$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa File: 5042F2F6ED2D11EE83179F16C4F9AE02.roa (raw, json) Hash identifier: yZVScSohj2jMaP8KjAZCcbUpwfU48CmoKpdYpULvFnw= Subject key identifier: 7A:98:D3:EA:DD:E3:D2:D5:98:E8:47:CF:11:88:0A:09:52:E0:65:53 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 0380 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:09:16 +0000 ROA not before: Thu 28 Mar 2024 18:09:16 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 399989 IP address blocks: 113.20.40.0/22 maxlen: 22 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 113.20.56.0/22 maxlen: 22 113.20.60.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.132.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Mar 28 18:09:16 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6605b24c-e002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:75:22:fd:0f:ad:d6:52:0b:62:af:b6:da:23: 4f:80:b2:8f:b8:32:72:1f:f0:c8:b5:06:02:7a:2c: 5b:a6:f8:48:42:d3:4b:df:b4:82:a4:7e:83:68:71: 52:96:8e:05:ae:cf:f8:bd:97:15:40:86:68:c0:41: f9:85:c9:2e:eb:1b:70:65:5f:5c:15:16:78:59:d8: 13:14:86:4e:d0:a1:6c:e4:18:2f:b4:48:07:7d:1f: 7e:72:b3:cc:a6:fc:66:55:c8:5c:29:2e:90:ad:7d: a3:3c:bf:07:80:e5:86:73:26:51:c3:71:50:4b:38: c1:71:79:06:a1:a4:cd:37:53:64:50:f0:e1:0a:ee: 00:c1:66:57:aa:3c:03:13:64:79:58:b6:93:0c:23: 81:c3:bf:21:84:7c:d8:fa:2e:6e:42:4e:f1:7c:f2: 62:6f:6b:32:eb:47:a4:56:82:b6:94:61:de:61:e1: 9d:84:18:f2:6e:82:86:eb:a0:a1:ce:34:8f:da:6f: e7:74:ea:01:d4:e2:2d:de:e7:6b:6e:77:3e:91:83: 6e:fd:86:87:0b:8d:32:fe:be:1f:1b:64:e1:95:88: fa:44:0c:0d:a8:ba:09:e2:f8:89:96:79:74:f3:b3: 8b:d4:30:f5:3b:f5:f1:5b:66:43:fd:65:62:84:1e: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:98:D3:EA:DD:E3:D2:D5:98:E8:47:CF:11:88:0A:09:52:E0:65:53 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.40.0/22 113.20.48.0/20 223.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption 26:24:31:78:4f:19:a7:57:22:ad:5f:a5:9a:9d:85:c9:38:76: d6:f7:4e:08:3e:21:5b:0c:ad:04:bf:e2:74:cd:b5:73:89:0d: c0:a8:c5:52:1e:85:aa:0b:5e:c6:c1:54:36:69:46:4b:0b:66: f4:f1:9e:ad:7c:68:f7:13:bb:8e:18:30:3c:d2:5c:4a:c1:55: 2f:42:ed:ed:01:17:62:35:e7:4d:a2:3d:44:83:e0:58:a8:c9: 97:f4:ed:02:cc:ea:41:d0:1c:eb:6a:3f:16:57:ad:58:91:e6: 91:5f:69:0a:a0:e0:f2:5a:43:9c:88:a2:86:07:da:74:d2:6c: c5:99:fa:1c:ff:74:14:33:49:86:7c:29:5d:de:90:1c:3f:ed: b3:92:51:12:dc:25:af:43:5a:c4:5a:c9:83:64:20:f5:d7:e3: 1c:91:d0:42:cf:71:96:aa:50:7a:1e:29:a5:52:bf:a0:25:aa: e8:89:bd:76:22:33:ab:40:d1:98:ac:2a:7c:7e:37:9c:f0:6e: 67:9f:8e:32:86:b1:d2:55:cb:e4:ba:a8:97:28:73:69:0f:da: 08:3b:79:a9:b6:8c:b3:7b:24:16:b5:c9:66:47:ae:49:96:7f: 27:88:ce:e9:ea:e7:c9:15:15:ad:9f:eb:16:56:59:d3:ea:c8: 82:6f:56:c3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjQwMzI4MTgwOTE2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjI0Yy1lMDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnUi/Q+t1lILYq+22iNPgLKPuDJyH/DItQYCeixbpvhIQtNL37SCpH6DaHFS lo4Frs/4vZcVQIZowEH5hcku6xtwZV9cFRZ4WdgTFIZO0KFs5BgvtEgHfR9+crPM pvxmVchcKS6QrX2jPL8HgOWGcyZRw3FQSzjBcXkGoaTNN1NkUPDhCu4AwWZXqjwD E2R5WLaTDCOBw78hhHzY+i5uQk7xfPJib2sy60ekVoK2lGHeYeGdhBjyboKG66Ch zjSP2m/ndOoB1OIt3udrbnc+kYNu/YaHC40y/r4fG2ThlYj6RAwNqLoJ4viJlnl0 87OL1DD1O/XxW2ZD/WVihB6aiwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHqY0+rd 49LVmOhHzxGICglS4GVTMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNTA0MkYyRjZF RDJEMTFFRTgzMTc5RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJxFCgDBARxFDADBAXfHYAwDQYJKoZIhvcNAQELBQADggEB ACYkMXhPGadXIq1fpZqdhck4dtb3Tgg+IVsMrQS/4nTNtXOJDcCoxVIehaoLXsbB VDZpRksLZvTxnq18aPcTu44YMDzSXErBVS9C7e0BF2I1502iPUSD4FioyZf07QLM 6kHQHOtqPxZXrViR5pFfaQqg4PJaQ5yIooYH2nTSbMWZ+hz/dBQzSYZ8KV3ekBw/ 7bOSURLcJa9DWsRayYNkIPXX4xyR0ELPcZaqUHoeKaVSv6AlquiJvXYiM6tA0Zis Knx+N5zwbmefjjKGsdJVy+S6qJcoc2kP2gg7eam2jLN7JBa1yWZHrkmWfyeIzunq 58kVFa2f6xZWWdPqyIJvVsM= -----END CERTIFICATE-----Generated at Fri May 3 04:45:09 2024 by rpki-client on console-fra.rpki-client.org