$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3A671478DAFC11EEBFDF493AC4F9AE02.roa File: 3A671478DAFC11EEBFDF493AC4F9AE02.roa (raw, json) Hash identifier: kDKzwOwFlj7vNSrUD43mLVG5/+/WH7tzcrIxoiLmM7A= Subject key identifier: 23:30:B9:96:A5:61:B2:5F:AD:43:B4:FD:C6:19:F6:C0:76:CB:6E:F6 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 0340 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3A671478DAFC11EEBFDF493AC4F9AE02.roa Signing time: Tue 05 Mar 2024 14:25:34 +0000 ROA not before: Tue 05 Mar 2024 14:25:34 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 22773 IP address blocks: 113.20.40.0/22 maxlen: 22 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 113.20.56.0/22 maxlen: 22 113.20.60.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 832 (0x340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Mar 5 14:25:34 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65e72b5e-3679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:68:04:b3:6d:d7:4e:09:61:cf:eb:e9:98:7c: dd:10:dc:5e:98:11:26:b9:1a:ad:60:58:ed:11:dd: 8d:0d:30:9b:35:d9:94:0f:8a:fb:24:04:88:15:37: 87:5c:2a:a3:48:f3:6c:33:1e:53:af:7e:d7:73:46: f3:e3:03:13:a6:fb:2e:2c:8c:e8:6f:4a:ba:e2:93: 59:f4:79:94:1b:a1:ff:ec:56:84:88:e8:9e:83:ef: 24:86:d8:f6:4b:b7:f6:9c:b5:37:a7:15:12:c3:f6: fc:23:6b:cc:fc:87:f4:50:28:27:6d:48:13:35:d4: 6f:67:12:3e:93:93:70:e8:3e:de:07:ec:b3:77:5b: 2c:db:3b:26:ce:c5:7c:8d:5f:d5:16:92:f0:b9:ab: d6:d4:35:ca:8a:39:8e:b8:d3:b9:47:b9:5f:de:20: 3c:5d:1b:c6:3e:7b:28:56:d0:ca:c1:f6:f6:b4:0d: 99:1b:e7:91:9f:33:7e:b1:26:a3:4d:96:ca:c9:30: 36:d3:90:32:15:7b:90:b6:fd:f9:fa:98:1c:5b:04: 53:80:96:36:2a:bf:cb:49:10:b0:4b:58:04:85:ba: 1f:6c:ef:6e:34:c4:68:93:d2:a5:61:28:b4:8f:5f: 02:cb:35:31:a8:48:a3:2e:90:5a:1c:32:73:48:58: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:30:B9:96:A5:61:B2:5F:AD:43:B4:FD:C6:19:F6:C0:76:CB:6E:F6 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3A671478DAFC11EEBFDF493AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.40.0/22 113.20.48.0/20 223.29.128.0/22 223.29.136.0-223.29.159.255 Signature Algorithm: sha256WithRSAEncryption 9e:15:08:4a:8a:04:80:a8:73:e9:3d:75:ee:da:0d:16:ea:7f: 00:34:23:77:59:94:ea:f4:cc:dd:1b:fa:08:37:80:4d:80:0a: 98:bb:d1:6e:11:ca:4b:73:7a:20:67:24:27:fc:4e:8d:04:ab: d0:9b:c8:1a:b7:0c:cd:47:74:54:03:aa:0e:8d:a3:2f:9b:67: 4b:65:a4:b3:5a:b8:01:bf:20:eb:b1:59:94:13:80:16:85:9d: 8e:a1:01:7b:df:ac:b2:eb:80:78:81:9a:1a:32:bc:71:36:65: 28:c6:7a:6f:e8:06:44:0e:90:67:c9:b0:f0:ed:de:f8:fb:9a: ee:e4:21:22:62:e0:9e:5f:d3:10:0a:50:fd:2d:7e:9b:e9:92: 3c:6e:77:11:6a:3d:53:bd:72:4d:33:7b:41:60:d3:c7:25:ed: 7e:e3:fe:a2:7a:bc:ab:2f:39:70:05:8d:51:87:a7:2a:c2:67: e7:cd:f3:c9:3f:26:b1:08:09:15:cd:45:48:6a:52:3b:24:68: 8b:c4:b3:63:75:2c:6b:d7:9a:64:a1:fa:17:36:47:40:1a:9d: 53:19:fa:62:c5:51:0e:56:1d:85:d1:d7:2d:2d:3b:7f:15:1e: 77:f8:06:a7:f3:8c:b5:41:36:d3:f2:41:97:b9:42:80:1f:d3: f0:59:87:e0 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjQwMzA1MTQyNTM0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU3MmI1ZS0zNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mgEs23XTglhz+vpmHzdENxemBEmuRqtYFjtEd2NDTCbNdmUD4r7JASIFTeH XCqjSPNsMx5Tr37Xc0bz4wMTpvsuLIzob0q64pNZ9HmUG6H/7FaEiOieg+8khtj2 S7f2nLU3pxUSw/b8I2vM/If0UCgnbUgTNdRvZxI+k5Nw6D7eB+yzd1ss2zsmzsV8 jV/VFpLwuavW1DXKijmOuNO5R7lf3iA8XRvGPnsoVtDKwfb2tA2ZG+eRnzN+sSaj TZbKyTA205AyFXuQtv35+pgcWwRTgJY2Kr/LSRCwS1gEhbofbO9uNMRok9KlYSi0 j18CyzUxqEijLpBaHDJzSFiFiwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCMwuZal YbJfrUO0/cYZ9sB2y272MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvM0E2NzE0NzhE QUZDMTFFRUJGREY0OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAJxFCgDBARxFDADBALfHYAwDAMEA98diAMEBd8dgDANBgkq hkiG9w0BAQsFAAOCAQEAnhUISooEgKhz6T117toNFup/ADQjd1mU6vTM3Rv6CDeA TYAKmLvRbhHKS3N6IGckJ/xOjQSr0JvIGrcMzUd0VAOqDo2jL5tnS2Wks1q4Ab8g 67FZlBOAFoWdjqEBe9+ssuuAeIGaGjK8cTZlKMZ6b+gGRA6QZ8mw8O3e+Pua7uQh ImLgnl/TEApQ/S1+m+mSPG53EWo9U71yTTN7QWDTxyXtfuP+onq8qy85cAWNUYen KsJn583zyT8msQgJFc1FSGpSOyRoi8SzY3Usa9eaZKH6FzZHQBqdUxn6YsVRDlYd hdHXLS07fxUed/gGp/OMtUE20/JBl7lCgB/T8FmH4A== -----END CERTIFICATE-----Generated at Fri May 3 04:45:09 2024 by rpki-client on console-fra.rpki-client.org