$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa File: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (raw, json) Hash identifier: p4TNgo9wMcdad9TW6jRHKAurVuODUEQBPpYKh3qruTY= Subject key identifier: CF:93:41:44:35:E4:FA:9A:7A:E1:1A:DE:C5:06:9E:ED:0F:7C:48:0E Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0421 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:40 +0000 ROA not before: Mon 01 Jan 2024 02:03:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 25369 IP address blocks: 202.43.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d7c-00b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4a:1a:2b:52:f3:af:92:be:15:a1:c4:2a:ba: 64:42:29:1d:b9:c7:3f:95:3e:ac:0b:5b:32:84:da: 80:28:14:57:fe:8a:52:78:b6:cd:61:f1:ef:ef:8b: 2b:45:09:fe:b8:ed:00:21:22:40:8a:e6:a7:5f:4c: e8:7f:ab:30:c4:c6:f5:69:a8:01:db:7f:6d:22:8a: 21:e8:b6:aa:6c:bb:aa:fe:ee:b5:59:90:b4:1c:ab: ae:31:01:85:00:17:86:20:14:91:14:39:c7:89:3c: 47:24:78:6f:3b:96:ef:79:d7:b2:7d:a1:4e:1f:c1: 2d:53:28:92:a9:6b:ba:8e:d7:b6:85:a9:95:00:66: 08:d8:89:e4:33:55:d0:e3:2a:ee:2e:a3:05:d6:4b: 09:76:d9:e3:7d:cc:5a:4d:01:c3:92:6b:54:d6:a8: 24:9c:44:a0:f7:e1:ef:a4:dd:ed:5f:e8:34:9d:82: 57:63:ab:73:82:ac:0a:96:14:2e:bd:d7:e6:9a:d3: 4d:5e:cf:55:0e:67:a3:5b:0e:f9:d6:99:bb:6b:eb: 93:89:47:a7:34:b9:e8:d0:2e:ed:61:45:e9:91:8b: 91:4b:8d:85:3f:43:85:a1:da:7e:40:d9:42:25:cb: 82:52:36:6c:5b:6c:27:a2:19:49:2e:3e:c6:03:24: 37:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:93:41:44:35:E4:FA:9A:7A:E1:1A:DE:C5:06:9E:ED:0F:7C:48:0E X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BD4E85B09E6311ECA6EC8071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.6.0/24 Signature Algorithm: sha256WithRSAEncryption 18:f7:8b:ab:ee:89:bb:97:cc:99:77:0c:c5:eb:df:6a:89:97: 8c:d7:37:9f:c3:93:e3:23:a3:00:e6:39:53:4d:f3:b3:85:cf: 48:2d:dc:5a:9e:f7:09:b6:41:48:fc:44:26:47:5a:01:d9:45: 05:ba:17:6a:6e:53:3c:4d:3e:65:b8:aa:54:06:cd:dd:c9:26: 8a:3f:9e:ba:92:4a:60:57:b8:cc:72:ae:07:5d:ee:08:e6:82: d6:41:56:fa:c7:7d:e4:ee:47:5a:43:6a:8b:66:eb:ee:07:d5: 88:75:e6:ae:df:47:83:84:cc:f0:0b:69:90:5d:f6:96:4f:84: 4b:92:65:f0:23:c5:c0:de:44:4e:a0:e1:ac:a0:ff:83:c7:ec: 0f:ec:4e:4e:88:3f:1a:09:69:3b:03:5a:96:f4:f7:35:2e:45: 97:4f:3f:6d:22:5f:70:b0:0d:42:ec:11:9e:c4:12:3e:bc:be: 54:a8:45:c2:2a:a8:71:01:f0:70:0a:91:4a:36:c5:a4:20:a8: 18:7c:73:55:c6:60:d8:6f:df:9f:e7:3e:cf:08:d6:c2:fd:3e: c1:f1:5e:66:db:13:be:92:46:2b:fa:6a:d3:77:85:27:f9:0d: 8d:2c:7c:3e:45:5b:e3:2e:8d:48:0c:f7:42:16:2b:6e:af:00: 1f:34:ec:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ3Yy0wMGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UoaK1Lzr5K+FaHEKrpkQikducc/lT6sC1syhNqAKBRX/opSeLbNYfHv74sr RQn+uO0AISJAiuanX0zof6swxMb1aagB239tIooh6LaqbLuq/u61WZC0HKuuMQGF ABeGIBSRFDnHiTxHJHhvO5bvedeyfaFOH8EtUyiSqWu6jte2hamVAGYI2InkM1XQ 4yruLqMF1ksJdtnjfcxaTQHDkmtU1qgknESg9+HvpN3tX+g0nYJXY6tzgqwKlhQu vdfmmtNNXs9VDmejWw751pm7a+uTiUenNLno0C7tYUXpkYuRS42FP0OFodp+QNlC JcuCUjZsW2wnohlJLj7GAyQ3gQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM+TQUQ1 5PqaeuEa3sUGnu0PfEgOMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQkQ0RTg1QjA5 RTYzMTFFQ0E2RUM4MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKwYwDQYJKoZIhvcNAQELBQADggEBABj3i6vuibuXzJl3 DMXr32qJl4zXN5/Dk+MjowDmOVNN87OFz0gt3Fqe9wm2QUj8RCZHWgHZRQW6F2pu UzxNPmW4qlQGzd3JJoo/nrqSSmBXuMxyrgdd7gjmgtZBVvrHfeTuR1pDaotm6+4H 1Yh15q7fR4OEzPALaZBd9pZPhEuSZfAjxcDeRE6g4ayg/4PH7A/sTk6IPxoJaTsD Wpb09zUuRZdPP20iX3CwDULsEZ7EEj68vlSoRcIqqHEB8HAKkUo2xaQgqBh8c1XG YNhv35/nPs8I1sL9PsHxXmbbE76SRiv6atN3hSf5DY0sfD5FW+MujUgM90IWK26v AB807ME= -----END CERTIFICATE-----Generated at Fri May 3 03:10:55 2024 by rpki-client on console-ams.rpki-client.org