$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa File: 63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa (raw, json) Hash identifier: s3hBS6UQ2cBV/bb7m3a4lu7ZgfW+bm/L8bCBT/t07BI= Subject key identifier: EB:A6:03:3B:DF:48:46:FC:D7:6A:22:83:C1:CE:13:A1:45:25:4C:F7 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 70 Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa Signing time: Sat 29 Jul 2023 04:24:44 +0000 ROA not before: Sat 29 Jul 2023 04:24:44 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132698 IP address blocks: 203.124.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Jul 29 04:24:44 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c4948c-3332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ce:99:c5:7a:3a:b9:43:0a:de:9b:fb:24:7c: 7f:8b:e0:f3:f7:c4:f3:ca:ad:05:d4:ca:db:76:41: d3:df:7f:05:22:26:87:dd:d7:01:45:7a:41:bf:1a: bc:e3:82:3f:b6:38:f6:9c:fc:c8:19:48:9a:7a:3e: 26:a3:7b:7e:30:bd:9c:71:4d:fc:f4:da:7d:3d:72: e0:e2:ec:8a:21:db:2a:64:1c:61:b1:6d:d9:da:83: 04:84:98:8b:9c:19:f1:3f:c6:23:6d:93:2d:e8:01: f4:cc:f7:a8:dc:7e:9a:6a:68:f1:f3:da:5b:ec:05: 4d:69:d8:2c:08:9a:28:d7:41:ba:df:64:32:3b:b7: 0b:1d:98:f6:7c:84:8a:da:7f:e4:ed:af:e9:6b:b6: 4f:5a:a2:ab:4e:52:4c:bb:8c:5a:c3:4c:3e:a0:6a: 1a:b0:8d:93:d6:28:41:3b:bd:6c:a6:44:42:7c:b9: 59:84:4e:5a:d9:59:1f:e6:40:7f:88:7f:27:cf:2a: 8d:c5:82:69:ad:8a:b6:b9:4b:c5:f5:03:77:ab:e7: c4:80:f4:72:36:87:4d:b8:37:b1:79:be:62:2e:a5: ff:fd:46:c4:33:36:f3:8d:64:76:74:f7:29:b9:aa: cc:8a:a6:59:22:7b:b5:3b:ef:3e:44:83:85:88:43: 1d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A6:03:3B:DF:48:46:FC:D7:6A:22:83:C1:CE:13:A1:45:25:4C:F7 X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.14.0/24 Signature Algorithm: sha256WithRSAEncryption 47:d3:fd:6f:6b:f5:97:71:68:3a:bd:07:78:60:62:2b:d8:b2: b3:98:76:52:50:f9:35:12:01:09:8f:3f:42:c2:94:67:82:2c: a7:8f:af:12:39:57:2b:3b:6f:fc:f5:4e:67:22:0d:98:22:b9: 37:2e:7f:1d:ae:81:f3:cc:1c:cd:cc:66:77:38:2b:5d:8b:83: b4:dd:e8:00:24:18:0d:cc:1f:d1:e7:f5:08:1a:06:d0:69:b6: e5:fe:82:e9:11:43:25:90:4d:b5:08:55:29:6f:9d:ad:d9:64: 9c:d6:70:04:54:57:0b:90:5e:45:9d:fa:9e:2f:c9:eb:df:f1: 52:47:03:59:ed:a2:d5:96:64:3c:0d:0a:2a:f1:14:7a:77:72: 6a:77:04:00:9a:56:5e:e4:f1:75:8b:f6:01:94:da:8c:91:43: e7:6a:ec:dc:d3:e3:18:92:9d:67:47:79:64:22:77:50:62:09: 41:cf:29:48:d4:5f:16:85:49:fa:ae:b7:7c:af:8e:ee:89:1e: f9:84:84:97:fe:bc:fa:31:b5:da:f2:87:01:c0:d1:8e:c6:9a: 1b:8e:f8:bc:d7:2a:13:1b:80:1b:e3:f8:82:50:dc:03:ff:65: 8a:75:eb:37:fc:4a:fd:1b:a2:82:e5:35:37:a7:76:11:b6:10: 8a:ca:99:cc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDY5NjExMC8GA1UEBRMoMjdCODcyMkM4NTlDQTRGNkYwM0VDMUUwNjFGREQ0QzNC OUI0OTdFNTAeFw0yMzA3MjkwNDI0NDRaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YzQ5NDhjLTMzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLzpnFejq5Qwrem/skfH+L4PP3xPPKrQXUytt2QdPffwUiJofd1wFFekG/Grzj gj+2OPac/MgZSJp6Piaje34wvZxxTfz02n09cuDi7Ioh2ypkHGGxbdnagwSEmIuc GfE/xiNtky3oAfTM96jcfppqaPHz2lvsBU1p2CwImijXQbrfZDI7twsdmPZ8hIra f+Ttr+lrtk9aoqtOUky7jFrDTD6gahqwjZPWKEE7vWymREJ8uVmETlrZWR/mQH+I fyfPKo3Fgmmtira5S8X1A3er58SA9HI2h024N7F5vmIupf/9RsQzNvONZHZ09ym5 qsyKplkie7U77z5Eg4WIQx0DAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU66YDO99I RvzXaiKDwc4ToUUlTPcwHwYDVR0jBBgwFoAUJ7hyLIWcpPbwPsHgYf3Uw7m0l+Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0Njk2L0Q2QTExQzRBOTBC RjExRUQ4Q0MxRTc4M0M0RjlBRTAyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSjdoeUxJV2NwUGJ3UHNIZ1lmM1V3N20wbC1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY5Ni9ENkExMUM0QTkwQkYxMUVEOENDMUU3ODNDNEY5QUUwMi82M0NDMkFBODBG RUUxMUVFQkNDNkFFNTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMt8DjANBgkqhkiG9w0BAQsFAAOCAQEAR9P9b2v1l3FoOr0H eGBiK9iys5h2UlD5NRIBCY8/QsKUZ4Isp4+vEjlXKztv/PVOZyINmCK5Ny5/Ha6B 88wczcxmdzgrXYuDtN3oACQYDcwf0ef1CBoG0Gm25f6C6RFDJZBNtQhVKW+drdlk nNZwBFRXC5BeRZ36ni/J69/xUkcDWe2i1ZZkPA0KKvEUendyancEAJpWXuTxdYv2 AZTajJFD52rs3NPjGJKdZ0d5ZCJ3UGIJQc8pSNRfFoVJ+q63fK+O7oke+YSEl/68 +jG12vKHAcDRjsaaG474vNcqExuAG+P4glDcA/9linXrN/xK/RuiguU1N6d2EbYQ isqZzA== -----END CERTIFICATE-----Generated at Fri May 17 06:46:29 2024 by rpki-client on console-ams.rpki-client.org