$ rpki-client -vvf rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/4A08F422F43211EBA188C86AC4F9AE02.roa File: 4A08F422F43211EBA188C86AC4F9AE02.roa (raw, json) Hash identifier: 01SWNlZpWR4PN3GNnx1+fY/bEvurrrkg5tZqKJ6gwJg= Subject key identifier: 17:B0:7C:96:A2:D3:0B:67:EB:23:79:B5:CB:06:6E:5A:28:AE:B3:95 Certificate issuer: /CN=A911D834/serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Certificate serial: 33CE Authority key identifier: FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/4A08F422F43211EBA188C86AC4F9AE02.roa Signing time: Sun 21 Jan 2024 04:43:11 +0000 ROA not before: Sun 21 Jan 2024 04:43:11 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4007 IP address blocks: 103.232.152.0/22 maxlen: 24 110.34.0.0/19 maxlen: 24 116.66.192.0/21 maxlen: 24 163.47.148.0/22 maxlen: 22 163.47.148.0/24 maxlen: 24 163.47.149.0/24 maxlen: 24 163.47.150.0/24 maxlen: 24 163.47.151.0/24 maxlen: 24 182.93.64.0/19 maxlen: 24 202.63.240.0/21 maxlen: 24 2403:3800::/32 maxlen: 40 2403:3800:8::/48 maxlen: 48 2403:3800:600::/48 maxlen: 48 2403:3800:700::/48 maxlen: 48 2403:3800:820::/48 maxlen: 48 2403:3800:1200::/44 maxlen: 44 2403:3800:1210::/44 maxlen: 44 2403:3800:1220::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13262 (0x33ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D834/serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Validity Not Before: Jan 21 04:43:11 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65aca0df-89b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:31:3b:42:b2:b6:d0:e9:87:e1:e3:02:24:a9: a0:20:ee:ab:e9:9e:09:8e:02:35:80:07:66:b9:ce: 5e:79:f5:4f:eb:5f:a8:7c:10:aa:f1:b8:9e:46:d1: f1:2c:41:8c:5a:fe:5a:f5:b0:52:e1:bb:5e:35:a7: 9e:90:f8:1c:86:cb:d6:a9:5b:bc:05:6b:40:a5:10: 5d:85:96:26:ec:96:97:d5:9f:b1:1c:0f:32:5c:ea: 1d:fe:3c:07:e3:7c:cf:00:f1:17:d0:46:6a:d2:5b: cf:d5:59:4f:d6:fb:93:94:0e:61:98:68:3e:61:3d: 1d:14:09:d1:43:6e:9e:26:24:e5:85:b6:5e:17:53: 19:5c:80:1f:c9:aa:71:38:96:6e:4e:7d:51:ee:bf: 2f:16:8e:cb:56:a3:42:58:4e:50:e1:0e:68:b2:10: 74:f4:48:18:57:ee:84:c2:1f:53:9c:af:b4:75:d0: 40:d0:67:9d:f5:36:f7:c3:54:50:15:b9:d9:8c:be: ff:03:be:2c:ce:6c:89:e6:93:ce:66:07:fe:ce:cd: 47:76:37:28:f3:b0:75:24:21:17:c9:34:02:59:e5: f3:18:59:5a:9a:76:76:2c:65:33:64:9f:8d:a4:dc: 79:cc:53:61:f9:a3:7b:32:d5:2c:4b:bf:ea:97:c5: 7f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B0:7C:96:A2:D3:0B:67:EB:23:79:B5:CB:06:6E:5A:28:AE:B3:95 X509v3 Authority Key Identifier: keyid:FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/4A08F422F43211EBA188C86AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.152.0/22 110.34.0.0/19 116.66.192.0/21 163.47.148.0/22 182.93.64.0/19 202.63.240.0/21 IPv6: 2403:3800::/32 Signature Algorithm: sha256WithRSAEncryption 79:a3:91:6f:d9:2a:af:c0:0c:a4:71:c0:d7:1c:d1:de:de:33: 17:c9:24:f8:41:2a:61:ef:9a:d5:c0:bd:a0:50:72:ae:3a:7f: a9:83:ad:b7:3a:c4:3d:b2:3b:5d:cc:09:95:16:87:78:e6:47: 03:d6:9c:f8:e7:a9:c5:02:06:b7:72:e5:e5:df:02:83:7d:97: 69:67:68:e8:19:e2:33:83:78:4b:fa:15:a3:8e:de:a8:21:3e: 02:ef:52:72:b4:91:90:21:dd:92:4e:b2:80:31:25:fd:2f:d2: f4:00:a1:60:83:4b:a7:38:dc:00:9e:a5:28:b7:d7:88:d7:bd: d6:2c:dd:6d:87:ce:05:39:e8:bb:9c:8c:25:2d:b0:6f:1c:f4: 74:2c:76:f6:1e:f8:dd:71:07:60:18:e1:f0:f0:36:08:e8:06: 34:fe:c3:21:35:ec:e7:6a:f5:50:bc:74:70:1e:35:ff:40:05: cb:72:96:8f:d6:34:01:6d:d9:28:e8:98:bb:ba:ea:99:51:04: 81:70:71:71:fb:1c:10:9f:65:ed:2e:ed:d7:4d:05:45:dd:bd: 5a:8d:ac:18:e7:52:77:d3:37:28:05:ac:c9:38:e5:a9:02:df: 8d:28:84:eb:ca:08:1b:60:fc:87:f0:47:38:1b:74:a5:14:55: 0b:11:15:1f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICM84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4MzQxMTAvBgNVBAUTKEZEQjI3NTREOTUwNjMwRUIxMURGODRFMjg1NUNBQUI3 RDE2MjZGODAwHhcNMjQwMTIxMDQ0MzExWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjYTBkZi04OWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjE7QrK20OmH4eMCJKmgIO6r6Z4JjgI1gAdmuc5eefVP61+ofBCq8bieRtHx LEGMWv5a9bBS4bteNaeekPgchsvWqVu8BWtApRBdhZYm7JaX1Z+xHA8yXOod/jwH 43zPAPEX0EZq0lvP1VlP1vuTlA5hmGg+YT0dFAnRQ26eJiTlhbZeF1MZXIAfyapx OJZuTn1R7r8vFo7LVqNCWE5Q4Q5oshB09EgYV+6Ewh9TnK+0ddBA0Ged9Tb3w1RQ FbnZjL7/A74szmyJ5pPOZgf+zs1Hdjco87B1JCEXyTQCWeXzGFlamnZ2LGUzZJ+N pNx5zFNh+aN7MtUsS7/ql8V/lQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFBewfJai 0wtn6yN5tcsGbloorrOVMB8GA1UdIwQYMBaAFP2ydU2VBjDrEd+E4oVcqrfRYm+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDgzNC9ERkJBNTBCODFE OEQxMUUyODI0REVERUIwOEIwMkNEMi9fYkoxVFpVR01Pc1IzNFRpaFZ5cXQ5Rmli NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iSjFUWlVHTU9zUjM0VGloVnlxdDlGaWI0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ4MzQvREZCQTUwQjgxRDhEMTFFMjgyNERFREVCMDhCMDJDRDIvNEEwOEY0MjJG NDMyMTFFQkExODhDODZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJn6JgDBAVuIgADBAN0QsADBAKjL5QDBAW2XUADBAPKP/Aw DQQCAAIwBwMFACQDOAAwDQYJKoZIhvcNAQELBQADggEBAHmjkW/ZKq/ADKRxwNcc 0d7eMxfJJPhBKmHvmtXAvaBQcq46f6mDrbc6xD2yO13MCZUWh3jmRwPWnPjnqcUC Brdy5eXfAoN9l2lnaOgZ4jODeEv6FaOO3qghPgLvUnK0kZAh3ZJOsoAxJf0v0vQA oWCDS6c43ACepSi314jXvdYs3W2HzgU56LucjCUtsG8c9HQsdvYe+N1xB2AY4fDw NgjoBjT+wyE17Odq9VC8dHAeNf9ABctylo/WNAFt2SjomLu66plRBIFwcXH7HBCf Ze0u7ddNBUXdvVqNrBjnUnfTNygFrMk45akC340ohOvKCBtg/IfwRzgbdKUUVQsR FR8= -----END CERTIFICATE-----Generated at Fri May 31 16:40:53 2024 by rpki-client on console-ams.rpki-client.org