$ rpki-client -vvf rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/5BF38D62058E11EA96051368C4F9AE02.roa File: 5BF38D62058E11EA96051368C4F9AE02.roa (raw, json) Hash identifier: P7GXV6aA9dHiZJysliChpv6ngsAblSKuNIBuT4WgWZ8= Subject key identifier: 25:A1:8F:26:3E:11:32:A5:A4:0C:E5:E3:77:04:F4:B0:5B:B5:EE:0E Certificate issuer: /CN=A912A6CB/serialNumber=679CDB255B5B775809105E90E0023449F71C6B6F Certificate serial: 0AC6 Authority key identifier: 67:9C:DB:25:5B:5B:77:58:09:10:5E:90:E0:02:34:49:F7:1C:6B:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/5BF38D62058E11EA96051368C4F9AE02.roa Signing time: Tue 02 May 2023 20:17:12 +0000 ROA not before: Tue 02 May 2023 20:17:12 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58927 IP address blocks: 43.249.116.0/22 maxlen: 23 103.9.68.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.crl rsync://rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2758 (0xac6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A6CB/serialNumber=679CDB255B5B775809105E90E0023449F71C6B6F Validity Not Before: May 2 20:17:12 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64516fc7-5b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c1:f7:f7:9d:e1:dd:70:01:ae:12:3d:c1:74: 8e:95:c3:f0:97:5f:1a:4c:85:3b:26:28:02:82:a8: 95:c7:11:87:d4:49:31:53:11:ec:f3:20:48:df:1f: e1:19:d7:88:83:21:1d:7c:30:d7:b8:4f:1c:82:1e: e4:a8:c5:2c:09:fe:f3:e1:a7:8a:fa:10:16:ae:24: 93:6a:39:fd:bc:be:c1:01:99:1b:e9:f5:ee:34:f1: 01:98:0d:82:d2:ae:0d:c9:ec:13:30:d6:91:72:41: 40:88:6e:0d:9f:92:9a:21:fd:16:87:d6:2d:38:d5: a1:61:08:22:c9:cf:b8:c9:27:90:0a:0c:c5:76:7c: b9:f7:72:d5:2a:9d:ae:95:9b:04:c4:70:fd:43:1b: 8e:82:48:b2:5a:7f:52:f0:18:56:57:be:4a:cb:a5: fe:a1:57:28:3a:e2:ec:e1:98:6b:d8:7e:ad:83:7a: 80:c2:63:10:40:d4:9d:dd:f5:fb:f2:c0:df:ef:07: b8:ee:ee:30:dc:54:10:ac:45:35:ea:55:1f:ec:78: 6b:7d:fa:37:8d:03:6d:7a:9c:a2:a2:a9:02:22:48: 2f:f6:59:36:9d:18:10:bd:04:12:bb:51:f0:f5:6e: dd:cb:2a:de:f3:2f:be:75:42:78:9c:0c:32:32:d7: 43:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A1:8F:26:3E:11:32:A5:A4:0C:E5:E3:77:04:F4:B0:5B:B5:EE:0E X509v3 Authority Key Identifier: keyid:67:9C:DB:25:5B:5B:77:58:09:10:5E:90:E0:02:34:49:F7:1C:6B:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z5zbJVtbd1gJEF6Q4AI0Sfcca28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A6CB/96A60BB604FC11EAB3D99415C4F9AE02/5BF38D62058E11EA96051368C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.116.0/22 103.9.68.0/22 Signature Algorithm: sha256WithRSAEncryption c1:9a:e9:0d:7d:c3:95:b5:ce:66:8b:40:77:77:bc:e6:1c:83: 73:54:90:c2:f7:d8:b1:29:46:f9:73:fc:21:e2:99:e4:d6:f4: d9:78:49:23:57:2a:01:6f:2a:fe:0d:5b:79:6b:87:36:34:5d: 94:01:22:32:66:c6:6c:a2:6f:ff:e0:31:0d:22:3c:7a:f1:a9: 52:52:ae:99:ec:71:22:1a:b6:79:9b:94:f5:02:ca:aa:95:14: 07:2d:72:42:cc:f9:18:77:81:2a:aa:b0:58:58:52:79:2e:28: b0:99:56:f2:8b:03:45:7b:5c:fb:38:86:fc:a2:ae:0a:1a:cc: 94:47:d8:5f:08:ca:03:ab:76:1d:0f:80:d6:7f:6d:5f:6b:07: 4f:2c:ca:e8:95:3d:57:49:13:f7:42:c8:bc:81:a6:e4:16:8d: 8d:68:f6:d8:cf:4d:e9:63:5c:d7:14:c4:45:ae:4f:07:f3:63: a1:81:c0:28:d0:5e:ce:8d:58:15:fb:f4:80:6f:ce:45:87:38: ae:d6:52:40:8a:d1:6a:45:26:11:5e:33:da:d7:d3:d0:3b:73: cb:f4:14:a0:0f:14:cf:3c:f2:d4:ec:23:41:46:33:ac:58:a5: 4f:cd:45:54:ac:33:7d:13:1c:af:c6:d9:49:33:8d:e7:ac:37: 98:3e:23:46 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE2Q0IxMTAvBgNVBAUTKDY3OUNEQjI1NUI1Qjc3NTgwOTEwNUU5MEUwMDIzNDQ5 RjcxQzZCNkYwHhcNMjMwNTAyMjAxNzEyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxNmZjNy01YjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMH3953h3XABrhI9wXSOlcPwl18aTIU7JigCgqiVxxGH1EkxUxHs8yBI3x/h GdeIgyEdfDDXuE8cgh7kqMUsCf7z4aeK+hAWriSTajn9vL7BAZkb6fXuNPEBmA2C 0q4NyewTMNaRckFAiG4Nn5KaIf0Wh9YtONWhYQgiyc+4ySeQCgzFdny593LVKp2u lZsExHD9QxuOgkiyWn9S8BhWV75Ky6X+oVcoOuLs4Zhr2H6tg3qAwmMQQNSd3fX7 8sDf7we47u4w3FQQrEU16lUf7Hhrffo3jQNtepyioqkCIkgv9lk2nRgQvQQSu1Hw 9W7dyyre8y++dUJ4nAwyMtdDwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCWhjyY+ ETKlpAzl43cE9LBbte4OMB8GA1UdIwQYMBaAFGec2yVbW3dYCRBekOACNEn3HGtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTZDQi85NkE2MEJCNjA0 RkMxMUVBQjNEOTk0MTVDNEY5QUUwMi9aNXpiSlZ0YmQxZ0pFRjZRNEFJMFNmY2Nh MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o1emJKVnRiZDFnSkVGNlE0QUkwU2ZjY2EyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE2Q0IvOTZBNjBCQjYwNEZDMTFFQUIzRDk5NDE1QzRGOUFFMDIvNUJGMzhENjIw NThFMTFFQTk2MDUxMzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+XQDBAJnCUQwDQYJKoZIhvcNAQELBQADggEBAMGa6Q19 w5W1zmaLQHd3vOYcg3NUkML32LEpRvlz/CHimeTW9Nl4SSNXKgFvKv4NW3lrhzY0 XZQBIjJmxmyib//gMQ0iPHrxqVJSrpnscSIatnmblPUCyqqVFActckLM+Rh3gSqq sFhYUnkuKLCZVvKLA0V7XPs4hvyirgoazJRH2F8IygOrdh0PgNZ/bV9rB08syuiV PVdJE/dCyLyBpuQWjY1o9tjPTeljXNcUxEWuTwfzY6GBwCjQXs6NWBX79IBvzkWH OK7WUkCK0WpFJhFeM9rX09A7c8v0FKAPFM888tTsI0FGM6xYpU/NRVSsM30THK/G 2UkzjeesN5g+I0Y= -----END CERTIFICATE-----Generated at Sun Jun 2 21:14:16 2024 by rpki-client on console-ams.rpki-client.org