$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa File: F7968CA6C01411EA912AC365C4F9AE02.roa (raw, json) Hash identifier: Z4uebeNAd6A8H5elWWiPDFv8e17vfsalUb9RId47Vxc= Subject key identifier: 0B:50:FE:06:37:F4:63:4E:7F:0B:0C:B8:BB:3D:17:E1:19:2D:46:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 0738 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa Signing time: Sun 02 Jul 2023 21:27:40 +0000 ROA not before: Sun 02 Jul 2023 21:27:40 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.16.56.0/24 maxlen: 24 103.16.59.0/24 maxlen: 24 103.16.101.0/24 maxlen: 24 150.242.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Jul 2 21:27:40 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a1ebcc-2785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4d:45:be:b8:fb:3d:3b:07:73:16:35:2e:c7: b2:fc:06:0d:ff:4b:0a:11:37:60:95:b7:45:f8:11: 51:3d:29:90:ee:48:5c:85:6f:90:17:bc:6c:95:90: cc:0e:7a:70:cc:41:02:49:68:34:7d:ca:43:32:9b: ad:1e:e2:26:b9:48:de:63:7e:32:c2:83:05:90:7f: 37:d8:74:aa:02:1b:10:81:20:2d:88:6b:dd:4b:58: 34:30:34:b1:50:44:d3:08:99:f6:1b:1a:18:8d:ba: b6:39:d4:97:75:57:d3:76:ec:35:a2:8d:dc:e7:de: 13:a7:49:3c:5a:12:6b:61:26:4f:9e:b1:34:de:f0: 86:61:de:10:94:46:ce:0f:c0:88:3b:ca:6b:83:6c: 88:3b:6d:29:0f:dd:f2:57:49:e5:f5:cd:34:38:ee: 2f:e9:82:22:2f:e8:22:35:28:b9:3c:30:30:3e:c5: 7f:80:f6:69:08:75:c4:e9:be:d7:52:d9:49:41:a8: 56:1f:4a:3d:1f:6e:93:7e:c3:ea:79:4a:d4:24:c8: 03:3f:07:be:b8:f2:0b:1c:05:38:59:d3:a5:d6:5f: 34:a9:99:09:07:6b:9d:32:fb:79:0d:79:92:36:74: 64:b1:24:a5:96:6f:c5:cb:12:96:fe:75:1b:34:48: f5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:50:FE:06:37:F4:63:4E:7F:0B:0C:B8:BB:3D:17:E1:19:2D:46:E4 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.56.0/24 103.16.59.0/24 103.16.101.0/24 150.242.68.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:92:15:27:5a:98:84:80:24:fd:c8:82:e4:99:44:49:3a:86: a2:88:af:72:a4:30:24:56:bc:f9:60:ea:93:6a:07:67:49:52: e5:33:de:86:26:9c:8f:5d:c2:af:f2:3d:5e:8b:31:45:cf:17: d4:19:0f:87:b6:fc:fe:11:cf:0e:54:2e:54:62:af:80:18:f6: 0e:9b:55:8c:de:a3:73:13:70:b0:7a:37:a9:9f:fe:b3:99:c1: dc:af:f2:01:84:02:be:3f:0b:2f:e5:03:09:f1:95:a5:f1:90: 95:7b:3f:4e:9b:19:82:8c:6b:f6:48:12:bd:e2:26:31:97:a5: 6a:0b:48:91:a7:1d:a0:a7:80:5d:89:72:af:ff:9c:be:43:74: 92:14:c9:a1:35:8e:22:47:70:0b:1f:d0:8f:57:e5:73:18:e6: 26:99:32:63:83:7e:41:d9:38:b3:9c:48:6f:1c:76:a9:13:b9: f5:cc:b3:78:4a:66:11:c1:0f:32:69:90:a4:bf:23:dd:d7:24: e1:25:22:c3:ad:98:dd:79:8b:bc:62:39:da:fe:4a:6f:3d:8b: d1:56:44:28:26:e2:12:eb:a1:63:26:eb:c9:05:3f:fd:d9:f5: 81:a6:84:d7:de:c2:ba:33:8b:10:fc:da:73:0e:76:7c:fb:ab: 26:e5:39:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjMwNzAyMjEyNzQwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExZWJjYy0yNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA301Fvrj7PTsHcxY1Lsey/AYN/0sKETdglbdF+BFRPSmQ7khchW+QF7xslZDM DnpwzEECSWg0fcpDMputHuImuUjeY34ywoMFkH832HSqAhsQgSAtiGvdS1g0MDSx UETTCJn2GxoYjbq2OdSXdVfTduw1oo3c594Tp0k8WhJrYSZPnrE03vCGYd4QlEbO D8CIO8prg2yIO20pD93yV0nl9c00OO4v6YIiL+giNSi5PDAwPsV/gPZpCHXE6b7X UtlJQahWH0o9H26TfsPqeUrUJMgDPwe+uPILHAU4WdOl1l80qZkJB2udMvt5DXmS NnRksSSllm/FyxKW/nUbNEj1nwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAtQ/gY3 9GNOfwsMuLs9F+EZLUbkMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE2NEYvM0M5RTJCNUNDMDE0MTFFQTgxNjg5MDY1QzRGOUFFMDIvRjc5NjhDQTZD MDE0MTFFQTkxMkFDMzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnEDgDBABnEDsDBABnEGUDBACW8kQwDQYJKoZIhvcNAQEL BQADggEBADuSFSdamISAJP3IguSZREk6hqKIr3KkMCRWvPlg6pNqB2dJUuUz3oYm nI9dwq/yPV6LMUXPF9QZD4e2/P4Rzw5ULlRir4AY9g6bVYzeo3MTcLB6N6mf/rOZ wdyv8gGEAr4/Cy/lAwnxlaXxkJV7P06bGYKMa/ZIEr3iJjGXpWoLSJGnHaCngF2J cq//nL5DdJIUyaE1jiJHcAsf0I9X5XMY5iaZMmODfkHZOLOcSG8cdqkTufXMs3hK ZhHBDzJpkKS/I93XJOElIsOtmN15i7xiOdr+Sm89i9FWRCgm4hLroWMm68kFP/3Z 9YGmhNfewrozixD82nMOdnz7qyblOSI= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:24 2024 by rpki-client on console-ams.rpki-client.org