$ rpki-client -vvf rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa File: A5F4A536933D11EEA6B4A653C4F9AE02.roa (raw, json) Hash identifier: NSX7uy6kvdyVzGTyrP4PPaT7WlKhSTJwrok/K4pBKV0= Subject key identifier: A6:28:80:7D:62:48:E2:14:83:00:68:F3:CC:87:35:3F:A2:95:A2:FB Certificate issuer: /CN=A912B129/serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Certificate serial: 03 Authority key identifier: 2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa Signing time: Tue 05 Dec 2023 07:12:28 +0000 ROA not before: Tue 05 Dec 2023 07:12:28 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 55832 IP address blocks: 45.64.16.0/24 maxlen: 24 45.64.17.0/24 maxlen: 24 45.64.18.0/24 maxlen: 24 45.64.19.0/24 maxlen: 24 103.14.181.0/24 maxlen: 24 103.14.182.0/24 maxlen: 24 103.14.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B129/serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Validity Not Before: Dec 5 07:12:28 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656ecd5c-f7fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:b7:a0:e0:fe:a6:99:a9:a5:f2:6f:3f:eb: f5:07:6b:41:d2:2d:c7:df:8b:d3:39:53:de:3b:13: 57:62:c0:39:46:d0:82:c4:76:6e:8d:ea:4e:d2:e2: 37:b8:ab:80:b3:8a:8a:78:5e:5f:0d:71:09:30:a7: 27:72:0a:58:8a:32:fc:29:33:cd:81:67:a5:fe:e5: f9:a5:23:12:80:39:98:17:b5:d8:bd:e6:97:6c:0f: 86:3e:3d:fb:66:ff:ef:28:d1:ce:59:42:58:74:30: 18:36:7d:bb:d9:42:bd:b9:cb:ed:82:b4:cf:1a:28: 96:97:1c:93:f8:ca:d4:00:bd:b2:a6:54:ef:27:e0: 22:3d:0b:10:9c:0f:9a:e9:96:31:b7:24:34:41:8f: d5:de:41:3b:b1:18:50:25:91:c7:68:61:42:65:cd: 15:a2:f5:1c:93:9c:2d:30:f7:a4:37:07:42:f3:66: 85:66:21:23:44:6d:72:0b:d2:d2:87:eb:f4:2f:5b: fe:17:e8:ce:5d:d6:14:86:c6:01:84:91:ef:02:5d: 87:42:ce:c0:97:52:c4:9c:94:64:58:3d:05:a9:8a: de:9a:ab:07:75:90:8c:41:7e:52:95:f4:a8:92:8a: da:31:f3:82:24:60:62:95:24:f1:90:ea:10:f5:4a: 80:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:28:80:7D:62:48:E2:14:83:00:68:F3:CC:87:35:3F:A2:95:A2:FB X509v3 Authority Key Identifier: keyid:2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.16.0/22 103.14.181.0-103.14.183.255 Signature Algorithm: sha256WithRSAEncryption 86:cf:a6:03:04:93:43:b8:b7:dd:b4:e0:79:e4:38:64:61:d9: f4:4f:45:7b:20:ef:21:33:67:94:10:20:f2:22:bf:17:3c:5d: b7:b9:35:26:23:41:56:a6:5d:79:39:ee:4c:42:92:f5:92:64: 18:15:f9:a4:d0:4d:35:fe:57:b9:db:72:ae:fe:d4:ef:e6:62: 38:d6:44:6e:a9:e0:7a:14:a4:27:bf:f0:8e:17:ca:c6:cd:53: 80:c8:c9:db:f2:e8:ac:f6:08:d4:ab:37:22:12:c9:22:5e:ff: a4:42:66:76:06:19:d8:9d:87:d9:0e:3c:0f:b8:ef:ae:0e:73: 11:6d:d5:92:7f:c6:04:56:e3:23:5e:69:10:43:88:32:57:5f: 9f:f3:ac:d8:27:30:b2:73:a3:5b:cd:99:14:85:30:8e:6c:96: 33:aa:d2:9e:ec:37:6a:79:e0:3a:c1:da:50:69:b8:17:57:36: c1:c6:fe:d1:6c:f4:7c:fa:73:32:1f:28:f9:32:1f:1d:55:3d: be:a3:4c:ca:2e:00:46:5a:0e:c0:b0:62:b4:f4:d7:74:cb:b5: 62:bc:89:8e:99:73:46:fa:f7:fa:53:18:66:d5:6f:09:bb:6c: ab:ff:97:1e:0a:23:d0:29:3e:e5:2c:15:00:43:77:af:03:e7: 1c:37:e5:94 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjEyOTExMC8GA1UEBRMoMkM4RDFBNTgwNTZFRDE4OEZFODU4MEU3MEQxREU1MEY0 QzNEQTI3MDAeFw0yMzEyMDUwNzEyMjhaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NmVjZDVjLWY3ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9Oreg4P6mmaml8m8/6/UHa0HSLcffi9M5U947E1diwDlG0ILEdm6N6k7S4je4 q4Cziop4Xl8NcQkwpydyCliKMvwpM82BZ6X+5fmlIxKAOZgXtdi95pdsD4Y+Pftm /+8o0c5ZQlh0MBg2fbvZQr25y+2CtM8aKJaXHJP4ytQAvbKmVO8n4CI9CxCcD5rp ljG3JDRBj9XeQTuxGFAlkcdoYUJlzRWi9RyTnC0w96Q3B0LzZoVmISNEbXIL0tKH 6/QvW/4X6M5d1hSGxgGEke8CXYdCzsCXUsSclGRYPQWpit6aqwd1kIxBflKV9KiS itox84IkYGKVJPGQ6hD1SoC9AgMBAAGjggKjMIICnzAdBgNVHQ4EFgQUpiiAfWJI 4hSDAGjzzIc1P6KVovswHwYDVR0jBBgwFoAULI0aWAVu0Yj+hYDnDR3lD0w9onAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMTI5LzRCM0NFRUI0OTMz RDExRUU4QTk1MDI1M0M0RjlBRTAyL0xJMGFXQVZ1MFlqLWhZRG5EUjNsRDB3OW9u QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEkwYVdBVnUwWWotaFlEbkRSM2xEMHc5b25BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjEyOS80QjNDRUVCNDkzM0QxMUVFOEE5NTAyNTNDNEY5QUUwMi9BNUY0QTUzNjkz M0QxMUVFQTZCNEE2NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAEwFAMEAi1AEDAMAwQAZw61AwQDZw6wMA0GCSqGSIb3DQEBCwUAA4IB AQCGz6YDBJNDuLfdtOB55DhkYdn0T0V7IO8hM2eUECDyIr8XPF23uTUmI0FWpl15 Oe5MQpL1kmQYFfmk0E01/le523Ku/tTv5mI41kRuqeB6FKQnv/COF8rGzVOAyMnb 8uis9gjUqzciEskiXv+kQmZ2BhnYnYfZDjwPuO+uDnMRbdWSf8YEVuMjXmkQQ4gy V1+f86zYJzCyc6NbzZkUhTCObJYzqtKe7DdqeeA6wdpQabgXVzbBxv7RbPR8+nMy Hyj5Mh8dVT2+o0zKLgBGWg7AsGK09Nd0y7VivImOmXNG+vf6Uxhm1W8Ju2yr/5ce CiPQKT7lLBUAQ3evA+ccN+WU -----END CERTIFICATE-----Generated at Fri May 31 10:42:19 2024 by rpki-client on console-fra.rpki-client.org