$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E5244F96B8F811E9A19FDA10C4F9AE02.roa File: E5244F96B8F811E9A19FDA10C4F9AE02.roa (raw, json) Hash identifier: 8oIBBiqCY1Ke1co73jCR4nePk4UdTXpT9lQ2wueD4XE= Subject key identifier: 47:62:86:C1:A9:EE:82:20:45:27:E2:5D:46:50:90:89:12:F5:D4:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7153 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E5244F96B8F811E9A19FDA10C4F9AE02.roa Signing time: Wed 10 May 2023 16:47:41 +0000 ROA not before: Wed 10 May 2023 16:47:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 17913 IP address blocks: 203.77.192.0/24 maxlen: 24 203.77.195.0/24 maxlen: 24 203.77.196.0/24 maxlen: 24 203.77.197.0/24 maxlen: 24 203.77.198.0/24 maxlen: 24 203.77.200.0/24 maxlen: 24 203.77.201.0/24 maxlen: 24 203.77.202.0/24 maxlen: 24 203.77.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29011 (0x7153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:47:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcaac-4d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:dc:98:1b:5e:6b:63:22:05:c3:89:9c:c7: 3c:49:0e:94:e9:69:58:97:34:cc:d9:88:70:41:6d: 98:3f:af:67:80:ef:d8:4d:1a:bf:1f:a7:f4:21:61: 02:86:41:ff:b8:33:ea:04:ef:fe:6e:66:97:00:35: 1e:45:f9:1f:b1:83:fd:f6:99:0a:ab:a7:82:97:ac: 3c:40:46:e4:3b:3f:91:ea:65:61:75:6f:04:70:12: 7e:d1:df:bd:c7:65:0f:d0:cd:d1:94:06:c2:23:33: 42:0f:b3:c1:eb:ca:17:f6:8c:e0:2d:81:1c:c4:77: c0:d2:b7:c8:85:0b:ab:aa:ab:c6:d5:b4:c2:90:25: 1e:ed:08:f4:b8:34:76:15:a9:19:94:cb:06:bb:90: 9a:0b:00:70:32:05:28:8d:07:d2:1d:e2:9b:46:b2: 14:6c:63:30:c1:fd:e8:a0:95:25:a3:cb:50:b9:e4: e7:e3:cf:41:03:87:45:66:b6:02:1e:97:8b:98:9c: 56:fb:bc:39:f2:61:60:05:9b:aa:70:80:3d:43:91: 2b:52:c0:c8:56:23:c5:25:d0:3c:27:a4:cd:4e:16: 17:73:1a:b1:02:51:d6:fc:db:28:6c:84:c4:db:d9: b6:ff:da:cf:db:0a:ad:3b:62:f4:86:98:6c:27:08: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:62:86:C1:A9:EE:82:20:45:27:E2:5D:46:50:90:89:12:F5:D4:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E5244F96B8F811E9A19FDA10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.77.192.0/24 203.77.195.0-203.77.198.255 203.77.200.0-203.77.202.255 203.77.206.0/24 Signature Algorithm: sha256WithRSAEncryption ad:5f:f2:39:47:0e:d5:9d:57:6b:6c:2b:a1:26:34:b2:17:66: fd:8d:a5:5b:4a:01:bb:3c:0e:8c:e7:c4:9a:7e:1e:45:c4:b4: 6e:23:dd:5c:82:6c:b6:55:d0:9c:d2:9e:ea:21:69:1e:21:0a: e4:f6:a3:9d:c4:48:e9:15:d1:22:f7:be:51:67:2d:90:9c:23: 3d:75:91:2a:b6:9c:31:c1:e8:06:7d:54:40:2d:7c:ea:99:a4: f4:bb:41:2d:ab:a1:95:7a:0d:11:48:1a:38:2f:77:1b:a6:ee: 91:b7:f3:79:ab:2e:9d:c8:e2:f8:72:b0:7d:a0:6e:63:11:4e: 43:9b:fe:29:05:ab:1a:77:e0:e4:6b:6d:b8:ca:97:ba:79:c7: b6:8a:ce:d0:18:4e:e1:f0:06:bd:fc:30:e9:77:bf:46:59:7e: bd:b8:3f:03:52:53:9a:02:b6:41:62:60:8c:eb:04:b3:f8:6c: 99:15:ce:90:b7:19:b3:e7:f6:e2:06:92:64:73:45:6a:48:87: c6:6d:c9:84:24:aa:fb:21:57:69:fa:e4:33:8a:ea:fb:8b:2c: 10:0b:26:6d:57:fd:9d:9d:61:fe:4c:e7:eb:a2:c2:29:4a:cb: 1f:32:f3:1b:b8:94:f1:58:69:79:46:46:10:70:28:14:5d:76: ed:07:71:bc -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICcVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NzQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2FhYy00ZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwubcmBtea2MiBcOJnMc8SQ6U6WlYlzTM2YhwQW2YP69ngO/YTRq/H6f0IWEC hkH/uDPqBO/+bmaXADUeRfkfsYP99pkKq6eCl6w8QEbkOz+R6mVhdW8EcBJ+0d+9 x2UP0M3RlAbCIzNCD7PB68oX9ozgLYEcxHfA0rfIhQurqqvG1bTCkCUe7Qj0uDR2 FakZlMsGu5CaCwBwMgUojQfSHeKbRrIUbGMwwf3ooJUlo8tQueTn489BA4dFZrYC HpeLmJxW+7w58mFgBZuqcIA9Q5ErUsDIViPFJdA8J6TNThYXcxqxAlHW/NsobITE 29m2/9rP2wqtO2L0hphsJwgBoQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFEdihsGp 7oIgRSfiXUZQkIkS9dTfMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTUyNDRGOTZC OEY4MTFFOUExOUZEQTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBADLTcAwDAMEAMtNwwMEAMtNxjAMAwQDy03IAwQAy03KAwQA y03OMA0GCSqGSIb3DQEBCwUAA4IBAQCtX/I5Rw7VnVdrbCuhJjSyF2b9jaVbSgG7 PA6M58Safh5FxLRuI91cgmy2VdCc0p7qIWkeIQrk9qOdxEjpFdEi975RZy2QnCM9 dZEqtpwxwegGfVRALXzqmaT0u0Etq6GVeg0RSBo4L3cbpu6Rt/N5qy6dyOL4crB9 oG5jEU5Dm/4pBasad+Dka224ype6ece2is7QGE7h8Aa9/DDpd79GWX69uD8DUlOa ArZBYmCM6wSz+GyZFc6Qtxmz5/biBpJkc0VqSIfGbcmEJKr7IVdp+uQziur7iywQ CyZtV/2dnWH+TOfrosIpSssfMvMbuJTxWGl5RkYQcCgUXXbtB3G8 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org