$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa File: 272E95469BDD11EAA977C354C4F9AE02.roa (raw, json) Hash identifier: pX90Bi9L86T2QPWDnLl4En4zB6ZmM52b9FOWQh47a0A= Subject key identifier: 45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4 Certificate issuer: /CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7 Certificate serial: 0820 Authority key identifier: 94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa Signing time: Thu 28 Sep 2023 21:18:27 +0000 ROA not before: Thu 28 Sep 2023 21:18:27 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24226 IP address blocks: 202.160.115.0/24 maxlen: 24 202.160.117.0/24 maxlen: 24 202.160.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7 Validity Not Before: Sep 28 21:18:27 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515eda3-a8d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:07:5d:cc:d9:03:d7:aa:3e:2e:fc:9a:e5: a9:47:92:8d:3d:c1:f8:6e:7d:fe:3b:a3:0e:35:68: 1c:fb:57:6c:e8:9e:75:19:9b:e3:dd:9d:36:70:3e: c8:0d:ed:7e:53:38:d5:38:23:b8:98:be:9d:1c:8b: f4:aa:b4:27:e3:fc:81:f8:e0:20:80:b9:ff:7a:26: f8:53:c8:29:4a:a0:ee:47:69:83:ed:fe:7a:77:bd: 50:f7:93:39:8b:ee:71:c2:2c:28:bc:87:a5:28:74: 7e:28:71:f5:e3:ce:96:07:6d:3f:8b:31:df:bd:03: e0:56:22:8e:8e:40:18:e4:d7:88:12:7f:b3:c8:45: 36:9b:33:2b:36:6c:a9:c2:1a:5d:7d:6f:c3:e7:8e: 18:fa:42:7d:14:15:e7:85:3b:af:f5:52:ba:32:31: d9:8b:65:d3:6d:a9:e7:60:fd:d7:49:d2:b8:22:2e: ba:0b:c6:a2:17:d0:4d:1a:9d:1d:36:2e:a7:d9:f0: a3:a4:bc:e4:00:4c:27:52:b1:7e:e9:87:05:a3:9c: 5b:86:d9:38:a7:00:72:9c:3a:d0:e1:da:dd:fc:fe: a4:d2:b9:5a:27:42:2d:6f:65:f7:bd:82:e5:80:d1: 8d:f4:39:3e:69:69:69:52:c0:cd:a0:e0:cd:ed:e3: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4 X509v3 Authority Key Identifier: keyid:94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.115.0/24 202.160.117.0/24 202.160.119.0/24 Signature Algorithm: sha256WithRSAEncryption 31:55:dc:c2:20:f5:bc:9a:32:6f:58:87:06:f5:e9:86:93:93: ee:a6:f9:0d:15:11:0c:28:92:bf:08:a1:27:11:07:3c:5a:6b: b2:ea:82:16:b4:c1:56:89:b2:49:21:ce:a8:4e:c7:1a:1f:b6: cc:4d:11:8e:23:d1:08:46:ca:de:4a:c9:f9:9b:92:b4:31:e1: 83:35:ff:77:1d:e9:a9:12:12:6d:bb:c0:02:2b:3e:f7:66:f6: 0b:a4:bb:1c:9a:c9:a6:e5:d2:1d:b0:31:9c:39:de:22:44:82: 39:a6:ae:c3:97:19:69:ae:89:ff:0c:2e:43:49:ff:e4:92:73: b4:c6:f5:30:50:55:17:66:7f:55:73:07:8f:b5:4d:9a:e6:3d: f5:9b:8b:75:86:87:6a:c4:37:4c:5e:37:e2:48:bd:7a:f6:3c: c5:dd:d2:71:8f:84:85:73:27:42:21:6b:54:58:9d:3e:15:5d: 29:6f:d1:5c:b7:c9:7a:02:67:12:8d:ba:f7:01:d7:49:42:ad: 20:dc:f6:99:f5:1b:59:49:07:26:19:8f:f9:de:a4:3b:a5:eb: a8:0a:b3:bd:b6:f5:0a:7a:df:e9:70:bf:14:1f:cc:b5:17:fc: 97:d8:76:fe:d1:91:69:a7:2b:45:d1:17:dc:8e:66:c4:82:16: 21:f4:67:63 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFCODkxMTAvBgNVBAUTKDk0N0VGRDFCRjZGOTNBOThERkVCQzE1M0RBQjBEQTc3 Q0M0MDI4QzcwHhcNMjMwOTI4MjExODI3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1ZWRhMy1hOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7AHXczZA9eqPi78muWpR5KNPcH4bn3+O6MONWgc+1ds6J51GZvj3Z02cD7I De1+UzjVOCO4mL6dHIv0qrQn4/yB+OAggLn/eib4U8gpSqDuR2mD7f56d71Q95M5 i+5xwiwovIelKHR+KHH1486WB20/izHfvQPgViKOjkAY5NeIEn+zyEU2mzMrNmyp whpdfW/D544Y+kJ9FBXnhTuv9VK6MjHZi2XTbannYP3XSdK4Ii66C8aiF9BNGp0d Ni6n2fCjpLzkAEwnUrF+6YcFo5xbhtk4pwBynDrQ4drd/P6k0rlaJ0Itb2X3vYLl gNGN9Dk+aWlpUsDNoODN7eMOFwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEXKMtfr KJ3nc2ITA70ey7K6iN7EMB8GA1UdIwQYMBaAFJR+/Rv2+TqY3+vBU9qw2nfMQCjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUI4OS9DRTA2QTlFQzlC REExMUVBODIzMzZBNTBDNEY5QUUwMi9sSDc5R19iNU9wamY2OEZUMnJEYWQ4eEFL TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xINzlHX2I1T3BqZjY4RlQyckRhZDh4QUtNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFCODkvQ0UwNkE5RUM5QkRBMTFFQTgyMzM2QTUwQzRGOUFFMDIvMjcyRTk1NDY5 QkREMTFFQUE5NzdDMzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKoHMDBADKoHUDBADKoHcwDQYJKoZIhvcNAQELBQADggEB ADFV3MIg9byaMm9Yhwb16YaTk+6m+Q0VEQwokr8IoScRBzxaa7Lqgha0wVaJskkh zqhOxxoftsxNEY4j0QhGyt5KyfmbkrQx4YM1/3cd6akSEm27wAIrPvdm9gukuxya yabl0h2wMZw53iJEgjmmrsOXGWmuif8MLkNJ/+SSc7TG9TBQVRdmf1VzB4+1TZrm PfWbi3WGh2rEN0xeN+JIvXr2PMXd0nGPhIVzJ0Iha1RYnT4VXSlv0Vy3yXoCZxKN uvcB10lCrSDc9pn1G1lJByYZj/nepDul66gKs7229Qp63+lwvxQfzLUX/JfYdv7R kWmnK0XRF9yOZsSCFiH0Z2M= -----END CERTIFICATE-----Generated at Thu May 16 22:34:49 2024 by rpki-client on console-ams.rpki-client.org