$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa File: CAD5365E090C11EBA5412411C4F9AE02.roa (raw, json) Hash identifier: TmPkOodhEZ/Y8YXZ7uegwsvEeL5kCpK7yN5l90nhBoc= Subject key identifier: A5:AD:80:22:53:B7:FE:DF:4A:87:C4:3F:0E:84:81:44:88:8B:44:95 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 34E3 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa Signing time: Tue 26 Sep 2023 14:30:27 +0000 ROA not before: Tue 26 Sep 2023 14:30:27 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 6507 IP address blocks: 45.250.208.0/22 maxlen: 24 103.219.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Sep 26 14:30:27 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6512eb03-ff00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:aa:c8:5c:f5:76:7b:5c:a9:9b:49:eb:2a: b0:c3:ff:b4:bf:b3:89:50:bf:8d:8e:9e:cc:3e:d3: 7d:bd:82:82:9b:10:86:2d:3a:ea:e4:2b:38:5d:14: 28:d6:2d:5c:7d:d7:d9:4d:96:2c:c1:f4:29:69:97: ee:04:a9:3a:2d:1c:1b:64:83:30:f7:f8:f3:39:e1: c6:c7:95:36:3c:02:fb:98:e6:f1:25:1b:e7:01:00: 7f:01:71:e4:ca:04:b8:de:7c:4d:85:8a:ba:1e:39: ca:4c:f4:c5:a8:2a:bf:f9:ee:8e:75:29:4a:9e:3e: 32:f6:cb:56:ae:f1:e6:4d:7a:75:6e:9d:a0:bb:28: b8:5a:f3:14:c7:ac:b7:05:ea:11:17:f3:a4:e3:84: d8:75:7d:60:5e:b7:72:67:d1:e8:85:12:96:e7:40: 12:a1:a5:82:92:e4:1a:cd:54:81:73:b3:df:99:f8: 83:16:96:20:62:1c:0c:af:f5:80:a8:34:34:8a:1c: b5:6b:0a:cf:d1:b7:e3:57:43:34:b4:5b:21:a1:4f: 2d:c5:3d:03:04:34:ac:88:13:65:1c:2e:52:4c:28: 53:71:10:f6:0f:2b:c7:38:01:5d:10:da:f2:28:b8: 62:91:d0:99:ef:81:28:24:ba:63:36:e3:2b:82:c1: f4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AD:80:22:53:B7:FE:DF:4A:87:C4:3F:0E:84:81:44:88:8B:44:95 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.208.0/22 103.219.128.0/22 Signature Algorithm: sha256WithRSAEncryption b6:56:68:15:d6:c6:f8:4b:e7:3a:34:b5:ad:69:b7:b4:20:31: a6:16:ee:50:9d:4b:19:35:4b:9f:7c:84:3d:04:63:c9:d6:67: 53:c7:7c:08:de:1e:99:ac:08:90:a8:50:ac:b8:9d:71:f2:e3: 87:7b:52:bb:01:37:f9:ba:79:c5:52:7f:93:9e:36:94:95:9d: 86:48:ff:f7:a2:a8:b4:19:ab:2c:4a:08:9c:3e:62:9c:4a:a4: ba:98:07:1f:25:3b:03:68:1e:a9:60:9b:10:5e:18:4d:ef:b9: 14:d8:af:38:13:6c:0a:5e:ca:fa:01:5d:76:61:95:a1:a8:3f: af:f1:c5:2b:18:b7:6e:c6:84:b5:1e:8a:0f:ab:2a:fd:26:61: 9e:b9:2b:b5:76:d4:1a:72:b1:43:8d:70:ff:0e:48:d7:b0:15: 48:a0:9b:0e:1a:be:93:28:95:94:0b:ce:90:cb:08:3f:48:e7: 32:04:0f:bb:8a:54:a3:ca:a2:d0:47:b9:a0:ce:3d:5e:82:03: 92:95:78:82:6b:1d:1f:47:3b:84:9a:2c:d3:06:07:67:ba:40: 43:07:02:1f:d5:56:d6:dd:ab:a1:90:e9:43:5e:a9:7f:21:6c: ff:0f:5e:d5:23:48:89:bb:d9:51:e2:55:ce:de:5b:d1:92:e3: e0:2e:d0:17 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjMwOTI2MTQzMDI3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEyZWIwMy1mZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6KqyFz1dntcqZtJ6yqww/+0v7OJUL+Njp7MPtN9vYKCmxCGLTrq5Cs4XRQo 1i1cfdfZTZYswfQpaZfuBKk6LRwbZIMw9/jzOeHGx5U2PAL7mObxJRvnAQB/AXHk ygS43nxNhYq6HjnKTPTFqCq/+e6OdSlKnj4y9stWrvHmTXp1bp2guyi4WvMUx6y3 BeoRF/Ok44TYdX1gXrdyZ9HohRKW50ASoaWCkuQazVSBc7PfmfiDFpYgYhwMr/WA qDQ0ihy1awrP0bfjV0M0tFshoU8txT0DBDSsiBNlHC5STChTcRD2DyvHOAFdENry KLhikdCZ74EoJLpjNuMrgsH0dQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKWtgCJT t/7fSofEPw6EgUSIi0SVMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQ0FENTM2NUUw OTBDMTFFQkE1NDEyNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+tADBAJn24AwDQYJKoZIhvcNAQELBQADggEBALZWaBXW xvhL5zo0ta1pt7QgMaYW7lCdSxk1S598hD0EY8nWZ1PHfAjeHpmsCJCoUKy4nXHy 44d7UrsBN/m6ecVSf5OeNpSVnYZI//eiqLQZqyxKCJw+YpxKpLqYBx8lOwNoHqlg mxBeGE3vuRTYrzgTbApeyvoBXXZhlaGoP6/xxSsYt27GhLUeig+rKv0mYZ65K7V2 1BpysUONcP8OSNewFUigmw4avpMolZQLzpDLCD9I5zIED7uKVKPKotBHuaDOPV6C A5KVeIJrHR9HO4SaLNMGB2e6QEMHAh/VVtbdq6GQ6UNeqX8hbP8PXtUjSIm72VHi Vc7eW9GS4+Au0Bc= -----END CERTIFICATE-----Generated at Sat May 4 15:55:00 2024 by rpki-client on console-ams.rpki-client.org