$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa File: 1FE69168F9CB11EDAF704E7FC4F9AE02.roa (raw, json) Hash identifier: yxcXU4Wz/FsuyQLnC6TnjIUCeIr5II451UbQF3q435Y= Subject key identifier: 5F:8B:48:7F:18:77:1A:72:0C:A3:B8:94:55:6F:B1:77:73:D3:1A:65 Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 2A Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa Signing time: Thu 03 Aug 2023 05:25:13 +0000 ROA not before: Thu 03 Aug 2023 05:25:13 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 8075 IP address blocks: 202.12.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Aug 3 05:25:13 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cb3a39-d8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:04:01:9e:b8:51:bb:96:54:18:7e:46:f1: 4a:de:1b:90:20:ae:2f:6d:f8:15:58:e9:d9:ac:51: 9b:b1:e9:2c:f3:9c:94:26:8c:d9:35:b4:3a:d9:fe: ed:89:b4:65:17:11:4b:3f:77:3b:93:9f:a9:6b:0a: 50:c4:33:37:74:da:71:c5:62:cf:fb:8f:25:0f:3f: b4:87:75:f9:e6:40:24:75:93:f9:35:25:86:ea:05: 9c:5c:54:41:88:14:d0:35:63:7a:dd:f1:96:8d:d2: 5d:05:a6:d9:5c:f6:5b:29:be:f2:1f:a5:2a:e2:40: e9:9e:ac:df:18:20:4a:55:af:85:e5:73:e7:99:c6: 94:20:39:b2:4e:93:bd:cc:4c:38:01:01:e9:2d:96: 2a:64:81:ea:39:1a:2d:1c:b9:85:4e:a7:40:e6:7f: 8f:c9:a5:b3:b4:5c:68:c7:0d:e1:8b:c3:bf:36:95: cd:ac:d1:40:9c:27:f4:12:0e:c1:f9:c4:3f:e0:16: ce:02:1a:b1:c4:57:79:cb:fc:67:3b:83:32:05:af: 85:87:01:32:fd:4b:ad:9b:59:33:8f:b7:5b:8e:1d: 7b:08:6e:8b:11:89:2f:9d:08:48:20:20:88:bc:bc: 60:3e:1e:f7:7d:f4:82:d5:3e:ee:21:83:81:76:d5: 36:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8B:48:7F:18:77:1A:72:0C:A3:B8:94:55:6F:B1:77:73:D3:1A:65 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/1FE69168F9CB11EDAF704E7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.70.0/24 Signature Algorithm: sha256WithRSAEncryption 51:1a:a3:cf:41:d9:ec:29:47:f0:21:e2:54:e2:63:5e:5a:17: f9:ba:89:cc:16:77:cf:a4:dd:a3:66:6f:5a:7d:96:99:b3:c4: 16:b2:98:1b:cb:14:45:4a:bd:17:af:c5:33:72:85:17:38:af: 53:91:a3:9e:db:4b:aa:47:16:17:ad:ae:19:29:01:df:b7:89: e5:fb:c0:e2:d4:36:5c:c9:da:12:04:5c:1f:db:61:10:69:ba: 74:70:0a:2c:81:79:87:c0:ce:8e:57:d6:d8:d0:a8:52:b2:d4: a0:9a:63:70:ee:60:a1:73:a7:b4:39:ae:da:63:ae:7b:73:d4: c8:ee:4c:84:46:5b:04:25:92:ea:4b:30:56:52:44:40:31:e3: cf:e2:78:7d:36:db:f7:31:8e:42:6d:cb:e6:6f:4d:2e:dc:60: b7:96:63:ab:03:3b:58:d5:e7:f8:17:cf:34:a8:83:01:40:ac: 9b:28:a0:60:96:fc:0c:ee:19:8f:3b:cd:9e:6a:1c:8b:2f:69: 7c:8b:35:8d:ef:27:ba:f5:1a:98:52:16:49:13:45:e1:69:5e: f2:04:ae:bc:b7:84:92:20:28:86:7c:55:e7:78:40:ac:72:52: bf:04:aa:9f:b9:00:7f:9c:45:56:54:80:e5:ef:4c:b6:f7:2c: 35:1f:1c:43 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzI4QTExMC8GA1UEBRMoMURBQUY0NUZCNEQyNzI0MDdBNTJBNjNCQjczOTY1MzY5 RTkxMjBFRDAeFw0yMzA4MDMwNTI1MTNaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Y2IzYTM5LWQ4YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9hwQBnrhRu5ZUGH5G8UreG5Agri9t+BVY6dmsUZux6SzznJQmjNk1tDrZ/u2J tGUXEUs/dzuTn6lrClDEMzd02nHFYs/7jyUPP7SHdfnmQCR1k/k1JYbqBZxcVEGI FNA1Y3rd8ZaN0l0Fptlc9lspvvIfpSriQOmerN8YIEpVr4Xlc+eZxpQgObJOk73M TDgBAektlipkgeo5Gi0cuYVOp0Dmf4/JpbO0XGjHDeGLw782lc2s0UCcJ/QSDsH5 xD/gFs4CGrHEV3nL/Gc7gzIFr4WHATL9S62bWTOPt1uOHXsIbosRiS+dCEggIIi8 vGA+Hvd99ILVPu4hg4F21TaLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUX4tIfxh3 GnIMo7iUVW+xd3PTGmUwHwYDVR0jBBgwFoAUHar0X7TSckB6UqY7tzllNp6RIO0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3MjhBLzUzN0U0NkM2RjlD NDExRUQ4OTY4MjQ4MUM0RjlBRTAyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklP MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGFyMFg3VFNja0I2VXFZN3R6bGxOcDZSSU8wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi8xRkU2OTE2OEY5 Q0IxMUVEQUY3MDRFN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoMRjANBgkqhkiG9w0BAQsFAAOCAQEAURqjz0HZ7ClH8CHi VOJjXloX+bqJzBZ3z6Tdo2ZvWn2WmbPEFrKYG8sURUq9F6/FM3KFFzivU5GjnttL qkcWF62uGSkB37eJ5fvA4tQ2XMnaEgRcH9thEGm6dHAKLIF5h8DOjlfW2NCoUrLU oJpjcO5goXOntDmu2mOue3PUyO5MhEZbBCWS6kswVlJEQDHjz+J4fTbb9zGOQm3L 5m9NLtxgt5ZjqwM7WNXn+BfPNKiDAUCsmyigYJb8DO4ZjzvNnmociy9pfIs1je8n uvUamFIWSRNF4Wle8gSuvLeEkiAohnxV53hArHJSvwSqn7kAf5xFVlSA5e9Mtvcs NR8cQw== -----END CERTIFICATE-----Generated at Sat May 25 07:22:00 2024 by rpki-client on console-ams.rpki-client.org