$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/86EB79708F1011EE9F013A61C4F9AE02.roa File: 86EB79708F1011EE9F013A61C4F9AE02.roa (raw, json) Hash identifier: PFvirkze092+A2fSWCZLyrdNbDRpoINf3y4pSF8csaI= Subject key identifier: 02:11:E2:37:B6:E2:72:BD:BF:AC:C8:28:3A:0B:09:10:8F:AC:EC:67 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 02E1 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/86EB79708F1011EE9F013A61C4F9AE02.roa Signing time: Wed 29 Nov 2023 23:39:24 +0000 ROA not before: Wed 29 Nov 2023 23:39:24 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 209854 IP address blocks: 203.32.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Nov 29 23:39:24 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6567cbac-4ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:10:50:59:ad:82:c6:e4:ec:6e:7a:07:82:bd: b6:4e:4b:da:e1:81:9d:c9:b2:75:92:63:92:c6:9a: 85:84:e0:42:ef:a5:ae:5f:50:eb:0d:93:1f:e5:f9: 49:e2:14:66:c0:93:45:57:64:ed:ce:1d:96:f7:f2: 3d:6a:2a:13:ed:09:17:18:34:3f:9e:ac:2e:e2:4f: 2b:fc:3a:34:ec:eb:db:d6:01:e3:9d:3b:09:3e:74: 55:53:d9:81:cc:52:a9:1f:c2:b3:5c:16:44:d5:dd: f5:7f:93:52:9d:1a:31:2e:ad:42:df:7a:2d:db:81: 68:a2:37:f3:81:22:b3:02:5a:06:e7:3a:6b:58:a8: 3b:ef:f8:ed:91:7b:10:21:62:71:ba:84:69:0b:11: 9b:11:ef:1e:bf:31:f1:7a:87:b5:24:5b:fb:2c:7a: 89:94:93:c9:fe:14:38:47:41:a3:0b:63:2e:d6:41: 3e:ea:a7:e3:3e:e0:d6:bc:38:00:3e:4e:57:cd:ba: 82:f4:75:88:d8:bd:ab:7d:dc:0c:53:b0:c2:f0:30: 3f:14:f6:7e:96:ec:ae:fa:05:b2:43:61:af:21:b6: 45:b6:3d:07:07:a8:d5:57:e9:96:1b:2e:9d:70:07: d7:27:a9:72:a9:20:95:62:36:fd:4c:54:85:8e:55: 4a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:11:E2:37:B6:E2:72:BD:BF:AC:C8:28:3A:0B:09:10:8F:AC:EC:67 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/86EB79708F1011EE9F013A61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.7.0/24 Signature Algorithm: sha256WithRSAEncryption 67:fe:88:56:5c:60:42:72:29:76:c5:10:c0:84:69:c5:6c:2e: 3b:9e:e9:c9:97:56:47:4d:1c:8e:68:1b:99:3f:b3:d8:1d:f5: cd:db:e2:36:b8:fc:e3:0e:56:08:6f:be:cf:e8:18:0a:a0:98: d8:ae:86:07:db:87:76:6c:92:62:1b:2d:d1:59:ef:b3:2c:6a: a1:b9:12:9b:d4:9b:3c:9a:d1:09:e1:d2:2d:0f:6e:31:5f:d6: 21:5a:34:3e:5b:ec:db:cf:1d:4b:15:bd:08:26:54:3a:36:a9: 7d:a5:1d:1c:a1:88:02:5f:79:43:1e:96:5f:87:11:e2:26:39: ab:d8:03:9e:e9:84:21:28:4a:f7:47:4a:8d:9f:f4:8e:48:81: 56:5f:df:ea:f5:a4:11:0f:76:cd:82:7a:af:52:bf:d1:37:b8: 25:4f:b9:50:51:66:30:b4:58:f9:10:05:ba:8a:82:a5:ce:02: 4c:cc:99:b1:ab:53:b7:28:ea:79:f6:9b:60:f0:6f:97:01:67: 46:d5:60:ca:16:d3:4b:bd:24:c4:fa:e0:1c:7f:c2:2a:6b:eb: 82:04:6d:e6:ee:26:da:0e:4c:70:4f:29:1a:7e:ba:66:85:94: 65:3c:c7:76:b8:6b:47:44:12:83:09:5c:51:29:30:1d:8f:ab: cc:a9:56:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjMxMTI5MjMzOTI0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY3Y2JhYy00ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BBQWa2CxuTsbnoHgr22Tkva4YGdybJ1kmOSxpqFhOBC76WuX1DrDZMf5flJ 4hRmwJNFV2Ttzh2W9/I9aioT7QkXGDQ/nqwu4k8r/Do07Ovb1gHjnTsJPnRVU9mB zFKpH8KzXBZE1d31f5NSnRoxLq1C33ot24FoojfzgSKzAloG5zprWKg77/jtkXsQ IWJxuoRpCxGbEe8evzHxeoe1JFv7LHqJlJPJ/hQ4R0GjC2Mu1kE+6qfjPuDWvDgA Pk5XzbqC9HWI2L2rfdwMU7DC8DA/FPZ+luyu+gWyQ2GvIbZFtj0HB6jVV+mWGy6d cAfXJ6lyqSCVYjb9TFSFjlVKhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIR4je2 4nK9v6zIKDoLCRCPrOxnMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvODZFQjc5NzA4 RjEwMTFFRTlGMDEzQTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIAcwDQYJKoZIhvcNAQELBQADggEBAGf+iFZcYEJyKXbF EMCEacVsLjue6cmXVkdNHI5oG5k/s9gd9c3b4ja4/OMOVghvvs/oGAqgmNiuhgfb h3ZskmIbLdFZ77MsaqG5EpvUmzya0Qnh0i0PbjFf1iFaND5b7NvPHUsVvQgmVDo2 qX2lHRyhiAJfeUMell+HEeImOavYA57phCEoSvdHSo2f9I5IgVZf3+r1pBEPds2C eq9Sv9E3uCVPuVBRZjC0WPkQBbqKgqXOAkzMmbGrU7co6nn2m2Dwb5cBZ0bVYMoW 00u9JMT64Bx/wipr64IEbebuJtoOTHBPKRp+umaFlGU8x3a4a0dEEoMJXFEpMB2P q8ypVrg= -----END CERTIFICATE-----Generated at Tue May 7 04:34:51 2024 by rpki-client on console-fra.rpki-client.org