$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5B4E0C704BEE11EEA17CCC80C4F9AE02.roa File: 5B4E0C704BEE11EEA17CCC80C4F9AE02.roa (raw, json) Hash identifier: CAts85iHRffxCf3WM1qvE8a9yp+TBHN7D6l1WhxpAYY= Subject key identifier: 87:22:8F:BF:68:9D:B1:49:DD:44:83:AE:D5:F6:F8:4E:8C:07:E8:C6 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 05B9 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5B4E0C704BEE11EEA17CCC80C4F9AE02.roa Signing time: Sat 23 Mar 2024 15:29:47 +0000 ROA not before: Sat 23 Mar 2024 15:29:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 932 IP address blocks: 43.247.134.0/23 maxlen: 24 103.30.76.0/22 maxlen: 24 2401:2660:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Mar 23 15:29:47 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65fef56b-591b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4d:8c:52:80:88:33:c1:e0:1f:d5:a2:8b:a2: aa:3f:d1:72:ff:9a:92:a2:f3:d3:d6:56:9c:f9:46: e4:3f:9d:84:63:b4:35:7b:b4:26:64:8c:4a:f9:c1: bf:40:8e:0f:6a:b9:00:d0:1d:9a:17:d2:f8:11:41: 65:60:fe:52:73:8f:cd:05:73:16:81:de:9d:d2:fc: dd:26:5a:e0:60:a9:b1:1c:9c:92:09:92:4b:bc:69: ee:14:12:bf:65:c1:ab:12:f5:e1:4f:58:11:d8:f0: a0:5e:1a:50:3b:2a:57:32:7b:f4:08:c8:cb:bd:49: bd:a6:c6:a4:c5:4f:3d:2e:c9:5e:e6:e1:bc:30:16: ae:89:c8:2b:44:df:59:77:26:93:71:96:cf:98:ed: 5a:09:a8:cc:2c:c6:8d:8f:37:7f:27:71:bf:73:bb: fb:52:ba:ee:33:0b:03:62:78:47:36:44:97:fc:e0: e2:22:7b:6d:37:e3:05:80:fd:b0:e2:cc:0a:ff:c7: 96:7c:0b:3e:50:ce:c6:11:07:eb:60:d9:28:6a:74: 17:a7:87:6b:2b:e3:71:c2:39:8a:8a:62:1f:85:d5: aa:4c:03:14:67:4c:b4:b6:a3:e6:31:9f:02:14:66: 9d:85:e2:24:b8:44:5a:86:90:8c:f7:67:fa:82:86: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:22:8F:BF:68:9D:B1:49:DD:44:83:AE:D5:F6:F8:4E:8C:07:E8:C6 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5B4E0C704BEE11EEA17CCC80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.134.0/23 103.30.76.0/22 IPv6: 2401:2660:1000::/36 Signature Algorithm: sha256WithRSAEncryption 01:13:17:6e:ce:0c:c5:97:3f:67:54:f8:df:15:69:0d:20:8d: bd:a1:b5:95:f9:7a:ba:38:0f:a8:46:3b:80:18:fd:ea:42:30: 4f:05:c0:cb:87:59:a8:f8:13:69:70:21:8a:b4:77:67:2d:d2: 4b:b4:33:e6:c3:76:30:c9:43:64:57:10:a1:a9:69:72:aa:48: e5:68:8c:72:3a:fd:76:53:de:de:1c:30:8b:39:81:37:b5:7a: 4c:a4:e4:ae:65:7b:c9:5a:f7:d3:43:bc:2b:45:fe:dd:b5:d2: c5:a1:9b:0e:15:e7:04:c6:d0:5c:60:d8:9a:e7:83:66:58:52: 7d:96:07:b1:05:97:07:98:91:0c:46:ae:ff:9b:1b:9d:1d:d8: 19:7f:f3:e9:31:64:e5:63:d0:00:2c:40:1c:01:c2:06:66:f6: 30:6f:ba:11:1d:c8:04:b1:4c:38:35:44:ee:49:cb:0c:80:bb: 80:4f:a4:65:3a:26:e7:9a:19:a4:12:3f:87:97:10:2b:99:c8: 2f:8a:d5:a7:51:92:20:9b:e6:3a:39:9f:57:35:a4:47:73:50: ee:26:e1:84:97:bf:1b:5f:e9:7c:14:cf:a3:28:d3:da:f3:43: cb:65:f0:b5:43:ee:2f:83:cd:0d:bc:03:92:55:36:a9:57:3e: ff:f6:78:6d -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwMzIzMTUyOTQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlZjU2Yi01OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyk2MUoCIM8HgH9Wii6KqP9Fy/5qSovPT1lac+UbkP52EY7Q1e7QmZIxK+cG/ QI4ParkA0B2aF9L4EUFlYP5Sc4/NBXMWgd6d0vzdJlrgYKmxHJySCZJLvGnuFBK/ ZcGrEvXhT1gR2PCgXhpQOypXMnv0CMjLvUm9psakxU89Lsle5uG8MBauicgrRN9Z dyaTcZbPmO1aCajMLMaNjzd/J3G/c7v7UrruMwsDYnhHNkSX/ODiInttN+MFgP2w 4swK/8eWfAs+UM7GEQfrYNkoanQXp4drK+NxwjmKimIfhdWqTAMUZ0y0tqPmMZ8C FGadheIkuERahpCM92f6goZm/wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFIcij79o nbFJ3USDrtX2+E6MB+jGMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvNUI0RTBDNzA0 QkVFMTFFRUExN0NDQzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAEr94YDBAJnHkwwDgQCAAIwCAMGBCQBJmAQMA0GCSqGSIb3 DQEBCwUAA4IBAQABExduzgzFlz9nVPjfFWkNII29obWV+Xq6OA+oRjuAGP3qQjBP BcDLh1mo+BNpcCGKtHdnLdJLtDPmw3YwyUNkVxChqWlyqkjlaIxyOv12U97eHDCL OYE3tXpMpOSuZXvJWvfTQ7wrRf7dtdLFoZsOFecExtBcYNia54NmWFJ9lgexBZcH mJEMRq7/mxudHdgZf/PpMWTlY9AALEAcAcIGZvYwb7oRHcgEsUw4NUTuScsMgLuA T6RlOibnmhmkEj+HlxArmcgvitWnUZIgm+Y6OZ9XNaRHc1DuJuGEl78bX+l8FM+j KNPa80PLZfC1Q+4vg80NvAOSVTapVz7/9nht -----END CERTIFICATE-----Generated at Wed May 29 06:12:08 2024 by rpki-client on console-ams.rpki-client.org