$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/796CD35A5B5511EE8E4D2A39C4F9AE02.roa File: 796CD35A5B5511EE8E4D2A39C4F9AE02.roa (raw, json) Hash identifier: v4kYJFNGl2Wr0wg+DiuqDzB5DKzhN07773+uv/HMHPo= Subject key identifier: D2:87:7A:77:25:7B:66:90:E9:B9:67:4B:8D:69:F6:37:91:24:6D:5A Certificate issuer: /CN=A91AD92A/serialNumber=379B91C930E0A2AF8B822AD9A959BADF5DDD609F Certificate serial: 02 Authority key identifier: 37:9B:91:C9:30:E0:A2:AF:8B:82:2A:D9:A9:59:BA:DF:5D:DD:60:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5uRyTDgoq-LgirZqVm6313dYJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/796CD35A5B5511EE8E4D2A39C4F9AE02.roa Signing time: Mon 25 Sep 2023 03:41:56 +0000 ROA not before: Mon 25 Sep 2023 03:41:56 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 8075 IP address blocks: 203.23.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/N5uRyTDgoq-LgirZqVm6313dYJ8.crl rsync://rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/N5uRyTDgoq-LgirZqVm6313dYJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5uRyTDgoq-LgirZqVm6313dYJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD92A/serialNumber=379B91C930E0A2AF8B822AD9A959BADF5DDD609F Validity Not Before: Sep 25 03:41:56 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65110184-f72e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7e:53:aa:4e:16:80:48:32:38:b5:cb:6e:1d: 51:7f:8d:02:22:26:a0:c7:98:e2:f5:0a:c8:06:05: 65:4d:68:87:69:90:57:94:b9:bf:03:f2:b3:04:a2: 97:c1:f7:1f:e2:97:0c:02:a6:0c:b0:2e:3e:a6:ea: 8f:da:ba:49:a2:32:1e:1e:6b:20:8e:96:8b:97:29: 2f:1f:af:6e:c4:a8:57:d3:5f:09:06:bd:88:c1:d4: 15:5b:7b:71:cc:28:71:ed:aa:3a:ce:be:d4:cd:4f: 84:bf:26:9a:91:39:dd:ac:9a:45:c7:1c:3d:16:01: 9d:6d:77:59:7e:21:1a:9a:89:ab:7b:11:8f:00:50: 44:86:47:41:0c:3b:b6:c7:1b:3f:ad:bb:ef:f7:be: b8:5d:1a:8a:8e:58:c2:ec:33:14:ef:2b:09:70:46: d8:55:ca:75:f2:da:1d:59:22:72:6b:0e:f7:1d:f2: ec:05:7c:7e:b6:0b:5c:df:65:a8:8b:1f:fd:cb:36: 8b:75:bd:22:2d:83:4f:31:c7:25:d0:1f:f6:28:8b: c4:52:2a:d6:88:cf:39:bb:8a:14:58:ae:8a:d2:25: 3c:84:2a:2f:86:5c:0b:6b:72:1c:e7:d0:0a:2e:bd: ec:b5:ce:9b:00:eb:af:5e:cd:c1:7d:c4:78:c8:f0: 6d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:87:7A:77:25:7B:66:90:E9:B9:67:4B:8D:69:F6:37:91:24:6D:5A X509v3 Authority Key Identifier: keyid:37:9B:91:C9:30:E0:A2:AF:8B:82:2A:D9:A9:59:BA:DF:5D:DD:60:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/N5uRyTDgoq-LgirZqVm6313dYJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5uRyTDgoq-LgirZqVm6313dYJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD92A/3CE577DA5B5411EE8086F432C4F9AE02/796CD35A5B5511EE8E4D2A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.232.0/24 Signature Algorithm: sha256WithRSAEncryption 05:54:2f:72:0b:f7:16:6b:f4:64:c4:20:ba:eb:d9:f1:ca:97: 68:7d:ea:32:aa:4f:a3:b7:9f:6f:e3:fe:bd:7b:d8:2c:10:44: 12:3b:3d:82:16:f3:9e:95:9d:36:fa:38:f0:a1:7c:15:ba:58: 13:2d:7b:7a:b9:de:9f:91:df:56:25:38:94:62:f8:36:c6:6c: 2f:f3:70:50:0b:1c:4e:3b:2f:f8:31:b2:4e:d1:4f:4e:33:f6: 50:14:70:8b:8d:ce:9d:48:83:07:ba:53:a3:ee:35:82:0f:ea: 10:6c:9a:ff:51:a1:87:e7:02:a8:64:7a:d1:b4:59:85:a7:64: e2:56:1e:a1:a3:b2:de:b8:39:fd:2f:fa:d3:7a:62:1f:f2:bc: 2b:6b:14:f5:cc:4b:45:c8:de:35:cc:aa:19:93:7c:9f:29:80: e8:5f:9d:d3:3f:7b:9d:26:2a:8c:63:30:37:48:ba:6a:f7:23: 91:bf:e1:c3:18:5c:9e:89:83:a3:b8:05:5e:8b:1d:4d:c3:c6: 2d:de:de:b7:35:dd:95:fe:90:bf:6d:09:bf:14:82:86:d7:6b: 0c:85:4d:c5:99:cb:3d:19:5d:88:5d:95:ca:2d:f0:90:6f:61: a2:90:57:22:39:29:ae:72:db:f7:44:3d:44:bd:2e:d9:3e:f5: df:7a:b3:c0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RDkyQTExMC8GA1UEBRMoMzc5QjkxQzkzMEUwQTJBRjhCODIyQUQ5QTk1OUJBREY1 RERENjA5RjAeFw0yMzA5MjUwMzQxNTZaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTEwMTg0LWY3MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChflOqThaASDI4tctuHVF/jQIiJqDHmOL1CsgGBWVNaIdpkFeUub8D8rMEopfB 9x/ilwwCpgywLj6m6o/aukmiMh4eayCOlouXKS8fr27EqFfTXwkGvYjB1BVbe3HM KHHtqjrOvtTNT4S/JpqROd2smkXHHD0WAZ1td1l+IRqaiat7EY8AUESGR0EMO7bH Gz+tu+/3vrhdGoqOWMLsMxTvKwlwRthVynXy2h1ZInJrDvcd8uwFfH62C1zfZaiL H/3LNot1vSItg08xxyXQH/Yoi8RSKtaIzzm7ihRYrorSJTyEKi+GXAtrchzn0Aou vey1zpsA669ezcF9xHjI8G2tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0od6dyV7 ZpDpuWdLjWn2N5EkbVowHwYDVR0jBBgwFoAUN5uRyTDgoq+LgirZqVm6313dYJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFEOTJBLzNDRTU3N0RBNUI1 NDExRUU4MDg2RjQzMkM0RjlBRTAyL041dVJ5VERnb3EtTGdpclpxVm02MzEzZFlK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjV1UnlURGdvcS1MZ2lyWnFWbTYzMTNkWUo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDkyQS8zQ0U1NzdEQTVCNTQxMUVFODA4NkY0MzJDNEY5QUUwMi83OTZDRDM1QTVC NTUxMUVFOEU0RDJBMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsX6DANBgkqhkiG9w0BAQsFAAOCAQEABVQvcgv3Fmv0ZMQg uuvZ8cqXaH3qMqpPo7efb+P+vXvYLBBEEjs9ghbznpWdNvo48KF8FbpYEy17erne n5HfViU4lGL4NsZsL/NwUAscTjsv+DGyTtFPTjP2UBRwi43OnUiDB7pTo+41gg/q EGya/1Ghh+cCqGR60bRZhadk4lYeoaOy3rg5/S/603piH/K8K2sU9cxLRcjeNcyq GZN8nymA6F+d0z97nSYqjGMwN0i6avcjkb/hwxhcnomDo7gFXosdTcPGLd7etzXd lf6Qv20JvxSChtdrDIVNxZnLPRldiF2Vyi3wkG9hopBXIjkprnLb90Q9RL0u2T71 33qzwA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org