$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa File: 757320342E4011EEBC464879C4F9AE02.roa (raw, json) Hash identifier: E3RKq/O/jBSi9TsOvFIF2/TfMwP0WV5Q5lcJbUtVmRI= Subject key identifier: D7:A0:F4:3C:47:A1:F3:4F:03:86:A2:17:47:80:14:30:E0:23:A7:92 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0C7E Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa Signing time: Wed 04 Oct 2023 08:12:56 +0000 ROA not before: Wed 04 Oct 2023 08:12:56 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137843 IP address blocks: 103.104.242.0/23 maxlen: 24 2402:e840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Oct 4 08:12:56 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=651d1e88-42ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:fb:6d:fc:69:97:30:ca:20:fe:0b:47:41: c0:ab:0b:55:54:4a:68:32:b6:b0:f6:ad:f3:e6:d3: 13:3b:f7:3c:bf:d0:2b:d1:82:00:b5:a7:7d:e8:6e: 02:c8:36:48:5b:4f:ec:fa:75:83:3d:a3:02:4a:1d: 42:13:3e:2a:33:a1:66:ec:0b:23:d8:4b:39:46:a3: 07:cb:f7:1e:c4:eb:7e:64:c9:d0:66:af:0c:92:0a: d0:fc:61:d1:b7:b4:36:54:1e:9d:80:30:85:58:2e: 61:a2:50:22:88:34:39:eb:26:8a:96:26:1d:86:06: bd:3d:3e:cf:24:1e:1c:83:b1:85:b6:4d:27:cc:57: 1c:8e:2e:50:2d:d2:ef:6b:e4:04:07:7f:8e:d8:f7: 7c:67:3c:4c:34:07:f8:38:75:f2:e3:dc:45:6c:d5: 8f:7e:91:83:b3:43:8a:75:af:17:d4:fb:c7:19:bd: 16:1d:3d:c2:81:d4:93:ae:b4:f9:46:93:89:e4:af: de:08:c9:3a:fc:d8:9a:ee:73:17:97:f1:6c:fa:38: 24:6c:76:6f:62:d0:be:22:33:d2:00:ae:2e:b1:9c: b5:4c:51:9b:c0:be:67:ad:76:7c:9f:c1:6e:41:45: 04:9b:51:f6:70:5e:9d:3e:bd:49:60:f0:1a:b9:4b: 67:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A0:F4:3C:47:A1:F3:4F:03:86:A2:17:47:80:14:30:E0:23:A7:92 X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.242.0/23 IPv6: 2402:e840::/32 Signature Algorithm: sha256WithRSAEncryption 20:cd:26:1b:6a:ee:ec:cc:eb:42:67:dc:d2:9c:83:58:c7:0d: ad:99:e6:9e:a8:e0:da:3c:dc:24:a1:22:10:b5:ff:c7:08:9a: 98:47:56:a8:2d:70:2a:30:92:49:f9:ad:eb:cc:cb:cf:72:c1: 3e:9d:c4:b0:db:d0:73:aa:83:30:ea:bb:13:d7:4e:a1:42:bd: 7a:6f:f4:07:a2:7b:e6:7a:25:1e:ca:34:f5:0e:f0:1f:67:41: e8:93:8e:a8:a4:84:74:3d:4b:d6:51:62:af:56:cb:25:e6:62: e4:1a:c9:38:21:c9:ef:64:1e:f3:a6:69:bc:5d:b1:09:16:96: 7e:84:d7:61:b3:79:b7:99:82:3d:c5:8e:c8:3b:e1:5d:73:da: c5:db:e8:bf:80:64:27:09:de:41:8b:07:19:d2:42:a6:8a:aa: db:66:5c:f6:d8:fa:5d:35:f3:cd:f1:06:32:bc:6b:65:e1:08: a1:e9:cf:d0:0e:b0:c0:cc:5b:3a:9d:cc:8f:31:ae:a1:02:fd: 95:ea:d6:60:76:23:7d:dc:60:63:31:2f:1a:80:93:57:9c:9f: 00:3e:c2:54:19:43:a9:e7:46:ef:c0:8d:b3:d7:30:f8:70:1e: 19:e9:75:9f:09:b3:33:d6:c4:a2:74:94:1c:4d:ee:13:34:a6: fb:7b:22:7b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjMxMDA0MDgxMjU2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkMWU4OC00MmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfv7bfxplzDKIP4LR0HAqwtVVEpoMraw9q3z5tMTO/c8v9Ar0YIAtad96G4C yDZIW0/s+nWDPaMCSh1CEz4qM6Fm7Asj2Es5RqMHy/cexOt+ZMnQZq8MkgrQ/GHR t7Q2VB6dgDCFWC5holAiiDQ56yaKliYdhga9PT7PJB4cg7GFtk0nzFccji5QLdLv a+QEB3+O2Pd8ZzxMNAf4OHXy49xFbNWPfpGDs0OKda8X1PvHGb0WHT3CgdSTrrT5 RpOJ5K/eCMk6/Nia7nMXl/Fs+jgkbHZvYtC+IjPSAK4usZy1TFGbwL5nrXZ8n8Fu QUUEm1H2cF6dPr1JYPAauUtnqwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNeg9DxH ofNPA4aiF0eAFDDgI6eSMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEY1MjEvMjE2NTg4MjBDNjdFMTFFOUFGM0JBNzY1QzRGOUFFMDIvNzU3MzIwMzQy RTQwMTFFRUJDNDY0ODc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnaPIwDQQCAAIwBwMFACQC6EAwDQYJKoZIhvcNAQELBQAD ggEBACDNJhtq7uzM60Jn3NKcg1jHDa2Z5p6o4No83CShIhC1/8cImphHVqgtcCow kkn5revMy89ywT6dxLDb0HOqgzDquxPXTqFCvXpv9Aeie+Z6JR7KNPUO8B9nQeiT jqikhHQ9S9ZRYq9WyyXmYuQayTghye9kHvOmabxdsQkWln6E12GzebeZgj3Fjsg7 4V1z2sXb6L+AZCcJ3kGLBxnSQqaKqttmXPbY+l01883xBjK8a2XhCKHpz9AOsMDM WzqdzI8xrqEC/ZXq1mB2I33cYGMxLxqAk1ecnwA+wlQZQ6nnRu/AjbPXMPhwHhnp dZ8JszPWxKJ0lBxN7hM0pvt7Ins= -----END CERTIFICATE-----Generated at Fri May 31 20:34:03 2024 by rpki-client on console-ams.rpki-client.org