$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa File: C34EB9A6C28311EB9370913FC4F9AE02.roa (raw, json) Hash identifier: KhQ2m3GyJCUcdrixe5p4++jj5LNUmAcZqQ2RRuKTkdM= Subject key identifier: 6C:83:7D:00:FB:11:5E:B5:78:96:A7:CE:20:85:30:17:9D:AF:F1:13 Certificate issuer: /CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Certificate serial: 0585 Authority key identifier: 02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa Signing time: Wed 15 May 2024 01:04:46 +0000 ROA not before: Wed 15 May 2024 01:04:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56166 IP address blocks: 203.18.51.0/24 maxlen: 24 2001:df0:207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Validity Not Before: May 15 01:04:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66440a2e-74a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:2a:17:b1:1e:da:ba:50:be:07:0e:56:4c: 55:f3:52:e9:e6:02:8e:3c:5d:4a:1c:0c:09:23:e0: c3:e7:63:50:32:a2:a0:17:73:cb:0a:e2:7b:41:7a: 5b:03:f8:32:4a:4d:a1:bd:53:3c:a4:a2:06:70:07: 53:00:08:cb:ff:65:d5:6e:9d:96:cb:d2:71:21:15: ec:0f:29:1d:0c:58:d9:43:40:ae:68:2c:19:f8:2c: 92:eb:93:31:7b:03:a3:cd:7d:ab:98:dc:8b:ab:1c: 54:60:b2:14:f5:6e:09:55:7d:5b:ec:1b:31:7c:e3: db:be:17:22:e0:ec:8d:38:5f:6d:0a:bf:2a:6d:7b: 9e:4b:63:ac:90:0b:9d:07:fc:98:f2:b5:88:75:18: 6d:7e:cc:88:18:4c:74:4c:82:10:f1:10:8c:ff:57: cc:57:b8:c3:57:b9:6b:38:93:e0:f8:e2:4b:8f:62: ee:70:67:55:5d:79:e9:12:b4:ea:2b:66:01:ef:07: c2:ea:93:aa:f3:cc:9f:6c:d8:45:40:b7:f6:b4:64: 7d:8a:e7:c3:07:77:2b:f8:8a:8b:84:21:f4:66:35: a8:73:f8:88:b2:df:b0:09:5b:dc:71:f3:3a:71:85: 18:12:b8:08:f2:ae:96:b6:73:89:62:f3:e8:be:4a: ea:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:83:7D:00:FB:11:5E:B5:78:96:A7:CE:20:85:30:17:9D:AF:F1:13 X509v3 Authority Key Identifier: keyid:02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.51.0/24 IPv6: 2001:df0:207::/48 Signature Algorithm: sha256WithRSAEncryption 31:2c:a3:a2:6c:3c:00:0c:50:79:13:98:c8:92:bd:b1:ab:f4: e6:74:6d:8d:70:d8:df:6f:9a:bb:73:e4:7d:84:12:dd:d9:e8: e2:8b:9a:95:ff:c3:84:72:f5:c4:1d:02:fc:1e:67:fb:54:6b: 2a:0d:fd:5d:65:40:81:d0:93:53:96:78:5b:91:62:44:e9:90: ad:c5:40:3a:54:ab:04:7f:17:a3:37:6b:35:5b:38:a3:9e:44: 5e:c1:21:ec:0d:d4:c5:73:61:1d:a1:b7:11:b3:67:93:5c:85: 2b:3d:fb:a8:10:09:07:0e:dc:84:f1:29:cf:13:e9:fb:7f:44: 15:02:d1:49:64:e0:1d:f8:88:3b:b2:f4:37:9e:45:0a:4d:03: 1a:30:ed:cd:00:e3:ea:7e:e1:82:af:c3:82:65:07:c4:e1:0c: 9d:2e:1e:59:8d:54:b2:89:27:43:15:0f:33:ca:ad:bb:56:7c: 11:2c:05:1b:f1:5b:47:b7:b6:70:f7:14:91:a6:7a:cd:43:e7: 9e:06:5b:52:fb:f4:f7:be:50:03:70:14:c6:31:ce:9a:48:9e: 3b:8d:a1:16:1f:01:3d:aa:d7:be:5f:a2:52:3c:96:44:a2:2c: 1b:d8:e3:25:28:c1:9f:70:f0:ae:c2:f6:29:16:30:8a:b4:5d: 93:42:cd:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNUQxMTAvBgNVBAUTKDAyQkVCM0U2MjFGQUJBNjM0MjFFRDNGODg0RkEyNzBC Q0QzMzFENzcwHhcNMjQwNTE1MDEwNDQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0MGEyZS03NGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMAqF7Ee2rpQvgcOVkxV81Lp5gKOPF1KHAwJI+DD52NQMqKgF3PLCuJ7QXpb A/gySk2hvVM8pKIGcAdTAAjL/2XVbp2Wy9JxIRXsDykdDFjZQ0CuaCwZ+CyS65Mx ewOjzX2rmNyLqxxUYLIU9W4JVX1b7BsxfOPbvhci4OyNOF9tCr8qbXueS2OskAud B/yY8rWIdRhtfsyIGEx0TIIQ8RCM/1fMV7jDV7lrOJPg+OJLj2LucGdVXXnpErTq K2YB7wfC6pOq88yfbNhFQLf2tGR9iufDB3cr+IqLhCH0ZjWoc/iIst+wCVvccfM6 cYUYErgI8q6WtnOJYvPovkrqlQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGyDfQD7 EV61eJanziCFMBedr/ETMB8GA1UdIwQYMBaAFAK+s+Yh+rpjQh7T+IT6JwvNMx13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1RC8wRDBGRkJEQzkx RDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVtTkNIdFA0aFBvbkM4MHpI WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FyNno1aUg2dW1OQ0h0UDRoUG9uQzgwekhYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNUQvMEQwRkZCREM5MUQ3MTFFQjg2RkEzNDI2QzRGOUFFMDIvQzM0RUI5QTZD MjgzMTFFQjkzNzA5MTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLEjMwDwQCAAIwCQMHACABDfACBzANBgkqhkiG9w0BAQsF AAOCAQEAMSyjomw8AAxQeROYyJK9sav05nRtjXDY32+au3PkfYQS3dno4oualf/D hHL1xB0C/B5n+1RrKg39XWVAgdCTU5Z4W5FiROmQrcVAOlSrBH8XozdrNVs4o55E XsEh7A3UxXNhHaG3EbNnk1yFKz37qBAJBw7chPEpzxPp+39EFQLRSWTgHfiIO7L0 N55FCk0DGjDtzQDj6n7hgq/DgmUHxOEMnS4eWY1UsoknQxUPM8qtu1Z8ESwFG/Fb R7e2cPcUkaZ6zUPnngZbUvv0975QA3AUxjHOmkieO42hFh8BParXvl+iUjyWRKIs G9jjJSjBn3DwrsL2KRYwirRdk0LNtg== -----END CERTIFICATE-----Generated at Thu May 23 02:40:34 2024 by rpki-client on console-ams.rpki-client.org