$ rpki-client -vvf rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/AE735F98E19D11ECA439802EC4F9AE02.roa File: AE735F98E19D11ECA439802EC4F9AE02.roa (raw, json) Hash identifier: SJu2RSsSvRcV4Mk1Y5p1dw2RdAYsWxBHDyxjfEHTENo= Subject key identifier: C4:72:05:CC:D0:12:C5:D9:C8:56:B2:F7:65:48:2D:4E:6A:66:AE:84 Certificate issuer: /CN=A911EB2D/serialNumber=C03056F68099647AF7585E53F6A98ECFF3D988DF Certificate serial: 0734 Authority key identifier: C0:30:56:F6:80:99:64:7A:F7:58:5E:53:F6:A9:8E:CF:F3:D9:88:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDBW9oCZZHr3WF5T9qmOz_PZiN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/AE735F98E19D11ECA439802EC4F9AE02.roa Signing time: Sun 28 May 2023 23:04:49 +0000 ROA not before: Sun 28 May 2023 23:04:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140849 IP address blocks: 103.152.104.0/24 maxlen: 24 103.152.105.0/24 maxlen: 24 2001:df4:a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/wDBW9oCZZHr3WF5T9qmOz_PZiN8.crl rsync://rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/wDBW9oCZZHr3WF5T9qmOz_PZiN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDBW9oCZZHr3WF5T9qmOz_PZiN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EB2D/serialNumber=C03056F68099647AF7585E53F6A98ECFF3D988DF Validity Not Before: May 28 23:04:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6473de11-9092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:42:7c:43:1a:f5:4c:1c:af:b3:7c:a9:7a: 62:79:fa:bf:fb:98:94:1f:12:fd:de:9e:82:ec:fd: 7d:69:c2:8a:10:59:dc:67:a4:29:03:48:bd:d2:53: 11:8f:a3:80:35:ca:53:c4:d3:b4:f2:ae:2f:2b:d6: 2b:71:b8:0b:aa:0a:bf:1e:1f:0f:0e:d7:ff:7e:58: 32:23:4c:f9:f5:a4:e6:05:8a:a3:3e:c4:28:5a:c7: 03:9c:12:32:fa:bc:b0:f5:08:65:b1:5a:17:f3:05: 83:77:61:ba:cf:4b:64:4d:a1:43:c7:10:22:80:f4: 6f:dd:c4:4e:68:bb:6e:d3:ff:c4:54:8f:7b:0d:5f: 2d:70:4d:a7:9b:d6:fc:65:f8:54:22:7f:6f:79:60: 14:dc:b3:85:db:85:00:bd:ad:2e:dd:90:d1:05:32: 43:76:a1:49:a4:6e:91:41:cd:ef:1e:4a:81:99:50: 72:bf:65:ba:49:9d:0f:f1:4d:18:5d:31:5e:01:fc: d2:da:b4:6f:22:67:79:0a:9f:08:38:ac:ca:0b:09: a3:f2:37:d9:6c:37:18:5d:a2:ed:fd:4c:ec:04:85: 21:f6:f1:d1:98:11:f8:1f:73:e2:0e:ce:8b:f8:46: 1c:f3:c0:76:bc:75:3d:c7:e1:90:c7:70:df:61:26: f3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:72:05:CC:D0:12:C5:D9:C8:56:B2:F7:65:48:2D:4E:6A:66:AE:84 X509v3 Authority Key Identifier: keyid:C0:30:56:F6:80:99:64:7A:F7:58:5E:53:F6:A9:8E:CF:F3:D9:88:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/wDBW9oCZZHr3WF5T9qmOz_PZiN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDBW9oCZZHr3WF5T9qmOz_PZiN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EB2D/4A6CEDACBEB311EA82687643C4F9AE02/AE735F98E19D11ECA439802EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.104.0/23 IPv6: 2001:df4:a80::/48 Signature Algorithm: sha256WithRSAEncryption 33:54:01:4b:d4:ba:a4:16:76:f2:75:d1:96:0a:30:07:f9:25: e9:34:e1:54:f2:75:ec:a9:c4:a7:f0:f4:c4:7b:d2:93:21:b4: 81:66:3f:be:a1:5a:e4:cb:fc:31:69:e7:e2:29:bc:f1:6e:34: 06:9e:be:a8:c7:a7:db:c2:2b:f6:b2:22:63:5c:bc:19:57:4e: a0:fa:fb:e3:12:7c:ec:c3:79:5d:88:c1:3a:a9:35:0c:d8:0a: eb:24:a8:cb:17:79:a9:9b:9b:05:94:27:30:c0:48:5c:1a:dc: c3:7d:31:36:13:ad:d4:8c:7d:66:fd:51:de:07:11:e7:19:b3: ac:66:a2:c5:d3:eb:6f:ea:41:86:72:36:09:a2:1d:4e:b3:cc: f9:af:62:7e:a4:18:51:5e:1d:2d:21:e1:bf:76:f6:7f:bc:9d: c4:0d:89:0e:01:36:f6:ae:51:5a:3f:4e:2d:01:aa:19:17:e6: 26:ff:aa:ff:3f:fe:0a:31:68:f7:9c:d1:7d:e9:d8:43:46:62: 67:51:ef:94:f0:7c:b7:82:6e:28:98:2a:06:26:5b:c3:ce:c8: 2f:8f:09:b2:3c:4f:07:ed:9c:bd:40:01:91:e4:7f:49:55:2a: 0d:13:48:eb:93:a0:f0:5d:5e:dc:b2:d3:60:a2:3c:ba:f3:67: e2:58:4c:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVCMkQxMTAvBgNVBAUTKEMwMzA1NkY2ODA5OTY0N0FGNzU4NUU1M0Y2QTk4RUNG RjNEOTg4REYwHhcNMjMwNTI4MjMwNDQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDczZGUxMS05MDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/tCfEMa9Uwcr7N8qXpiefq/+5iUHxL93p6C7P19acKKEFncZ6QpA0i90lMR j6OANcpTxNO08q4vK9YrcbgLqgq/Hh8PDtf/flgyI0z59aTmBYqjPsQoWscDnBIy +ryw9QhlsVoX8wWDd2G6z0tkTaFDxxAigPRv3cROaLtu0//EVI97DV8tcE2nm9b8 ZfhUIn9veWAU3LOF24UAva0u3ZDRBTJDdqFJpG6RQc3vHkqBmVByv2W6SZ0P8U0Y XTFeAfzS2rRvImd5Cp8IOKzKCwmj8jfZbDcYXaLt/UzsBIUh9vHRmBH4H3PiDs6L +EYc88B2vHU9x+GQx3DfYSbzJwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMRyBczQ EsXZyFay92VILU5qZq6EMB8GA1UdIwQYMBaAFMAwVvaAmWR691heU/apjs/z2Yjf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUIyRC80QTZDRURBQ0JF QjMxMUVBODI2ODc2NDNDNEY5QUUwMi93REJXOW9DWlpIcjNXRjVUOXFtT3pfUFpp TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEQlc5b0NaWkhyM1dGNVQ5cW1Pel9QWmlOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVCMkQvNEE2Q0VEQUNCRUIzMTFFQTgyNjg3NjQzQzRGOUFFMDIvQUU3MzVGOThF MTlEMTFFQ0E0Mzk4MDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmGgwDwQCAAIwCQMHACABDfQKgDANBgkqhkiG9w0BAQsF AAOCAQEAM1QBS9S6pBZ28nXRlgowB/kl6TThVPJ17KnEp/D0xHvSkyG0gWY/vqFa 5Mv8MWnn4im88W40Bp6+qMen28Ir9rIiY1y8GVdOoPr74xJ87MN5XYjBOqk1DNgK 6ySoyxd5qZubBZQnMMBIXBrcw30xNhOt1Ix9Zv1R3gcR5xmzrGaixdPrb+pBhnI2 CaIdTrPM+a9ifqQYUV4dLSHhv3b2f7ydxA2JDgE29q5RWj9OLQGqGRfmJv+q/z/+ CjFo95zRfenYQ0ZiZ1HvlPB8t4JuKJgqBiZbw87IL48JsjxPB+2cvUABkeR/SVUq DRNI65Og8F1e3LLTYKI8uvNn4lhM3A== -----END CERTIFICATE-----Generated at Sun May 19 00:30:12 2024 by rpki-client on console-ams.rpki-client.org