$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa File: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (raw, json) Hash identifier: 6H6iQ2a0q2uFv3rwik51KNgAtYVoSYBzJeT92zMfBWA= Subject key identifier: 5E:49:93:1F:A1:B0:9D:BB:D5:52:2A:71:D2:0E:63:60:C3:65:77:CB Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 1636 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa Signing time: Fri 26 May 2023 17:57:22 +0000 ROA not before: Fri 26 May 2023 17:57:22 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 20940 IP address blocks: 203.198.20.0/24 maxlen: 24 219.76.11.0/24 maxlen: 24 2404:c800:8203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5686 (0x1636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 26 17:57:22 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6470f302-1990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9b:03:a3:78:d7:3d:bb:f2:6e:2b:7a:6b:9a: 4a:60:86:51:14:26:4c:12:46:a6:ac:61:b9:96:ed: 22:04:e3:3c:f4:4f:68:17:33:23:0f:d0:a1:c6:65: 92:e6:6f:b7:ef:25:80:07:c8:52:a1:25:f5:c1:7d: a1:d6:70:3d:aa:ad:16:1d:22:68:e6:a1:aa:f7:0d: 8a:a1:c2:9f:b0:64:7e:52:b1:e4:39:3d:35:74:e3: 1d:9a:db:7c:0b:6a:8a:7b:9c:cd:bc:17:fd:61:0e: f7:ab:26:d4:5f:8e:dd:0e:95:51:64:25:a8:f6:80: 5c:22:da:56:a6:27:03:43:b9:c5:86:33:c3:62:76: 13:e6:c5:f2:be:51:38:93:39:35:13:ec:c6:01:28: fe:11:99:79:f1:f8:d5:5e:bb:01:05:48:14:5e:e6: 72:3c:a8:57:2f:d2:2f:16:49:78:e9:f4:0c:74:2e: ab:e5:01:e1:aa:08:c9:d8:78:8e:7c:a5:9a:1b:80: 1d:c9:b5:12:a6:66:c5:a4:6a:cd:d8:98:92:ba:63: 1c:86:54:57:ae:25:4c:a8:1f:7a:e5:01:bf:b2:d6: 9a:95:c6:92:d1:2b:5f:00:21:de:0e:3b:9f:53:34: 76:b3:e3:eb:e1:d0:fb:97:b6:e6:6c:83:06:d0:eb: a3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:49:93:1F:A1:B0:9D:BB:D5:52:2A:71:D2:0E:63:60:C3:65:77:CB X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.20.0/24 219.76.11.0/24 IPv6: 2404:c800:8203::/48 Signature Algorithm: sha256WithRSAEncryption 12:76:f2:86:78:ea:42:1e:1a:e1:92:f6:a8:89:1a:a7:15:47: a8:af:d8:37:ec:82:5c:d5:e2:d6:4a:ff:23:a4:96:0b:b0:06: 08:1a:40:a3:ad:60:df:f7:6d:4b:2a:4a:b5:6a:38:93:69:9d: c8:67:ca:3a:19:e2:cb:c6:0d:42:70:8c:99:35:74:a0:a3:50: 31:78:d1:37:93:7e:b0:0a:c5:37:c6:c7:28:cb:46:ba:1d:48: a1:af:28:42:00:10:e0:a1:1b:02:5b:2e:61:11:d1:b4:5c:1e: 28:57:83:66:76:8b:a9:81:c1:ae:b8:f7:af:d6:e2:92:b8:02: a0:eb:de:b7:a4:b9:dd:10:9f:86:ee:d0:19:43:53:17:a8:a3: cf:f2:64:68:56:0c:19:ce:6e:53:7c:40:d0:f7:d4:f0:4f:07: 06:dc:c5:41:c1:be:e2:c1:07:3e:2a:a5:31:a2:fa:7a:df:f0: b8:47:b1:14:2f:c3:4f:fb:b4:37:2a:6d:d5:1f:0f:15:84:0c: f8:de:8a:17:b8:19:c8:ea:2e:4c:6c:5c:9a:99:85:d8:06:f2: 8c:02:4e:25:33:06:4e:b3:7f:3b:d0:c8:81:c3:2f:e5:12:f6: a9:db:54:cd:f8:5c:2f:c0:8e:2a:28:70:40:b7:5a:6f:77:d0: cd:17:46:f2 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICFjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjMwNTI2MTc1NzIyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcwZjMwMi0xOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5sDo3jXPbvybit6a5pKYIZRFCZMEkamrGG5lu0iBOM89E9oFzMjD9ChxmWS 5m+37yWAB8hSoSX1wX2h1nA9qq0WHSJo5qGq9w2KocKfsGR+UrHkOT01dOMdmtt8 C2qKe5zNvBf9YQ73qybUX47dDpVRZCWo9oBcItpWpicDQ7nFhjPDYnYT5sXyvlE4 kzk1E+zGASj+EZl58fjVXrsBBUgUXuZyPKhXL9IvFkl46fQMdC6r5QHhqgjJ2HiO fKWaG4AdybUSpmbFpGrN2JiSumMchlRXriVMqB965QG/staalcaS0StfACHeDjuf UzR2s+Pr4dD7l7bmbIMG0OujkwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFF5Jkx+h sJ271VIqcdIOY2DDZXfLMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvMDdFRTgyN0FE RkVFMTFFN0IwRTcxRDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADLxhQDBADbTAswDwQCAAIwCQMHACQEyACCAzANBgkqhkiG 9w0BAQsFAAOCAQEAEnbyhnjqQh4a4ZL2qIkapxVHqK/YN+yCXNXi1kr/I6SWC7AG CBpAo61g3/dtSypKtWo4k2mdyGfKOhniy8YNQnCMmTV0oKNQMXjRN5N+sArFN8bH KMtGuh1Ioa8oQgAQ4KEbAlsuYRHRtFweKFeDZnaLqYHBrrj3r9bikrgCoOvet6S5 3RCfhu7QGUNTF6ijz/JkaFYMGc5uU3xA0PfU8E8HBtzFQcG+4sEHPiqlMaL6et/w uEexFC/DT/u0Nypt1R8PFYQM+N6KF7gZyOouTGxcmpmF2AbyjAJOJTMGTrN/O9DI gcMv5RL2qdtUzfhcL8COKihwQLdab3fQzRdG8g== -----END CERTIFICATE-----Generated at Fri May 31 20:34:07 2024 by rpki-client on console-ams.rpki-client.org