$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/19ACBFF66CDF11EAB92A3A24C4F9AE02.roa File: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (raw, json) Hash identifier: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE= Subject key identifier: 2E:5C:17:FC:75:E7:F4:F5:1F:E1:CB:E4:03:3F:84:BA:6E:C0:26:3E Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 2E63 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/19ACBFF66CDF11EAB92A3A24C4F9AE02.roa Signing time: Thu 11 Feb 2021 14:20:13 +0000 ROA not before: Thu 11 Feb 2021 14:20:13 +0000 ROA not after: Mon 31 Mar 2031 00:00:00 +0000 asID: 45163 IP address blocks: 203.147.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11875 (0x2e63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Feb 11 14:20:13 2021 GMT Not After : Mar 31 00:00:00 2031 GMT Subject: CN=60253d1d-34b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8e:c4:47:b7:f7:80:41:57:d2:47:66:84:ef: 33:f8:fc:96:3f:3d:13:e3:80:21:31:a8:9e:5d:39: 28:ce:ec:48:66:3b:58:db:fd:18:2e:72:74:98:3b: f6:88:22:b9:87:23:e0:94:f7:ff:8e:57:08:72:17: 73:68:bd:26:f0:ba:2c:54:69:c2:04:06:67:11:b1: b8:5b:dc:cc:0c:81:a5:59:2e:e2:6b:2b:2f:4d:14: d0:76:95:02:41:af:a9:39:5a:ca:c4:b9:5f:b5:a5: f5:64:c4:d2:f3:dd:38:7b:f0:9d:99:76:fa:3d:55: 0b:29:91:48:f6:0e:c6:44:9f:9d:6b:e0:07:63:82: 03:8e:9f:02:90:e7:57:90:1a:f5:36:ee:07:6f:78: d2:b8:e6:67:cf:83:dc:58:b2:a9:38:08:64:29:30: 08:32:3d:9e:3e:4e:52:c2:00:bc:5b:e9:cf:59:15: b8:87:d8:b8:9e:ac:ad:fb:e4:6a:2d:2e:f2:51:39: 7e:26:06:bd:e9:25:c0:c7:47:ec:da:d9:53:6b:03: 42:c8:50:3f:90:8d:94:75:03:06:04:62:5b:c9:88: 2a:87:85:7c:7b:b5:6a:7f:e6:47:05:00:e3:e9:e9: 64:f2:bf:b6:8c:d3:d6:ca:31:4e:c7:9c:4d:2d:e0: ed:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:5C:17:FC:75:E7:F4:F5:1F:E1:CB:E4:03:3F:84:BA:6E:C0:26:3E X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/19ACBFF66CDF11EAB92A3A24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.147.109.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:99:71:ac:d2:5f:30:58:7c:79:17:b3:2d:51:a7:8c:18:11: 3d:41:a9:e9:ff:04:59:43:20:eb:c1:fa:08:40:06:f0:2b:7d: 08:cd:42:f7:f3:97:59:5f:a6:8a:df:14:1e:a4:b8:a7:a4:a0: 64:03:ae:0b:b1:11:e6:c2:96:3f:bb:3d:ab:45:2f:d6:49:92: f9:49:83:38:15:73:b7:7f:10:d8:b2:38:c4:7a:54:a3:a6:61: 58:4e:36:84:ed:19:4e:05:42:db:ba:4c:52:4d:71:17:fe:bb: b2:3d:b3:4b:2f:c0:6b:26:15:dc:22:a6:0f:92:0b:90:00:0a: 48:ad:03:c4:7b:a4:a0:a0:eb:bd:60:1e:c8:a8:2f:09:f4:70: c6:98:0d:9a:c9:12:4c:3b:8e:a8:28:de:06:1c:ba:dd:41:ff: 85:fb:90:4e:83:5d:94:0e:f7:29:69:db:cb:61:c9:bd:d3:59: b6:61:66:f8:ba:57:8c:ee:d7:6c:a2:56:a9:41:13:8f:d7:ba: 5a:82:c9:e6:16:90:7f:da:66:d2:da:5b:1e:f3:81:c4:e5:18: 13:9a:f7:b5:ef:d6:dd:43:2f:d3:2e:7d:55:49:d6:36:af:67: 26:ff:26:3b:fd:f4:a5:03:36:b4:db:ac:f0:50:bf:c3:c9:29: 36:a3:24:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICLmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjEwMjExMTQyMDEzWhcNMzEwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MDI1M2QxZC0zNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno7ER7f3gEFX0kdmhO8z+PyWPz0T44AhMaieXTkozuxIZjtY2/0YLnJ0mDv2 iCK5hyPglPf/jlcIchdzaL0m8LosVGnCBAZnEbG4W9zMDIGlWS7iaysvTRTQdpUC Qa+pOVrKxLlftaX1ZMTS8904e/CdmXb6PVULKZFI9g7GRJ+da+AHY4IDjp8CkOdX kBr1Nu4Hb3jSuOZnz4PcWLKpOAhkKTAIMj2ePk5SwgC8W+nPWRW4h9i4nqyt++Rq LS7yUTl+Jga96SXAx0fs2tlTawNCyFA/kI2UdQMGBGJbyYgqh4V8e7Vqf+ZHBQDj 6elk8r+2jNPWyjFOx5xNLeDtowIDAQABo4IClTCCApEwHQYDVR0OBBYEFC5cF/x1 5/T1H+HL5AM/hLpuwCY+MB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcyRUQvRUQ4Qzk2OTAxRDZDMTFFMjhBMzhBM0FEMDhCMDJDRDIvMTlBQ0JGRjY2 Q0RGMTFFQUI5MkEzQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLk20wDQYJKoZIhvcNAQELBQADggEBAHyZcazSXzBYfHkX sy1Rp4wYET1Bqen/BFlDIOvB+ghABvArfQjNQvfzl1lfporfFB6kuKekoGQDrgux EebClj+7PatFL9ZJkvlJgzgVc7d/ENiyOMR6VKOmYVhONoTtGU4FQtu6TFJNcRf+ u7I9s0svwGsmFdwipg+SC5AACkitA8R7pKCg671gHsioLwn0cMaYDZrJEkw7jqgo 3gYcut1B/4X7kE6DXZQO9ylp28thyb3TWbZhZvi6V4zu12yiVqlBE4/XulqCyeYW kH/aZtLaWx7zgcTlGBOa97Xv1t1DL9MufVVJ1javZyb/Jjv99KUDNrTbrPBQv8PJ KTajJOI= -----END CERTIFICATE-----Generated at Fri May 10 16:38:08 2024 by rpki-client on console-ams.rpki-client.org