7:76:06:18:5b:51:2f:84:d8:5a:c2:fd: a4:8e:87:38:cf:ca:65:6e:ef:fd:17:00:d2:3f:16: a2:11:66:32:50:5a:9c:56:c9:95:3f:60:6d:da:30: 03:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FA:6D:80:DF:83:2D:E0:29:A4:1B:BF:51:18:72:3E:9E:DF:D4:CE X509v3 Authority Key Identifier: keyid:EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/10854F3E516B11EC86C3243EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.96.252.0/22 203.147.92.0/22 IPv6: 2402:2f00::/32 Signature Algorithm: sha256WithRSAEncryption 68:c6:76:fd:5f:f7:96:27:1c:42:58:39:4b:a5:e1:e4:78:a1: a2:85:b9:c6:1c:7f:25:8d:d9:a5:38:dc:13:a9:14:f7:e6:19: fb:dc:69:c7:fa:8a:09:00:c9:d2:e9:6f:28:c1:51:c4:42:43: 63:cc:0b:c4:36:98:10:91:c7:33:78:1c:f0:c3:e7:70:1e:c7: 1c:5e:7e:c6:42:2a:58:61:56:bb:ec:52:54:33:da:26:5f:09: be:56:e0:1d:fc:45:c5:ba:e6:b7:b2:d7:f2:b8:42:7e:af:99: 0e:5d:1a:75:5b:5f:39:64:a5:79:b4:0a:8e:2f:29:13:c5:c2: c2:0b:76:a3:0a:6f:fc:55:fb:fb:8f:b8:e4:12:f0:95:70:55: c1:75:3e:2a:6d:ce:7f:e1:96:2e:0c:13:53:63:cb:a3:4e:d5: f6:56:a0:92:1f:23:3e:73:5b:0e:e0:7c:05:b3:9a:c0:80:57: da:7d:e5:60:8a:7d:58:4e:6c:e5:d3:fb:cb:14:1a:69:f9:59: 43:73:22:72:94:c8:d7:d7:50:23:eb:8f:31:02:ee:2a:cd:e3: be:35:52:a1:9c:1f:15:2b:2f:0d:c4:f5:5d:be:05:cd:66:30: 57:bf:2f:d8:ae:1a:9d:06:a2:89:b6:b7:e3:e8:ac:c9:0c:be: d4:28:6e:f2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMwQTUxMTAvBgNVBAUTKEVDNEFFMzU2Q0MwMjMyMjk4RDNDRDlGRDIwNDEzNTY3 REJCN0ZDMjUwHhcNMjQwNDAzMDMwNTE1WhcNMjQwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYzc2YS01MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyjKxR3y5NhmLkWaM+pggdbPjou2fHn5nBpldwYWX389EE6Ck3v45C0pZQZx WU4KDuRtRyxjCfAqJP7Pn4vWtdb7GKsRf6+wX1/kVuq/ejpNTXLo/ELhIGMaoiz5 HLdPRJoTnNQ5Q1YqVAsxnqKI8Zy1WsNHArsCQir1KuPy/zIS3wwv7gZtTt5IzvZS B7ElZ3GYK/cNbWzWqWR11O3HHMy59sGLmlmvo33Dir/+vwXIsCzTJDsMF7k/h1Po Uf6CgCqf1Irhk/TjDv82feNu820YFdXHdgYYW1EvhNhawv2kjoc4z8plbu/9FwDS PxaiEWYyUFqcVsmVP2Bt2jADjwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPb6bYDf gy3gKaQbv1EYcj6e39TOMB8GA1UdIwQYMBaAFOxK41bMAjIpjTzZ/SBBNWfbt/wl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzBBNS9EODI0MThGRTUx NjYxMUVDQUQ1NjU4NjdDNEY5QUUwMi83RXJqVnN3Q01pbU5QTm45SUVFMVo5dTNf Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdFcmpWc3dDTWltTlBObjlJRUUxWjl1M19DVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODMwQTUvRDgyNDE4RkU1MTY2MTFFQ0FENTY1ODY3QzRGOUFFMDIvMTA4NTRGM0U1 MTZCMTFFQzg2QzMyNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBALLYPwDBALLk1wwDQQCAAIwBwMFACQCLwAwDQYJKoZIhvcN AQELBQADggEBAGjGdv1f95YnHEJYOUul4eR4oaKFucYcfyWN2aU43BOpFPfmGfvc acf6igkAydLpbyjBUcRCQ2PMC8Q2mBCRxzN4HPDD53AexxxefsZCKlhhVrvsUlQz 2iZfCb5W4B38RcW65rey1/K4Qn6vmQ5dGnVbXzlkpXm0Co4vKRPFwsILdqMKb/xV +/uPuOQS8JVwVcF1Piptzn/hli4ME1Njy6NO1fZWoJIfIz5zWw7gfAWzmsCAV9p9 5WCKfVhObOXT+8sUGmn5WUNzInKUyNfXUCPrjzEC7irN4741UqGcHxUrLw3E9V2+ Bc1mMFe/L9iuGp0Goom2t+PorMkMvtQobvI= -----END CERTIFICATE-----Generated at Sun May 19 03:38:14 2024 by rpki-client on console-ams.rpki-client.org