$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa File: 215A8FDE4B9E11EEBF766C7FC4F9AE02.roa (raw, json) Hash identifier: 4rSOlhpMJLVea9MZWJitHqSc5jNR1/gQFfVazDk/dXI= Subject key identifier: CF:B8:B1:87:89:E0:49:6D:13:64:0E:82:8A:A2:70:85:DE:DB:FA:35 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0650 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa Signing time: Fri 20 Oct 2023 22:31:01 +0000 ROA not before: Fri 20 Oct 2023 22:31:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4682 IP address blocks: 61.245.0.0/22 maxlen: 22 61.245.0.0/24 maxlen: 24 61.245.1.0/24 maxlen: 24 61.245.2.0/24 maxlen: 24 61.245.3.0/24 maxlen: 24 2001:ded:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Oct 20 22:31:01 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6532ffa5-a83c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:92:4e:15:40:32:9e:16:df:e2:5a:e8:76:38: 8a:48:48:e8:57:bf:82:7d:d1:09:44:fe:c8:b7:71: b1:e5:1d:b0:6c:70:69:4a:78:2b:73:33:12:56:16: 43:da:ba:0f:73:63:aa:3d:bd:2f:5c:22:9b:20:9b: d9:1d:38:de:6f:75:5a:ec:93:6b:8f:47:07:c0:95: 24:15:c1:fe:6c:27:14:f0:b7:d8:93:5c:1c:16:de: c7:c6:c7:a1:8d:c7:1d:51:54:ff:5b:37:a7:81:c7: d6:77:64:4f:da:cb:71:75:45:39:b3:47:7a:fd:0f: 70:bc:24:c2:95:97:b4:70:ee:ac:44:62:cf:25:ac: f8:a1:62:64:2e:db:28:cb:b8:bd:07:be:0d:a1:8e: 1f:e7:b1:51:46:cb:e4:7e:fe:f5:b9:b8:11:ae:7b: c5:da:50:1e:46:93:43:41:8b:d9:de:31:9c:14:18: bf:c7:e7:02:d5:23:69:4a:39:4b:c9:e3:8e:a6:16: de:90:06:c2:1a:42:80:2c:95:31:1c:13:a8:d0:a4: 53:cb:e6:91:19:99:0b:c0:af:9e:9e:87:24:83:94: 69:95:7d:f4:12:85:64:c3:88:a8:99:da:76:be:91: 75:a3:bc:62:fa:b4:98:d3:ae:2f:80:84:d5:61:77: 2e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B8:B1:87:89:E0:49:6D:13:64:0E:82:8A:A2:70:85:DE:DB:FA:35 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.0.0/22 IPv6: 2001:ded:4000::/48 Signature Algorithm: sha256WithRSAEncryption 3b:45:31:41:36:6c:a5:5b:43:35:62:ac:1f:38:e3:b7:f3:59: f7:77:1c:e6:dc:ba:1e:8e:b7:51:e4:56:28:a4:af:e6:02:0d: c7:51:36:76:83:84:26:92:6a:19:b2:41:ea:9f:21:91:84:3f: 27:7b:79:7f:89:20:0b:41:c9:07:9a:13:a4:64:82:11:8e:9d: bc:ee:9d:11:9b:cb:fe:95:41:a2:36:04:4f:28:69:57:f7:01: fe:fd:56:7d:86:2a:9a:a9:76:51:92:09:44:e0:95:8b:2c:9c: bb:8f:f6:65:61:88:6d:50:b2:20:04:6c:09:8e:d8:23:b4:a4: d7:fc:22:0b:f0:c6:23:d1:15:7b:ae:ac:86:0c:d9:8b:69:db: 75:a5:33:3b:43:9d:76:4d:ee:7f:5b:34:30:50:a3:ab:05:33: 07:a9:b5:d0:ba:05:11:53:f9:3a:ee:5b:97:8a:f5:21:03:2b: 08:1d:0b:99:c3:a6:9e:f4:8f:30:57:ce:42:e3:53:87:b6:3c: c0:e4:46:f0:5d:7b:f1:11:a1:11:88:ae:1e:bc:0e:90:5b:0b: b5:48:af:87:6b:39:b8:8d:26:b8:3d:76:46:ed:b6:32:4a:72: a0:b2:d4:42:43:04:7c:43:50:e4:e6:78:3c:92:b4:90:b7:fa: 94:4e:b5:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjMxMDIwMjIzMTAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyZmZhNS1hODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJJOFUAynhbf4lrodjiKSEjoV7+CfdEJRP7It3Gx5R2wbHBpSngrczMSVhZD 2roPc2OqPb0vXCKbIJvZHTjeb3Va7JNrj0cHwJUkFcH+bCcU8LfYk1wcFt7Hxseh jccdUVT/WzengcfWd2RP2stxdUU5s0d6/Q9wvCTClZe0cO6sRGLPJaz4oWJkLtso y7i9B74NoY4f57FRRsvkfv71ubgRrnvF2lAeRpNDQYvZ3jGcFBi/x+cC1SNpSjlL yeOOphbekAbCGkKALJUxHBOo0KRTy+aRGZkLwK+enockg5RplX30EoVkw4iomdp2 vpF1o7xi+rSY064vgITVYXcu+wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM+4sYeJ 4EltE2QOgoqicIXe2/o1MB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMjE1QThGREU0 QjlFMTFFRUJGNzY2QzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAI99QAwDwQCAAIwCQMHACABDe1AADANBgkqhkiG9w0BAQsF AAOCAQEAO0UxQTZspVtDNWKsHzjjt/NZ93cc5ty6Ho63UeRWKKSv5gINx1E2doOE JpJqGbJB6p8hkYQ/J3t5f4kgC0HJB5oTpGSCEY6dvO6dEZvL/pVBojYETyhpV/cB /v1WfYYqmql2UZIJROCViyycu4/2ZWGIbVCyIARsCY7YI7Sk1/wiC/DGI9EVe66s hgzZi2nbdaUzO0Oddk3uf1s0MFCjqwUzB6m10LoFEVP5Ou5bl4r1IQMrCB0LmcOm nvSPMFfOQuNTh7Y8wORG8F178RGhEYiuHrwOkFsLtUivh2s5uI0muD12Ru22Mkpy oLLUQkMEfENQ5OZ4PJK0kLf6lE61Mg== -----END CERTIFICATE-----Generated at Thu May 16 23:48:40 2024 by rpki-client on console-fra.rpki-client.org