$ rpki-client -vvf rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/B52B819E14F411EA96EC5874C4F9AE02.roa File: B52B819E14F411EA96EC5874C4F9AE02.roa (raw, json) Hash identifier: eV56fuiHryIQKRFyea/z5/qNhu8IKn93PeRTauxJVa0= Subject key identifier: 86:D5:97:B1:4E:1F:86:5B:DC:A0:30:77:04:45:5A:82:B8:06:DF:A2 Certificate issuer: /CN=A914BB5D/serialNumber=90E815420643B5DD6391283D67744A3ABA3072D3 Certificate serial: 0AEB Authority key identifier: 90:E8:15:42:06:43:B5:DD:63:91:28:3D:67:74:4A:3A:BA:30:72:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kOgVQgZDtd1jkSg9Z3RKOrowctM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/B52B819E14F411EA96EC5874C4F9AE02.roa Signing time: Fri 22 Dec 2023 19:47:26 +0000 ROA not before: Fri 22 Dec 2023 19:47:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.145.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/kOgVQgZDtd1jkSg9Z3RKOrowctM.crl rsync://rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/kOgVQgZDtd1jkSg9Z3RKOrowctM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kOgVQgZDtd1jkSg9Z3RKOrowctM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2795 (0xaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BB5D/serialNumber=90E815420643B5DD6391283D67744A3ABA3072D3 Validity Not Before: Dec 22 19:47:26 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6585e7ce-b972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:5a:77:e9:56:fa:21:28:58:90:1a:ce:9f: bd:4d:3e:10:43:93:0f:ea:ed:17:e8:07:63:ef:57: e6:c7:e4:29:3e:96:9a:52:d8:a9:51:b0:5b:27:d8: 65:bf:f5:c1:07:05:ad:c5:14:b0:a2:14:33:95:d5: 98:cf:63:6e:c3:d4:06:f6:8e:22:ed:2f:9e:38:f2: 00:c3:d7:c4:68:ce:3a:e0:d5:a0:59:64:4a:cb:fb: af:9a:85:61:c0:78:85:01:9f:ae:46:b9:88:49:41: ad:f8:34:4a:8f:2d:d4:bf:65:83:c8:d6:91:ee:37: e5:e6:e4:8b:08:c7:66:43:5e:aa:d8:64:f5:79:a3: 13:40:73:1a:02:21:f1:31:25:19:a3:7a:3d:90:e4: 61:40:d9:a4:e2:0d:6c:14:ab:16:d4:d7:a5:eb:1e: 27:44:74:60:2d:44:5a:24:a7:2c:c0:db:78:b4:6e: 76:34:98:fa:96:16:9b:1b:66:12:60:6c:b0:a7:56: ee:57:f2:cb:37:e3:e7:e1:a7:9f:52:17:75:ad:d0: fa:b6:67:17:8f:7f:8b:32:82:e8:17:55:1a:6a:12: a1:a7:a5:52:b6:6c:70:b1:70:dc:de:93:30:88:e1: 8e:f1:51:0a:2e:15:c7:33:c8:7d:20:8f:25:bc:f6: 10:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D5:97:B1:4E:1F:86:5B:DC:A0:30:77:04:45:5A:82:B8:06:DF:A2 X509v3 Authority Key Identifier: keyid:90:E8:15:42:06:43:B5:DD:63:91:28:3D:67:74:4A:3A:BA:30:72:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/kOgVQgZDtd1jkSg9Z3RKOrowctM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kOgVQgZDtd1jkSg9Z3RKOrowctM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BB5D/F027CDB414F111EA9A06846BC4F9AE02/B52B819E14F411EA96EC5874C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.192.0/24 Signature Algorithm: sha256WithRSAEncryption cb:28:a7:d1:fb:69:a9:93:06:4c:f9:8e:3c:ce:60:a2:a2:d0: b8:bd:7b:6c:95:72:1a:90:ae:e8:96:bb:75:ce:da:b3:0e:72: 1e:e3:f6:b8:4d:2a:26:cb:6b:ba:58:01:76:3d:dc:ab:5a:14: 2e:7a:69:87:49:2b:1e:8e:49:20:ab:3e:3e:1b:30:b6:7b:7e: 0c:07:04:53:3e:28:60:67:df:1c:2f:f0:31:48:a5:f1:d0:d7: f2:be:bb:7c:fd:53:9b:35:b2:c1:f9:53:ac:3f:ae:26:ce:9a: 89:fa:4b:0a:53:bb:51:29:20:1b:3a:62:f3:6d:79:91:f7:47: c1:e2:da:e7:56:eb:c8:94:07:91:b0:7b:dc:85:ed:18:0b:b1: 76:e7:f0:f5:28:08:d4:68:63:5e:b1:4b:af:44:ae:c7:de:7c: 25:ee:45:90:da:8a:7a:77:62:6c:8c:a4:51:87:f4:32:94:04: d2:0b:32:c3:87:0e:19:20:5f:15:87:d3:37:1b:c8:d5:79:05: f2:5d:30:ff:21:e8:96:28:43:85:5d:db:ef:16:02:5a:72:b7: 38:7f:17:c9:f9:d4:c1:3a:33:cd:c0:3a:c6:ba:43:d9:f1:25: fb:12:1a:69:aa:44:42:86:53:69:03:94:6b:81:27:c7:97:30: 44:e6:b7:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJCNUQxMTAvBgNVBAUTKDkwRTgxNTQyMDY0M0I1REQ2MzkxMjgzRDY3NzQ0QTNB QkEzMDcyRDMwHhcNMjMxMjIyMTk0NzI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1ZTdjZS1iOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt45ad+lW+iEoWJAazp+9TT4QQ5MP6u0X6Adj71fmx+QpPpaaUtipUbBbJ9hl v/XBBwWtxRSwohQzldWYz2Nuw9QG9o4i7S+eOPIAw9fEaM464NWgWWRKy/uvmoVh wHiFAZ+uRrmISUGt+DRKjy3Uv2WDyNaR7jfl5uSLCMdmQ16q2GT1eaMTQHMaAiHx MSUZo3o9kORhQNmk4g1sFKsW1Nel6x4nRHRgLURaJKcswNt4tG52NJj6lhabG2YS YGywp1buV/LLN+Pn4aefUhd1rdD6tmcXj3+LMoLoF1UaahKhp6VStmxwsXDc3pMw iOGO8VEKLhXHM8h9II8lvPYQNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIbVl7FO H4Zb3KAwdwRFWoK4Bt+iMB8GA1UdIwQYMBaAFJDoFUIGQ7XdY5EoPWd0Sjq6MHLT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkI1RC9GMDI3Q0RCNDE0 RjExMUVBOUEwNjg0NkJDNEY5QUUwMi9rT2dWUWdaRHRkMWprU2c5WjNSS09yb3dj dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tPZ1ZRZ1pEdGQxamtTZzlaM1JLT3Jvd2N0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJCNUQvRjAyN0NEQjQxNEYxMTFFQTlBMDY4NDZCQzRGOUFFMDIvQjUyQjgxOUUx NEY0MTFFQTk2RUM1ODc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkcAwDQYJKoZIhvcNAQELBQADggEBAMsop9H7aamTBkz5 jjzOYKKi0Li9e2yVchqQruiWu3XO2rMOch7j9rhNKibLa7pYAXY93KtaFC56aYdJ Kx6OSSCrPj4bMLZ7fgwHBFM+KGBn3xwv8DFIpfHQ1/K+u3z9U5s1ssH5U6w/ribO mon6SwpTu1EpIBs6YvNteZH3R8Hi2udW68iUB5Gwe9yF7RgLsXbn8PUoCNRoY16x S69ErsfefCXuRZDainp3YmyMpFGH9DKUBNILMsOHDhkgXxWH0zcbyNV5BfJdMP8h 6JYoQ4Vd2+8WAlpytzh/F8n51ME6M83AOsa6Q9nxJfsSGmmqREKGU2kDlGuBJ8eX METmt6E= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:47 2024 by rpki-client on console-fra.rpki-client.org