$ rpki-client -vvf rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/B6C42C027E7111ECA6454787C4F9AE02.roa File: B6C42C027E7111ECA6454787C4F9AE02.roa (raw, json) Hash identifier: gVEXEVzfW/tPPS1ccU3SnbO4XbDfXiDZvDqZRnd6ixs= Subject key identifier: 0F:84:17:BC:6D:82:48:08:1E:35:D1:A3:41:2B:BC:D7:52:B8:83:EE Certificate issuer: /CN=A918754F/serialNumber=20CB58BB7CD424E761BC393BFCB8D676685F6C0D Certificate serial: 24C9 Authority key identifier: 20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/B6C42C027E7111ECA6454787C4F9AE02.roa Signing time: Mon 02 Oct 2023 16:12:37 +0000 ROA not before: Mon 02 Oct 2023 16:12:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58752 IP address blocks: 43.245.232.0/22 maxlen: 24 103.31.176.0/23 maxlen: 24 2407:1500::/32 maxlen: 32 2407:1500:20::/48 maxlen: 48 2407:1500:21::/48 maxlen: 48 2407:1500:22::/48 maxlen: 48 2407:1500:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.crl rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9417 (0x24c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918754F/serialNumber=20CB58BB7CD424E761BC393BFCB8D676685F6C0D Validity Not Before: Oct 2 16:12:37 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651aebf4-0645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:79:69:be:7b:1b:d7:39:9a:b0:8f:88:c8: 7d:e3:50:ff:22:8b:5c:67:28:6c:4a:2a:0c:2c:bc: d3:d1:04:75:10:fd:46:45:37:15:66:95:59:18:8d: 03:cc:f4:3b:68:99:c2:02:05:49:07:b1:de:97:bc: cf:5e:ce:89:58:ac:02:85:49:cd:6e:26:72:bb:a0: e7:40:77:5c:5d:db:d0:8b:2f:25:e4:96:b5:5d:5a: f6:95:a5:d9:ee:9b:1e:62:c2:2d:32:f5:ff:f4:27: 5a:f3:51:e5:15:3c:30:8c:2c:bc:4c:16:0a:04:cf: 48:42:21:d3:08:a1:ab:43:a3:1b:ca:1d:33:fa:3d: 75:06:e9:0b:ea:34:e1:0e:97:34:40:fb:7b:1d:2c: 62:26:f3:15:4c:da:42:1e:44:53:d9:da:c4:8c:60: 5c:cb:55:fb:0e:9e:5f:44:1e:24:dd:30:4e:e2:51: 4a:dc:3e:03:32:27:33:ef:ed:8f:e6:73:15:5f:c8: 5f:cf:a8:47:fe:0c:c7:fa:6c:15:bd:dd:e1:b6:d7: 3f:97:91:6c:5b:52:2d:e2:34:e9:d5:38:e9:83:cc: 38:d8:57:ee:11:1b:ce:46:03:50:af:6a:e0:30:aa: b4:52:f0:73:8e:38:dc:7b:18:b6:61:e6:85:ee:12: ae:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:84:17:BC:6D:82:48:08:1E:35:D1:A3:41:2B:BC:D7:52:B8:83:EE X509v3 Authority Key Identifier: keyid:20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/B6C42C027E7111ECA6454787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.232.0/22 103.31.176.0/23 IPv6: 2407:1500::/32 Signature Algorithm: sha256WithRSAEncryption 30:8a:60:d6:72:76:42:cf:4f:08:bd:e7:2c:d2:57:b5:e1:e9: 21:21:13:de:03:1d:56:8f:23:de:d0:a2:4e:6b:2c:60:30:1d: 72:f2:d0:4d:84:9b:ef:8e:7f:21:c5:4e:11:69:49:04:7a:1e: c0:fd:ec:e9:94:94:fe:40:1c:93:e4:b4:70:e9:23:25:63:d6: 73:aa:f1:96:1c:0d:4d:8c:e5:c0:56:bb:d6:c4:58:b8:94:f4: b0:ac:9f:4a:58:a7:d4:3e:09:f2:2d:a9:e2:c8:c6:a9:84:59: 7b:c2:7a:fd:a4:35:3a:be:59:fd:d1:80:aa:b6:20:c5:57:9f: 95:09:eb:c2:9b:6c:7e:0a:1b:ef:a8:dd:11:a5:96:73:15:ef: 07:27:d4:2c:c9:db:a4:11:b0:1f:00:e0:6d:c1:9a:96:94:75: 86:e6:b1:85:fb:08:20:87:77:0e:d8:e2:6a:0b:f2:94:84:9e: 8a:5a:a8:fb:00:f4:73:69:d4:a1:e4:bf:42:1d:d8:b1:f5:41: 71:e9:7f:74:26:55:82:f6:d2:1c:e7:ae:fb:ea:88:da:4e:aa: 13:92:f1:19:8c:5f:da:e6:86:e5:37:8f:89:d0:c0:8d:89:58: 6c:04:1e:b6:99:aa:28:13:75:47:4f:82:18:f8:01:8a:e7:62: 34:c6:a7:d2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1NEYxMTAvBgNVBAUTKDIwQ0I1OEJCN0NENDI0RTc2MUJDMzkzQkZDQjhENjc2 Njg1RjZDMEQwHhcNMjMxMDAyMTYxMjM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZWJmNC0wNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0N5ab57G9c5mrCPiMh941D/IotcZyhsSioMLLzT0QR1EP1GRTcVZpVZGI0D zPQ7aJnCAgVJB7Hel7zPXs6JWKwChUnNbiZyu6DnQHdcXdvQiy8l5Ja1XVr2laXZ 7pseYsItMvX/9Cda81HlFTwwjCy8TBYKBM9IQiHTCKGrQ6Mbyh0z+j11BukL6jTh Dpc0QPt7HSxiJvMVTNpCHkRT2drEjGBcy1X7Dp5fRB4k3TBO4lFK3D4DMicz7+2P 5nMVX8hfz6hH/gzH+mwVvd3httc/l5FsW1It4jTp1Tjpg8w42FfuERvORgNQr2rg MKq0UvBzjjjcexi2YeaF7hKuswIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFA+EF7xt gkgIHjXRo0ErvNdSuIPuMB8GA1UdIwQYMBaAFCDLWLt81CTnYbw5O/y41nZoX2wN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzU0Ri8yQUQxNkYzMDFB NEExMUU1OTIwOUVENzJDNEY5QUUwMi9JTXRZdTN6VUpPZGh2RGs3X0xqV2RtaGZi QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNdFl1M3pVSk9kaHZEazdfTGpXZG1oZmJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc1NEYvMkFEMTZGMzAxQTRBMTFFNTkyMDlFRDcyQzRGOUFFMDIvQjZDNDJDMDI3 RTcxMTFFQ0E2NDU0Nzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr9egDBAFnH7AwDQQCAAIwBwMFACQHFQAwDQYJKoZIhvcN AQELBQADggEBADCKYNZydkLPTwi95yzSV7Xh6SEhE94DHVaPI97Qok5rLGAwHXLy 0E2Em++OfyHFThFpSQR6HsD97OmUlP5AHJPktHDpIyVj1nOq8ZYcDU2M5cBWu9bE WLiU9LCsn0pYp9Q+CfItqeLIxqmEWXvCev2kNTq+Wf3RgKq2IMVXn5UJ68KbbH4K G++o3RGllnMV7wcn1CzJ26QRsB8A4G3BmpaUdYbmsYX7CCCHdw7Y4moL8pSEnopa qPsA9HNp1KHkv0Id2LH1QXHpf3QmVYL20hznrvvqiNpOqhOS8RmMX9rmhuU3j4nQ wI2JWGwEHraZqigTdUdPghj4AYrnYjTGp9I= -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org