$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa File: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: agvFHbWRNeaxotO+lELOx4J3OTYqWk/z5EMkXu7NM4E= Subject key identifier: 3C:2A:D4:1F:15:44:CB:06:19:FE:09:BA:B0:65:E1:6B:FF:01:AD:D9 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 0256 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa Signing time: Thu 25 Apr 2024 04:06:42 +0000 ROA not before: Thu 25 Apr 2024 04:06:42 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 18390 IP address blocks: 27.96.192.0/19 maxlen: 24 115.69.0.0/18 maxlen: 24 202.172.96.0/19 maxlen: 24 203.23.236.0/22 maxlen: 24 203.29.65.0/24 maxlen: 24 203.29.124.0/23 maxlen: 24 203.31.202.0/23 maxlen: 24 203.56.244.0/22 maxlen: 24 203.57.48.0/23 maxlen: 24 210.1.192.0/19 maxlen: 24 2407:e400::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Apr 25 04:06:42 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6629d6d1-456c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0c:a2:eb:17:72:a4:7f:0d:aa:c5:48:31:a5: 64:71:fd:e8:3f:a7:84:3a:f8:0d:16:31:ea:14:cc: 13:a5:31:a3:c3:12:3b:6f:76:26:86:85:e8:d5:11: 5f:8a:4a:be:af:70:b1:54:19:11:7a:82:a3:37:b7: 82:16:42:5c:47:f3:64:4b:e3:b5:29:53:d8:32:2a: 53:02:66:2b:72:4b:1c:d8:b8:81:5c:6e:88:56:90: b8:8d:e2:66:59:53:b3:f8:62:e4:5c:0e:7f:98:98: 5a:e0:ca:94:ac:6d:4c:61:4e:96:a6:8a:bc:9a:91: fd:72:55:31:b0:5f:18:83:f6:03:5d:81:a1:8a:08: ae:84:7f:5f:d6:e6:2f:29:6f:59:e4:d7:a9:27:bc: 0d:de:ff:e3:40:c6:09:82:6e:5d:cd:b5:ec:c0:8c: 6a:23:2a:f4:20:f3:35:42:be:4f:c2:83:7b:a4:2b: 22:11:06:a1:39:a0:cc:2c:15:d0:9c:eb:8f:30:02: f8:db:81:d7:55:19:29:b1:2c:c0:f5:23:b2:1d:b9: be:85:40:87:7a:92:5c:d8:78:3e:4f:0e:94:ed:a4: 9b:6d:52:54:43:20:f9:70:a9:2e:94:86:e7:64:54: 2f:27:ad:86:c6:4d:93:da:8d:01:d3:1d:7a:fb:ab: 33:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2A:D4:1F:15:44:CB:06:19:FE:09:BA:B0:65:E1:6B:FF:01:AD:D9 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.192.0/19 115.69.0.0/18 202.172.96.0/19 203.23.236.0/22 203.29.65.0/24 203.29.124.0/23 203.31.202.0/23 203.56.244.0/22 203.57.48.0/23 210.1.192.0/19 IPv6: 2407:e400::/32 Signature Algorithm: sha256WithRSAEncryption a7:99:ea:7f:dc:2f:9a:f7:d7:21:7e:3e:1b:33:58:3f:26:ab: eb:f8:e3:46:9d:16:46:c9:e6:a9:22:67:13:7c:da:1b:11:d2: 8d:7d:d7:42:b3:d6:f9:79:fb:b8:2c:3b:94:01:1e:15:1d:5a: 1e:9b:45:5b:56:54:d3:80:99:71:fa:a7:81:b3:0d:06:8e:f1: cd:05:78:22:e4:7a:c8:ae:35:09:55:e9:f3:27:8c:28:d6:99: a5:ca:6c:95:0d:be:37:96:2c:b1:4b:5b:8c:55:a3:5e:f9:94: 17:be:4c:87:56:77:6f:87:48:b6:f8:c4:f4:81:0f:97:09:4c: 56:75:b8:07:a5:06:e2:76:7a:b1:2a:19:10:0b:d2:23:e2:bd: 8b:6a:1d:ee:7f:e9:2d:ff:15:a8:cd:80:ca:2b:68:da:68:13: 2a:76:cc:6a:c5:46:64:4d:bb:e8:85:7e:da:a8:fa:f6:61:17: c9:72:ff:c6:38:bb:9a:8b:a6:7f:53:c1:40:80:15:ab:ec:a5: 0c:95:30:66:e4:35:a9:85:d4:e9:67:6a:d5:00:53:74:7b:5f: 52:21:c3:6c:b7:d1:46:6f:04:09:8a:75:e8:ac:1e:91:6b:43: e4:a6:56:29:d5:1b:80:d6:cc:fa:ad:36:ed:05:1b:33:89:1d: 87:93:85:04 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjQwNDI1MDQwNjQyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5ZDZkMS00NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAyi6xdypH8NqsVIMaVkcf3oP6eEOvgNFjHqFMwTpTGjwxI7b3YmhoXo1RFf ikq+r3CxVBkReoKjN7eCFkJcR/NkS+O1KVPYMipTAmYrcksc2LiBXG6IVpC4jeJm WVOz+GLkXA5/mJha4MqUrG1MYU6Wpoq8mpH9clUxsF8Yg/YDXYGhigiuhH9f1uYv KW9Z5NepJ7wN3v/jQMYJgm5dzbXswIxqIyr0IPM1Qr5PwoN7pCsiEQahOaDMLBXQ nOuPMAL424HXVRkpsSzA9SOyHbm+hUCHepJc2Hg+Tw6U7aSbbVJUQyD5cKkulIbn ZFQvJ62Gxk2T2o0B0x16+6szKQIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFDwq1B8V RMsGGf4JurBl4Wv/Aa3ZMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MzEvMzlFNEQ3QThEQzc4MTFFQ0E0RTMwNjE3QzRGOUFFMDIvNjNGMDVERTAy RjFEMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAUbYMADBAZzRQADBAXKrGADBALLF+wDBADLHUEDBAHLHXwD BAHLH8oDBALLOPQDBAHLOTADBAXSAcAwDQQCAAIwBwMFACQH5AAwDQYJKoZIhvcN AQELBQADggEBAKeZ6n/cL5r31yF+PhszWD8mq+v440adFkbJ5qkiZxN82hsR0o19 10Kz1vl5+7gsO5QBHhUdWh6bRVtWVNOAmXH6p4GzDQaO8c0FeCLkesiuNQlV6fMn jCjWmaXKbJUNvjeWLLFLW4xVo175lBe+TIdWd2+HSLb4xPSBD5cJTFZ1uAelBuJ2 erEqGRAL0iPivYtqHe5/6S3/FajNgMoraNpoEyp2zGrFRmRNu+iFftqo+vZhF8ly /8Y4u5qLpn9TwUCAFavspQyVMGbkNamF1OlnatUAU3R7X1Ihw2y30UZvBAmKdeis HpFrQ+SmVinVG4DWzPqtNu0FGzOJHYeThQQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:17 2024 by rpki-client on console-ams.rpki-client.org