$ rpki-client -vvf rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/A74A1698590A11EB9ECF402AC4F9AE02.roa File: A74A1698590A11EB9ECF402AC4F9AE02.roa (raw, json) Hash identifier: qKOzY5mauyFXx10LUEV+kdRrJgbQIUGf6+cUAgwV81c= Subject key identifier: 0F:6B:88:66:93:25:F9:63:0E:CA:A1:4B:DA:AF:B3:31:F7:D7:E5:7C Certificate issuer: /CN=A913AFD2/serialNumber=B8324B42FBC5F2139D7901E417DE21039B2525DC Certificate serial: 057B Authority key identifier: B8:32:4B:42:FB:C5:F2:13:9D:79:01:E4:17:DE:21:03:9B:25:25:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDJLQvvF8hOdeQHkF94hA5slJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/A74A1698590A11EB9ECF402AC4F9AE02.roa Signing time: Fri 04 Aug 2023 23:20:22 +0000 ROA not before: Fri 04 Aug 2023 23:20:22 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55561 IP address blocks: 27.111.13.0/24 maxlen: 24 27.111.14.0/24 maxlen: 24 103.19.10.0/23 maxlen: 23 103.29.30.0/23 maxlen: 23 163.47.228.0/23 maxlen: 23 163.47.230.0/24 maxlen: 24 2401:1300::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/uDJLQvvF8hOdeQHkF94hA5slJdw.crl rsync://rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/uDJLQvvF8hOdeQHkF94hA5slJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDJLQvvF8hOdeQHkF94hA5slJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AFD2/serialNumber=B8324B42FBC5F2139D7901E417DE21039B2525DC Validity Not Before: Aug 4 23:20:22 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd87b6-0d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:41:8e:99:35:7e:16:7f:5b:bd:7f:74:5b:e0: 36:cf:d5:d8:b9:24:7a:7c:f6:37:d1:f1:39:63:ad: 75:22:f6:57:63:ba:0f:2b:b5:9c:03:15:49:ab:31: fa:22:41:4e:2e:38:68:8f:f0:06:51:16:52:f0:d1: 1d:5f:ab:a5:ca:26:72:ea:79:5d:8c:fa:55:ce:29: 37:5d:c5:ed:67:47:ad:8c:88:c0:e0:5d:e8:02:58: 42:b7:09:10:43:dd:bc:a1:9c:69:e5:65:6e:22:85: c2:1b:c4:f1:5f:a9:25:4d:42:34:46:7d:27:4a:2d: d1:91:58:fa:d3:6d:18:d8:dd:e6:67:5d:5f:ed:2f: c8:9f:c4:41:b6:24:54:1b:0c:f1:7a:b1:0d:6f:1f: c1:6b:54:1e:b4:9a:3c:36:64:6b:4d:a2:43:d3:2f: d9:ec:5c:03:86:ac:cd:ce:81:99:0b:fc:26:56:49: 23:eb:1f:fe:67:e9:a1:3f:84:0d:83:e9:6d:a3:43: c7:53:82:9a:f6:5a:0a:ea:e1:9f:dd:81:4e:5d:14: f5:6b:03:e0:bc:b6:d9:d6:5a:a7:47:23:b4:06:9e: e4:0d:cf:e5:60:bb:7f:ba:80:81:b5:9f:fa:ea:dd: b5:19:ac:f1:8c:3a:77:23:fc:26:98:9f:58:c2:af: 5a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6B:88:66:93:25:F9:63:0E:CA:A1:4B:DA:AF:B3:31:F7:D7:E5:7C X509v3 Authority Key Identifier: keyid:B8:32:4B:42:FB:C5:F2:13:9D:79:01:E4:17:DE:21:03:9B:25:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/uDJLQvvF8hOdeQHkF94hA5slJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDJLQvvF8hOdeQHkF94hA5slJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AFD2/BB01A792590911EBA69D202AC4F9AE02/A74A1698590A11EB9ECF402AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.13.0-27.111.14.255 103.19.10.0/23 103.29.30.0/23 163.47.228.0-163.47.230.255 IPv6: 2401:1300::/32 Signature Algorithm: sha256WithRSAEncryption 7a:6f:78:ac:ee:02:2f:f1:c2:e7:60:0e:e5:11:22:4c:ae:0a: ce:73:93:5e:b0:d9:9e:3a:95:f3:21:4a:f8:1a:34:5e:9c:ed: ad:19:b3:f7:a6:b7:08:fb:fd:98:04:21:b9:c7:08:92:88:31: 20:41:86:38:0e:61:8f:da:7f:a3:7f:f4:e8:de:d4:22:ec:a9: 38:e9:6b:7a:e5:ab:52:08:8d:4e:38:10:46:dd:b1:d6:2d:8e: 1a:4f:d3:ba:df:98:5b:a5:9a:99:5f:5f:20:e5:8a:c1:64:32: ae:5f:2c:bc:11:19:1e:bd:1e:0e:10:c2:ab:72:08:f5:43:8d: 2b:57:87:90:f7:e5:e7:52:99:11:5f:eb:7c:57:5f:ba:ab:c3: 2c:9d:2b:30:55:4e:0e:10:86:e2:04:dc:05:fa:58:b7:01:aa: 83:ff:b8:6e:f6:a6:f4:92:ec:d2:40:1d:21:d1:64:8e:86:2a: 05:e0:38:ad:ec:f9:69:9d:4a:78:30:ca:30:6c:4b:53:4e:6c: ae:23:5f:11:bf:b6:99:07:97:63:ba:ef:86:96:21:8c:ec:83: 6e:3a:68:9b:17:f8:3e:16:68:96:29:d0:60:ef:c0:70:16:02: c9:59:54:f8:17:12:ed:2b:49:24:0d:86:53:86:f8:73:d5:10: 76:4d:86:2a -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGRDIxMTAvBgNVBAUTKEI4MzI0QjQyRkJDNUYyMTM5RDc5MDFFNDE3REUyMTAz OUIyNTI1REMwHhcNMjMwODA0MjMyMDIyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkODdiNi0wZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEGOmTV+Fn9bvX90W+A2z9XYuSR6fPY30fE5Y611IvZXY7oPK7WcAxVJqzH6 IkFOLjhoj/AGURZS8NEdX6ulyiZy6nldjPpVzik3XcXtZ0etjIjA4F3oAlhCtwkQ Q928oZxp5WVuIoXCG8TxX6klTUI0Rn0nSi3RkVj6020Y2N3mZ11f7S/In8RBtiRU GwzxerENbx/Ba1QetJo8NmRrTaJD0y/Z7FwDhqzNzoGZC/wmVkkj6x/+Z+mhP4QN g+lto0PHU4Ka9loK6uGf3YFOXRT1awPgvLbZ1lqnRyO0Bp7kDc/lYLt/uoCBtZ/6 6t21GazxjDp3I/wmmJ9Ywq9aEwIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFA9riGaT JfljDsqhS9qvszH31+V8MB8GA1UdIwQYMBaAFLgyS0L7xfITnXkB5BfeIQObJSXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUZEMi9CQjAxQTc5MjU5 MDkxMUVCQTY5RDIwMkFDNEY5QUUwMi91REpMUXZ2RjhoT2RlUUhrRjk0aEE1c2xK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VESkxRdnZGOGhPZGVRSGtGOTRoQTVzbEpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FGRDIvQkIwMUE3OTI1OTA5MTFFQkE2OUQyMDJBQzRGOUFFMDIvQTc0QTE2OTg1 OTBBMTFFQjlFQ0Y0MDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MC4EAgABMCgwDAMEABtvDQMEABtvDgMEAWcTCgMEAWcdHjAMAwQCoy/kAwQA oy/mMA0EAgACMAcDBQAkARMAMA0GCSqGSIb3DQEBCwUAA4IBAQB6b3is7gIv8cLn YA7lESJMrgrOc5NesNmeOpXzIUr4GjRenO2tGbP3prcI+/2YBCG5xwiSiDEgQYY4 DmGP2n+jf/To3tQi7Kk46Wt65atSCI1OOBBG3bHWLY4aT9O635hbpZqZX18g5YrB ZDKuXyy8ERkevR4OEMKrcgj1Q40rV4eQ9+XnUpkRX+t8V1+6q8MsnSswVU4OEIbi BNwF+li3AaqD/7hu9qb0kuzSQB0h0WSOhioF4Dit7PlpnUp4MMowbEtTTmyuI18R v7aZB5djuu+GliGM7INuOmibF/g+FmiWKdBg78BwFgLJWVT4FxLtK0kkDYZThvhz 1RB2TYYq -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org