$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa File: 00B2998A576911EEA54BD978C4F9AE02.roa (raw, json) Hash identifier: vp36Zl+WFuWslPPrxZrZo/Ztbdz18Q/TK67tiiSY7d0= Subject key identifier: 48:7F:29:D1:72:75:4A:63:30:70:D8:B2:09:96:7F:14:1A:FB:C1:60 Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 48 Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa Signing time: Fri 29 Dec 2023 06:27:45 +0000 ROA not before: Fri 29 Dec 2023 06:27:45 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 151326 IP address blocks: 101.1.5.0/24 maxlen: 24 101.101.98.0/24 maxlen: 24 101.101.99.0/24 maxlen: 24 2401:44c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Dec 29 06:27:45 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e66e0-deb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9e:f0:05:c4:24:5b:93:e8:cf:cd:da:18:55: e3:99:67:13:cd:72:3f:78:25:3c:84:b1:d9:9f:6c: 88:4c:5c:6a:64:bf:aa:d6:01:1c:62:24:2c:2f:1e: fc:43:12:57:29:3c:53:36:84:82:5e:90:d7:ed:54: 71:01:35:11:00:34:8e:10:a4:69:22:7c:1a:08:28: e3:7e:fe:a4:2b:86:8b:87:e1:48:1a:5c:d2:22:5c: 0e:27:98:68:b6:74:f8:dd:33:83:06:25:ed:c5:0d: 43:d1:52:95:74:4e:d7:99:23:c2:2b:20:47:fc:99: 1b:88:9a:05:17:d4:51:c6:59:ef:82:a9:3c:e0:2a: 7c:1a:da:93:96:be:45:4a:4e:67:83:47:02:f3:ad: 86:13:f6:7a:fb:c2:5d:4a:56:ec:f2:f8:3d:23:e2: 58:13:3b:ea:24:a2:7f:72:11:24:7f:4e:50:a9:89: 37:5c:73:fa:83:d4:a5:1a:76:3c:60:e6:90:32:db: 3b:20:61:2d:8b:d3:31:39:b4:c3:8c:57:ad:92:16: c3:a7:2e:c0:0b:f0:09:71:b9:a0:78:bf:f0:b1:4c: 3f:30:d6:4b:c8:45:d3:d9:db:00:11:ec:07:fe:bd: 1f:b6:b2:16:5b:99:56:fe:d5:e9:15:66:c2:2f:84: 14:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7F:29:D1:72:75:4A:63:30:70:D8:B2:09:96:7F:14:1A:FB:C1:60 X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.1.5.0/24 101.101.98.0/23 IPv6: 2401:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 01:6a:0d:e8:fd:67:93:6d:39:3c:71:23:59:3c:e6:97:48:2d: 99:80:bb:02:02:38:7d:c5:14:6c:c3:5f:84:2c:41:5b:d7:59: 30:e0:55:0e:7a:30:65:fa:3f:0d:59:69:54:9f:ad:4d:26:91: ed:62:bd:45:71:dd:58:fe:f6:fc:25:7d:bf:36:97:bd:4b:d0: 05:0f:94:53:43:36:97:ee:02:2e:91:7b:a9:d5:02:b0:04:bd: 8a:8c:04:0d:47:50:d4:68:f6:77:4f:d2:f0:e6:8a:06:88:3b: fe:33:7e:1c:70:9e:25:bc:b9:2c:e6:86:c6:7a:11:42:1c:f6: 49:6d:25:29:60:c1:00:9f:bd:43:ca:a0:4c:52:1e:dc:4b:aa: c5:24:56:3d:d1:d3:31:a7:d1:48:b6:bb:89:ad:92:bb:44:40: f4:bf:c3:66:db:0c:64:14:d7:36:43:53:dd:8e:d9:12:ea:44: 5f:ec:ef:45:04:90:5e:d6:b6:f4:c5:43:ac:53:91:87:e9:61: d4:05:b2:6e:20:f7:3f:88:21:74:69:3c:f4:7d:f1:48:2a:27: 9e:44:38:c6:fd:31:af:a6:ed:28:e8:dd:41:ae:9b:e4:c2:f5: 7d:0e:72:fe:be:1a:8c:67:d1:ce:92:97:00:35:26:1e:9e:d3: e2:83:16:ba -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTI5NDExMC8GA1UEBRMoODdCNUQ4NTNGNjQyNTIxNUFEQTc4MjJGMDJBNTc0ODNF RTI2N0MwNDAeFw0yMzEyMjkwNjI3NDVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGU2NmUwLWRlYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtnvAFxCRbk+jPzdoYVeOZZxPNcj94JTyEsdmfbIhMXGpkv6rWARxiJCwvHvxD ElcpPFM2hIJekNftVHEBNREANI4QpGkifBoIKON+/qQrhouH4UgaXNIiXA4nmGi2 dPjdM4MGJe3FDUPRUpV0TteZI8IrIEf8mRuImgUX1FHGWe+CqTzgKnwa2pOWvkVK TmeDRwLzrYYT9nr7wl1KVuzy+D0j4lgTO+okon9yESR/TlCpiTdcc/qD1KUadjxg 5pAy2zsgYS2L0zE5tMOMV62SFsOnLsAL8AlxuaB4v/CxTD8w1kvIRdPZ2wAR7Af+ vR+2shZbmVb+1ekVZsIvhBR9AgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUSH8p0XJ1 SmMwcNiyCZZ/FBr7wWAwHwYDVR0jBBgwFoAUh7XYU/ZCUhWtp4IvAqV0g+4mfAQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBMjk0Lzk5MkYxRDBFNEFE NjExRUU5N0I1M0Y3MkM0RjlBRTAyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZB US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDdYWVVfWkNVaFd0cDRJdkFxVjBnLTRtZkFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTI5NC85OTJGMUQwRTRBRDYxMUVFOTdCNTNGNzJDNEY5QUUwMi8wMEIyOTk4QTU3 NjkxMUVFQTU0QkQ5NzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAGUBBQMEAWVlYjANBAIAAjAHAwUAJAFEwDANBgkqhkiG9w0B AQsFAAOCAQEAAWoN6P1nk205PHEjWTzml0gtmYC7AgI4fcUUbMNfhCxBW9dZMOBV DnowZfo/DVlpVJ+tTSaR7WK9RXHdWP72/CV9vzaXvUvQBQ+UU0M2l+4CLpF7qdUC sAS9iowEDUdQ1Gj2d0/S8OaKBog7/jN+HHCeJby5LOaGxnoRQhz2SW0lKWDBAJ+9 Q8qgTFIe3EuqxSRWPdHTMafRSLa7ia2Su0RA9L/DZtsMZBTXNkNT3Y7ZEupEX+zv RQSQXta29MVDrFORh+lh1AWybiD3P4ghdGk89H3xSConnkQ4xv0xr6btKOjdQa6b 5ML1fQ5y/r4ajGfRzpKXADUmHp7T4oMWug== -----END CERTIFICATE-----Generated at Sun Jun 9 08:55:03 2024 by rpki-client on console-ams.rpki-client.org