$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB40B70EB7211EA89ADFD29C4F9AE02.roa File: 4EB40B70EB7211EA89ADFD29C4F9AE02.roa (raw, json) Hash identifier: XtpPjuQJYRbObx01zbV4JnRWUnMPWkXHSS97NeYlpg0= Subject key identifier: 2F:F9:2F:AD:3C:29:F8:D5:85:C4:B2:87:F9:B5:7B:5A:6A:ED:61:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B40 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB40B70EB7211EA89ADFD29C4F9AE02.roa Signing time: Wed 10 May 2023 16:18:46 +0000 ROA not before: Wed 10 May 2023 16:18:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134852 IP address blocks: 114.69.227.0/24 maxlen: 24 114.69.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27456 (0x6b40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:18:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3e5-4516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:a5:1e:46:96:58:44:ec:db:0e:f5:b6:b1: fc:6c:82:3d:5d:c3:fe:9e:a5:e6:01:02:60:5c:60: a5:43:10:e1:ec:2f:c3:af:4d:8b:28:1b:4e:66:93: 26:cd:a1:11:73:a9:6f:7d:9c:96:a9:72:25:21:41: c8:a3:d7:b3:41:68:19:14:f2:ac:c2:d6:8d:ae:ad: 25:c2:5f:07:b7:fb:c4:d6:6f:a1:ac:87:82:e0:d6: 22:76:75:f4:df:60:22:31:99:55:79:75:1c:95:1c: 0e:f7:89:bc:48:ff:8a:61:b1:9f:b7:14:a2:4e:c0: 3c:fc:34:6a:eb:e4:33:83:cb:cd:09:32:50:f7:87: fc:4c:b7:60:b9:a3:d5:02:84:cf:ee:e3:4c:25:7e: 1d:5a:03:0f:2a:f6:4c:07:f3:f7:62:6f:30:42:da: 09:94:8d:2a:65:93:09:e0:6b:38:e4:fd:71:9e:da: 6e:0a:f0:c8:ed:1d:81:f3:cb:a2:62:56:62:6b:8f: 86:e5:df:84:5f:66:82:f0:0e:d8:dc:b3:85:c6:1e: 30:09:23:5c:32:0e:e5:e7:73:6c:8a:23:76:0e:ac: 00:bf:09:82:17:81:46:07:93:61:28:fd:31:66:8b: 14:61:70:a2:30:8c:33:e6:12:99:7a:dc:9b:ab:2e: 29:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F9:2F:AD:3C:29:F8:D5:85:C4:B2:87:F9:B5:7B:5A:6A:ED:61:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB40B70EB7211EA89ADFD29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.69.227.0/24 114.69.233.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:9c:f4:d7:c3:11:7a:ef:ae:5a:3b:31:e3:5c:79:8e:47:5f: 6c:1b:97:b0:c4:32:db:1c:fc:d1:d6:b0:86:8b:ce:ea:54:4b: 66:54:3b:28:fc:a1:7c:9f:87:0e:10:44:ab:98:5f:1a:c3:8b: dc:d9:a3:8b:1e:5f:db:f9:f1:f4:64:6e:9b:d0:de:57:97:c3: a0:46:01:77:7f:09:1b:d8:13:f8:e9:b0:62:f6:fa:15:c2:11: d5:f2:63:6c:f0:56:e4:36:a9:49:c8:7b:49:9f:9c:be:b9:44: 9a:8d:a9:e0:55:69:a1:74:71:17:b8:a2:6c:0b:e2:77:1a:5c: a6:04:8b:1b:81:c6:fd:cf:a0:8f:33:ef:8b:83:9b:c8:a8:a3: 46:b3:a7:ee:27:7c:b7:a5:f3:db:66:27:90:47:68:c1:8b:69: ac:ba:89:88:c6:be:52:be:6a:35:07:64:6b:a0:55:70:4d:c8: f3:87:9f:a8:4b:84:63:65:db:93:32:98:ec:76:9c:a6:0e:f0: e3:e4:dd:85:0e:1d:38:b0:8d:4e:ed:83:8a:71:1f:ae:01:f5: 20:77:2d:f7:a7:e4:31:12:79:ea:bd:de:06:a3:6a:13:7c:a9: 1f:c3:76:56:2f:e7:2e:e5:a7:2c:2b:07:ae:48:d1:84:a3:34: 70:1d:99:d8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICa0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxODQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNlNS00NTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqO2lHkaWWETs2w71trH8bII9XcP+nqXmAQJgXGClQxDh7C/Dr02LKBtOZpMm zaERc6lvfZyWqXIlIUHIo9ezQWgZFPKswtaNrq0lwl8Ht/vE1m+hrIeC4NYidnX0 32AiMZlVeXUclRwO94m8SP+KYbGftxSiTsA8/DRq6+Qzg8vNCTJQ94f8TLdguaPV AoTP7uNMJX4dWgMPKvZMB/P3Ym8wQtoJlI0qZZMJ4Gs45P1xntpuCvDI7R2B88ui YlZia4+G5d+EX2aC8A7Y3LOFxh4wCSNcMg7l53NsiiN2DqwAvwmCF4FGB5NhKP0x ZosUYXCiMIwz5hKZetybqy4peQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFC/5L608 KfjVhcSyh/m1e1pq7WEJMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEVCNDBCNzBF QjcyMTFFQTg5QURGRDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAByReMDBAByRekwDQYJKoZIhvcNAQELBQADggEBABuc9NfD EXrvrlo7MeNceY5HX2wbl7DEMtsc/NHWsIaLzupUS2ZUOyj8oXyfhw4QRKuYXxrD i9zZo4seX9v58fRkbpvQ3leXw6BGAXd/CRvYE/jpsGL2+hXCEdXyY2zwVuQ2qUnI e0mfnL65RJqNqeBVaaF0cRe4omwL4ncaXKYEixuBxv3PoI8z74uDm8ioo0azp+4n fLel89tmJ5BHaMGLaay6iYjGvlK+ajUHZGugVXBNyPOHn6hLhGNl25MymOx2nKYO 8OPk3YUOHTiwjU7tg4pxH64B9SB3Lfen5DESeeq93gajahN8qR/DdlYv5y7lpywr B65I0YSjNHAdmdg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org