$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa File: 7E099DB21C5611EBB91D2683C4F9AE02.roa (raw, json) Hash identifier: 5oUOAXih9AzKt2+rjHDcWTwA6vmjYzldwjuHaSlxfIU= Subject key identifier: 19:A2:A4:F1:89:6E:8A:7E:18:97:41:92:42:DB:3B:04:24:60:C6:5D Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 0624 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa Signing time: Tue 18 Jul 2023 22:39:36 +0000 ROA not before: Tue 18 Jul 2023 22:39:36 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45785 IP address blocks: 116.193.157.0/24 maxlen: 24 183.78.168.0/24 maxlen: 24 183.78.169.0/24 maxlen: 24 183.78.170.0/24 maxlen: 24 183.78.171.0/24 maxlen: 24 202.43.100.0/24 maxlen: 24 202.43.101.0/24 maxlen: 24 202.43.102.0/24 maxlen: 24 202.43.103.0/24 maxlen: 24 210.1.224.0/24 maxlen: 24 210.1.225.0/24 maxlen: 24 210.1.226.0/24 maxlen: 24 210.1.227.0/24 maxlen: 24 210.1.228.0/24 maxlen: 24 210.1.229.0/24 maxlen: 24 210.1.230.0/24 maxlen: 24 210.1.231.0/24 maxlen: 24 2401:c400::/32 maxlen: 32 2401:c400:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Jul 18 22:39:36 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b714a8-230a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:27:c5:5f:74:09:c8:9f:c1:d3:80:ed:01: 56:9a:85:e8:a7:69:1f:fc:2a:88:6d:3a:2f:73:c5: f2:dd:e4:81:19:32:8d:08:4b:b6:07:88:7a:5e:0f: 36:ed:6c:ef:b9:d5:bf:b0:eb:21:17:33:d1:a8:09: fa:3c:b8:83:08:0d:85:42:a5:31:a1:0e:20:76:8b: c9:7d:74:11:2a:29:2b:e1:6c:0c:23:2f:e0:5f:62: a1:23:e2:c7:3c:26:a5:cf:b8:8f:9e:f9:d3:dd:d4: 83:65:d4:7e:9d:51:03:7c:1a:42:d6:1b:d3:4b:1c: ff:03:be:65:fb:ec:74:8f:3d:f3:b4:9b:0b:e1:22: df:06:17:b0:d2:f8:3d:b0:e6:34:a9:6f:c1:96:c8: 94:05:b1:77:be:3c:44:33:94:a4:e6:92:60:1e:93: 50:4a:7d:38:42:16:46:f4:15:9e:ca:45:6a:c5:5e: 6c:1d:b3:09:62:d8:99:c3:f8:2a:c6:61:1b:07:7a: cc:2b:75:78:38:53:11:48:67:09:e8:c6:0c:ce:3c: 0a:b8:d0:82:38:1e:65:bf:fa:2b:27:57:39:f0:34: 8b:94:11:9b:a5:a0:e0:d2:25:89:f8:b4:a7:fd:78: 89:e9:51:b9:01:b2:2d:4b:29:ed:cb:6e:64:4d:99: 2e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A2:A4:F1:89:6E:8A:7E:18:97:41:92:42:DB:3B:04:24:60:C6:5D X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.157.0/24 183.78.168.0/22 202.43.100.0/22 210.1.224.0/21 IPv6: 2401:c400::/32 Signature Algorithm: sha256WithRSAEncryption b1:af:5e:b6:66:0d:60:f6:97:33:81:a5:03:02:6e:6c:e4:59: 56:3f:82:70:f9:ca:9a:21:97:93:4e:b6:09:b7:e1:fe:87:17: b9:2e:f5:1d:a8:ef:38:cc:db:86:d1:98:30:23:05:26:5a:ad: d1:e5:e3:1b:f4:26:fb:92:37:f6:62:bd:c0:0d:7d:90:5c:25: a0:b7:ec:c1:02:d5:0a:26:a1:eb:b7:35:0c:b5:da:45:56:27: 42:45:2a:c1:a2:58:ad:32:98:6b:54:76:f3:b0:f4:94:4e:f0: 8f:2d:74:ce:23:7e:07:62:7a:3b:a7:b7:bf:c6:d9:0d:20:95: 54:0f:1d:5a:89:92:c3:5a:54:ac:b8:ba:30:d0:56:4f:7e:38: 3d:14:72:6a:72:b7:90:dd:f8:f1:a0:6b:e3:a5:97:cc:a9:ce: cc:83:61:ea:f5:57:51:7e:a6:44:3c:57:df:4b:e6:47:4a:a1: 08:cd:96:35:89:17:e7:58:da:81:7a:a1:ed:81:71:58:60:42: 6e:b4:35:64:9b:18:70:da:d7:6b:19:d5:94:83:bd:9c:df:92: ca:0c:5b:e2:90:38:13:9c:00:08:cd:0e:22:3e:1c:c7:af:94: 08:f3:20:7b:e2:9c:7c:e7:07:9c:bf:b5:64:5a:e8:f4:79:9c: 0e:6c:99:89 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjMwNzE4MjIzOTM2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3MTRhOC0yMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxYnxV90CcifwdOA7QFWmoXop2kf/CqIbTovc8Xy3eSBGTKNCEu2B4h6Xg82 7WzvudW/sOshFzPRqAn6PLiDCA2FQqUxoQ4gdovJfXQRKikr4WwMIy/gX2KhI+LH PCalz7iPnvnT3dSDZdR+nVEDfBpC1hvTSxz/A75l++x0jz3ztJsL4SLfBhew0vg9 sOY0qW/BlsiUBbF3vjxEM5Sk5pJgHpNQSn04QhZG9BWeykVqxV5sHbMJYtiZw/gq xmEbB3rMK3V4OFMRSGcJ6MYMzjwKuNCCOB5lv/orJ1c58DSLlBGbpaDg0iWJ+LSn /XiJ6VG5AbItSynty25kTZkuwQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBmipPGJ bop+GJdBkkLbOwQkYMZdMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvN0UwOTlEQjIx QzU2MTFFQkI5MUQyNjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAB0wZ0DBAK3TqgDBALKK2QDBAPSAeAwDQQCAAIwBwMFACQB xAAwDQYJKoZIhvcNAQELBQADggEBALGvXrZmDWD2lzOBpQMCbmzkWVY/gnD5ypoh l5NOtgm34f6HF7ku9R2o7zjM24bRmDAjBSZardHl4xv0JvuSN/ZivcANfZBcJaC3 7MEC1Qomoeu3NQy12kVWJ0JFKsGiWK0ymGtUdvOw9JRO8I8tdM4jfgdiejunt7/G 2Q0glVQPHVqJksNaVKy4ujDQVk9+OD0Ucmpyt5Dd+PGga+Oll8ypzsyDYer1V1F+ pkQ8V99L5kdKoQjNljWJF+dY2oF6oe2BcVhgQm60NWSbGHDa12sZ1ZSDvZzfksoM W+KQOBOcAAjNDiI+HMevlAjzIHvinHznB5y/tWRa6PR5nA5smYk= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:14 2024 by rpki-client on console-ams.rpki-client.org