$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa File: 1A24DB1C7D5211EEBD518553C4F9AE02.roa (raw, json) Hash identifier: jPxvPuUHmfrKKJeZRpe9xqn95P84od480DgoA49NhLg= Subject key identifier: AC:6F:7D:29:1C:16:14:B6:5B:CE:83:6C:58:E3:A4:B9:3E:82:54:0A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7D47 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa Signing time: Tue 07 Nov 2023 09:43:27 +0000 ROA not before: Tue 07 Nov 2023 09:43:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134855 IP address blocks: 202.160.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32071 (0x7d47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 7 09:43:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=654a06bf-7ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e8:40:64:39:14:c6:1d:af:06:66:66:55:5f: bc:69:b8:fb:dd:d1:c3:e3:74:7b:95:de:76:fd:5d: 20:87:25:be:f8:a6:0b:97:b4:9a:eb:98:a4:78:96: d6:fa:b7:85:37:96:35:26:ba:fd:35:f1:4e:1c:5a: c5:83:1d:d2:49:11:2a:46:d2:a2:61:da:59:85:7e: 5a:96:e7:c1:95:5b:84:73:6a:3c:90:a7:19:6e:0e: 1d:50:f3:97:e9:0a:ae:13:2e:d6:d6:c2:4d:f7:11: 9f:17:d0:3d:7d:54:3e:2b:88:76:d6:8f:50:8b:89: 74:64:2c:78:df:6e:dc:4d:9e:f6:b9:b6:73:d1:d7: 33:ea:48:bc:ff:5e:75:ff:67:89:b5:e7:c8:c0:df: d5:85:fa:92:b3:3f:f5:8a:e1:98:af:2e:12:b1:42: fa:c0:3f:48:25:e3:0f:3a:e6:4a:72:bb:dd:69:e6: a3:34:ed:0e:32:5f:66:6b:2f:f7:8c:72:8c:b9:3a: 13:fb:00:1a:26:e6:8e:2c:7f:13:4b:95:44:9b:5c: d0:b3:92:10:11:1a:b2:18:05:34:91:b2:1e:da:ac: 24:f0:8c:87:64:37:15:3c:d5:02:64:66:c0:d2:dd: 7b:75:38:bf:a8:a7:7c:54:2c:38:14:93:43:0c:d1: c9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6F:7D:29:1C:16:14:B6:5B:CE:83:6C:58:E3:A4:B9:3E:82:54:0A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A24DB1C7D5211EEBD518553C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.174.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:c6:0c:50:20:ac:7c:54:a0:8c:94:ba:8d:51:6d:b6:f3:ea: 9f:b0:00:ac:9d:db:e1:86:59:0a:31:87:34:a4:4d:c7:17:cd: ea:94:24:4b:0b:2c:74:26:d1:fe:5b:ec:86:1e:c6:58:28:0a: 2a:d2:70:ca:34:8e:fd:36:91:41:b5:82:5b:b2:df:29:d8:82: 53:df:3c:e7:ad:d2:40:e6:68:7f:dd:62:1b:3f:c9:61:ce:9e: 6f:53:a2:8e:dd:b0:ff:ee:be:12:ad:6a:5c:4a:a9:50:aa:b3: b2:52:28:39:7e:2f:51:27:fa:d5:97:09:78:31:0b:a4:12:77: 47:88:d2:cc:28:85:d2:1e:34:51:51:95:88:ef:0e:dc:da:95: 4d:e8:5b:0b:22:7a:83:fe:72:e2:c5:f1:56:fa:60:1c:8b:dc: 21:85:92:f0:18:45:56:87:66:39:8a:39:c4:29:ca:ad:8f:15: f4:ef:ae:f6:50:f1:59:fc:c0:9c:c2:c5:ef:8c:c0:89:06:ee: c3:2c:68:b9:c5:0f:d1:05:f6:20:9e:72:17:be:cb:60:ff:28: 66:35:09:ab:f3:58:58:3c:43:70:49:c2:38:68:1b:1e:bd:1a: 41:3b:77:39:11:41:22:6b:72:fe:15:6d:26:25:6b:67:03:ae: 02:f1:2f:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICfUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTA3MDk0MzI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRhMDZiZi03YmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+hAZDkUxh2vBmZmVV+8abj73dHD43R7ld52/V0ghyW++KYLl7Sa65ikeJbW +reFN5Y1Jrr9NfFOHFrFgx3SSREqRtKiYdpZhX5alufBlVuEc2o8kKcZbg4dUPOX 6QquEy7W1sJN9xGfF9A9fVQ+K4h21o9Qi4l0ZCx4327cTZ72ubZz0dcz6ki8/151 /2eJtefIwN/VhfqSsz/1iuGYry4SsUL6wD9IJeMPOuZKcrvdaeajNO0OMl9may/3 jHKMuToT+wAaJuaOLH8TS5VEm1zQs5IQERqyGAU0kbIe2qwk8IyHZDcVPNUCZGbA 0t17dTi/qKd8VCw4FJNDDNHJfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxvfSkc FhS2W86DbFjjpLk+glQKMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUEyNERCMUM3 RDUyMTFFRUJENTE4NTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKoK4wDQYJKoZIhvcNAQELBQADggEBAArGDFAgrHxUoIyU uo1Rbbbz6p+wAKyd2+GGWQoxhzSkTccXzeqUJEsLLHQm0f5b7IYexlgoCirScMo0 jv02kUG1gluy3ynYglPfPOet0kDmaH/dYhs/yWHOnm9Too7dsP/uvhKtalxKqVCq s7JSKDl+L1En+tWXCXgxC6QSd0eI0swohdIeNFFRlYjvDtzalU3oWwsieoP+cuLF 8Vb6YByL3CGFkvAYRVaHZjmKOcQpyq2PFfTvrvZQ8Vn8wJzCxe+MwIkG7sMsaLnF D9EF9iCeche+y2D/KGY1CavzWFg8Q3BJwjhoGx69GkE7dzkRQSJrcv4VbSYla2cD rgLxL3I= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org