$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/39FBB4168B9811EE9C0BA252C4F9AE02.roa File: 39FBB4168B9811EE9C0BA252C4F9AE02.roa (raw, json) Hash identifier: JA6NWtMjKp7xamBkiME3JyWFqZf5tO2pHE8Zk2t5JpE= Subject key identifier: EE:19:A7:F3:99:78:DE:5C:B8:F6:8B:C2:31:4B:8B:85:43:F5:A1:AF Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 0674 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/39FBB4168B9811EE9C0BA252C4F9AE02.roa Signing time: Sat 25 Nov 2023 13:40:42 +0000 ROA not before: Sat 25 Nov 2023 13:40:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 55799 IP address blocks: 103.42.212.0/24 maxlen: 24 116.193.157.0/24 maxlen: 24 2404:be00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Nov 25 13:40:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6561f95a-f755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:fb:ae:ae:11:ba:8f:33:3b:cc:42:b4:b7: a6:9e:d9:3c:1e:c5:9d:61:da:6c:63:9a:f6:d6:d9: ee:ef:37:db:48:9e:6e:42:51:57:03:f5:22:40:fd: f7:3c:53:b8:84:e1:91:dc:26:00:fa:92:a4:25:88: 0d:99:74:fa:ef:1b:22:7f:e4:17:e5:40:db:5f:be: 5d:1a:b9:bb:63:97:f5:18:30:de:bb:a3:0b:da:4b: 51:fc:2e:46:f2:9c:18:a1:26:a8:fc:b5:c2:42:ab: 91:d1:cd:e2:1c:55:6c:8d:22:e5:53:45:d7:c3:51: 42:05:19:5a:24:5e:c8:23:2a:1d:c2:a7:46:4e:7c: 2c:28:3b:94:32:a7:31:f5:72:cd:b5:c3:53:9a:37: 1b:81:bf:a9:0c:a9:be:00:2f:9b:2e:56:e0:8d:4d: 17:fb:83:19:5c:41:6d:03:d7:04:9a:1f:5a:19:0d: 63:16:f3:5b:28:67:1c:9c:cc:0b:62:6a:e6:7d:00: 0d:48:2f:d3:4a:c4:a5:9f:08:c0:0c:a0:5f:dc:49: 90:bb:2a:b0:d2:25:ae:f3:d9:60:eb:88:a5:b1:97: d0:01:19:8e:83:c4:16:b2:44:5c:58:36:45:81:da: 8e:87:27:90:71:4e:ff:f3:57:c9:0d:6e:46:ca:3a: 81:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:19:A7:F3:99:78:DE:5C:B8:F6:8B:C2:31:4B:8B:85:43:F5:A1:AF X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/39FBB4168B9811EE9C0BA252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.212.0/24 116.193.157.0/24 IPv6: 2404:be00::/32 Signature Algorithm: sha256WithRSAEncryption 18:49:79:4c:76:82:6e:a7:3a:e0:f4:38:8a:d2:7c:11:37:74: 89:6b:2e:b5:f1:7a:5b:8f:5f:34:98:bf:71:a7:fa:16:a5:b5: 8b:1b:d4:8e:cc:62:ea:60:0d:b2:0c:d6:bf:7f:e5:8e:e0:ac: cd:57:d9:fd:35:c0:36:10:9a:79:3c:81:df:6e:73:e4:85:72: 08:38:00:5e:01:4c:a7:d9:e2:23:ce:0b:08:c9:12:5a:8c:0f: c4:77:fc:93:b5:bf:7d:56:14:fa:3e:38:a5:f2:15:c1:5d:9c: bb:80:7a:47:24:9b:5d:1f:5f:78:ee:17:97:4e:45:23:87:0c: 65:24:ab:c6:84:90:3b:72:b5:46:5a:20:11:ea:ef:78:27:a8: 82:23:b2:02:39:7a:53:b1:cc:44:38:05:e1:9c:77:28:ec:85: b5:e8:f4:9d:04:14:e1:47:6f:11:ae:06:01:2b:7e:3e:42:f2: d6:89:fd:07:7b:ab:a2:e0:f9:3e:7b:71:fe:a2:23:d1:50:59: 42:3a:f0:1b:ac:0d:ce:86:54:25:ca:75:1a:ec:bf:9c:93:10: 96:3f:d5:71:99:dd:61:5a:13:85:cb:00:9b:1a:3f:9a:d9:3e: 5f:ed:5b:0c:9b:59:de:af:e8:42:7a:d2:6e:48:5e:e7:98:c5: 00:52:6d:e5 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjMxMTI1MTM0MDQyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYxZjk1YS1mNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDv7rq4Ruo8zO8xCtLemntk8HsWdYdpsY5r21tnu7zfbSJ5uQlFXA/UiQP33 PFO4hOGR3CYA+pKkJYgNmXT67xsif+QX5UDbX75dGrm7Y5f1GDDeu6ML2ktR/C5G 8pwYoSao/LXCQquR0c3iHFVsjSLlU0XXw1FCBRlaJF7IIyodwqdGTnwsKDuUMqcx 9XLNtcNTmjcbgb+pDKm+AC+bLlbgjU0X+4MZXEFtA9cEmh9aGQ1jFvNbKGccnMwL YmrmfQANSC/TSsSlnwjADKBf3EmQuyqw0iWu89lg64ilsZfQARmOg8QWskRcWDZF gdqOhyeQcU7/81fJDW5GyjqBwQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO4Zp/OZ eN5cuPaLwjFLi4VD9aGvMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvMzlGQkI0MTY4 Qjk4MTFFRTlDMEJBMjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnKtQDBAB0wZ0wDQQCAAIwBwMFACQEvgAwDQYJKoZIhvcN AQELBQADggEBABhJeUx2gm6nOuD0OIrSfBE3dIlrLrXxeluPXzSYv3Gn+haltYsb 1I7MYupgDbIM1r9/5Y7grM1X2f01wDYQmnk8gd9uc+SFcgg4AF4BTKfZ4iPOCwjJ ElqMD8R3/JO1v31WFPo+OKXyFcFdnLuAekckm10fX3juF5dORSOHDGUkq8aEkDty tUZaIBHq73gnqIIjsgI5elOxzEQ4BeGcdyjshbXo9J0EFOFHbxGuBgErfj5C8taJ /Qd7q6Lg+T57cf6iI9FQWUI68BusDc6GVCXKdRrsv5yTEJY/1XGZ3WFaE4XLAJsa P5rZPl/tWwybWd6v6EJ60m5IXueYxQBSbeU= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:14 2024 by rpki-client on console-ams.rpki-client.org