$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa File: BD5B75800C4E11EF85EEFC1FC4F9AE02.roa (raw, json) Hash identifier: xaR/5Ccw2lDY5KX63BsQFOarcvZGJFsyVG9k/CVWfJM= Subject key identifier: C5:FF:A3:CA:6E:5B:35:D4:1E:C1:E0:77:81:04:57:71:55:9D:95:02 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 1C Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa Signing time: Tue 07 May 2024 08:49:40 +0000 ROA not before: Tue 07 May 2024 08:49:40 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 3491 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: May 7 08:49:40 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6639eb23-25e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:60:94:55:37:fd:75:93:51:eb:b4:44:d2: df:bd:b4:f4:14:40:32:f9:fa:16:90:0c:6e:f0:65: 66:dc:fd:9f:74:4e:a8:d5:c3:cc:f8:a5:85:aa:ac: 55:9b:58:09:41:b1:84:48:27:e4:75:e3:49:2c:07: bb:14:41:ec:ad:76:51:1b:60:cb:d4:86:7a:ea:ff: e3:f4:7d:6b:10:db:f7:fe:b5:92:97:e5:e0:ee:b7: 7e:69:be:98:68:19:ec:16:a0:c4:ad:53:76:59:11: 00:ff:16:73:1c:cb:aa:7a:6a:be:8d:1a:3a:91:d8: 3e:c6:9e:c0:a7:f5:00:6d:11:6b:5d:9c:43:22:40: da:79:17:7a:88:4c:c3:8d:34:b2:dd:50:33:8a:2c: f1:6c:e9:10:51:56:38:8e:c4:21:97:f7:16:3e:3d: 6b:5b:cf:b2:8a:7c:b7:75:1a:91:a2:3e:99:eb:36: f7:61:2b:dc:35:c1:c9:d9:d7:3c:49:ce:e0:12:36: 12:8a:ab:54:44:25:b4:5e:d7:79:eb:28:56:7b:27: d0:2a:89:ac:78:ab:ee:29:5e:9b:e8:9d:aa:22:5d: 9c:af:eb:65:56:46:e9:df:41:ac:45:a8:8c:57:3b: 40:7d:c6:76:7c:f3:a4:f5:82:e8:c9:25:7a:f6:f6: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FF:A3:CA:6E:5B:35:D4:1E:C1:E0:77:81:04:57:71:55:9D:95:02 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 44:5d:67:fc:37:48:3a:27:10:58:85:bf:27:28:17:61:6c:15: 1d:d8:bb:16:f8:e6:c9:7b:b7:13:f0:4e:df:da:47:38:e1:b8: 5d:2e:01:55:6c:b0:35:15:b0:12:65:3c:8b:08:e4:12:ee:7d: e7:4d:27:a1:d7:26:25:7b:ff:cc:63:50:f1:44:d7:48:08:bd: 12:57:94:aa:ea:a7:18:1f:0f:d1:0f:24:17:86:8e:99:b0:a9: 96:dc:11:5d:3f:38:5a:57:77:11:31:9d:61:b3:28:fc:a2:66: cd:86:8f:65:e1:d7:f6:62:ff:d1:4b:83:ca:e5:cb:a9:fe:5e: c5:92:c4:3c:e4:75:d2:03:b5:09:51:c7:32:da:f4:7c:d1:1a: 7e:cc:8b:c7:a6:7f:57:b8:e8:47:5e:e6:98:8f:eb:22:f6:bf: 76:87:50:e5:67:dc:8c:d4:9e:cf:ab:85:28:08:f1:f9:48:59: f6:9b:26:15:ef:40:ae:d0:59:82:d5:9b:6a:af:b5:0f:2f:25: 21:fe:4c:6b:9d:02:3e:ae:61:c1:b8:90:26:64:c4:8b:cf:d1: ba:f1:f5:cc:2e:f0:cb:02:84:6b:4b:ca:a6:b1:d8:b7:7a:f4: e2:93:5e:dc:55:f1:f5:e7:c4:09:4d:48:a0:0c:66:62:f4:20: 1a:f4:1a:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTNBMDExMC8GA1UEBRMoQkNCN0NGNDQzMEJCOThFQTA0ODUxQzM0MDcyNkU1ODgx NTBFMTM5RDAeFw0yNDA1MDcwODQ5NDBaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzllYjIzLTI1ZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx1mCUVTf9dZNR67RE0t+9tPQUQDL5+haQDG7wZWbc/Z90TqjVw8z4pYWqrFWb WAlBsYRIJ+R140ksB7sUQeytdlEbYMvUhnrq/+P0fWsQ2/f+tZKX5eDut35pvpho GewWoMStU3ZZEQD/FnMcy6p6ar6NGjqR2D7GnsCn9QBtEWtdnEMiQNp5F3qITMON NLLdUDOKLPFs6RBRVjiOxCGX9xY+PWtbz7KKfLd1GpGiPpnrNvdhK9w1wcnZ1zxJ zuASNhKKq1REJbRe13nrKFZ7J9Aqiax4q+4pXpvonaoiXZyv62VWRunfQaxFqIxX O0B9xnZ886T1gujJJXr29vFBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxf+jym5b NdQeweB3gQRXcVWdlQIwHwYDVR0jBBgwFoAUvLfPRDC7mOoEhRw0BybliBUOE50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5M0EwL0E1OTU1RTU2MEM0 NTExRUY5RTdFMDUxREM0RjlBRTAyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkxmUFJEQzdtT29FaFJ3MEJ5YmxpQlVPRTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi9CRDVCNzU4MDBD NEUxMUVGODVFRUZDMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMpGoDANBgkqhkiG9w0BAQsFAAOCAQEARF1n/DdIOicQWIW/ JygXYWwVHdi7FvjmyXu3E/BO39pHOOG4XS4BVWywNRWwEmU8iwjkEu59500nodcm JXv/zGNQ8UTXSAi9EleUquqnGB8P0Q8kF4aOmbCpltwRXT84Wld3ETGdYbMo/KJm zYaPZeHX9mL/0UuDyuXLqf5exZLEPOR10gO1CVHHMtr0fNEafsyLx6Z/V7joR17m mI/rIva/dodQ5WfcjNSez6uFKAjx+UhZ9psmFe9ArtBZgtWbaq+1Dy8lIf5Ma50C Pq5hwbiQJmTEi8/RuvH1zC7wywKEa0vKprHYt3r04pNe3FXx9efECU1IoAxmYvQg GvQa1w== -----END CERTIFICATE-----Generated at Wed May 29 10:43:57 2024 by rpki-client on console-ams.rpki-client.org