$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa File: B80A9FF60B4111EF919B0B7DC4F9AE02.roa (raw, json) Hash identifier: 8FDtwCzpfoMBPcHKeKDfSihCX7Y+iSy3jReZdAL5PQg= Subject key identifier: E7:03:3A:F6:4D:62:19:6F:61:43:24:DA:B9:EB:D1:C5:AE:A9:9E:18 Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Certificate serial: 0922 Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa Signing time: Mon 06 May 2024 00:43:56 +0000 ROA not before: Mon 06 May 2024 00:43:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 7631 IP address blocks: 123.176.114.0/23 maxlen: 23 123.176.115.0/24 maxlen: 24 123.176.116.0/22 maxlen: 22 123.176.116.0/23 maxlen: 23 123.176.116.0/24 maxlen: 24 125.253.36.0/23 maxlen: 23 203.189.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Validity Not Before: May 6 00:43:56 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=663827cc-c9b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e8:1e:2c:05:5c:37:06:ae:bd:14:c5:51:55: a0:f8:6a:b0:ac:f3:51:65:38:05:c6:01:6a:00:ce: 49:8c:e4:5d:b6:3b:42:d8:ee:13:51:dd:f4:02:61: e5:3e:56:95:93:f9:0d:26:ba:e4:17:d6:bf:56:36: d8:03:f4:9d:f5:3f:26:b0:13:cd:3e:2b:19:f8:80: 5b:1a:1b:14:0a:35:ca:6e:02:c5:26:b9:34:d3:11: ac:05:da:5c:7b:c1:7b:36:7a:54:fd:d9:36:aa:eb: 20:d3:a6:4d:83:c5:ac:02:74:7c:3e:a7:6d:50:7a: 1d:0a:8e:74:3b:b6:f4:18:e1:20:24:5f:a7:c1:a9: 87:6c:4d:f7:6c:ea:ce:78:3e:53:a2:7d:14:ed:20: 85:a1:d2:15:3c:c8:5a:33:d1:ad:85:93:74:59:41: ea:75:f8:1b:8f:57:5b:92:fb:a7:94:b4:a7:b1:d7: 6c:bf:cd:96:5f:e9:c8:20:d6:0d:03:f6:9c:9e:e9: 20:65:65:ef:71:9e:ff:ff:c2:4e:e3:28:24:79:d7: 39:15:98:cc:b0:03:3e:70:73:9f:ee:73:53:1e:e4: 83:b4:6f:a6:b3:42:c9:db:0c:e4:a6:f7:f3:de:5a: de:56:46:b9:da:9c:b6:3d:08:95:c3:4f:ef:f9:28: 67:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:03:3A:F6:4D:62:19:6F:61:43:24:DA:B9:EB:D1:C5:AE:A9:9E:18 X509v3 Authority Key Identifier: keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.176.114.0-123.176.119.255 125.253.36.0/23 203.189.4.0/24 Signature Algorithm: sha256WithRSAEncryption 58:95:42:57:54:5f:f0:6c:58:29:bb:de:06:12:ee:94:82:f5: 0c:ca:30:bf:ff:56:0e:59:c3:9f:32:34:5c:1c:e6:f3:00:e3: 4b:08:1e:1c:75:a8:b0:2d:cb:4c:e6:8e:0d:8e:49:ee:52:a5: 19:3d:79:83:37:bc:01:70:fe:f0:0f:56:75:02:f2:6c:dc:ee: 21:c8:87:54:46:3a:3c:d3:9f:1e:af:bc:14:96:da:20:a2:aa: 08:22:19:f5:55:df:7a:5a:d5:4d:2c:58:dd:4c:44:1d:5e:c4: 20:35:1f:ea:89:3a:ea:95:dc:9e:84:14:ce:a2:07:a8:96:73: 32:09:f4:69:18:02:7c:23:0d:7b:0b:ee:af:0e:af:a1:94:c4: f6:6c:a0:4f:e1:6e:3c:9d:d7:44:02:9c:99:2d:b6:c5:58:ee: 5e:42:6e:56:cd:99:b7:05:2e:ba:73:f5:ca:e5:f5:c3:0b:98: 43:8a:0d:e7:77:4f:43:46:4f:a4:fc:52:8a:96:7d:ad:3c:59: 76:72:49:b9:9b:f1:40:d9:fa:f6:d6:a3:b9:58:5a:cc:71:8b: 75:4d:4a:e8:24:45:ea:10:1f:1c:6f:0b:71:66:9b:f5:c8:8b: 4b:12:7b:e4:99:e2:42:8a:d2:0e:ff:1b:2e:c6:1b:32:6a:07: 54:23:5d:4b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0NzUxMTAvBgNVBAUTKDc0NUZGNEYwNjNBQjVEMTcxRTA1MjUxQjMxRTI5NEE0 QkM3OTczQjEwHhcNMjQwNTA2MDA0MzU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM4MjdjYy1jOWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyugeLAVcNwauvRTFUVWg+GqwrPNRZTgFxgFqAM5JjORdtjtC2O4TUd30AmHl PlaVk/kNJrrkF9a/VjbYA/Sd9T8msBPNPisZ+IBbGhsUCjXKbgLFJrk00xGsBdpc e8F7NnpU/dk2qusg06ZNg8WsAnR8PqdtUHodCo50O7b0GOEgJF+nwamHbE33bOrO eD5Ton0U7SCFodIVPMhaM9GthZN0WUHqdfgbj1dbkvunlLSnsddsv82WX+nIINYN A/acnukgZWXvcZ7//8JO4ygkedc5FZjMsAM+cHOf7nNTHuSDtG+ms0LJ2wzkpvfz 3lreVka52py2PQiVw0/v+ShnVQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOcDOvZN YhlvYUMk2rnr0cWuqZ4YMB8GA1UdIwQYMBaAFHRf9PBjq10XHgUlGzHilKS8eXOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3NS9EQTgzQUE3QUNB MTExMUVBQTQ3OUM3MzRDNEY5QUUwMi9kRl8wOEdPclhSY2VCU1ViTWVLVXBMeDVj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RGXzA4R09yWFJjZUJTVWJNZUtVcEx4NWM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0NzUvREE4M0FBN0FDQTExMTFFQUE0NzlDNzM0QzRGOUFFMDIvQjgwQTlGRjYw QjQxMTFFRjkxOUIwQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAXuwcgMEA3uwcAMEAX39JAMEAMu9BDANBgkqhkiG9w0B AQsFAAOCAQEAWJVCV1Rf8GxYKbveBhLulIL1DMowv/9WDlnDnzI0XBzm8wDjSwge HHWosC3LTOaODY5J7lKlGT15gze8AXD+8A9WdQLybNzuIciHVEY6PNOfHq+8FJba IKKqCCIZ9VXfelrVTSxY3UxEHV7EIDUf6ok66pXcnoQUzqIHqJZzMgn0aRgCfCMN ewvurw6voZTE9mygT+FuPJ3XRAKcmS22xVjuXkJuVs2ZtwUuunP1yuX1wwuYQ4oN 53dPQ0ZPpPxSipZ9rTxZdnJJuZvxQNn69tajuVhazHGLdU1K6CRF6hAfHG8LcWab 9ciLSxJ75JniQorSDv8bLsYbMmoHVCNdSw== -----END CERTIFICATE-----Generated at Fri May 31 23:53:06 2024 by rpki-client on console-fra.rpki-client.org