$ rpki-client -vvf rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/4D47DE5A127E11EB91021F3AC4F9AE02.roa File: 4D47DE5A127E11EB91021F3AC4F9AE02.roa (raw, json) Hash identifier: FnmHc/EL98c+PFeXZEEckvBwLhZ1h1Mk6kmkthkdN2w= Subject key identifier: 13:D9:E9:38:4E:26:00:5B:D9:1A:B8:6F:A9:C0:91:DF:75:CF:1C:8E Certificate issuer: /CN=A916378F/serialNumber=3588F1BB5CB699B034811D179279BF5B9BBC1E5B Certificate serial: 066F Authority key identifier: 35:88:F1:BB:5C:B6:99:B0:34:81:1D:17:92:79:BF:5B:9B:BC:1E:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/4D47DE5A127E11EB91021F3AC4F9AE02.roa Signing time: Wed 04 Oct 2023 22:19:39 +0000 ROA not before: Wed 04 Oct 2023 22:19:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45215 IP address blocks: 43.239.180.0/22 maxlen: 22 43.239.180.0/23 maxlen: 23 43.239.182.0/23 maxlen: 23 103.58.213.0/24 maxlen: 24 103.58.214.0/23 maxlen: 24 103.241.88.0/23 maxlen: 24 103.241.90.0/24 maxlen: 24 103.241.91.0/24 maxlen: 24 202.36.68.0/23 maxlen: 24 2403:40c0::/48 maxlen: 48 2403:40c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.crl rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916378F/serialNumber=3588F1BB5CB699B034811D179279BF5B9BBC1E5B Validity Not Before: Oct 4 22:19:39 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651de4fb-0a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:66:2b:01:d8:4a:0b:82:87:e4:09:d3:a0:d6: 0f:09:f7:7b:d9:d3:d5:dc:ba:db:7c:e8:5b:71:04: 46:d4:16:f8:ee:56:59:00:68:ff:a1:a8:e1:7c:7a: b1:d7:12:08:87:22:c1:2f:5e:7b:eb:0c:f9:44:d2: 9a:5b:0e:9a:bd:45:09:59:33:03:ff:a1:1d:9f:68: 5f:ea:05:39:7d:36:41:19:1b:ee:ac:ac:0a:25:71: 84:77:03:85:2b:7a:e4:01:f0:d0:c8:ed:3c:34:97: 9f:ef:a6:4e:8f:81:5a:f0:68:bd:95:90:d6:70:a7: 8d:1b:1b:cd:e0:c9:47:6c:e6:c0:48:e3:56:b8:8d: fc:b6:01:07:37:7c:74:17:04:18:3b:b8:17:ce:83: fe:ea:68:f2:52:51:ac:bf:49:c0:d5:0c:cf:31:6b: 0a:15:cc:3e:09:61:32:68:30:ca:ee:35:ac:4b:aa: 9f:11:1d:8f:f2:a0:b1:2e:3e:be:9d:d8:1a:bb:33: 7d:45:3d:e0:ee:70:22:5c:65:f5:13:8e:0d:b3:22: 91:1c:46:bb:99:67:df:d7:89:a3:d9:34:de:b0:fc: 7a:89:0d:f4:e1:16:9f:ba:1f:ea:eb:36:c0:57:49: 49:1d:be:a9:ed:63:50:88:92:5b:57:fb:6f:a9:bf: 83:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D9:E9:38:4E:26:00:5B:D9:1A:B8:6F:A9:C0:91:DF:75:CF:1C:8E X509v3 Authority Key Identifier: keyid:35:88:F1:BB:5C:B6:99:B0:34:81:1D:17:92:79:BF:5B:9B:BC:1E:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/4D47DE5A127E11EB91021F3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.180.0/22 103.58.213.0-103.58.215.255 103.241.88.0/22 202.36.68.0/23 IPv6: 2403:40c0::/48 2403:40c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 24:ba:d4:32:30:e1:2f:63:d3:58:30:38:93:00:bf:e0:8b:e3: a6:d0:5d:cf:d8:1d:d1:2d:40:24:08:8a:aa:dd:96:17:e1:88: 18:8e:89:fc:38:8a:9b:91:14:0a:26:53:db:0e:47:2e:53:38: 2c:c7:0f:51:dc:e5:5e:39:d8:d5:f3:07:d7:93:8d:a5:9f:df: 9c:3e:f5:ec:6e:e8:77:42:89:7f:d1:91:d4:0c:71:cf:54:14: 76:07:22:d1:2c:98:9f:35:e8:06:e0:0e:e8:53:5c:c8:fd:7f: 46:04:7e:14:c7:71:79:8d:c5:50:ca:cc:5c:a9:97:60:90:51: a4:8c:fb:17:b1:23:f2:e2:bc:c5:aa:3a:23:b9:73:99:e6:48: c7:50:7f:44:e1:dc:b8:54:93:06:17:e2:a3:2f:77:2c:83:be: f3:54:d6:6a:6b:4d:a3:bf:7c:32:c6:26:a7:32:5c:03:16:2a: 09:59:4f:d1:83:9e:82:52:c3:bf:82:59:01:3c:25:00:83:46: 97:a0:a3:f2:bc:2e:eb:a4:32:d8:b3:d0:d2:b8:1e:aa:71:4f: e7:39:52:ca:e6:c5:59:f8:8b:8b:34:e6:1a:fa:84:65:d4:1f: a7:09:64:36:a5:51:a7:b2:27:18:7e:f4:90:4b:d0:79:33:de: 92:27:4f:50 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM3OEYxMTAvBgNVBAUTKDM1ODhGMUJCNUNCNjk5QjAzNDgxMUQxNzkyNzlCRjVC OUJCQzFFNUIwHhcNMjMxMDA0MjIxOTM5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZTRmYi0wYTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mYrAdhKC4KH5AnToNYPCfd72dPV3LrbfOhbcQRG1Bb47lZZAGj/oajhfHqx 1xIIhyLBL1576wz5RNKaWw6avUUJWTMD/6Edn2hf6gU5fTZBGRvurKwKJXGEdwOF K3rkAfDQyO08NJef76ZOj4Fa8Gi9lZDWcKeNGxvN4MlHbObASONWuI38tgEHN3x0 FwQYO7gXzoP+6mjyUlGsv0nA1QzPMWsKFcw+CWEyaDDK7jWsS6qfER2P8qCxLj6+ ndgauzN9RT3g7nAiXGX1E44NsyKRHEa7mWff14mj2TTesPx6iQ304Rafuh/q6zbA V0lJHb6p7WNQiJJbV/tvqb+DaQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFBPZ6ThO JgBb2Rq4b6nAkd91zxyOMB8GA1UdIwQYMBaAFDWI8btctpmwNIEdF5J5v1ubvB5b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzc4Ri9BNUE5QzRBODEy NzExMUVCODhENEJEODBDNEY5QUUwMi9OWWp4dTF5Mm1iQTBnUjBYa25tX1c1dThI bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Zanh1MXkybWJBMGdSMFhrbm1fVzV1OEhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM3OEYvQTVBOUM0QTgxMjcxMTFFQjg4RDRCRDgwQzRGOUFFMDIvNEQ0N0RFNUEx MjdFMTFFQjkxMDIxRjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMCYEAgABMCADBAIr77QwDAMEAGc61QMEA2c60AMEAmfxWAMEAcokRDAYBAIA AjASAwcAJANAwAAAAwcAJANAwAAEMA0GCSqGSIb3DQEBCwUAA4IBAQAkutQyMOEv Y9NYMDiTAL/gi+Om0F3P2B3RLUAkCIqq3ZYX4YgYjon8OIqbkRQKJlPbDkcuUzgs xw9R3OVeOdjV8wfXk42ln9+cPvXsbuh3Qol/0ZHUDHHPVBR2ByLRLJifNegG4A7o U1zI/X9GBH4Ux3F5jcVQysxcqZdgkFGkjPsXsSPy4rzFqjojuXOZ5kjHUH9E4dy4 VJMGF+KjL3csg77zVNZqa02jv3wyxianMlwDFioJWU/Rg56CUsO/glkBPCUAg0aX oKPyvC7rpDLYs9DSuB6qcU/nOVLK5sVZ+IuLNOYa+oRl1B+nCWQ2pVGnsicYfvSQ S9B5M96SJ09Q -----END CERTIFICATE-----Generated at Fri May 17 00:19:43 2024 by rpki-client on console-ams.rpki-client.org