$ rpki-client -vvf rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa File: 3C24D492BF6911EAA877B317C4F9AE02.roa (raw, json) Hash identifier: TwEnXucS+0+wXAEUu082FVnsKCbBznxJe6fILJHhzVw= Subject key identifier: 7E:E1:5B:C0:F1:9E:68:15:82:E8:F2:1F:9C:A9:3A:42:71:8D:8A:19 Certificate issuer: /CN=A912A4D7/serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C Certificate serial: 0725 Authority key identifier: 55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa Signing time: Sun 02 Jul 2023 21:27:33 +0000 ROA not before: Sun 02 Jul 2023 21:27:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140878 IP address blocks: 103.152.214.0/23 maxlen: 24 2001:df4:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.crl rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1829 (0x725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A4D7/serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C Validity Not Before: Jul 2 21:27:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a1ebc5-b9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ff:aa:5f:8e:cb:06:5f:0c:54:bf:01:62:35: f8:d3:e3:25:35:05:d4:4e:68:2e:a1:6f:45:71:18: 52:6c:2a:77:64:b7:fc:35:f5:6c:3f:70:9c:e5:b8: f6:59:3d:7e:1d:e2:2f:0b:42:47:60:09:e4:ae:4e: a2:c3:3f:5c:c3:ae:12:3d:51:0c:c8:78:fc:cb:c7: 35:8e:a6:84:ef:2f:69:50:5f:48:4f:7d:5e:eb:9e: 7e:50:f3:c6:df:fd:19:50:1e:61:e3:0b:8e:df:a3: dd:bb:79:4f:f9:30:f4:a8:ad:db:8f:82:9d:32:61: 97:6a:72:86:9b:2e:96:ca:a8:99:a1:69:1d:07:3d: ea:43:39:84:89:38:cd:34:56:b5:c2:86:84:38:10: 56:78:8e:2e:52:60:86:77:6c:73:7f:63:c8:75:08: b6:49:15:d4:6c:c2:6d:fe:02:b9:ab:07:b3:39:f1: c3:69:8d:8e:ac:3f:41:f4:ed:2e:1f:38:36:74:78: d6:96:73:70:6f:00:e6:48:a1:ee:98:7b:13:c3:da: c7:fd:ae:a5:72:eb:d2:20:c9:aa:45:5b:cb:87:80: a2:88:29:6d:72:6e:84:b2:bc:4d:74:46:d3:f3:e2: 5e:b8:6a:f9:b8:18:d2:72:c4:67:d2:66:ab:15:dc: 20:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E1:5B:C0:F1:9E:68:15:82:E8:F2:1F:9C:A9:3A:42:71:8D:8A:19 X509v3 Authority Key Identifier: keyid:55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.214.0/23 IPv6: 2001:df4:1d80::/48 Signature Algorithm: sha256WithRSAEncryption 97:38:45:09:39:5e:f3:2b:75:31:b6:d4:c9:fa:4a:7d:a1:47: 70:37:c3:3f:f6:db:aa:56:1b:e4:73:f5:79:dc:6b:5d:f2:83: ef:35:38:95:ff:61:4b:94:3f:5e:8d:82:cd:e5:d0:c4:5d:d7: 19:44:f3:8e:ad:02:7e:52:ef:ed:62:b3:77:28:78:b1:8e:65: 44:5b:2e:57:9b:72:2f:df:be:d0:08:5b:29:52:e0:fd:20:ae: a0:83:de:99:cb:13:5d:57:12:3b:7b:8f:2d:3d:4c:27:8a:51: 19:ca:f6:1b:bb:61:f0:8a:ec:8e:23:80:bf:48:fb:ad:69:7f: 7f:c3:06:09:47:ee:71:20:d7:95:c4:4a:c0:3b:67:7f:02:b1: ca:75:92:ac:ab:50:62:71:53:4a:de:a3:f7:5e:aa:00:dc:bb: 77:fc:af:0b:ac:6b:25:ce:a6:1f:4e:8f:44:bc:43:20:0b:45: 2b:81:9b:04:9e:63:69:b8:b0:99:75:56:e5:86:da:ed:b0:35: 1c:b3:9d:3d:f7:40:a2:93:4d:14:75:f1:03:17:ab:a4:37:bd: 44:ac:e7:e3:e2:0f:62:28:81:96:80:77:4b:9e:2e:3d:9b:6b: 84:16:7e:22:3a:21:c4:9b:ac:ae:96:e6:07:e4:9f:f0:c0:0d: 29:66:b6:59 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICByUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE0RDcxMTAvBgNVBAUTKDU1NkNBOEIwOTc0N0QwN0I2RjZBMjdBNDA1NTI4RDM5 RkE1QjgyNEMwHhcNMjMwNzAyMjEyNzMzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExZWJjNS1iOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf+qX47LBl8MVL8BYjX40+MlNQXUTmguoW9FcRhSbCp3ZLf8NfVsP3Cc5bj2 WT1+HeIvC0JHYAnkrk6iwz9cw64SPVEMyHj8y8c1jqaE7y9pUF9IT31e655+UPPG 3/0ZUB5h4wuO36Pdu3lP+TD0qK3bj4KdMmGXanKGmy6WyqiZoWkdBz3qQzmEiTjN NFa1woaEOBBWeI4uUmCGd2xzf2PIdQi2SRXUbMJt/gK5qwezOfHDaY2OrD9B9O0u Hzg2dHjWlnNwbwDmSKHumHsTw9rH/a6lcuvSIMmqRVvLh4CiiCltcm6EsrxNdEbT 8+JeuGr5uBjScsRn0marFdwg7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH7hW8Dx nmgVgujyH5ypOkJxjYoZMB8GA1UdIwQYMBaAFFVsqLCXR9B7b2onpAVSjTn6W4JM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTRENy9CRDBDMDNGMkJG NjcxMUVBQjNCQjE4MTVDNEY5QUUwMi9WV3lvc0pkSDBIdHZhaWVrQlZLTk9mcGJn a3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZXeW9zSmRIMEh0dmFpZWtCVktOT2ZwYmdrdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE0RDcvQkQwQzAzRjJCRjY3MTFFQUIzQkIxODE1QzRGOUFFMDIvM0MyNEQ0OTJC RjY5MTFFQUE4NzdCMzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmNYwDwQCAAIwCQMHACABDfQdgDANBgkqhkiG9w0BAQsF AAOCAQEAlzhFCTle8yt1MbbUyfpKfaFHcDfDP/bbqlYb5HP1edxrXfKD7zU4lf9h S5Q/Xo2CzeXQxF3XGUTzjq0CflLv7WKzdyh4sY5lRFsuV5tyL9++0AhbKVLg/SCu oIPemcsTXVcSO3uPLT1MJ4pRGcr2G7th8IrsjiOAv0j7rWl/f8MGCUfucSDXlcRK wDtnfwKxynWSrKtQYnFTSt6j916qANy7d/yvC6xrJc6mH06PRLxDIAtFK4GbBJ5j abiwmXVW5Yba7bA1HLOdPfdAopNNFHXxAxerpDe9RKzn4+IPYiiBloB3S54uPZtr hBZ+IjohxJusrpbmB+Sf8MANKWa2WQ== -----END CERTIFICATE-----Generated at Thu May 16 23:39:13 2024 by rpki-client on console-ams.rpki-client.org