$ rpki-client -vvf rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/7B00C6B83F1D11ED8A66DC5AC4F9AE02.roa File: 7B00C6B83F1D11ED8A66DC5AC4F9AE02.roa (raw, json) Hash identifier: KPNRN2l98EuF8Ewgh7SUZqkCjXIafys8x7wmUM5XfwU= Subject key identifier: 14:75:91:69:B0:55:A9:11:7F:59:2E:C0:70:EC:C7:09:40:A4:40:56 Certificate issuer: /CN=A913E042/serialNumber=027F0552514F244A94EE3F06572A4AF733565737 Certificate serial: DF Authority key identifier: 02:7F:05:52:51:4F:24:4A:94:EE:3F:06:57:2A:4A:F7:33:56:57:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/An8FUlFPJEqU7j8GVypK9zNWVzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/7B00C6B83F1D11ED8A66DC5AC4F9AE02.roa Signing time: Wed 01 Nov 2023 05:15:26 +0000 ROA not before: Wed 01 Nov 2023 05:15:26 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150327 IP address blocks: 103.12.204.0/23 maxlen: 24 2400:ae20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/An8FUlFPJEqU7j8GVypK9zNWVzc.crl rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/An8FUlFPJEqU7j8GVypK9zNWVzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/An8FUlFPJEqU7j8GVypK9zNWVzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E042/serialNumber=027F0552514F244A94EE3F06572A4AF733565737 Validity Not Before: Nov 1 05:15:26 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541deee-26a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b4:f1:f8:b0:a8:43:31:4d:07:3e:86:26:33: 68:34:af:36:8f:88:b6:a9:f7:8f:31:64:ee:c3:72: 97:10:92:e4:59:1e:f6:69:98:53:e7:d3:03:be:2c: c0:13:55:7a:aa:17:13:fa:c4:3f:04:96:e2:1a:64: 79:ea:1a:8f:49:de:a1:4a:be:90:0f:1a:08:35:2a: e4:16:43:aa:34:1a:96:ae:1a:73:d5:a2:2b:7e:85: e0:e5:b0:29:0b:20:b3:35:7d:5f:d5:c0:43:05:7f: 0f:0d:ab:51:0a:b9:47:3f:f6:39:57:e4:1e:32:a1: 69:56:1b:e6:45:e3:ec:1f:e4:93:80:85:f8:7f:47: 45:c4:53:d3:e2:e0:05:a1:23:cb:a9:25:c0:d8:5c: 54:b5:a2:b8:a2:42:f6:b3:0f:d3:8d:d9:88:35:d4: 27:88:21:f4:81:b9:eb:15:68:32:18:99:fd:47:93: e5:24:c2:1b:e6:c3:d6:90:f8:0b:d5:6b:b2:f3:77: 0b:03:fa:b0:c4:bf:f3:90:5d:5f:84:47:cd:4a:d7: 0f:ed:e7:26:16:c4:7d:21:0d:60:05:d9:a1:42:f7: bd:71:11:aa:e0:19:82:7c:0b:86:41:7e:58:d9:9b: 14:11:7c:7d:2e:97:0b:8a:40:84:ee:0e:e1:01:f4: fe:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:75:91:69:B0:55:A9:11:7F:59:2E:C0:70:EC:C7:09:40:A4:40:56 X509v3 Authority Key Identifier: keyid:02:7F:05:52:51:4F:24:4A:94:EE:3F:06:57:2A:4A:F7:33:56:57:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/An8FUlFPJEqU7j8GVypK9zNWVzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/An8FUlFPJEqU7j8GVypK9zNWVzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E042/AE9B1B6E3E4A11EDBC06537DC4F9AE02/7B00C6B83F1D11ED8A66DC5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.204.0/23 IPv6: 2400:ae20::/32 Signature Algorithm: sha256WithRSAEncryption 6f:c2:2b:02:43:53:b7:ec:9b:be:29:a0:5b:5b:50:ba:34:e0: d8:67:41:0c:28:bb:b6:18:43:17:95:1d:ed:ec:39:6b:be:1a: b9:15:60:14:95:2b:b7:61:01:a8:76:6e:f3:89:23:ee:5b:44: c1:c3:70:ad:4f:fd:b8:1b:00:5a:93:06:81:4a:3d:22:87:b7: 65:fc:cb:bc:a2:c4:16:e3:cf:d0:6b:8c:b3:d6:70:36:7f:4a: 79:4b:f6:48:d1:4d:0a:12:2d:38:75:f9:bd:58:be:00:da:1d: 8c:a4:eb:72:6a:1f:83:1d:c2:c1:4b:03:19:7e:23:fd:21:2d: b5:a5:e1:ea:36:56:53:91:6b:72:a4:da:95:1f:20:aa:ae:9e: 12:66:12:05:d8:bb:36:b6:05:2e:e2:78:1b:a5:54:74:92:f1: 34:2b:0c:4b:b2:5e:5f:9e:4b:4c:35:f2:fd:b3:17:15:fc:af: f0:fb:b6:fb:91:a3:b4:7f:3e:e2:46:8e:ca:bc:24:5c:3e:7a: 38:bd:c0:fc:46:87:30:13:ad:0e:51:ae:bb:49:bd:22:15:77: 19:95:c9:0b:98:df:ad:8d:f0:71:0f:a3:24:ce:d4:60:44:c9: 45:db:d5:b6:a0:a6:88:66:42:f2:e0:11:f0:08:d6:10:0c:e2: 0b:09:f2:42 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwNDIxMTAvBgNVBAUTKDAyN0YwNTUyNTE0RjI0NEE5NEVFM0YwNjU3MkE0QUY3 MzM1NjU3MzcwHhcNMjMxMTAxMDUxNTI2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxZGVlZS0yNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrTx+LCoQzFNBz6GJjNoNK82j4i2qfePMWTuw3KXEJLkWR72aZhT59MDvizA E1V6qhcT+sQ/BJbiGmR56hqPSd6hSr6QDxoINSrkFkOqNBqWrhpz1aIrfoXg5bAp CyCzNX1f1cBDBX8PDatRCrlHP/Y5V+QeMqFpVhvmRePsH+STgIX4f0dFxFPT4uAF oSPLqSXA2FxUtaK4okL2sw/TjdmINdQniCH0gbnrFWgyGJn9R5PlJMIb5sPWkPgL 1Wuy83cLA/qwxL/zkF1fhEfNStcP7ecmFsR9IQ1gBdmhQve9cRGq4BmCfAuGQX5Y 2ZsUEXx9LpcLikCE7g7hAfT+VwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBR1kWmw VakRf1kuwHDsxwlApEBWMB8GA1UdIwQYMBaAFAJ/BVJRTyRKlO4/BlcqSvczVlc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTA0Mi9BRTlCMUI2RTNF NEExMUVEQkMwNjUzN0RDNEY5QUUwMi9BbjhGVWxGUEpFcVU3ajhHVnlwSzl6TldW emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FuOEZVbEZQSkVxVTdqOEdWeXBLOXpOV1Z6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UwNDIvQUU5QjFCNkUzRTRBMTFFREJDMDY1MzdEQzRGOUFFMDIvN0IwMEM2Qjgz RjFEMTFFRDhBNjZEQzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnDMwwDQQCAAIwBwMFACQAriAwDQYJKoZIhvcNAQELBQAD ggEBAG/CKwJDU7fsm74poFtbULo04NhnQQwou7YYQxeVHe3sOWu+GrkVYBSVK7dh Aah2bvOJI+5bRMHDcK1P/bgbAFqTBoFKPSKHt2X8y7yixBbjz9BrjLPWcDZ/SnlL 9kjRTQoSLTh1+b1YvgDaHYyk63JqH4MdwsFLAxl+I/0hLbWl4eo2VlORa3Kk2pUf IKqunhJmEgXYuza2BS7ieBulVHSS8TQrDEuyXl+eS0w18v2zFxX8r/D7tvuRo7R/ PuJGjsq8JFw+eji9wPxGhzATrQ5RrrtJvSIVdxmVyQuY362N8HEPoyTO1GBEyUXb 1bagpohmQvLgEfAI1hAM4gsJ8kI= -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org