$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa File: 1C0EE65808D511EE82522448C4F9AE02.roa (raw, json) Hash identifier: 6dpzgVJJ8O/7n7q1jZKAxVBU0NBNTvli8OlOwDwKLGc= Subject key identifier: 7D:CB:2E:1A:5F:ED:F1:27:7C:60:09:13:BF:70:17:BE:65:F8:83:56 Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 1501 Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa Signing time: Mon 16 Oct 2023 06:52:27 +0000 ROA not before: Mon 16 Oct 2023 06:52:27 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 15830 IP address blocks: 101.97.72.0/21 maxlen: 21 2403:b100::/32 maxlen: 32 2403:b101::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5377 (0x1501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: Oct 16 06:52:27 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=652cddab-5534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:84:36:2b:16:d9:31:9c:97:98:2a:a6:dd:3e: 15:a4:79:cb:15:41:23:0a:e2:f7:4b:0d:22:72:f7: 08:ed:c8:16:e9:13:5c:c1:5d:44:55:2d:c0:b3:bd: 2e:c2:00:31:40:8a:27:8f:b8:a7:bb:a1:c1:4c:b7: a6:9e:4b:ea:18:16:22:09:76:ef:28:14:05:5d:76: ea:57:d0:6e:3d:fc:be:fa:ef:ab:3e:92:1c:98:50: 55:82:b5:13:12:b0:52:d4:ce:4a:c8:3f:90:63:43: 91:85:7e:1c:51:58:6d:6b:05:55:fe:82:13:73:4c: 64:dc:11:45:a2:e3:5d:4c:85:42:de:75:fe:20:15: bd:f9:96:57:ee:5b:a1:eb:58:53:b5:95:22:fd:b6: 1c:f9:4c:bc:de:85:3e:64:19:10:57:f0:da:f5:0f: f4:04:79:39:1b:74:72:23:7a:9c:91:61:d2:96:4c: a8:54:a0:fd:c4:ab:12:bf:5a:ad:86:d1:40:18:ae: 95:b4:a2:18:00:88:8a:8f:8c:62:cb:8d:8f:39:8a: cb:68:6b:f7:29:ff:d7:82:45:4d:c1:1b:b4:48:9d: bd:7b:51:01:75:e2:6f:70:25:ac:4d:df:e8:14:42: 18:f5:d4:76:0a:b7:7b:cf:bf:db:20:78:02:66:4f: a1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CB:2E:1A:5F:ED:F1:27:7C:60:09:13:BF:70:17:BE:65:F8:83:56 X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.97.72.0/21 IPv6: 2403:b100::-2403:b101:ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c0:29:ac:ef:c8:11:10:11:08:63:7f:ba:aa:f6:06:db:7d:4e: d2:0c:24:a7:f2:d2:d9:07:dd:64:f7:29:7a:f1:7d:7a:24:14: 0e:72:53:91:66:13:f3:1d:6a:83:11:6d:c8:85:3b:3d:9c:26: 09:44:52:8f:d4:f4:02:06:20:b2:ae:b8:84:60:cd:00:c8:db: a9:28:74:4b:19:79:ab:43:fb:d7:6d:7f:bb:48:53:3e:0c:75: bc:8b:aa:e1:1e:e0:f4:26:ed:81:bf:83:ee:c3:9f:5a:fa:7b: 1e:d7:df:40:2d:78:96:02:49:18:cd:57:de:39:a6:89:48:7a: 6a:d3:f9:47:0f:50:d4:ee:d8:f2:f7:33:7c:0a:ae:27:fe:ce: cf:4f:93:ea:40:d8:e0:68:5f:fa:43:51:1c:9a:85:28:bd:f1: f4:10:6c:32:fa:23:63:2c:49:29:24:79:35:30:f8:02:62:2f: 26:98:7a:46:9c:fd:eb:86:66:50:25:1b:e3:96:93:91:3d:e3: 6c:68:a2:5b:c6:07:df:ea:5e:04:3d:9c:f1:1d:63:39:76:41: 01:3a:a7:d2:ae:52:43:01:c7:8e:ea:51:c1:58:99:fe:99:10: 7e:24:7d:67:8c:56:d3:46:ac:bc:b0:66:69:dc:ab:b8:dd:f3: 7c:38:19:7e -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICFQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjMxMDE2MDY1MjI3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJjZGRhYi01NTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9oQ2KxbZMZyXmCqm3T4VpHnLFUEjCuL3Sw0icvcI7cgW6RNcwV1EVS3As70u wgAxQIonj7inu6HBTLemnkvqGBYiCXbvKBQFXXbqV9BuPfy++u+rPpIcmFBVgrUT ErBS1M5KyD+QY0ORhX4cUVhtawVV/oITc0xk3BFFouNdTIVC3nX+IBW9+ZZX7luh 61hTtZUi/bYc+Uy83oU+ZBkQV/Da9Q/0BHk5G3RyI3qckWHSlkyoVKD9xKsSv1qt htFAGK6VtKIYAIiKj4xiy42POYrLaGv3Kf/XgkVNwRu0SJ29e1EBdeJvcCWsTd/o FEIY9dR2Crd7z7/bIHgCZk+hVwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFH3LLhpf 7fEnfGAJE79wF75l+INWMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMUMwRUU2NTgw OEQ1MTFFRTgyNTIyNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBANlYUgwFgQCAAIwEDAOAwQAJAOxAwYAJAOxAQAwDQYJKoZI hvcNAQELBQADggEBAMAprO/IERARCGN/uqr2Btt9TtIMJKfy0tkH3WT3KXrxfXok FA5yU5FmE/MdaoMRbciFOz2cJglEUo/U9AIGILKuuIRgzQDI26kodEsZeatD+9dt f7tIUz4MdbyLquEe4PQm7YG/g+7Dn1r6ex7X30AteJYCSRjNV945polIemrT+UcP UNTu2PL3M3wKrif+zs9Pk+pA2OBoX/pDURyahSi98fQQbDL6I2MsSSkkeTUw+AJi LyaYekac/euGZlAlG+OWk5E942xoolvGB9/qXgQ9nPEdYzl2QQE6p9KuUkMBx47q UcFYmf6ZEH4kfWeMVtNGrLywZmncq7jd83w4GX4= -----END CERTIFICATE-----Generated at Sat May 4 18:00:10 2024 by rpki-client on console-fra.rpki-client.org