$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa File: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (raw, json) Hash identifier: ZoZ0a7M+kraJmZ/mLJEnhPou8KIgfV84FyKgedDACQA= Subject key identifier: A5:9E:23:6E:D0:3E:F6:FF:91:27:9E:2D:4C:F6:B9:A6:86:35:08:FF Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0A66 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa Signing time: Sat 04 Nov 2023 20:07:49 +0000 ROA not before: Sat 04 Nov 2023 20:07:48 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45485 IP address blocks: 203.194.252.0/24 maxlen: 24 203.194.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Nov 4 20:07:48 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6546a494-634e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:de:c4:6d:0a:49:62:35:15:8b:51:18:ef:2a: 68:d5:b7:00:da:b9:65:81:8d:db:de:27:a5:77:77: 06:41:01:c5:95:4d:2c:45:09:07:95:3b:4f:a0:e7: 42:01:51:08:2b:f6:34:74:57:89:43:0e:fb:df:74: 6f:5c:cb:bc:84:e1:c4:53:1b:56:ce:35:05:66:57: 93:df:77:47:e7:29:76:b7:ae:58:10:bb:1e:eb:f0: fc:cd:2a:50:f3:d5:33:55:77:35:31:79:0b:90:08: 3f:e5:11:e2:61:70:65:4a:47:22:4b:a2:78:1c:2b: 26:83:13:92:04:b9:dd:1f:eb:64:b6:4a:dc:a4:fb: d5:41:e3:72:1e:00:e5:0b:32:49:2a:a7:17:8f:5b: 6d:f9:3b:e3:f8:50:8f:26:3a:75:8d:f1:ac:c8:eb: 58:63:63:1b:f5:3b:36:9e:d1:08:dd:aa:bb:c1:5a: cc:20:28:db:ea:51:da:8c:33:ba:14:5d:56:08:9d: b4:7b:f5:c3:27:e9:e5:b1:84:c7:82:45:2c:02:37: bf:f6:57:47:20:98:8a:7f:a1:4b:12:a6:8c:da:1a: 6a:f1:a0:57:30:0b:e1:cd:d3:ee:7c:c5:d4:bf:75: 3a:9f:59:f6:ec:2a:24:45:f0:13:5f:d3:47:96:37: da:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9E:23:6E:D0:3E:F6:FF:91:27:9E:2D:4C:F6:B9:A6:86:35:08:FF X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/EC4AB04AAA5511EABCEBDE19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.194.252.0/23 Signature Algorithm: sha256WithRSAEncryption 43:0e:19:75:db:a3:ba:77:35:cb:ae:da:ae:75:26:6f:ab:cf: 52:05:db:af:2e:d1:84:7b:30:12:8a:47:cb:27:1a:6c:9d:c8: 84:dc:c4:ca:c6:01:74:c9:4f:0d:37:1f:a5:f6:27:e5:9d:99: ac:cb:eb:6c:50:3f:11:e4:64:84:be:5e:0e:a8:90:13:3a:23: cd:4e:66:02:35:74:9e:64:0e:28:0e:7b:d7:2a:fa:41:c2:7a: 4d:10:40:1b:8b:4c:22:fb:66:b9:a2:20:17:70:db:43:dc:4c: 53:53:9e:93:2f:f3:f9:4a:55:d3:6e:70:43:12:96:d2:fc:e9: c3:ef:4b:51:a6:09:47:7a:e0:65:dc:e4:70:83:b8:a1:5e:a8: 39:e3:2a:1e:16:9f:af:42:4a:d3:c8:e8:c3:ce:f2:00:ff:1f: 05:f0:e1:a0:b8:47:10:53:81:09:ea:ae:26:6e:32:fe:ec:7a: e9:94:d6:a2:a8:65:ed:4c:76:da:ae:fc:4a:33:b4:a6:bb:c0: 27:38:37:cc:c6:83:01:6c:b2:55:40:23:dc:ec:f5:90:b3:f3: 82:86:3f:bc:2a:f1:06:9e:c4:37:ce:6b:01:fe:8d:d9:94:0b: db:c6:48:a6:a7:50:a2:4c:cd:2e:d6:4f:ba:58:68:ed:52:2d: 87:08:0e:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjMxMTA0MjAwNzQ4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2YTQ5NC02MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA197EbQpJYjUVi1EY7ypo1bcA2rllgY3b3ield3cGQQHFlU0sRQkHlTtPoOdC AVEIK/Y0dFeJQw7733RvXMu8hOHEUxtWzjUFZleT33dH5yl2t65YELse6/D8zSpQ 89UzVXc1MXkLkAg/5RHiYXBlSkciS6J4HCsmgxOSBLndH+tktkrcpPvVQeNyHgDl CzJJKqcXj1tt+Tvj+FCPJjp1jfGsyOtYY2Mb9Ts2ntEI3aq7wVrMICjb6lHajDO6 FF1WCJ20e/XDJ+nlsYTHgkUsAje/9ldHIJiKf6FLEqaM2hpq8aBXMAvhzdPufMXU v3U6n1n27CokRfATX9NHljfaPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKWeI27Q Pvb/kSeeLUz2uaaGNQj/MB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA5QkYvRDEzREExRDQyREZDMTFFQUJDMUI2QjgyQzRGOUFFMDIvRUM0QUIwNEFB QTU1MTFFQUJDRUJERTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLwvwwDQYJKoZIhvcNAQELBQADggEBAEMOGXXbo7p3Ncuu 2q51Jm+rz1IF268u0YR7MBKKR8snGmydyITcxMrGAXTJTw03H6X2J+WdmazL62xQ PxHkZIS+Xg6okBM6I81OZgI1dJ5kDigOe9cq+kHCek0QQBuLTCL7ZrmiIBdw20Pc TFNTnpMv8/lKVdNucEMSltL86cPvS1GmCUd64GXc5HCDuKFeqDnjKh4Wn69CStPI 6MPO8gD/HwXw4aC4RxBTgQnqriZuMv7seumU1qKoZe1Mdtqu/EoztKa7wCc4N8zG gwFsslVAI9zs9ZCz84KGP7wq8QaexDfOawH+jdmUC9vGSKanUKJMzS7WT7pYaO1S LYcIDnM= -----END CERTIFICATE-----Generated at Thu May 16 22:34:50 2024 by rpki-client on console-ams.rpki-client.org