$ rpki-client -vvf rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/E101BEF6BA1111EAA2AF621EC4F9AE02.roa File: E101BEF6BA1111EAA2AF621EC4F9AE02.roa (raw, json) Hash identifier: 5F8rR17nEDED9cxz4pheVEVA2NLUbqwCGvDagVFVtBM= Subject key identifier: 7A:B8:4A:AF:6F:B4:F4:2E:BC:45:CC:44:4F:09:D2:51:95:D8:38:59 Certificate issuer: /CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Certificate serial: 0760 Authority key identifier: 48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/E101BEF6BA1111EAA2AF621EC4F9AE02.roa Signing time: Mon 10 Jul 2023 21:17:46 +0000 ROA not before: Mon 10 Jul 2023 21:17:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 62500 IP address blocks: 202.95.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1888 (0x760) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Validity Not Before: Jul 10 21:17:46 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64ac757a-2a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:70:36:ed:0f:1c:f1:f9:71:36:a0:9e:73:db: 57:78:46:3e:06:ac:a2:ec:06:32:0e:32:78:20:fc: eb:b2:e3:88:e8:08:7a:a8:d2:0d:78:3c:50:72:c9: 30:16:93:a1:2b:95:11:ad:62:96:c6:d5:bd:81:ae: cd:bb:d3:0f:7e:e4:99:7f:9e:35:38:5d:cf:7c:8d: 31:c9:f2:77:73:79:75:74:ce:76:52:9c:f5:75:b5: 50:20:7c:68:ce:72:9a:b6:8e:57:cf:f8:bd:9f:94: 74:16:7e:e5:a7:eb:b5:f2:60:33:7a:5d:41:8b:13: 7e:f8:de:5d:ca:e0:7a:67:5e:08:89:bd:53:15:76: 0a:d1:30:95:44:8d:8f:92:4f:8d:5b:6a:a0:62:a6: 55:15:cb:f6:6c:02:ad:d5:fb:76:c1:e0:8e:e2:27: 24:d1:8a:2b:90:96:d9:16:fe:f0:b8:61:c8:89:19: e8:0e:4e:0c:d0:88:bf:81:80:52:45:ca:2a:26:fd: f0:04:64:37:06:ca:69:9f:41:4b:e3:9e:a8:1d:42: f1:ba:9f:f0:86:e7:98:6d:c8:e8:99:98:89:ff:12: 4d:f6:4d:eb:45:68:3d:c8:29:a7:82:26:1d:47:8c: 15:2a:a1:13:89:83:32:a4:f1:16:c7:b5:42:93:3b: ec:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B8:4A:AF:6F:B4:F4:2E:BC:45:CC:44:4F:09:D2:51:95:D8:38:59 X509v3 Authority Key Identifier: keyid:48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/E101BEF6BA1111EAA2AF621EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.233.0/24 Signature Algorithm: sha256WithRSAEncryption 73:9b:f5:2b:be:aa:50:26:08:6e:fb:57:aa:a2:92:e7:29:7d: 8d:73:47:32:e7:09:e0:d1:70:09:e8:2b:00:2d:a8:db:f2:0c: db:29:66:3e:41:28:79:4b:74:8f:0d:b9:ce:97:a9:84:eb:6b: e0:0d:f1:fe:65:19:16:82:2b:18:2e:cd:65:42:95:43:ae:05: c2:be:2b:08:4b:2b:03:f7:8d:72:9f:c7:dd:79:2c:19:cc:37: e8:d6:8f:68:8f:85:b7:8c:26:be:39:f9:18:55:da:6e:a8:75: fa:bd:b0:ab:3e:73:b5:11:fc:ab:d1:51:ff:78:4e:39:21:3e: ba:8a:bf:ea:c4:a2:cf:f4:99:e2:66:97:63:9c:9d:5c:77:65: 27:9a:74:1d:c1:fa:20:72:83:44:e9:bd:e9:0c:f7:77:f7:74: d9:24:71:1d:a1:9b:c7:69:f7:c9:ba:02:7f:0a:6d:72:f4:4c: 95:77:60:9a:d6:19:d9:4f:b2:56:7f:0e:a9:0c:e7:62:90:25: 82:19:e6:33:f5:e6:d5:e1:7d:7a:58:eb:19:5b:aa:23:16:b3: c7:f1:c2:77:37:e9:8c:0c:58:37:b6:7a:d4:8b:95:12:44:cf: 47:ca:fa:14:65:48:cc:c8:0b:9b:20:3c:22:54:e7:81:44:b8: d1:6e:73:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2M0YxMTAvBgNVBAUTKDQ4MjAxNkU1NkEwMjQxRkQyRDM1QkZENzdCQzk3MkU2 NzNDRTlGMkYwHhcNMjMwNzEwMjExNzQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFjNzU3YS0yYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3A27Q8c8flxNqCec9tXeEY+Bqyi7AYyDjJ4IPzrsuOI6Ah6qNINeDxQcskw FpOhK5URrWKWxtW9ga7Nu9MPfuSZf541OF3PfI0xyfJ3c3l1dM52Upz1dbVQIHxo znKato5Xz/i9n5R0Fn7lp+u18mAzel1BixN++N5dyuB6Z14Iib1TFXYK0TCVRI2P kk+NW2qgYqZVFcv2bAKt1ft2weCO4ick0YorkJbZFv7wuGHIiRnoDk4M0Ii/gYBS RcoqJv3wBGQ3Bsppn0FL456oHULxup/whueYbcjomZiJ/xJN9k3rRWg9yCmngiYd R4wVKqETiYMypPEWx7VCkzvsgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHq4Sq9v tPQuvEXMRE8J0lGV2DhZMB8GA1UdIwQYMBaAFEggFuVqAkH9LTW/13vJcuZzzp8v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTYzRi8wQUI3NzdEQUI2 QTgxMUVBQUVFMTRGN0JDNEY5QUUwMi9TQ0FXNVdvQ1FmMHROYl9YZThseTVuUE9u eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDQVc1V29DUWYwdE5iX1hlOGx5NW5QT255OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU2M0YvMEFCNzc3REFCNkE4MTFFQUFFRTE0RjdCQzRGOUFFMDIvRTEwMUJFRjZC QTExMTFFQUEyQUY2MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKX+kwDQYJKoZIhvcNAQELBQADggEBAHOb9Su+qlAmCG77 V6qikucpfY1zRzLnCeDRcAnoKwAtqNvyDNspZj5BKHlLdI8Nuc6XqYTra+AN8f5l GRaCKxguzWVClUOuBcK+KwhLKwP3jXKfx915LBnMN+jWj2iPhbeMJr45+RhV2m6o dfq9sKs+c7UR/KvRUf94TjkhPrqKv+rEos/0meJml2OcnVx3ZSeadB3B+iByg0Tp vekM93f3dNkkcR2hm8dp98m6An8KbXL0TJV3YJrWGdlPslZ/DqkM52KQJYIZ5jP1 5tXhfXpY6xlbqiMWs8fxwnc36YwMWDe2etSLlRJEz0fK+hRlSMzIC5sgPCJU54FE uNFuc9I= -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org