$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa File: AA73EF167DEB11EEB9699A24C4F9AE02.roa (raw, json) Hash identifier: rQLQAdP1IxP3XKzw8xvchVMqWsSBEY2S7Ops3M2ZpSM= Subject key identifier: 96:AB:3E:AD:2B:68:59:2B:71:30:64:42:95:5B:2B:79:16:EA:9E:10 Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: BD Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa Signing time: Mon 05 Feb 2024 05:26:33 +0000 ROA not before: Mon 05 Feb 2024 05:26:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136557 IP address blocks: 203.20.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Validity Not Before: Feb 5 05:26:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c07189-80b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3b:c2:e8:b4:e4:57:fb:d8:a9:75:be:65:97: b8:a6:11:65:11:4e:74:71:65:71:0c:62:be:4f:64: 5b:e2:c0:5f:e3:1b:70:1a:2d:55:d1:30:d9:62:83: fe:72:9d:bd:1a:87:45:c8:08:65:28:55:f5:2f:2d: aa:30:b8:e4:81:1a:71:c8:3d:36:92:e0:cb:a2:bb: cc:91:cf:b7:88:c1:91:71:30:2d:32:39:08:f7:bb: 6a:7b:01:f9:8d:ca:6a:10:ba:a6:b5:2b:d5:a3:f7: 58:6a:1d:c2:a0:19:4d:63:54:9b:f1:f8:83:87:91: 77:ed:b8:02:33:6d:71:d2:8b:93:ae:93:e7:76:4f: 8a:91:05:45:df:f0:7f:70:cc:ee:a2:55:df:44:4e: 5c:99:1e:47:e8:7c:33:58:4c:76:e3:f3:6b:4e:00: 0b:ff:a9:5a:06:bf:8c:bc:a1:78:d5:40:af:83:f2: 03:00:71:f0:d5:51:f6:21:2e:76:d5:47:10:9d:40: 17:ec:ce:a5:55:83:4e:fc:2a:99:56:de:13:f9:42: fe:e3:da:53:e8:cd:2b:6e:85:75:68:7e:42:96:a8: ee:8c:cc:71:34:1d:4d:61:cc:42:b5:2e:4a:9c:3c: 31:15:af:12:d6:a0:c4:ed:a6:a7:de:0d:8f:27:22: 89:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AB:3E:AD:2B:68:59:2B:71:30:64:42:95:5B:2B:79:16:EA:9E:10 X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.69.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:d9:77:60:99:19:31:6c:c4:17:3c:fc:37:bd:b8:64:dc:fc: 91:64:5d:dc:92:62:1e:09:30:03:3d:5a:ae:a2:88:02:15:e7: 03:82:5b:6a:e3:0d:40:f0:bc:c1:d4:be:69:5b:78:42:70:fc: 09:db:ce:97:d5:61:94:78:70:e1:2e:76:f9:49:96:a3:29:f6: 06:2c:48:9d:92:78:1f:7d:6c:fd:3f:fc:80:01:87:19:33:77: 47:93:ef:11:06:fb:f2:12:9b:72:f8:27:7c:0e:24:5d:08:b1: df:b5:c5:f1:27:4f:fa:74:1e:cb:a5:fd:b4:53:f1:c8:f3:0d: be:d9:2d:c4:49:aa:80:9b:b5:e1:ed:6f:a5:7f:6a:5f:ab:e9: ce:54:18:12:fc:d3:60:cb:83:2c:f5:56:2f:f2:90:3a:b0:e0: 84:70:51:d4:f4:38:db:b8:9a:41:19:7a:48:58:27:88:34:41: 7e:5d:b6:05:52:fd:7e:7c:ca:ef:59:ff:a8:9a:66:38:2d:3a: a8:97:33:d1:01:68:b1:85:b7:a7:7c:68:55:14:73:00:e7:3b: 3f:97:1b:ef:e0:c9:ac:78:93:21:a3:b8:b9:13:1a:1f:85:10: 71:3d:e8:52:7d:da:9f:67:83:42:70:b4:1c:ca:60:e3:c2:53: f7:30:16:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjQwMjA1MDUyNjMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwNzE4OS04MGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TvC6LTkV/vYqXW+ZZe4phFlEU50cWVxDGK+T2Rb4sBf4xtwGi1V0TDZYoP+ cp29GodFyAhlKFX1Ly2qMLjkgRpxyD02kuDLorvMkc+3iMGRcTAtMjkI97tqewH5 jcpqELqmtSvVo/dYah3CoBlNY1Sb8fiDh5F37bgCM21x0ouTrpPndk+KkQVF3/B/ cMzuolXfRE5cmR5H6HwzWEx24/NrTgAL/6laBr+MvKF41UCvg/IDAHHw1VH2IS52 1UcQnUAX7M6lVYNO/CqZVt4T+UL+49pT6M0rboV1aH5ClqjujMxxNB1NYcxCtS5K nDwxFa8S1qDE7aan3g2PJyKJvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJarPq0r aFkrcTBkQpVbK3kW6p4QMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwMEUvNUFBMTgyMkVBRDM5MTFFREEwQjlCODNDQzRGOUFFMDIvQUE3M0VGMTY3 REVCMTFFRUI5Njk5QTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFEUwDQYJKoZIhvcNAQELBQADggEBAHzZd2CZGTFsxBc8 /De9uGTc/JFkXdySYh4JMAM9Wq6iiAIV5wOCW2rjDUDwvMHUvmlbeEJw/AnbzpfV YZR4cOEudvlJlqMp9gYsSJ2SeB99bP0//IABhxkzd0eT7xEG+/ISm3L4J3wOJF0I sd+1xfEnT/p0Hsul/bRT8cjzDb7ZLcRJqoCbteHtb6V/al+r6c5UGBL802DLgyz1 Vi/ykDqw4IRwUdT0ONu4mkEZekhYJ4g0QX5dtgVS/X58yu9Z/6iaZjgtOqiXM9EB aLGFt6d8aFUUcwDnOz+XG+/gyax4kyGjuLkTGh+FEHE96FJ92p9ng0JwtBzKYOPC U/cwFvA= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org