$ rpki-client -vvf rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa File: 5E7BBD38259A11ECB37EA938C4F9AE02.roa (raw, json) Hash identifier: 4czhrhOoEPPLRlm870JaZ7BSYNzclM7RWEOrXebneb4= Subject key identifier: 55:4C:92:13:46:5F:A3:1E:3C:C0:E0:3D:8D:53:A2:5D:32:3A:83:C7 Certificate issuer: /CN=A91E237A/serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Certificate serial: 0541 Authority key identifier: A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa Signing time: Wed 03 May 2023 01:41:39 +0000 ROA not before: Wed 03 May 2023 01:41:39 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45355 IP address blocks: 203.202.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E237A/serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Validity Not Before: May 3 01:41:39 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6451bbd3-c105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:59:fb:bc:36:85:ad:36:18:0d:c1:1c:26: 36:a2:24:37:20:8b:fa:07:f5:f1:fb:d4:8f:74:96: 87:87:d1:17:34:36:c6:c3:1b:7c:6a:eb:00:9e:44: 8b:88:4b:2c:f6:98:cf:b9:9a:8b:19:d5:7b:b6:62: dd:c9:1b:cb:49:87:e9:de:9d:8a:a7:86:c2:46:43: bf:bd:b8:32:fe:e2:1e:80:4f:54:42:7d:1c:8e:14: f0:0a:ae:81:f9:47:af:82:d0:49:a8:c6:e5:af:81: e4:fc:af:d9:7e:bb:74:ae:1d:16:5b:59:f0:e7:65: 55:23:68:59:32:01:28:1d:3d:ce:dd:e9:4f:d1:71: d4:5d:aa:09:5d:eb:09:69:7a:2b:33:28:8e:f4:9c: e7:ab:7c:32:21:93:33:73:31:32:9b:f9:ee:fb:71: bd:dc:91:c6:e4:d5:4e:79:d2:ab:c7:f4:08:73:eb: 20:a1:e2:2c:bd:ec:90:81:12:d9:93:99:5d:4f:d3: a8:11:05:9d:1b:1f:30:3f:6d:f9:bd:9f:60:cd:04: cc:38:31:e7:af:c4:ed:d2:b0:f7:00:0c:92:35:45: 52:da:54:e4:fb:6f:40:7c:e4:54:9a:4d:37:4e:e4: 16:9b:78:7d:3a:04:a6:23:5a:ff:29:2e:80:8f:35: 89:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4C:92:13:46:5F:A3:1E:3C:C0:E0:3D:8D:53:A2:5D:32:3A:83:C7 X509v3 Authority Key Identifier: keyid:A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.202.235.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:d9:16:4a:47:d1:23:84:f1:cb:31:f6:1e:21:8d:9b:54:b0: 6b:99:b4:66:be:c0:14:f6:b6:29:7a:db:88:bb:96:1d:66:14: a3:b2:c7:bc:ef:cc:a3:b8:2d:aa:43:15:cb:a9:51:46:bd:58: 8d:8f:a0:a1:2d:25:ac:cb:98:7d:01:8f:46:39:1e:19:62:fd: 87:4d:2b:80:b5:ff:a1:9b:97:47:ff:71:83:74:8a:71:e7:03: 1b:56:42:db:14:88:45:22:86:6f:5e:b5:50:93:86:61:20:76: 49:3e:1a:ea:32:44:23:e0:87:8b:a5:20:60:fd:fd:fc:76:fa: 19:28:92:81:1d:66:00:f8:fd:9f:e2:e9:4b:67:f6:88:85:02: 76:4a:c3:57:2e:84:24:3f:48:69:c9:13:c9:7b:51:6d:2e:9e: bf:b1:61:56:53:06:67:18:1b:f3:78:75:6c:95:29:77:95:09: c0:6b:32:a9:b3:ae:1e:ca:fa:8b:5e:7a:e4:ab:28:04:38:ab: 50:92:df:94:a1:39:b8:58:48:40:a0:72:ea:2e:5f:58:14:0b: de:3e:8e:34:a9:8e:f6:bb:f5:58:b2:3a:97:dd:6d:d5:f7:4b: 5f:ba:32:9d:3f:83:dc:64:6a:e1:06:da:b7:41:20:bd:b8:24: ae:c0:9f:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIzN0ExMTAvBgNVBAUTKEE5MjMyMDEyRjJGQzA1NDI2QzA2ODgzNThDRkU2RkI5 MTU0Nzg2QkMwHhcNMjMwNTAzMDE0MTM5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxYmJkMy1jMTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqidZ+7w2ha02GA3BHCY2oiQ3IIv6B/Xx+9SPdJaHh9EXNDbGwxt8ausAnkSL iEss9pjPuZqLGdV7tmLdyRvLSYfp3p2Kp4bCRkO/vbgy/uIegE9UQn0cjhTwCq6B +UevgtBJqMblr4Hk/K/Zfrt0rh0WW1nw52VVI2hZMgEoHT3O3elP0XHUXaoJXesJ aXorMyiO9Jznq3wyIZMzczEym/nu+3G93JHG5NVOedKrx/QIc+sgoeIsveyQgRLZ k5ldT9OoEQWdGx8wP235vZ9gzQTMODHnr8Tt0rD3AAySNUVS2lTk+29AfORUmk03 TuQWm3h9OgSmI1r/KS6AjzWJQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFVMkhNG X6MePMDgPY1Tol0yOoPHMB8GA1UdIwQYMBaAFKkjIBLy/AVCbAaINYz+b7kVR4a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM3QS9FODgyRTQ2QzVC QTAxMUVCQUVCRTUzMjlDNEY5QUUwMi9xU01nRXZMOEJVSnNCb2cxalA1dnVSVkho cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTTWdFdkw4QlVKc0JvZzFqUDV2dVJWSGhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIzN0EvRTg4MkU0NkM1QkEwMTFFQkFFQkU1MzI5QzRGOUFFMDIvNUU3QkJEMzgy NTlBMTFFQ0IzN0VBOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLyuswDQYJKoZIhvcNAQELBQADggEBAJ3ZFkpH0SOE8csx 9h4hjZtUsGuZtGa+wBT2til624i7lh1mFKOyx7zvzKO4LapDFcupUUa9WI2PoKEt JazLmH0Bj0Y5Hhli/YdNK4C1/6Gbl0f/cYN0inHnAxtWQtsUiEUihm9etVCThmEg dkk+GuoyRCPgh4ulIGD9/fx2+hkokoEdZgD4/Z/i6Utn9oiFAnZKw1cuhCQ/SGnJ E8l7UW0unr+xYVZTBmcYG/N4dWyVKXeVCcBrMqmzrh7K+oteeuSrKAQ4q1CS35Sh ObhYSECgcuouX1gUC94+jjSpjva79ViyOpfdbdX3S1+6Mp0/g9xkauEG2rdBIL24 JK7Anxc= -----END CERTIFICATE-----Generated at Fri May 17 01:02:53 2024 by rpki-client on console-ams.rpki-client.org