$ rpki-client -vvf rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa File: 7C66BF543BD011ECBCB98F83C4F9AE02.roa (raw, json) Hash identifier: GKYpJcghenSMQN7pJEeqLaKYIW8T2dskEQg24LVOg+Y= Subject key identifier: 56:92:04:43:43:62:E8:17:88:93:1A:02:E5:50:E6:6A:B6:B8:71:62 Certificate issuer: /CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Certificate serial: 02C6 Authority key identifier: 8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa Signing time: Mon 05 Dec 2022 03:32:44 +0000 ROA not before: Mon 05 Dec 2022 03:32:44 +0000 ROA not after: Fri 01 Mar 2024 00:00:00 +0000 asID: 399955 IP address blocks: 43.251.224.0/22 maxlen: 24 103.43.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 May 2023 04:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 710 (0x2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Validity Not Before: Dec 5 03:32:44 2022 GMT Not After : Mar 1 00:00:00 2024 GMT Subject: CN=638d665c-4cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bc:53:81:c7:12:c9:de:0f:7c:b9:38:27:2a: d0:c1:38:b9:11:ea:13:d8:74:ed:18:4f:ef:f9:39: a8:4d:63:2d:5f:09:62:4f:3c:ea:c4:73:51:75:2b: ec:7c:54:3f:47:7c:05:40:12:e2:71:f6:c8:dc:3d: a0:d3:dc:d1:f2:d0:26:63:7d:05:77:ba:9c:56:b9: 8f:28:6c:d9:21:4c:33:89:44:29:5d:12:75:82:f8: f8:fd:7c:a5:3e:fb:a5:37:e7:40:e7:cd:7f:74:e5: 1b:fa:13:c8:24:b2:9f:69:7f:21:02:f9:6c:56:37: ad:0e:79:ab:e7:0f:53:3b:65:1b:9d:0e:44:e2:78: f5:87:fa:d0:4d:1a:29:a7:4a:14:24:73:93:17:88: 9c:50:87:cd:ac:56:78:e7:40:ef:d2:35:8d:34:8f: 5e:73:e3:2e:59:dd:f3:74:d5:97:8e:ac:8b:02:8b: e4:19:0e:eb:bf:89:7d:a7:bb:80:a9:a2:cd:82:df: 88:51:36:27:42:d3:43:d7:23:05:ba:76:66:7d:e1: 3d:3e:e5:f0:93:c7:c4:83:9b:b0:b2:09:37:9a:a9: a9:ed:00:88:83:cc:a9:61:8f:57:ad:02:1f:70:86: 6c:38:ee:b1:3a:82:a1:48:55:3f:3d:5c:dc:8b:7c: 7f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:92:04:43:43:62:E8:17:88:93:1A:02:E5:50:E6:6A:B6:B8:71:62 X509v3 Authority Key Identifier: keyid:8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.224.0/22 103.43.8.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:e7:71:4e:0c:3d:03:11:c8:0e:cc:9e:20:7c:91:5b:b1:50: 79:bf:5b:87:74:b2:eb:f3:54:16:3a:bc:d6:b4:45:26:29:cc: 9e:94:ba:4a:d4:70:1a:da:0f:13:98:d4:13:81:4f:b8:03:53: 81:db:fa:3b:52:6d:c0:b0:91:d5:81:18:42:4d:4e:b4:73:75: 03:d6:79:07:97:db:b0:1d:3e:bc:50:36:e3:cd:73:a5:fe:53: 79:8f:47:2f:73:ae:9d:b5:b8:9e:31:cf:7e:fc:c8:ab:cb:f3: 2e:1f:7e:cf:66:10:2d:04:5b:37:34:5f:13:9a:4a:34:a7:a8: 63:11:d7:c2:3f:af:f3:fe:04:17:47:aa:da:c5:52:07:e4:bf: a8:b1:83:34:f6:0a:0c:09:61:f8:87:c6:24:34:01:f9:ec:1f: 54:7f:13:6b:60:4c:4b:b9:c0:2f:b7:c3:82:7c:9a:bb:24:39: 46:9f:bb:a7:59:4c:f4:25:b4:16:fb:37:d3:8d:e7:ff:5f:a2: b7:5d:5b:52:af:bf:d2:10:3b:28:42:7e:57:9c:59:9b:26:56: 7e:21:6f:da:93:b7:34:6b:64:49:7e:a9:63:f1:7e:b9:2f:5b: a4:c1:bf:e5:84:23:40:c7:04:fe:9b:19:cd:d5:b0:96:f0:e3: 72:09:3e:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MEQxMTAvBgNVBAUTKDhDMzgxNDcyM0ZDNzU1RTlBOUJBMUJDMzM1NjY0QTUx OUJCQzFDRUUwHhcNMjIxMjA1MDMzMjQ0WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzhkNjY1Yy00Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7xTgccSyd4PfLk4JyrQwTi5EeoT2HTtGE/v+TmoTWMtXwliTzzqxHNRdSvs fFQ/R3wFQBLicfbI3D2g09zR8tAmY30Fd7qcVrmPKGzZIUwziUQpXRJ1gvj4/Xyl PvulN+dA581/dOUb+hPIJLKfaX8hAvlsVjetDnmr5w9TO2UbnQ5E4nj1h/rQTRop p0oUJHOTF4icUIfNrFZ450Dv0jWNNI9ec+MuWd3zdNWXjqyLAovkGQ7rv4l9p7uA qaLNgt+IUTYnQtND1yMFunZmfeE9PuXwk8fEg5uwsgk3mqmp7QCIg8ypYY9XrQIf cIZsOO6xOoKhSFU/PVzci3x/kQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFaSBEND YugXiJMaAuVQ5mq2uHFiMB8GA1UdIwQYMBaAFIw4FHI/x1XpqbobwzVmSlGbvBzu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQwRC81MEY3NzVBNjNC Q0MxMUVDQTc5MUYyNURDNEY5QUUwMi9qRGdVY2pfSFZlbXB1aHZETldaS1VadThI TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEZ1Vjal9IVmVtcHVodkROV1pLVVp1OEhPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MEQvNTBGNzc1QTYzQkNDMTFFQ0E3OTFGMjVEQzRGOUFFMDIvN0M2NkJGNTQz QkQwMTFFQ0JDQjk4RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr++ADBAJnKwgwDQYJKoZIhvcNAQELBQADggEBAJ/ncU4M PQMRyA7MniB8kVuxUHm/W4d0suvzVBY6vNa0RSYpzJ6UukrUcBraDxOY1BOBT7gD U4Hb+jtSbcCwkdWBGEJNTrRzdQPWeQeX27AdPrxQNuPNc6X+U3mPRy9zrp21uJ4x z378yKvL8y4ffs9mEC0EWzc0XxOaSjSnqGMR18I/r/P+BBdHqtrFUgfkv6ixgzT2 CgwJYfiHxiQ0AfnsH1R/E2tgTEu5wC+3w4J8mrskOUafu6dZTPQltBb7N9ON5/9f orddW1Kvv9IQOyhCflecWZsmVn4hb9qTtzRrZEl+qWPxfrkvW6TBv+WEI0DHBP6b Gc3VsJbw43IJPj8= -----END CERTIFICATE-----Generated at Wed May 3 13:18:04 2023 by rpki-client on console-ams.rpki-client.org