$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa File: 0ECA9B023D9F11EC9EC18739C4F9AE02.roa (raw, json) Hash identifier: Y7fLDVkXJ359JNzG1ahulvrZUe35KLUpPCt6Aq7jD5k= Subject key identifier: C6:BE:F6:D5:3C:B9:EE:E8:8A:E8:D1:53:DB:D9:0F:F1:92:A4:AC:DE Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 03DC Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa Signing time: Fri 06 Oct 2023 16:54:06 +0000 ROA not before: Fri 06 Oct 2023 16:54:06 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134433 IP address blocks: 213.170.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 988 (0x3dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Oct 6 16:54:06 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65203bad-9238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e2:e9:5d:e1:21:bc:55:12:91:c1:36:bc:9a: ac:34:fd:c7:c7:b9:76:67:7a:b2:18:03:d6:37:a4: 15:c3:ec:07:cf:56:e0:fd:63:ff:6d:67:82:7f:7e: 63:eb:19:b9:71:f3:2e:54:0c:5e:dd:bc:f8:31:a9: 38:04:d9:13:62:cc:f3:ea:e3:65:ea:fa:ad:45:60: 37:47:07:7a:e0:18:6a:a3:1e:f4:99:4c:56:06:db: 59:b4:fb:28:61:81:f0:2f:4d:6a:ca:b9:e6:10:6e: 55:7e:2f:18:70:f7:b4:14:ef:cb:2f:9b:b8:3f:34: 1b:83:c3:e6:49:52:be:61:43:35:2f:0b:b6:be:c1: d2:ef:a9:c9:3f:fd:ea:fe:4f:1f:58:03:c3:b8:63: 2b:0d:9a:bd:90:a2:a9:b4:46:57:f9:5e:18:d8:cc: db:98:37:6c:d1:2f:6c:93:dd:4f:85:28:c0:48:63: 1e:17:ff:a9:d0:f3:03:4c:b5:56:cf:a0:2e:96:31: 71:10:09:1a:06:76:2d:85:42:60:07:f0:45:68:45: 43:5b:d9:49:2b:87:41:64:50:f5:e7:c7:f1:a8:3a: f5:5d:a8:58:a5:e5:76:95:51:e4:49:e7:e5:57:ff: 94:ff:0d:89:66:5d:59:37:a9:d0:5e:b1:86:a9:45: 80:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BE:F6:D5:3C:B9:EE:E8:8A:E8:D1:53:DB:D9:0F:F1:92:A4:AC:DE X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/0ECA9B023D9F11EC9EC18739C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption 03:8f:aa:b3:48:88:af:7c:13:90:83:8f:4a:87:ee:3b:84:a9: 82:21:43:c0:78:0e:11:8f:cb:60:16:cb:50:b0:a6:2c:24:73: a3:e3:25:d2:6f:4b:ff:3f:3a:e1:7b:4e:39:7a:19:3a:29:00: 23:e5:38:c2:0d:0e:6b:73:40:42:2c:dc:4b:0b:c8:f2:7b:50: c9:43:ea:53:66:0e:56:6d:49:0d:5c:41:27:23:e5:5e:0e:e1: 44:14:1d:47:94:d8:f7:9d:33:39:89:e1:db:c7:85:14:f4:e6: 61:ef:03:36:56:36:fe:e3:66:c3:32:40:20:11:ef:4a:db:ea: bb:7e:9d:bd:d7:e5:5d:be:bc:b8:f2:17:e3:9a:8b:d3:95:77: f1:30:d3:79:69:46:ff:aa:e5:71:a6:a0:44:41:40:45:0b:36: 29:77:2e:55:58:68:35:10:5a:a8:aa:1b:a0:b9:19:43:56:11: cc:27:a4:e1:c8:b5:ae:30:18:7c:44:53:67:63:14:3c:09:a5: 24:be:a0:14:19:05:42:98:08:e5:64:84:90:91:22:8d:9c:7d: 80:ec:2f:9b:f3:79:38:49:d6:01:75:b0:e7:f6:06:d0:bd:a7: e6:e8:f3:5c:e2:3d:f2:91:48:ed:4c:a1:25:10:ef:4b:87:e3: ed:30:fd:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjMxMDA2MTY1NDA2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwM2JhZC05MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOLpXeEhvFUSkcE2vJqsNP3Hx7l2Z3qyGAPWN6QVw+wHz1bg/WP/bWeCf35j 6xm5cfMuVAxe3bz4Mak4BNkTYszz6uNl6vqtRWA3Rwd64Bhqox70mUxWBttZtPso YYHwL01qyrnmEG5Vfi8YcPe0FO/LL5u4PzQbg8PmSVK+YUM1Lwu2vsHS76nJP/3q /k8fWAPDuGMrDZq9kKKptEZX+V4Y2MzbmDds0S9sk91PhSjASGMeF/+p0PMDTLVW z6AuljFxEAkaBnYthUJgB/BFaEVDW9lJK4dBZFD158fxqDr1XahYpeV2lVHkSefl V/+U/w2JZl1ZN6nQXrGGqUWAhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMa+9tU8 ue7oiujRU9vZD/GSpKzeMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvMEVDQTlCMDIz RDlGMTFFQzlFQzE4NzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALVqpwwDQYJKoZIhvcNAQELBQADggEBAAOPqrNIiK98E5CD j0qH7juEqYIhQ8B4DhGPy2AWy1Cwpiwkc6PjJdJvS/8/OuF7Tjl6GTopACPlOMIN DmtzQEIs3EsLyPJ7UMlD6lNmDlZtSQ1cQScj5V4O4UQUHUeU2PedMzmJ4dvHhRT0 5mHvAzZWNv7jZsMyQCAR70rb6rt+nb3X5V2+vLjyF+Oai9OVd/Ew03lpRv+q5XGm oERBQEULNil3LlVYaDUQWqiqG6C5GUNWEcwnpOHIta4wGHxEU2djFDwJpSS+oBQZ BUKYCOVkhJCRIo2cfYDsL5vzeThJ1gF1sOf2BtC9p+bo81ziPfKRSO1MoSUQ70uH 4+0w/Vw= -----END CERTIFICATE-----Generated at Wed May 8 17:47:42 2024 by rpki-client on console-ams.rpki-client.org