$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa File: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (raw, json) Hash identifier: PBG/qjHb9XAKfA8pJ+WEUn8BGtScP+Ise62lZzVNRro= Subject key identifier: 15:A1:C6:F2:E0:51:79:77:05:04:2A:58:9C:1B:FC:0A:56:E1:49:C8 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 0429 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa Signing time: Fri 07 Jul 2023 00:20:47 +0000 ROA not before: Fri 07 Jul 2023 00:20:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4764 IP address blocks: 203.3.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Jul 7 00:20:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a75a5f-32f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:11:52:5c:ef:af:95:61:a8:b0:a5:cd:03: 0e:5d:07:f5:85:d3:2b:20:99:79:7f:c4:1b:66:73: 57:b0:f2:da:89:8c:eb:70:10:b4:9e:d2:58:98:e7: 9f:d1:d8:42:71:d0:89:3d:19:f9:dc:51:55:e9:0c: 0f:0e:b6:8f:42:f0:e4:0c:4b:00:d2:57:e7:e7:40: 66:4d:54:02:69:57:de:2d:55:a7:4f:be:81:b1:a0: 2d:c5:e1:22:cf:b5:e2:e3:8a:f2:98:c7:5e:11:43: 29:f4:dd:83:6c:5d:ed:07:93:3e:a4:17:2c:b9:fa: 76:d6:f4:c9:ba:02:ed:13:72:96:2e:11:d9:d2:b4: 86:09:d7:90:5d:cd:48:1b:45:4b:f7:dd:3b:d7:20: ea:c5:ab:4f:c8:ca:da:d2:0a:d2:60:ac:70:fb:a3: 11:2c:48:f4:42:40:03:78:7a:b8:6d:7c:9d:7d:eb: 7f:61:66:0f:50:fd:e5:35:86:4c:9b:68:df:bd:48: 96:50:02:95:6e:f5:54:0c:6b:22:6b:c8:0e:4c:34: 58:a6:9c:bb:58:34:3f:45:66:40:17:f0:5f:65:0f: 3f:cf:5f:e8:d2:cb:c4:88:25:aa:ad:63:a9:46:1d: 20:1b:0c:53:d9:1e:d3:52:ee:dc:b9:5e:d0:04:4f: 9b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A1:C6:F2:E0:51:79:77:05:04:2A:58:9C:1B:FC:0A:56:E1:49:C8 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.122.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:30:b0:0a:e7:b1:02:6f:be:b0:09:fc:26:b7:51:22:06:93: 22:2f:09:b7:bf:d7:90:fe:70:72:da:29:ad:07:8d:19:2f:8c: 19:40:d4:2a:09:1b:a2:d5:52:59:e6:45:98:0c:c2:30:5d:71: 95:b7:f0:a8:18:02:e1:c0:eb:f4:e2:a2:e6:c3:ff:3c:7e:0d: 86:f9:2c:77:42:9d:b3:f4:54:6c:69:6f:40:3b:8b:01:35:97: 35:00:7d:47:fc:6f:23:cd:75:3f:ed:e0:3f:98:c8:7c:11:a2: df:24:90:7a:4f:c2:f8:d5:7d:0b:c8:8a:97:d3:ef:b1:68:1c: 61:88:9e:50:03:32:d4:6a:f7:e2:ff:cd:9f:54:f8:b2:d3:9f: ba:2c:81:da:ba:fb:1a:ef:b0:5b:18:2e:01:22:e7:e6:c6:cf: 23:a9:2d:43:73:fe:d2:96:31:3f:87:4c:fe:33:6d:bb:f4:73: 5a:12:8a:92:84:92:6d:f0:06:8f:24:3b:61:d1:e2:2f:72:6b: 67:a9:8b:63:8f:ee:bf:0f:00:19:77:c8:25:c7:14:58:e7:67: 46:bb:61:1c:7c:9b:b9:c3:d1:eb:16:e1:c0:80:a1:93:14:db: 93:72:f1:76:a6:3b:59:a5:fa:c3:a1:f7:99:0c:32:2f:10:c8: 2e:95:58:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjMwNzA3MDAyMDQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE3NWE1Zi0zMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23ERUlzvr5VhqLClzQMOXQf1hdMrIJl5f8QbZnNXsPLaiYzrcBC0ntJYmOef 0dhCcdCJPRn53FFV6QwPDraPQvDkDEsA0lfn50BmTVQCaVfeLVWnT76BsaAtxeEi z7Xi44rymMdeEUMp9N2DbF3tB5M+pBcsufp21vTJugLtE3KWLhHZ0rSGCdeQXc1I G0VL99071yDqxatPyMra0grSYKxw+6MRLEj0QkADeHq4bXydfet/YWYPUP3lNYZM m2jfvUiWUAKVbvVUDGsia8gOTDRYppy7WDQ/RWZAF/BfZQ8/z1/o0svEiCWqrWOp Rh0gGwxT2R7TUu7cuV7QBE+bywIDAQABo4IClTCCApEwHQYDVR0OBBYEFBWhxvLg UXl3BQQqWJwb/ApW4UnIMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOUYvM0JFNTQ5Q0VENjRFMTFFQjk0RDRGMjdEQzRGOUFFMDIvMkVBNjhEOTZE NjUyMTFFQjhEQUQxODg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA3owDQYJKoZIhvcNAQELBQADggEBADwwsArnsQJvvrAJ /Ca3USIGkyIvCbe/15D+cHLaKa0HjRkvjBlA1CoJG6LVUlnmRZgMwjBdcZW38KgY AuHA6/TioubD/zx+DYb5LHdCnbP0VGxpb0A7iwE1lzUAfUf8byPNdT/t4D+YyHwR ot8kkHpPwvjVfQvIipfT77FoHGGInlADMtRq9+L/zZ9U+LLTn7osgdq6+xrvsFsY LgEi5+bGzyOpLUNz/tKWMT+HTP4zbbv0c1oSipKEkm3wBo8kO2HR4i9ya2epi2OP 7r8PABl3yCXHFFjnZ0a7YRx8m7nD0esW4cCAoZMU25Ny8XamO1ml+sOh95kMMi8Q yC6VWEM= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:30 2024 by rpki-client on console-ams.rpki-client.org