$ rpki-client -vvf rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa File: 038457CEA3A011EEBE44947FC4F9AE02.roa (raw, json) Hash identifier: B9Xl9dtPFHYUwGW/dxTfTQt13WyJ8k5DvaDQyy1SV7E= Subject key identifier: C2:E0:19:98:92:F6:B5:C6:2C:1B:13:06:8B:5D:F2:16:D7:5F:69:39 Certificate issuer: /CN=A915216F/serialNumber=6D41943E515F53F992619C87F02393811253DE67 Certificate serial: 17 Authority key identifier: 6D:41:94:3E:51:5F:53:F9:92:61:9C:87:F0:23:93:81:12:53:DE:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa Signing time: Wed 17 Jan 2024 07:28:43 +0000 ROA not before: Wed 17 Jan 2024 07:28:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 56094 IP address blocks: 45.127.168.0/22 maxlen: 24 103.196.112.0/22 maxlen: 24 182.54.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.crl rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915216F/serialNumber=6D41943E515F53F992619C87F02393811253DE67 Validity Not Before: Jan 17 07:28:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a781ab-0a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:e2:1f:c1:bf:36:14:5d:ab:84:a5:84:fc: 04:44:da:67:a6:bd:bc:33:f7:f1:0d:34:4f:2b:65: 05:7c:19:b4:c6:f1:66:7e:5c:74:5a:28:3b:28:c2: 0b:2a:57:f8:a6:43:31:6f:6d:a4:c2:8c:fe:81:e5: ad:4f:cd:62:e9:28:8f:4b:2c:eb:67:d4:87:a4:07: ba:22:d3:75:82:3e:71:4d:83:56:5c:89:de:35:13: b5:9d:06:10:7d:a4:9d:dc:88:e6:66:cd:de:75:00: e5:d7:9e:99:36:fb:83:1a:be:4a:c7:43:1d:58:48: 54:33:35:a5:80:ef:63:36:b1:9f:e0:18:83:7e:b4: 5e:47:31:8a:20:ea:f5:8d:5d:2a:2f:42:5d:05:64: bb:f5:09:6d:25:5b:5b:04:91:af:e5:06:56:dd:7c: 8f:e8:54:1c:68:b0:af:04:96:f9:90:ab:d3:a2:8a: 23:e2:51:0d:17:6f:55:a0:31:97:84:2c:b0:7e:3f: d9:69:6e:24:65:d0:b5:cd:82:21:b0:fb:89:6d:17: 2d:a7:3d:a1:3b:be:44:79:8e:5f:64:93:4c:28:f9: 5c:fc:05:d8:b0:e7:f8:89:a0:18:76:36:eb:84:3d: 65:ea:54:ab:5d:6c:90:ce:fe:8e:b3:36:57:3d:e5: 82:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E0:19:98:92:F6:B5:C6:2C:1B:13:06:8B:5D:F2:16:D7:5F:69:39 X509v3 Authority Key Identifier: keyid:6D:41:94:3E:51:5F:53:F9:92:61:9C:87:F0:23:93:81:12:53:DE:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.168.0/22 103.196.112.0/22 182.54.228.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:92:8b:a0:01:57:c7:cf:86:e8:06:5f:13:34:5e:b2:9a:38: 38:4e:f1:c2:c4:b5:62:32:bc:a8:54:63:1c:c8:77:8d:7f:b7: 54:e1:35:75:c6:45:06:49:1f:7b:6f:ba:42:01:22:b6:19:d8: 49:e2:ef:b7:56:5e:6a:dc:88:8b:d9:94:5a:82:23:3c:91:89: d2:4f:84:5d:47:df:bd:e5:cc:0b:6a:bc:de:75:6c:e4:82:cc: 5b:33:ca:ce:33:2e:52:74:d3:ed:93:18:89:ad:3c:a4:a4:dd: 40:25:61:e5:07:88:12:e2:79:fe:c5:10:c6:d0:cf:fd:83:b9: 71:54:45:54:1f:f9:79:df:04:9c:d8:ef:21:db:7c:61:d2:58: ed:2b:6f:36:95:d7:71:b2:72:3f:6e:24:be:50:23:f2:fc:ce: b5:73:72:6a:9c:e8:ee:ee:b7:60:a3:4a:d2:44:ef:6c:64:d1: 41:23:25:74:6d:a2:04:73:f2:3e:e5:67:e7:53:d9:3b:16:36: 0c:a6:15:53:bd:77:93:bf:a1:a5:c9:a2:85:d7:7e:73:e5:56: 61:7d:13:b9:07:c7:bc:a8:b6:61:84:f9:f4:d8:07:c3:a7:92: e6:1a:a4:82:f8:82:68:4e:38:0a:22:ae:8a:46:b4:71:11:a2: 75:c8:82:7a -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjE2RjExMC8GA1UEBRMoNkQ0MTk0M0U1MTVGNTNGOTkyNjE5Qzg3RjAyMzkzODEx MjUzREU2NzAeFw0yNDAxMTcwNzI4NDNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YTc4MWFiLTBhMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMtOIfwb82FF2rhKWE/ARE2memvbwz9/ENNE8rZQV8GbTG8WZ+XHRaKDsowgsq V/imQzFvbaTCjP6B5a1PzWLpKI9LLOtn1IekB7oi03WCPnFNg1Zcid41E7WdBhB9 pJ3ciOZmzd51AOXXnpk2+4MavkrHQx1YSFQzNaWA72M2sZ/gGIN+tF5HMYog6vWN XSovQl0FZLv1CW0lW1sEka/lBlbdfI/oVBxosK8ElvmQq9OiiiPiUQ0Xb1WgMZeE LLB+P9lpbiRl0LXNgiGw+4ltFy2nPaE7vkR5jl9kk0wo+Vz8Bdiw5/iJoBh2NuuE PWXqVKtdbJDO/o6zNlc95YIhAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUwuAZmJL2 tcYsGxMGi13yFtdfaTkwHwYDVR0jBBgwFoAUbUGUPlFfU/mSYZyH8COTgRJT3mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMTZGLzExQjJDODBBQTM5 RTExRUU5REM3MUM2MEM0RjlBRTAyL2JVR1VQbEZmVV9tU1laeUg4Q09UZ1JKVDNt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYlVHVVBsRmZVX21TWVp5SDhDT1RnUkpUM21jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjE2Ri8xMUIyQzgwQUEzOUUxMUVFOURDNzFDNjBDNEY5QUUwMi8wMzg0NTdDRUEz QTAxMUVFQkU0NDk0N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAi1/qAMEAmfEcAMEArY25DANBgkqhkiG9w0BAQsFAAOCAQEA nZKLoAFXx8+G6AZfEzRespo4OE7xwsS1YjK8qFRjHMh3jX+3VOE1dcZFBkkfe2+6 QgEithnYSeLvt1ZeatyIi9mUWoIjPJGJ0k+EXUffveXMC2q83nVs5ILMWzPKzjMu UnTT7ZMYia08pKTdQCVh5QeIEuJ5/sUQxtDP/YO5cVRFVB/5ed8EnNjvIdt8YdJY 7StvNpXXcbJyP24kvlAj8vzOtXNyapzo7u63YKNK0kTvbGTRQSMldG2iBHPyPuVn 51PZOxY2DKYVU713k7+hpcmihdd+c+VWYX0TuQfHvKi2YYT59NgHw6eS5hqkgviC aE44CiKuika0cRGidciCeg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org