$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa File: 62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa (raw, json) Hash identifier: ps2rkSA+NeOOe0RctbDHP+rWZzQmVtvSlLR6yBeyCu8= Subject key identifier: F1:E8:65:5D:06:EC:05:1C:02:01:F7:A4:44:10:EA:B8:DA:2F:0B:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7198 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa Signing time: Wed 10 May 2023 16:49:01 +0000 ROA not before: Wed 10 May 2023 16:49:01 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 45851 IP address blocks: 202.62.246.0/24 maxlen: 24 2001:df0:2c9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29080 (0x7198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:49:01 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcafc-c40e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:10:5c:a5:e7:dc:28:6e:04:7e:77:32:6b:09: d2:e2:13:45:d5:d9:2d:9d:d6:b6:96:60:b9:a2:0b: b3:66:d9:9f:e0:b7:09:98:f9:d9:fe:45:7b:ea:c2: 8e:72:6d:74:63:2b:46:c3:7d:cc:05:43:4c:9b:78: 56:db:74:9f:b8:6b:c5:53:68:43:5c:d1:ee:cf:b3: b7:c4:17:16:f9:f2:2a:44:27:a4:b6:2e:75:fe:94: 0b:60:5c:4d:db:6e:5e:1a:07:a8:5d:19:bc:26:f0: c5:e8:9d:1d:90:69:09:03:92:a1:2b:a5:50:29:74: 86:a8:30:d3:e8:b0:a9:1d:1c:8b:05:9f:f2:bd:e2: d9:04:4a:55:c6:03:5e:70:4a:b1:c7:97:e9:9a:b3: af:71:86:13:14:d9:94:91:10:38:58:b3:f6:d7:52: 19:4c:ba:2d:7d:5c:1a:61:2f:b7:f0:44:3b:b5:ab: 07:c1:14:ce:b6:79:1f:ad:79:e9:a2:41:40:a4:f5: 2a:3a:12:98:ca:0f:65:fc:a0:bf:e9:26:4e:5e:66: 6e:dc:39:89:85:8a:f1:c1:13:76:ff:3b:fe:00:d0: 16:29:26:42:e6:3c:a5:9e:24:f9:ae:e6:92:5f:b4: 20:07:ff:22:00:fb:b2:4c:a4:3b:2b:9e:79:ac:41: d4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E8:65:5D:06:EC:05:1C:02:01:F7:A4:44:10:EA:B8:DA:2F:0B:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.62.246.0/24 IPv6: 2001:df0:2c9::/48 Signature Algorithm: sha256WithRSAEncryption 14:af:97:39:d5:bd:36:89:82:cf:4a:2e:f9:c3:13:ca:f5:56: 98:8b:fa:8d:8b:c1:cb:d5:71:c8:8e:67:e0:44:f5:0d:eb:aa: ba:ab:b6:2d:c0:c5:2e:34:f6:29:2c:d3:e1:ca:b6:01:c4:4c: 18:6d:5f:88:09:a2:57:e0:42:b0:76:73:66:03:c9:4b:2c:95: d6:08:1a:33:64:28:44:42:bd:81:59:25:07:ff:99:f8:55:7b: 34:2c:41:ef:58:48:78:3c:c8:73:77:f5:bd:60:56:35:1e:3d: d8:19:40:4c:a3:96:d7:ec:de:e7:79:e9:a1:9c:da:4b:cf:0d: 11:bf:bf:64:08:c0:f8:35:6a:5a:3d:70:fb:16:63:12:24:2b: 54:19:40:1a:3d:b8:cb:da:6d:6f:1f:2d:c6:15:a5:6e:6d:1b: 14:7d:e3:a8:bb:3c:8d:7b:a8:14:62:c7:7a:26:52:46:0f:b1: dc:1e:f3:56:c2:b2:28:68:54:db:fe:6d:ef:74:a9:83:0c:03: 63:8a:e4:a8:49:ba:f8:be:de:6b:6d:8b:08:6c:e3:42:12:d5: 25:84:4f:2f:85:48:ee:a4:cf:10:75:81:3c:96:66:9c:b7:fb: a0:5b:a9:ad:19:96:a5:b5:68:b0:d1:96:eb:ca:bd:bf:34:bc: 9d:0a:b2:4a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0OTAxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2FmYy1jNDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BBcpefcKG4EfncyawnS4hNF1dktnda2lmC5oguzZtmf4LcJmPnZ/kV76sKO cm10YytGw33MBUNMm3hW23SfuGvFU2hDXNHuz7O3xBcW+fIqRCekti51/pQLYFxN 225eGgeoXRm8JvDF6J0dkGkJA5KhK6VQKXSGqDDT6LCpHRyLBZ/yveLZBEpVxgNe cEqxx5fpmrOvcYYTFNmUkRA4WLP211IZTLotfVwaYS+38EQ7tasHwRTOtnkfrXnp okFApPUqOhKYyg9l/KC/6SZOXmZu3DmJhYrxwRN2/zv+ANAWKSZC5jylniT5ruaS X7QgB/8iAPuyTKQ7K555rEHUwwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPHoZV0G 7AUcAgH3pEQQ6rjaLwvVMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjJCMzZERTRG RTkxMTFFQ0FGRDlCQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKPvYwDwQCAAIwCQMHACABDfACyTANBgkqhkiG9w0BAQsF AAOCAQEAFK+XOdW9NomCz0ou+cMTyvVWmIv6jYvBy9VxyI5n4ET1Deuququ2LcDF LjT2KSzT4cq2AcRMGG1fiAmiV+BCsHZzZgPJSyyV1ggaM2QoREK9gVklB/+Z+FV7 NCxB71hIeDzIc3f1vWBWNR492BlATKOW1+ze53npoZzaS88NEb+/ZAjA+DVqWj1w +xZjEiQrVBlAGj24y9ptbx8txhWlbm0bFH3jqLs8jXuoFGLHeiZSRg+x3B7zVsKy KGhU2/5t73SpgwwDY4rkqEm6+L7ea22LCGzjQhLVJYRPL4VI7qTPEHWBPJZmnLf7 oFuprRmWpbVosNGW68q9vzS8nQqySg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org