$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/CE15A7B409D911EA80E56E21C4F9AE02.roa File: CE15A7B409D911EA80E56E21C4F9AE02.roa (raw, json) Hash identifier: 5QQg0x8eKpz3xnaX+2DjCk5UVS2x+a7tDLvB7KI9L9Q= Subject key identifier: 56:6A:0A:BC:47:DB:28:AE:9E:89:CC:17:4C:B3:80:D8:39:83:B3:F3 Certificate issuer: /CN=A916DC92/serialNumber=945D097F2263D14C36B7B65C2DC0C25F9EE77192 Certificate serial: 0B77 Authority key identifier: 94:5D:09:7F:22:63:D1:4C:36:B7:B6:5C:2D:C0:C2:5F:9E:E7:71:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/CE15A7B409D911EA80E56E21C4F9AE02.roa Signing time: Wed 15 May 2024 08:13:55 +0000 ROA not before: Wed 15 May 2024 08:13:55 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58682 IP address blocks: 43.224.112.0/22 maxlen: 24 43.228.208.0/22 maxlen: 24 103.15.40.0/22 maxlen: 24 103.124.224.0/22 maxlen: 24 103.230.16.0/22 maxlen: 24 103.249.0.0/22 maxlen: 24 2404:c900::/32 maxlen: 36 2404:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.crl rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:11:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC92/serialNumber=945D097F2263D14C36B7B65C2DC0C25F9EE77192 Validity Not Before: May 15 08:13:55 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66446ec3-cddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:01:6e:11:fb:b6:81:86:8b:45:41:75:95:cf: 9e:8e:e3:dd:df:e1:c8:54:25:07:c7:36:b8:a7:c6: 31:96:5a:c7:c8:6f:f7:a7:b2:10:d1:6b:de:c6:87: 3a:c5:e5:4a:b4:b5:e0:da:fe:5d:7e:24:4b:32:a7: d0:dd:d0:2b:a8:ae:17:0d:48:0a:b3:e3:ba:dd:6f: 64:65:3d:62:4a:f2:96:13:1e:6a:2c:86:f6:62:1f: ab:35:c5:14:a0:a8:d1:6e:ee:82:73:ac:88:7e:dc: 0c:1e:6d:d9:df:9d:43:65:23:49:22:c9:6f:1e:a2: f2:56:4d:21:2d:a0:dd:ba:a8:1e:1a:d2:b8:e2:41: 24:2a:75:c9:a5:4e:13:a2:43:eb:4a:79:d3:b3:01: 91:4f:5c:7d:81:00:1e:c5:37:54:c3:5e:41:60:0f: 96:05:e1:8f:33:0b:86:38:6d:0a:1b:00:2d:64:a8: 20:dc:9c:b2:c1:e6:03:75:c3:3a:43:ba:66:a0:c7: 05:79:d8:fd:ef:da:6f:65:e9:f5:e8:c1:9a:af:fe: 57:d0:d7:6f:23:3e:69:00:79:79:45:aa:1e:77:fc: 42:c8:62:a6:8b:44:f5:ec:41:a7:27:90:e1:93:6c: 3c:63:98:6a:af:87:47:a8:b0:21:41:f0:b6:f9:1c: 64:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6A:0A:BC:47:DB:28:AE:9E:89:CC:17:4C:B3:80:D8:39:83:B3:F3 X509v3 Authority Key Identifier: keyid:94:5D:09:7F:22:63:D1:4C:36:B7:B6:5C:2D:C0:C2:5F:9E:E7:71:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/CE15A7B409D911EA80E56E21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.112.0/22 43.228.208.0/22 103.15.40.0/22 103.124.224.0/22 103.230.16.0/22 103.249.0.0/22 IPv6: 2404:c900::/32 Signature Algorithm: sha256WithRSAEncryption 64:30:96:10:fa:ad:17:32:8b:90:87:3b:1e:2f:6e:71:69:ad: 5a:3d:12:eb:fc:70:f0:d3:18:37:8f:ce:a5:9e:65:8e:2e:8c: c4:77:ef:4d:48:d0:65:84:6e:58:cc:99:47:08:e4:79:1c:22: 70:dd:03:c0:02:f3:25:fa:40:b1:cb:77:52:03:37:86:75:88: 4f:81:06:98:6a:f2:8d:9b:83:6c:c6:01:2f:1c:19:6e:5e:b9: d0:b3:db:eb:de:7a:2d:38:02:aa:b4:77:7a:39:d0:d3:6d:e7: b8:06:67:93:40:f5:79:5d:a0:9b:49:bc:25:d7:ab:2e:c4:59: bd:a1:d6:2c:3e:a4:40:0b:6f:c4:47:49:23:e8:da:da:08:ee: 46:d2:bd:fa:05:f8:34:b8:4f:7c:58:72:69:99:21:fb:3a:1c: 05:39:4a:75:59:75:b7:6e:b8:fe:5b:37:e3:73:c7:72:f7:c7: a0:26:4b:76:c0:49:d8:66:3b:43:3d:d5:d1:f4:4c:1e:ec:94: d3:9a:39:32:bd:ff:33:4c:53:a4:78:0e:33:d0:94:4f:e2:62: b2:2a:49:e0:38:71:2a:61:ec:e7:23:34:13:2b:56:57:90:9c: ed:bf:94:dd:e6:61:16:5f:84:23:8c:10:70:87:53:5c:4b:2c: f0:79:a9:64 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDOTIxMTAvBgNVBAUTKDk0NUQwOTdGMjI2M0QxNEMzNkI3QjY1QzJEQzBDMjVG OUVFNzcxOTIwHhcNMjQwNTE1MDgxMzU1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0NmVjMy1jZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAFuEfu2gYaLRUF1lc+ejuPd3+HIVCUHxza4p8YxllrHyG/3p7IQ0Wvexoc6 xeVKtLXg2v5dfiRLMqfQ3dArqK4XDUgKs+O63W9kZT1iSvKWEx5qLIb2Yh+rNcUU oKjRbu6Cc6yIftwMHm3Z351DZSNJIslvHqLyVk0hLaDduqgeGtK44kEkKnXJpU4T okPrSnnTswGRT1x9gQAexTdUw15BYA+WBeGPMwuGOG0KGwAtZKgg3JyyweYDdcM6 Q7pmoMcFedj979pvZen16MGar/5X0NdvIz5pAHl5Raoed/xCyGKmi0T17EGnJ5Dh k2w8Y5hqr4dHqLAhQfC2+RxknwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFFZqCrxH 2yiunonMF0yzgNg5g7PzMB8GA1UdIwQYMBaAFJRdCX8iY9FMNre2XC3Awl+e53GS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM5Mi8wRjREN0I0NjA5 RDgxMUVBOUZFOERCMUVDNEY5QUUwMi9sRjBKZnlKajBVdzJ0N1pjTGNEQ1g1N25j WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGMEpmeUpqMFV3MnQ3WmNMY0RDWDU3bmNaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRDOTIvMEY0RDdCNDYwOUQ4MTFFQTlGRThEQjFFQzRGOUFFMDIvQ0UxNUE3QjQw OUQ5MTFFQTgwRTU2RTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAIr4HADBAIr5NADBAJnDygDBAJnfOADBAJn5hADBAJn+QAw DQQCAAIwBwMFACQEyQAwDQYJKoZIhvcNAQELBQADggEBAGQwlhD6rRcyi5CHOx4v bnFprVo9Euv8cPDTGDePzqWeZY4ujMR3701I0GWEbljMmUcI5HkcInDdA8AC8yX6 QLHLd1IDN4Z1iE+BBphq8o2bg2zGAS8cGW5eudCz2+veei04Aqq0d3o50NNt57gG Z5NA9XldoJtJvCXXqy7EWb2h1iw+pEALb8RHSSPo2toI7kbSvfoF+DS4T3xYcmmZ Ifs6HAU5SnVZdbduuP5bN+Nzx3L3x6AmS3bASdhmO0M91dH0TB7slNOaOTK9/zNM U6R4DjPQlE/iYrIqSeA4cSph7OcjNBMrVleQnO2/lN3mYRZfhCOMEHCHU1xLLPB5 qWQ= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:18 2024 by rpki-client on console-ams.rpki-client.org