$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/892D088A0FE411EE90944D75C4F9AE02.roa File: 892D088A0FE411EE90944D75C4F9AE02.roa (raw, json) Hash identifier: yW709hh3N43voTINrLnDBL5VKCQoEPTwrAxvX45L1SQ= Subject key identifier: 5F:11:95:1A:5A:D2:DB:E3:C7:59:A3:44:C5:2D:CD:E2:6C:92:E0:4E Certificate issuer: /CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Certificate serial: 0805 Authority key identifier: 07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/892D088A0FE411EE90944D75C4F9AE02.roa Signing time: Mon 20 May 2024 02:21:14 +0000 ROA not before: Mon 20 May 2024 02:21:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139468 IP address blocks: 45.116.134.0/23 maxlen: 23 45.116.134.0/24 maxlen: 24 103.9.94.0/23 maxlen: 23 103.28.28.0/22 maxlen: 22 103.240.12.0/22 maxlen: 22 103.240.13.0/24 maxlen: 24 103.245.4.0/22 maxlen: 22 103.245.4.0/23 maxlen: 23 103.245.7.0/24 maxlen: 24 2405:9e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 22:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Validity Not Before: May 20 02:21:14 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=664ab39a-cb29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:2d:c9:22:c9:03:68:3e:16:cc:3d:f3:ae: 82:80:ba:f1:8a:89:58:1b:43:37:b4:10:fa:8b:ef: 3c:b3:3c:5f:b4:58:7a:81:a8:9f:1c:ff:c0:d7:27: e7:9f:ff:cd:d9:c2:08:19:ac:61:97:ba:1b:f7:e9: a4:55:f9:b8:62:5c:d7:71:83:67:71:76:fc:51:32: ed:10:4a:18:a5:56:25:f5:4b:05:a8:b2:f2:67:1a: 17:53:97:8f:92:ce:ee:c4:d3:c9:63:fd:0c:52:76: cf:ba:6b:31:84:91:2c:0f:28:74:c8:06:ab:41:cb: eb:93:b9:04:90:52:f4:26:d4:55:da:33:74:3e:cd: 25:1b:7d:33:8a:94:ac:e0:9b:4a:24:ba:71:f5:4e: 63:69:d7:45:50:52:04:d5:1f:fa:c1:64:92:96:92: aa:84:45:59:8a:ab:9a:ae:7e:d0:e9:91:78:6f:8e: 8c:88:8d:bf:93:52:ae:5e:b7:97:fc:87:6d:1f:5c: b9:10:4d:25:f2:6e:31:a9:21:7f:fa:3b:ab:d4:6d: 78:e9:05:d5:b5:8d:2d:2d:4b:88:51:c6:cf:fb:90: fb:ff:94:0d:85:ed:30:9d:b4:c2:2f:7c:7b:0f:24: a2:34:07:6a:a5:6a:97:80:f6:22:23:d9:49:d3:a8: a0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:11:95:1A:5A:D2:DB:E3:C7:59:A3:44:C5:2D:CD:E2:6C:92:E0:4E X509v3 Authority Key Identifier: keyid:07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/892D088A0FE411EE90944D75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.134.0/23 103.9.94.0/23 103.28.28.0/22 103.240.12.0/22 103.245.4.0/22 IPv6: 2405:9e40::/32 Signature Algorithm: sha256WithRSAEncryption 12:88:de:87:5a:90:80:b1:2d:9b:63:21:2e:bf:4c:df:a2:63: 0b:22:87:c2:c3:41:f5:b6:35:51:5b:ed:5c:a4:ba:68:8b:92: f3:99:e4:c0:a4:60:d7:7c:a5:4b:bc:f1:fa:9a:31:04:49:87: 0d:1b:ae:d6:07:42:75:c6:81:71:bc:95:e5:7d:53:6e:fe:6c: 05:02:10:55:f3:62:c2:c8:62:ae:49:db:6a:c6:e9:ab:01:15: c7:2b:53:fa:00:6f:2d:82:d4:fc:c7:06:c2:42:90:33:62:8c: 05:cc:fd:6f:b6:78:9f:4c:4b:5d:45:ec:0d:16:07:03:40:89: e6:68:67:9a:6f:72:1d:fd:93:bf:7e:7f:de:5a:8b:59:09:f4: 2f:c4:59:42:a1:d2:b8:b0:a1:05:b9:79:a2:ce:46:18:fa:bf: 3c:d8:8b:12:b4:0a:6e:02:07:21:d3:1b:e1:d9:f3:00:96:0d: 9c:02:70:ca:22:d3:64:98:cd:32:20:91:ad:8e:00:26:da:e5: 1f:91:8e:bf:96:fe:f1:71:9c:17:56:4f:8e:92:97:54:cc:90: 44:43:47:95:47:ab:e9:b0:e5:3e:1e:a1:52:35:c8:83:8e:50: 20:f2:f5:42:34:36:c4:e8:4e:7d:cd:c4:41:2c:d0:6e:a7:01: a4:93:c6:c7 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDQjExMTAvBgNVBAUTKDA3MkNERjY1MUIzMTJDQUZCREIwNDlBMzM1NjlGRUE2 RUY2Qzk1MTcwHhcNMjQwNTIwMDIyMTE0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRhYjM5YS1jYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtg0tySLJA2g+Fsw9866CgLrxiolYG0M3tBD6i+88szxftFh6gaifHP/A1yfn n//N2cIIGaxhl7ob9+mkVfm4YlzXcYNncXb8UTLtEEoYpVYl9UsFqLLyZxoXU5eP ks7uxNPJY/0MUnbPumsxhJEsDyh0yAarQcvrk7kEkFL0JtRV2jN0Ps0lG30zipSs 4JtKJLpx9U5jaddFUFIE1R/6wWSSlpKqhEVZiquarn7Q6ZF4b46MiI2/k1KuXreX /IdtH1y5EE0l8m4xqSF/+jur1G146QXVtY0tLUuIUcbP+5D7/5QNhe0wnbTCL3x7 DySiNAdqpWqXgPYiI9lJ06ig6QIDAQABo4ICvDCCArgwHQYDVR0OBBYEFF8RlRpa 0tvjx1mjRMUtzeJskuBOMB8GA1UdIwQYMBaAFAcs32UbMSyvvbBJozVp/qbvbJUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNCMS9EMDBERDQ5OEJD MDIxMUVBQjhDNzkwNDhDNEY5QUUwMi9CeXpmWlJzeExLLTlzRW1qTlduLXB1OXNs UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5emZaUnN4TEstOXNFbWpOV24tcHU5c2xSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDQjEvRDAwREQ0OThCQzAyMTFFQUI4Qzc5MDQ4QzRGOUFFMDIvODkyRDA4OEEw RkU0MTFFRTkwOTQ0RDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAEtdIYDBAFnCV4DBAJnHBwDBAJn8AwDBAJn9QQwDQQCAAIw BwMFACQFnkAwDQYJKoZIhvcNAQELBQADggEBABKI3odakICxLZtjIS6/TN+iYwsi h8LDQfW2NVFb7VykumiLkvOZ5MCkYNd8pUu88fqaMQRJhw0brtYHQnXGgXG8leV9 U27+bAUCEFXzYsLIYq5J22rG6asBFccrU/oAby2C1PzHBsJCkDNijAXM/W+2eJ9M S11F7A0WBwNAieZoZ5pvch39k79+f95ai1kJ9C/EWUKh0riwoQW5eaLORhj6vzzY ixK0Cm4CByHTG+HZ8wCWDZwCcMoi02SYzTIgka2OACba5R+Rjr+W/vFxnBdWT46S l1TMkERDR5VHq+mw5T4eoVI1yIOOUCDy9UI0NsToTn3NxEEs0G6nAaSTxsc= -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:05 2024 by rpki-client on console-ams.rpki-client.org