$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/4E65B594D35711EEB8F04828C4F9AE02.roa File: 4E65B594D35711EEB8F04828C4F9AE02.roa (raw, json) Hash identifier: MvrpHktX8EBV5CRxI8wvPJU9sIwZ4JC9BJ7Tmiw/3S0= Subject key identifier: 3F:AF:92:DE:38:20:2C:4F:2C:BD:DC:4C:FE:A0:C8:1C:A6:5F:49:FC Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 018F Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/4E65B594D35711EEB8F04828C4F9AE02.roa Signing time: Tue 26 Mar 2024 07:28:47 +0000 ROA not before: Tue 26 Mar 2024 07:28:47 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58061 IP address blocks: 203.18.98.0/24 maxlen: 24 203.33.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Mar 26 07:28:47 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6602792e-c274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:da:e1:56:60:11:49:b4:5f:ac:cd:bb:55:29: 51:85:59:f4:cc:18:a1:37:fc:31:b1:e9:0d:17:6d: f4:62:04:22:82:11:17:e4:2e:90:a1:ec:d0:e1:41: 71:17:24:6b:e2:7f:d5:f9:d9:72:4c:64:38:a4:39: 66:44:7f:21:f0:c2:40:00:58:de:0c:fe:b2:9b:b4: 9f:54:ec:12:f6:d1:8b:4d:4d:4d:51:2c:ce:e7:cb: 21:a8:d4:12:2e:e3:3e:c7:b8:57:a1:f6:77:6c:23: 2a:69:e0:49:29:67:36:98:07:b9:0b:96:59:6b:e0: fc:e1:9c:85:18:fe:20:e5:d5:af:c8:9f:73:24:a3: 7d:04:ef:53:22:ee:4d:55:d3:9d:1b:f7:aa:e2:80: 70:86:29:a4:59:3c:57:67:6c:9e:13:09:97:6b:23: 6d:e1:2c:71:85:1a:74:fe:08:88:73:65:ba:15:e8: b5:ff:ee:cf:a0:77:fa:ab:0e:e2:ce:90:26:e1:bc: 94:cf:68:ab:65:1b:8c:d8:cc:f9:0f:02:7d:13:5c: 82:ab:75:4d:a5:98:7d:c4:bf:52:8b:83:40:b0:11: cc:52:ae:07:a8:06:e5:7c:05:3d:76:ba:e6:69:27: 72:db:18:3e:e2:f0:1b:3c:d8:72:bc:95:e4:02:37: 43:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AF:92:DE:38:20:2C:4F:2C:BD:DC:4C:FE:A0:C8:1C:A6:5F:49:FC X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/4E65B594D35711EEB8F04828C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.98.0/24 203.33.239.0/24 Signature Algorithm: sha256WithRSAEncryption 01:6e:e9:ef:41:0f:11:09:9e:3a:c5:74:e7:ed:e2:61:2d:ed: 15:1f:d7:26:dd:52:11:2d:27:2f:39:d3:bb:1a:3f:2a:ad:68: bd:e4:a8:03:e1:80:52:42:b0:22:08:dc:0a:5c:0a:a9:de:ed: 81:c0:a8:f7:55:90:92:e2:d6:73:8f:d7:2f:4e:cc:a0:22:57: f8:34:84:c9:60:92:ff:03:e4:82:38:61:bc:4c:53:8e:ee:14: f4:bb:80:69:20:d0:26:a7:f2:bf:63:f0:1d:40:f3:11:35:30: 51:25:af:58:37:16:ad:1d:65:95:90:09:bd:1f:5a:6e:34:df: 7f:17:a6:d0:a5:1f:cb:87:51:99:83:99:06:6c:17:5f:ce:e7: ff:d4:a8:6b:72:e5:0f:73:f0:08:60:09:2f:e9:ba:19:a0:e9: f2:3b:45:1e:29:1a:a3:53:41:5e:9a:3b:bf:46:4f:89:5d:70: b9:01:bd:5f:ee:96:97:14:8e:67:3e:a6:1d:50:88:1a:22:8e: ea:71:d7:38:8c:4e:bd:95:1a:6f:e6:61:61:2b:fb:b4:a3:83: c7:94:38:57:f7:c9:9e:64:b7:df:73:b9:2a:53:ea:6e:c9:43: 9a:fe:a5:35:f7:c2:f9:d9:c8:ca:08:28:10:84:a2:80:e6:73: 2c:44:9e:5f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjQwMzI2MDcyODQ3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAyNzkyZS1jMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9rhVmARSbRfrM27VSlRhVn0zBihN/wxsekNF230YgQighEX5C6QoezQ4UFx FyRr4n/V+dlyTGQ4pDlmRH8h8MJAAFjeDP6ym7SfVOwS9tGLTU1NUSzO58shqNQS LuM+x7hXofZ3bCMqaeBJKWc2mAe5C5ZZa+D84ZyFGP4g5dWvyJ9zJKN9BO9TIu5N VdOdG/eq4oBwhimkWTxXZ2yeEwmXayNt4SxxhRp0/giIc2W6Fei1/+7PoHf6qw7i zpAm4byUz2irZRuM2Mz5DwJ9E1yCq3VNpZh9xL9Si4NAsBHMUq4HqAblfAU9drrm aSdy2xg+4vAbPNhyvJXkAjdDrwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD+vkt44 ICxPLL3cTP6gyBymX0n8MB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvNEU2NUI1OTRE MzU3MTFFRUI4RjA0ODI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLEmIDBADLIe8wDQYJKoZIhvcNAQELBQADggEBAAFu6e9B DxEJnjrFdOft4mEt7RUf1ybdUhEtJy8507saPyqtaL3kqAPhgFJCsCII3ApcCqne 7YHAqPdVkJLi1nOP1y9OzKAiV/g0hMlgkv8D5II4YbxMU47uFPS7gGkg0Can8r9j 8B1A8xE1MFElr1g3Fq0dZZWQCb0fWm40338XptClH8uHUZmDmQZsF1/O5//UqGty 5Q9z8AhgCS/puhmg6fI7RR4pGqNTQV6aO79GT4ldcLkBvV/ulpcUjmc+ph1QiBoi jupx1ziMTr2VGm/mYWEr+7Sjg8eUOFf3yZ5kt99zuSpT6m7JQ5r+pTX3wvnZyMoI KBCEooDmcyxEnl8= -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org