$ rpki-client -vvf rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/C14B7B728D0611EDB02E7331C4F9AE02.roa File: C14B7B728D0611EDB02E7331C4F9AE02.roa (raw, json) Hash identifier: 6iA/e/Lpe/xbEaV+8BTrwMc+RFOGfgzVubJG9eFsvZI= Subject key identifier: DD:B1:99:05:0E:79:0A:43:5F:14:2D:CE:F1:C3:67:B1:87:C2:41:5E Certificate issuer: /CN=A911218D/serialNumber=E5CD79201EEB4BD9F0EF7656E7325F57165F7EA0 Certificate serial: 069F Authority key identifier: E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/C14B7B728D0611EDB02E7331C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:49:58 +0000 ROA not before: Thu 02 Nov 2023 22:49:58 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133034 IP address blocks: 103.156.126.0/23 maxlen: 23 103.156.126.0/24 maxlen: 24 103.156.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.crl rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911218D/serialNumber=E5CD79201EEB4BD9F0EF7656E7325F57165F7EA0 Validity Not Before: Nov 2 22:49:58 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65442796-3dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:b3:a9:95:79:a3:c7:e3:32:5b:e4:93:47: f6:df:c4:67:fa:15:28:5d:ec:d7:d0:1f:82:7f:e0: fd:ba:37:3f:25:35:cd:fb:05:64:3a:42:4d:16:21: be:23:69:36:89:83:e0:85:a7:41:f7:e7:61:b7:41: 6b:de:62:51:0c:ea:93:55:b3:aa:45:c2:b9:8b:58: 89:f7:9b:ef:fa:2f:92:ac:e1:39:57:1b:32:08:f5: 1b:eb:4b:9b:99:bd:ce:40:05:68:5a:90:a9:ed:4f: af:de:eb:e1:6b:69:63:49:fd:9d:21:fd:c2:48:b6: 1f:e4:43:46:52:2f:7c:2d:89:77:84:13:e7:f4:d6: 8e:65:d0:88:fe:89:3e:bc:7d:6a:07:1e:bd:6f:ef: 0d:b3:e2:29:f9:6c:7f:2e:16:0c:41:9b:64:8b:f1: 45:76:3c:ea:43:35:e3:28:b3:8d:58:93:e1:03:ed: 2d:93:74:42:dd:2c:81:ab:02:02:66:be:59:1a:01: ca:7c:cb:67:d2:5c:56:d5:91:09:8d:b8:48:ba:ed: 3b:8e:fe:a0:37:01:89:a6:db:15:04:fa:c3:a9:37: b5:c9:96:69:ec:6f:ba:4e:78:71:4b:ed:41:11:ed: 36:64:e9:6a:6a:bd:41:3f:20:13:bd:76:e4:62:39: 2b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B1:99:05:0E:79:0A:43:5F:14:2D:CE:F1:C3:67:B1:87:C2:41:5E X509v3 Authority Key Identifier: keyid:E5:CD:79:20:1E:EB:4B:D9:F0:EF:76:56:E7:32:5F:57:16:5F:7E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/5c15IB7rS9nw73ZW5zJfVxZffqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c15IB7rS9nw73ZW5zJfVxZffqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911218D/0EB6748AFFC811EA84A3667CC4F9AE02/C14B7B728D0611EDB02E7331C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.126.0/23 Signature Algorithm: sha256WithRSAEncryption 73:b0:a7:77:17:e2:dc:30:43:fd:f1:f9:21:3a:0c:3b:72:99: f8:e1:d5:9f:31:03:72:ba:cc:f1:b4:d5:46:ee:39:6f:f0:cf: 56:60:dc:f2:6f:46:d3:8f:28:74:48:89:ae:f8:62:0e:ec:d5: 71:d3:f2:eb:0e:bb:21:88:26:a4:33:9d:f7:d3:b2:4a:4d:ea: 32:09:b2:0d:a0:d0:c4:fe:f1:cf:05:3d:71:cb:23:17:dd:1c: 36:ea:55:08:a0:7c:a5:c1:a1:7b:93:81:37:c5:26:5d:ac:a1: fa:56:88:17:22:4e:f6:50:6d:39:99:ab:50:d1:18:72:03:73: 68:8c:50:96:84:4e:4e:ec:5e:e4:79:6f:45:85:df:20:32:83: 6a:aa:d8:03:fa:63:92:1f:d1:1a:41:58:33:41:90:8d:2f:68: c6:1a:f6:01:82:81:23:66:62:77:cf:70:f0:6e:d6:ff:9f:1e: 26:0a:c0:8e:96:ae:7f:e8:03:5e:d2:7f:b0:82:31:1f:3a:4e: 57:5c:40:24:72:58:74:c5:df:1a:00:67:7a:f6:bd:91:6d:7c: 32:2b:b1:1c:07:6f:5e:56:96:ac:26:8a:a4:05:e2:33:21:c8: a5:dd:d2:d0:67:77:16:4b:3f:25:b0:1a:f6:93:2f:56:9f:c1: 66:30:6b:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIxOEQxMTAvBgNVBAUTKEU1Q0Q3OTIwMUVFQjRCRDlGMEVGNzY1NkU3MzI1RjU3 MTY1RjdFQTAwHhcNMjMxMTAyMjI0OTU4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0Mjc5Ni0zZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweezqZV5o8fjMlvkk0f238Rn+hUoXezX0B+Cf+D9ujc/JTXN+wVkOkJNFiG+ I2k2iYPghadB9+dht0Fr3mJRDOqTVbOqRcK5i1iJ95vv+i+SrOE5VxsyCPUb60ub mb3OQAVoWpCp7U+v3uvha2ljSf2dIf3CSLYf5ENGUi98LYl3hBPn9NaOZdCI/ok+ vH1qBx69b+8Ns+Ip+Wx/LhYMQZtki/FFdjzqQzXjKLONWJPhA+0tk3RC3SyBqwIC Zr5ZGgHKfMtn0lxW1ZEJjbhIuu07jv6gNwGJptsVBPrDqTe1yZZp7G+6TnhxS+1B Ee02ZOlqar1BPyATvXbkYjkrDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN2xmQUO eQpDXxQtzvHDZ7GHwkFeMB8GA1UdIwQYMBaAFOXNeSAe60vZ8O92VucyX1cWX36g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjE4RC8wRUI2NzQ4QUZG QzgxMUVBODRBMzY2N0NDNEY5QUUwMi81YzE1SUI3clM5bnc3M1pXNXpKZlZ4WmZm cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjMTVJQjdyUzludzczWlc1ekpmVnhaZmZxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTIxOEQvMEVCNjc0OEFGRkM4MTFFQTg0QTM2NjdDQzRGOUFFMDIvQzE0QjdCNzI4 RDA2MTFFREIwMkU3MzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnH4wDQYJKoZIhvcNAQELBQADggEBAHOwp3cX4twwQ/3x +SE6DDtymfjh1Z8xA3K6zPG01UbuOW/wz1Zg3PJvRtOPKHRIia74Yg7s1XHT8usO uyGIJqQznffTskpN6jIJsg2g0MT+8c8FPXHLIxfdHDbqVQigfKXBoXuTgTfFJl2s ofpWiBciTvZQbTmZq1DRGHIDc2iMUJaETk7sXuR5b0WF3yAyg2qq2AP6Y5If0RpB WDNBkI0vaMYa9gGCgSNmYnfPcPBu1v+fHiYKwI6Wrn/oA17Sf7CCMR86TldcQCRy WHTF3xoAZ3r2vZFtfDIrsRwHb15WlqwmiqQF4jMhyKXd0tBndxZLPyWwGvaTL1af wWYwa4s= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:10 2024 by rpki-client on console-ams.rpki-client.org