$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa File: 95EE2A18A8C511EC8F560C42C4F9AE02.roa (raw, json) Hash identifier: M4HPgBOO5pJ7PjcbHOa/SIDwM61f1POslUg3wcmElmY= Subject key identifier: 95:43:76:E7:4D:BD:0D:E9:83:5E:78:C9:6C:D6:FE:C5:3F:DC:4E:44 Certificate issuer: /CN=A91A7D50/serialNumber=7FA83F6204045A795622F3EDFE0715CC9158948C Certificate serial: 0277 Authority key identifier: 7F:A8:3F:62:04:04:5A:79:56:22:F3:ED:FE:07:15:CC:91:58:94:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa Signing time: Sun 09 Jul 2023 02:02:00 +0000 ROA not before: Sun 09 Jul 2023 02:02:00 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45768 IP address blocks: 203.33.180.0/24 maxlen: 24 203.33.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.crl rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7D50/serialNumber=7FA83F6204045A795622F3EDFE0715CC9158948C Validity Not Before: Jul 9 02:02:00 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64aa1517-8a2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:47:fe:b2:ec:c0:f7:f7:a0:1f:ac:2d:aa:32: 41:47:dd:3a:19:75:d9:55:f5:f8:e8:4b:fd:29:d5: 55:13:06:41:b1:20:13:46:c8:61:d1:d3:e8:89:09: 8c:a9:bc:34:98:67:49:67:90:96:f8:3d:a9:51:81: e2:6e:01:fb:49:08:7f:96:2e:c6:b7:fa:a8:e1:57: 51:89:d9:f0:75:3a:ac:44:37:9c:3c:cb:c9:c7:4d: 03:bb:d4:1b:10:f0:f9:ad:0d:05:76:b8:c5:7e:fe: 85:db:e0:8c:7d:7a:f0:81:9c:fd:ce:b5:5f:3d:0f: aa:fa:45:63:96:bd:ad:65:f3:52:56:54:85:ea:96: 9d:d5:2b:69:c9:1d:aa:96:51:44:8c:a6:d4:74:a9: 13:a3:41:d4:86:0a:ce:3a:59:a7:71:40:01:29:7a: aa:cb:34:e3:11:bf:91:3d:72:6d:e2:d9:b8:bb:80: 10:48:89:d6:99:23:8b:b4:9b:c3:25:de:fb:9d:5e: 58:dd:e6:a1:4a:2c:5d:b4:c9:1c:e8:9e:99:02:79: 2d:20:fb:8f:54:08:a4:b1:06:80:71:98:b6:a2:ff: 41:31:a5:04:77:9c:de:9c:d5:eb:a2:a9:22:25:32: 30:3d:e1:80:68:0e:6e:b0:35:08:4d:a2:74:28:79: fe:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:43:76:E7:4D:BD:0D:E9:83:5E:78:C9:6C:D6:FE:C5:3F:DC:4E:44 X509v3 Authority Key Identifier: keyid:7F:A8:3F:62:04:04:5A:79:56:22:F3:ED:FE:07:15:CC:91:58:94:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/f6g_YgQEWnlWIvPt_gcVzJFYlIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f6g_YgQEWnlWIvPt_gcVzJFYlIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7D50/6CD5259884A611EC92F89D44C4F9AE02/95EE2A18A8C511EC8F560C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.180.0/23 Signature Algorithm: sha256WithRSAEncryption 89:76:21:a9:1d:a0:2b:47:e3:9e:eb:87:52:a0:2f:14:39:d7: 46:61:ec:6d:fc:38:08:a5:55:3a:ba:04:65:ec:a3:5e:a4:a9: 50:50:5c:df:a5:04:4e:de:c4:61:e0:b0:21:d6:65:ce:85:59: eb:1b:bb:7d:48:68:6f:dd:57:8a:1d:e7:4b:74:c3:73:cc:f4: b2:09:fc:cc:85:b2:18:41:96:08:93:77:7f:cd:4f:33:95:0b: 17:aa:da:05:3b:98:e3:b9:29:ad:32:e2:62:2d:71:9d:b0:5c: a9:5d:1e:50:41:7e:a6:4f:c3:99:75:36:b8:7f:18:7b:a5:b1: f4:c2:ba:d9:3d:b9:a4:ec:9d:4a:f1:87:80:7a:b7:c6:1c:43: 59:be:3b:2a:31:26:d7:c0:0d:66:ad:b9:ab:f1:74:0e:70:55: 67:60:11:fa:b5:24:12:f3:8d:b4:67:5c:79:62:20:51:a5:85: d9:c4:5f:0c:78:50:af:53:48:88:69:e7:61:36:f5:83:dc:eb: a5:25:4f:39:c8:02:5c:69:de:21:16:a6:d7:b2:7a:5a:4f:58: 4c:b5:5a:aa:93:be:43:99:62:e6:ac:7e:3c:b9:17:08:02:5e: 92:5c:83:5f:d4:0e:2d:db:27:82:30:73:7c:99:0a:a9:81:80: 9b:7d:3b:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdENTAxMTAvBgNVBAUTKDdGQTgzRjYyMDQwNDVBNzk1NjIyRjNFREZFMDcxNUND OTE1ODk0OEMwHhcNMjMwNzA5MDIwMjAwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFhMTUxNy04YTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Uf+suzA9/egH6wtqjJBR906GXXZVfX46Ev9KdVVEwZBsSATRshh0dPoiQmM qbw0mGdJZ5CW+D2pUYHibgH7SQh/li7Gt/qo4VdRidnwdTqsRDecPMvJx00Du9Qb EPD5rQ0FdrjFfv6F2+CMfXrwgZz9zrVfPQ+q+kVjlr2tZfNSVlSF6pad1StpyR2q llFEjKbUdKkTo0HUhgrOOlmncUABKXqqyzTjEb+RPXJt4tm4u4AQSInWmSOLtJvD Jd77nV5Y3eahSixdtMkc6J6ZAnktIPuPVAiksQaAcZi2ov9BMaUEd5zenNXroqki JTIwPeGAaA5usDUITaJ0KHn+3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJVDdudN vQ3pg154yWzW/sU/3E5EMB8GA1UdIwQYMBaAFH+oP2IEBFp5ViLz7f4HFcyRWJSM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Q1MC82Q0Q1MjU5ODg0 QTYxMUVDOTJGODlENDRDNEY5QUUwMi9mNmdfWWdRRVdubFdJdlB0X2djVnpKRlls SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y2Z19ZZ1FFV25sV0l2UHRfZ2NWekpGWWxJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdENTAvNkNENTI1OTg4NEE2MTFFQzkyRjg5RDQ0QzRGOUFFMDIvOTVFRTJBMThB OEM1MTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLIbQwDQYJKoZIhvcNAQELBQADggEBAIl2IakdoCtH457r h1KgLxQ510Zh7G38OAilVTq6BGXso16kqVBQXN+lBE7exGHgsCHWZc6FWesbu31I aG/dV4od50t0w3PM9LIJ/MyFshhBlgiTd3/NTzOVCxeq2gU7mOO5Ka0y4mItcZ2w XKldHlBBfqZPw5l1Nrh/GHulsfTCutk9uaTsnUrxh4B6t8YcQ1m+OyoxJtfADWat uavxdA5wVWdgEfq1JBLzjbRnXHliIFGlhdnEXwx4UK9TSIhp52E29YPc66UlTznI Alxp3iEWpteyelpPWEy1WqqTvkOZYuasfjy5FwgCXpJcg1/UDi3bJ4Iwc3yZCqmB gJt9OzQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:23 2024 by rpki-client on console-ams.rpki-client.org