$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa File: 71B685ACF7E511EEBC67981CC4F9AE02.roa (raw, json) Hash identifier: VihRbPLIGZqGX0qfK1yEpOzCfTVGqCSfC9SONYF7SpQ= Subject key identifier: CB:26:18:22:B7:69:90:23:51:0C:7C:20:8A:26:9B:7A:DE:C8:19:80 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 02 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa Signing time: Thu 11 Apr 2024 09:25:32 +0000 ROA not before: Thu 11 Apr 2024 09:25:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 7637 IP address blocks: 202.137.64.0/19 maxlen: 19 203.10.72.0/23 maxlen: 23 203.17.215.0/24 maxlen: 24 203.27.47.0/24 maxlen: 24 203.30.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Apr 11 09:25:32 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6617ac8c-0e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:b5:35:6c:c1:c1:e7:90:8f:6d:09:34:bc: 46:5e:ff:c2:f6:78:1f:48:9e:0e:f8:0d:18:8e:63: 98:de:73:3d:79:3c:ef:9a:e8:90:8e:67:94:3e:32: 76:b2:f2:c4:0c:a6:c1:78:6e:8f:c1:39:c6:e1:e5: 62:7a:d9:7f:f0:d1:c3:43:55:f2:4b:3f:f4:ca:fd: 07:96:f7:cf:5b:76:46:e6:2f:de:f4:ad:a9:f5:25: 44:c9:b6:a2:96:e8:75:de:5d:31:ea:1c:9f:e6:6a: 99:13:77:4d:79:be:b9:74:61:ec:b5:dd:50:f6:5c: 2d:76:34:e1:52:f2:c4:8c:ce:c7:05:fd:26:4a:4f: 41:ab:a9:0e:9b:9d:55:b8:ff:33:56:21:1a:40:64: 11:6b:a1:89:24:b2:fc:4e:01:b1:ea:8f:8d:4d:9c: 7c:e3:02:55:3f:dc:d7:c0:3a:2e:bb:3f:f3:c8:d3: 64:bf:bd:9e:dc:3b:0b:d5:46:a2:d0:e1:c2:fa:89: 00:ee:b5:d3:5e:3c:98:a7:c8:c7:e0:bf:76:d0:12: d7:3c:55:fe:85:fb:89:e0:86:c2:29:2f:00:c0:31: 8b:11:46:c3:b6:01:72:de:a0:51:14:ac:fe:ae:c5: 9f:0e:97:1c:7a:f9:96:00:18:8e:ca:fa:b2:52:0c: f0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:26:18:22:B7:69:90:23:51:0C:7C:20:8A:26:9B:7A:DE:C8:19:80 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.137.64.0/19 203.10.72.0/23 203.17.215.0/24 203.27.47.0/24 203.30.97.0/24 Signature Algorithm: sha256WithRSAEncryption 82:e0:17:ad:fd:fc:cc:af:36:c0:e0:77:eb:28:45:d7:3b:a8: 46:53:95:b2:be:33:47:1d:4d:cc:e7:8a:7a:f2:32:76:1e:52: ad:45:c5:77:38:04:06:69:10:0a:15:e3:4b:59:2a:18:8b:00: 45:c7:2c:a0:2f:69:38:06:c2:89:9c:91:a6:2f:77:7f:8f:89: cc:89:af:b1:5a:c2:d7:91:ae:31:a9:b8:2c:1a:77:67:7a:54: 1b:4d:0d:f4:74:29:ac:07:04:a2:54:61:a6:5e:11:11:c9:6e: 7b:5b:56:ed:57:7b:25:7a:2c:2a:3f:eb:39:b5:b5:bd:84:30: c9:bc:d5:b7:7e:f8:6b:d1:a6:2b:4f:b8:9b:e8:6f:a8:fa:39: 4d:04:51:a5:61:2b:3d:8e:a4:61:70:c1:9c:3e:75:28:c3:46: 02:13:a0:c3:4b:16:55:94:30:26:20:99:a0:c2:5d:a1:78:db: 30:9b:81:85:51:67:60:90:7d:c5:92:de:42:9a:a3:58:b7:d3: a9:0e:33:80:4a:ca:ff:04:21:c4:28:fe:f4:33:73:e5:16:9c: 1d:0a:9b:e2:59:fa:97:11:fe:6f:25:86:4f:ef:a6:38:7b:c6: 0a:fd:3c:4b:33:20:aa:93:40:48:35:82:52:f6:1b:28:1f:cb: 95:d7:50:66 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ2OTExMC8GA1UEBRMoMkIyQURBQzU5RUNDRjYzODRGQzVFMzYzRjA2N0MzQjlF MjlFOTlBMTAeFw0yNDA0MTEwOTI1MzJaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTdhYzhjLTBlNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyhrU1bMHB55CPbQk0vEZe/8L2eB9Ing74DRiOY5jecz15PO+a6JCOZ5Q+Mnay 8sQMpsF4bo/BOcbh5WJ62X/w0cNDVfJLP/TK/QeW989bdkbmL970ran1JUTJtqKW 6HXeXTHqHJ/mapkTd015vrl0Yey13VD2XC12NOFS8sSMzscF/SZKT0GrqQ6bnVW4 /zNWIRpAZBFroYkksvxOAbHqj41NnHzjAlU/3NfAOi67P/PI02S/vZ7cOwvVRqLQ 4cL6iQDutdNePJinyMfgv3bQEtc8Vf6F+4nghsIpLwDAMYsRRsO2AXLeoFEUrP6u xZ8Olxx6+ZYAGI7K+rJSDPCDAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUyyYYIrdp kCNRDHwgiiabet7IGYAwHwYDVR0jBBgwFoAUKyraxZ7M9jhPxeNj8GfDueKemaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0ZGOTRFNzEyRjdF MzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3lyYXhaN005amhQeGVOajhHZkR1ZUtlbWFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi83MUI2ODVBQ0Y3 RTUxMUVFQkM2Nzk4MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwJAQCAAEwHgMEBcqJQAMEAcsKSAMEAMsR1wMEAMsbLwMEAMseYTANBgkqhkiG 9w0BAQsFAAOCAQEAguAXrf38zK82wOB36yhF1zuoRlOVsr4zRx1NzOeKevIydh5S rUXFdzgEBmkQChXjS1kqGIsARccsoC9pOAbCiZyRpi93f4+JzImvsVrC15GuMam4 LBp3Z3pUG00N9HQprAcEolRhpl4REclue1tW7Vd7JXosKj/rObW1vYQwybzVt374 a9GmK0+4m+hvqPo5TQRRpWErPY6kYXDBnD51KMNGAhOgw0sWVZQwJiCZoMJdoXjb MJuBhVFnYJB9xZLeQpqjWLfTqQ4zgErK/wQhxCj+9DNz5RacHQqb4ln6lxH+byWG T++mOHvGCv08SzMgqpNASDWCUvYbKB/LlddQZg== -----END CERTIFICATE-----Generated at Fri Jun 7 12:38:03 2024 by rpki-client on console-ams.rpki-client.org