$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/ED90D73A46B611EEBADD0963C4F9AE02.roa File: ED90D73A46B611EEBADD0963C4F9AE02.roa (raw, json) Hash identifier: 5p7K6wp/VhzIgACltrLmvNc2Mh3sce8QYs6DQ1Du+6M= Subject key identifier: 94:F9:FD:BF:E4:8C:30:B7:31:53:CE:F1:2D:82:B5:F2:08:AF:8C:F2 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3495 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/ED90D73A46B611EEBADD0963C4F9AE02.roa Signing time: Tue 29 Aug 2023 21:56:38 +0000 ROA not before: Tue 29 Aug 2023 21:56:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 4608 IP address blocks: 203.30.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13461 (0x3495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Aug 29 21:56:38 2023 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=64ee6996-0659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f1:01:e9:34:b4:36:b6:3b:33:6a:ee:55:b6: 88:0c:0f:a5:ce:40:7d:59:a6:17:40:2e:7f:a8:51: 0d:db:03:10:5a:88:88:b4:84:d8:77:1f:64:ca:96: a0:11:60:c0:aa:59:b6:22:a2:75:e0:6e:fa:e6:05: 07:ab:b6:87:84:4a:24:1e:85:65:b9:ab:d7:83:fe: 38:48:5c:11:1b:00:47:85:f5:6d:7c:d6:a9:7d:d1: e4:c7:e6:da:18:25:78:bf:d8:31:ef:62:98:0a:ed: 3a:f9:e7:11:b3:02:10:bc:dd:e3:9e:06:72:48:84: 26:68:42:b1:9d:08:e9:99:f5:f2:c0:4b:1d:c4:97: db:20:c3:b1:88:f3:da:c4:a7:05:00:ef:5f:4a:70: f4:fb:39:c3:91:ea:3b:ba:a5:ba:f9:dc:d0:bc:65: e0:87:ce:d9:2f:24:0e:35:4a:16:d9:b6:67:3a:bb: 6a:fd:4d:e3:4b:06:46:04:d2:83:eb:12:2c:c7:f7: f9:15:18:7c:aa:a6:5c:74:ce:2c:81:72:3b:55:10: f1:35:b7:39:97:0f:c8:91:44:1b:f9:74:b0:10:1c: 5c:19:be:f7:8f:56:ea:2b:c5:82:5a:65:b4:5d:80: e5:9e:50:cb:bd:3c:5a:22:be:8e:66:86:79:89:ab: 8c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F9:FD:BF:E4:8C:30:B7:31:53:CE:F1:2D:82:B5:F2:08:AF:8C:F2 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/ED90D73A46B611EEBADD0963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.127.0/24 Signature Algorithm: sha256WithRSAEncryption 03:3c:07:c4:e4:6e:1e:f5:38:44:c6:4f:e6:e0:ba:4e:d1:1c: ca:92:30:67:4e:56:db:b0:51:9d:c5:77:0c:8f:15:68:13:d0: 63:25:a4:5c:d3:83:73:71:42:27:23:9a:f2:f8:fc:68:b5:3e: e0:eb:ee:b9:30:1e:cb:5d:49:0b:93:ab:79:fb:ee:61:d9:b2: 21:d7:d0:a7:2e:77:87:b5:01:fc:ee:5f:d5:18:01:1f:1e:7f: 61:ba:62:d6:bc:ed:71:38:cc:be:85:eb:55:3d:0e:41:69:1d: cd:a9:50:ad:d1:94:a2:a8:a2:87:fd:9a:bf:53:2d:79:fd:87: 88:d6:fd:0a:8c:8f:a9:1f:de:fe:cf:39:0c:99:92:82:b6:5e: d6:eb:55:db:34:a7:92:0c:34:2e:5a:ab:d0:5a:a4:df:5f:d8: 12:fb:a0:66:8f:3a:c3:50:51:9d:9a:2e:39:b8:f2:d6:c6:2d: af:65:2f:88:6d:76:4c:4f:90:1f:39:d3:62:9c:9f:99:db:69: c3:f9:65:63:4e:f9:6d:7f:51:35:d4:ea:09:7b:28:67:32:83: a0:ef:44:39:fd:d9:39:05:6f:99:00:e3:2e:b6:2d:fa:2b:d1: 5e:04:f3:26:cc:1d:15:6a:73:47:0f:9f:cb:63:35:59:6f:fb: 11:37:7e:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjMwODI5MjE1NjM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVlNjk5Ni0wNjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PEB6TS0NrY7M2ruVbaIDA+lzkB9WaYXQC5/qFEN2wMQWoiItITYdx9kypag EWDAqlm2IqJ14G765gUHq7aHhEokHoVluavXg/44SFwRGwBHhfVtfNapfdHkx+ba GCV4v9gx72KYCu06+ecRswIQvN3jngZySIQmaEKxnQjpmfXywEsdxJfbIMOxiPPa xKcFAO9fSnD0+znDkeo7uqW6+dzQvGXgh87ZLyQONUoW2bZnOrtq/U3jSwZGBNKD 6xIsx/f5FRh8qqZcdM4sgXI7VRDxNbc5lw/IkUQb+XSwEBxcGb73j1bqK8WCWmW0 XYDlnlDLvTxaIr6OZoZ5iauMaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJT5/b/k jDC3MVPO8S2CtfIIr4zyMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvRUQ5MEQ3M0E0 NkI2MTFFRUJBREQwOTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHn8wDQYJKoZIhvcNAQELBQADggEBAAM8B8Tkbh71OETG T+bguk7RHMqSMGdOVtuwUZ3FdwyPFWgT0GMlpFzTg3NxQicjmvL4/Gi1PuDr7rkw HstdSQuTq3n77mHZsiHX0Kcud4e1AfzuX9UYAR8ef2G6Yta87XE4zL6F61U9DkFp Hc2pUK3RlKKooof9mr9TLXn9h4jW/QqMj6kf3v7POQyZkoK2XtbrVds0p5IMNC5a q9BapN9f2BL7oGaPOsNQUZ2aLjm48tbGLa9lL4htdkxPkB8502Kcn5nbacP5ZWNO +W1/UTXU6gl7KGcyg6DvRDn92TkFb5kA4y62Lfor0V4E8ybMHRVqc0cPn8tjNVlv +xE3fmE= -----END CERTIFICATE-----Generated at Sat May 4 14:45:16 2024 by rpki-client on console-ams.rpki-client.org