$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa File: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: HtKSa26rIUPBKNNxZu7c+H1IlS8vW+/hfQnOO/XZdZc= Subject key identifier: F1:F6:97:D8:E5:09:92:5A:4E:95:68:E8:35:19:60:14:73:72:CB:5D Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 337A Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa Signing time: Tue 12 Dec 2023 15:00:42 +0000 ROA not before: Tue 12 Dec 2023 15:00:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45254 IP address blocks: 203.153.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13178 (0x337a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Dec 12 15:00:42 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6578759a-a771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:57:c5:4d:d2:ef:0d:79:e0:5e:df:13:2e: 12:1b:44:dc:a6:40:00:20:3a:ab:de:d0:3f:e6:9e: c7:72:64:b5:8c:26:5a:36:4d:c9:6a:87:2d:cc:21: 11:c1:50:32:56:80:bf:c6:d5:45:f7:b4:1c:0c:de: af:d2:08:d5:5a:a9:76:3c:05:1d:19:33:78:d7:19: ae:97:e2:a5:5e:b9:0d:9c:ee:1b:22:4c:b2:c6:27: 85:ae:20:e1:fc:7e:d5:c2:61:ac:14:93:0a:3a:33: 4c:ed:24:46:6a:2f:7e:b2:6b:1e:89:81:2b:88:3b: c4:a9:6d:eb:50:a0:b6:1a:19:6e:80:3a:7c:39:d3: d5:0f:eb:1c:21:86:cc:56:82:ac:7d:dd:44:42:95: 93:17:25:11:8f:63:31:18:53:ca:86:8c:ff:26:0d: 1f:03:95:07:8b:39:16:53:29:81:45:f3:e9:e5:44: 93:84:63:ab:b0:4f:e5:e0:9d:3c:a8:81:05:31:74: 03:b7:fa:02:d5:27:7b:48:3c:b1:8e:c5:9a:da:37: c1:85:3d:51:92:da:83:b0:a6:1d:a4:f5:9d:94:ad: fe:81:96:f6:8f:8d:28:08:46:24:87:b9:10:3e:7d: 14:55:0e:b2:3a:33:19:e0:a9:6b:70:ea:1c:54:f6: 45:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F6:97:D8:E5:09:92:5A:4E:95:68:E8:35:19:60:14:73:72:CB:5D X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/229F27ACFEA411EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.153.187.0/24 Signature Algorithm: sha256WithRSAEncryption 40:1c:ff:69:30:37:ac:4d:c5:ad:d9:99:4d:72:2d:50:a9:c7: 82:29:81:d5:e0:ef:b4:05:3b:70:2e:fd:55:09:da:29:c9:5d: 54:4f:e9:f6:23:51:6f:0b:5c:e8:9a:19:2d:40:eb:f7:a5:d5: 2f:61:7b:59:1a:8a:36:54:a3:fb:44:17:b3:ba:5b:45:98:2d: 51:fb:26:b3:ad:ca:f7:66:44:3a:87:e6:b7:58:b3:85:4e:f0: 7e:4d:74:b9:af:d6:83:9c:4f:ef:10:2b:ff:bc:8b:bf:78:15: 56:ad:34:b5:ed:c5:2b:4e:c6:07:a8:5d:39:be:1c:65:48:a5: 0a:b2:ca:3a:7d:d2:18:03:f4:d7:6f:45:ae:99:50:ae:d7:a3: ba:3c:64:32:e5:6c:48:0f:f2:35:83:c9:96:58:8b:42:5d:20: 4a:09:88:8a:46:5b:a8:30:0e:60:f3:c7:c4:c7:a9:4f:54:d3: 5c:51:76:c5:a5:d7:11:d5:c3:ae:a3:d9:a9:f0:34:47:d0:90: ce:09:8f:48:1f:66:2f:6b:35:e1:76:f5:4c:ac:1f:0c:c5:85: 42:ee:c9:04:78:e0:a8:46:10:1a:7c:bb:14:ba:65:14:e7:28: d3:5a:e2:ec:7b:ab:03:3d:11:2b:62:62:f2:c6:1e:35:8a:f7: b3:a0:c7:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjMxMjEyMTUwMDQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4NzU5YS1hNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwpXxU3S7w154F7fEy4SG0TcpkAAIDqr3tA/5p7HcmS1jCZaNk3JaoctzCER wVAyVoC/xtVF97QcDN6v0gjVWql2PAUdGTN41xmul+KlXrkNnO4bIkyyxieFriDh /H7VwmGsFJMKOjNM7SRGai9+smseiYEriDvEqW3rUKC2GhlugDp8OdPVD+scIYbM VoKsfd1EQpWTFyURj2MxGFPKhoz/Jg0fA5UHizkWUymBRfPp5USThGOrsE/l4J08 qIEFMXQDt/oC1Sd7SDyxjsWa2jfBhT1RktqDsKYdpPWdlK3+gZb2j40oCEYkh7kQ Pn0UVQ6yOjMZ4KlrcOocVPZFnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPH2l9jl CZJaTpVo6DUZYBRzcstdMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEQUUvRkVGQkNDOEUxRDhGMTFFMkI1NEE3REVGMDhCMDJDRDIvMjI5RjI3QUNG RUE0MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmbswDQYJKoZIhvcNAQELBQADggEBAEAc/2kwN6xNxa3Z mU1yLVCpx4IpgdXg77QFO3Au/VUJ2inJXVRP6fYjUW8LXOiaGS1A6/el1S9he1ka ijZUo/tEF7O6W0WYLVH7JrOtyvdmRDqH5rdYs4VO8H5NdLmv1oOcT+8QK/+8i794 FVatNLXtxStOxgeoXTm+HGVIpQqyyjp90hgD9NdvRa6ZUK7Xo7o8ZDLlbEgP8jWD yZZYi0JdIEoJiIpGW6gwDmDzx8THqU9U01xRdsWl1xHVw66j2anwNEfQkM4Jj0gf Zi9rNeF29UysHwzFhULuyQR44KhGEBp8uxS6ZRTnKNNa4ux7qwM9EStiYvLGHjWK 97Ogx20= -----END CERTIFICATE-----Generated at Thu May 16 17:51:52 2024 by rpki-client on console-ams.rpki-client.org