$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa File: E072F73492DF11EE9803F859C4F9AE02.roa (raw, json) Hash identifier: AFnKyv13BwnIhnPbTpxnyVf7p3Hft3Ho64nrgxctp3w= Subject key identifier: 35:6A:F1:83:F3:75:1C:53:D1:EF:6B:79:26:2E:BD:CC:6F:0C:99:70 Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 05C1 Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa Signing time: Mon 04 Dec 2023 20:02:58 +0000 ROA not before: Mon 04 Dec 2023 20:02:58 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 40138 IP address blocks: 45.127.112.0/23 maxlen: 24 45.127.114.0/24 maxlen: 24 45.127.115.0/24 maxlen: 24 103.196.36.0/22 maxlen: 24 2402:e580::/32 maxlen: 48 2402:e580:40::/42 maxlen: 42 2402:e580:100::/40 maxlen: 40 2402:e580:200::/39 maxlen: 39 2402:e580:400::/38 maxlen: 38 2402:e580:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1473 (0x5c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Dec 4 20:02:58 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656e3072-cf64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:88:19:88:5b:2d:9e:8a:41:6d:38:db:b3:85: 11:31:1d:f7:9b:f3:92:ee:0a:e1:e1:48:62:04:0d: 38:2d:2f:7a:67:12:7c:3a:24:7c:83:86:33:66:5d: 3d:d3:7e:ac:50:1d:1e:2c:ba:81:b9:3f:82:a5:72: 72:79:50:c4:f4:5e:3d:91:57:5b:b8:d2:d5:e2:3a: e0:7e:b1:4a:9a:d6:f3:47:84:15:cd:d1:87:12:4f: a1:bd:7f:83:65:78:9a:42:91:73:76:48:86:12:74: 1e:0f:89:31:b1:a8:8d:b0:92:c6:58:9a:72:6a:ce: 3a:ee:9d:69:07:a2:c4:4f:b0:02:e1:c4:36:2c:18: 8c:03:d7:7c:97:52:0c:d8:eb:0b:71:ec:82:09:13: 66:22:51:1b:52:90:b6:64:31:4a:6d:65:b1:1b:65: 7c:cf:6b:64:de:54:8d:be:2d:31:bc:1b:b9:81:2a: bd:85:48:79:4f:54:fc:4b:ee:40:df:f9:74:3a:07: 81:05:ef:d2:d0:3c:57:71:40:7f:b6:a5:7d:90:13: dd:19:07:fa:a1:7e:cb:46:c7:e0:51:d3:9e:ed:f0: ca:ae:84:56:ff:90:cb:01:2a:f3:26:a2:e9:c5:0b: bd:93:0c:3b:64:fd:5e:b9:83:34:b8:37:62:19:3d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6A:F1:83:F3:75:1C:53:D1:EF:6B:79:26:2E:BD:CC:6F:0C:99:70 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.112.0/22 103.196.36.0/22 IPv6: 2402:e580::/32 Signature Algorithm: sha256WithRSAEncryption 6f:47:6a:47:b2:af:32:06:8f:0a:ac:c2:20:5b:2b:d7:e7:3a: 0f:06:e0:a2:e7:de:01:fa:82:f6:02:3b:7d:13:1a:0a:7c:72: 9d:2d:6e:bd:2a:84:29:d1:a0:47:0a:b1:86:77:1f:69:61:17: 9c:78:40:ec:59:d8:f7:60:e6:36:d5:27:4f:81:49:75:64:80: a2:06:ca:f3:d1:32:fa:14:6a:b3:4e:0a:56:af:32:07:aa:e2: 3e:20:58:a2:42:6f:c7:77:86:ef:eb:ab:7a:72:5d:01:8d:db: 80:e6:fe:14:e9:eb:83:60:b6:d2:b3:da:dd:6d:4e:70:6a:21: 79:8f:47:1d:61:9e:69:e4:07:99:de:cf:85:35:2d:61:d9:e8: 4f:63:13:93:09:77:99:90:ea:a9:e0:11:c8:9b:90:e9:0c:c0: 3b:91:db:af:6f:5f:0b:df:39:a5:62:99:de:3b:cc:85:64:48: 28:08:35:29:5c:5c:d1:f4:4d:b3:85:ed:8f:71:a7:06:d0:6f: fa:b4:a0:c0:d3:98:97:8d:43:b7:34:f8:93:e2:d8:64:9d:42: 4b:06:71:45:8c:28:5c:d8:8d:cb:16:ac:5a:a4:72:38:4a:ed: f4:83:5c:e8:90:48:b5:cb:be:b5:ce:c9:97:ea:54:83:63:db: 6e:1d:3f:61 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjMxMjA0MjAwMjU4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMzA3Mi1jZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IgZiFstnopBbTjbs4URMR33m/OS7grh4UhiBA04LS96ZxJ8OiR8g4YzZl09 036sUB0eLLqBuT+CpXJyeVDE9F49kVdbuNLV4jrgfrFKmtbzR4QVzdGHEk+hvX+D ZXiaQpFzdkiGEnQeD4kxsaiNsJLGWJpyas467p1pB6LET7AC4cQ2LBiMA9d8l1IM 2OsLceyCCRNmIlEbUpC2ZDFKbWWxG2V8z2tk3lSNvi0xvBu5gSq9hUh5T1T8S+5A 3/l0OgeBBe/S0DxXcUB/tqV9kBPdGQf6oX7LRsfgUdOe7fDKroRW/5DLASrzJqLp xQu9kww7ZP1euYM0uDdiGT1Y3QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDVq8YPz dRxT0e9reSYuvcxvDJlwMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyNUMvQUMwNTU4MjY1RTI1MTFFQkFCMjk4OTJBQzRGOUFFMDIvRTA3MkY3MzQ5 MkRGMTFFRTk4MDNGODU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItf3ADBAJnxCQwDQQCAAIwBwMFACQC5YAwDQYJKoZIhvcN AQELBQADggEBAG9HakeyrzIGjwqswiBbK9fnOg8G4KLn3gH6gvYCO30TGgp8cp0t br0qhCnRoEcKsYZ3H2lhF5x4QOxZ2Pdg5jbVJ0+BSXVkgKIGyvPRMvoUarNOClav Mgeq4j4gWKJCb8d3hu/rq3pyXQGN24Dm/hTp64NgttKz2t1tTnBqIXmPRx1hnmnk B5nez4U1LWHZ6E9jE5MJd5mQ6qngEcibkOkMwDuR269vXwvfOaVimd47zIVkSCgI NSlcXNH0TbOF7Y9xpwbQb/q0oMDTmJeNQ7c0+JPi2GSdQksGcUWMKFzYjcsWrFqk cjhK7fSDXOiQSLXLvrXOyZfqVINj224dP2E= -----END CERTIFICATE-----Generated at Sat May 11 01:30:06 2024 by rpki-client on console-ams.rpki-client.org