$ rpki-client -vvf rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/033AD246931B11EA974F0D67C4F9AE02.roa File: 033AD246931B11EA974F0D67C4F9AE02.roa (raw, json) Hash identifier: A05hXlPyDyCmrrB//fofeb9End0V/GDz0BxXzSOGPfc= Subject key identifier: CD:4B:30:BA:F5:A2:85:23:69:1E:9F:AA:6F:99:F1:C6:BD:B9:33:49 Certificate issuer: /CN=A914D5F5/serialNumber=45D8610FCE17D9FF4E8C9E2D7A253DA5C2F87F9B Certificate serial: 0906 Authority key identifier: 45:D8:61:0F:CE:17:D9:FF:4E:8C:9E:2D:7A:25:3D:A5:C2:F8:7F:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RdhhD84X2f9OjJ4teiU9pcL4f5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/033AD246931B11EA974F0D67C4F9AE02.roa Signing time: Sun 31 Mar 2024 22:00:29 +0000 ROA not before: Sun 31 Mar 2024 22:00:29 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 16509 IP address blocks: 122.252.145.0/24 maxlen: 24 122.252.146.0/24 maxlen: 24 122.252.147.0/24 maxlen: 24 122.252.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/RdhhD84X2f9OjJ4teiU9pcL4f5s.crl rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/RdhhD84X2f9OjJ4teiU9pcL4f5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RdhhD84X2f9OjJ4teiU9pcL4f5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D5F5/serialNumber=45D8610FCE17D9FF4E8C9E2D7A253DA5C2F87F9B Validity Not Before: Mar 31 22:00:29 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6609dcfd-2983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:07:41:8c:1f:5c:77:63:ed:50:13:a3:ed: 87:26:e0:84:3e:1b:2c:4c:45:77:a1:e7:6d:06:bf: 47:81:06:0c:94:81:17:c2:6b:67:6f:61:02:ad:61: ac:65:92:c8:fb:cc:0f:d0:6e:b9:ad:52:b3:cd:cd: 81:d0:6a:f6:8d:1f:c1:ef:6b:53:18:94:d4:57:17: d4:d0:77:30:f2:86:00:a5:22:08:27:80:fe:4c:4b: 88:af:a8:49:48:8c:bc:77:c6:9a:89:3e:6a:fe:78: e4:3c:d9:87:ec:ee:50:f0:60:bc:c3:e0:a5:dc:b1: cd:d1:ed:5a:4a:11:ab:7a:ad:16:f1:da:6d:8a:ed: 71:06:56:63:e5:bd:ea:67:5d:2d:24:98:c3:6f:40: 4d:10:07:1c:b6:df:d3:f5:e8:9a:53:a3:5a:fb:57: 4d:2f:64:3a:c8:1d:22:a4:af:3d:07:8b:cd:a6:2c: 71:01:d0:a4:43:62:ac:c3:5b:42:d4:65:f4:ee:c9: ea:98:26:16:4d:e7:a5:1b:26:e1:a0:60:60:c4:e6: 23:b7:17:80:29:af:74:52:09:96:3c:49:26:cf:6e: aa:d2:dd:14:2a:2d:2f:82:81:18:e3:fb:c5:25:a0: 6d:27:d3:58:ff:45:63:d9:fc:3e:63:eb:12:79:8e: 67:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4B:30:BA:F5:A2:85:23:69:1E:9F:AA:6F:99:F1:C6:BD:B9:33:49 X509v3 Authority Key Identifier: keyid:45:D8:61:0F:CE:17:D9:FF:4E:8C:9E:2D:7A:25:3D:A5:C2:F8:7F:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/RdhhD84X2f9OjJ4teiU9pcL4f5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RdhhD84X2f9OjJ4teiU9pcL4f5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D5F5/9B18B43088F211EA899EBE67C4F9AE02/033AD246931B11EA974F0D67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.252.145.0-122.252.151.255 Signature Algorithm: sha256WithRSAEncryption 49:e2:9c:9a:a7:dd:b6:cd:00:82:42:31:b3:98:82:34:3a:fc: 3b:5c:a3:8b:22:cc:8f:a5:55:e4:d9:14:26:e3:a4:54:33:81: f6:1e:dd:f7:5a:a5:04:a1:05:89:e3:7e:1d:f5:e3:25:80:37: b6:38:87:92:d8:96:6e:43:12:b0:43:1d:41:5f:b4:2f:0a:3e: b0:19:da:9f:d1:58:38:3b:2a:e6:27:d1:b9:6d:c2:24:25:a9: 3e:29:0a:ef:b9:5c:5f:c5:55:92:1e:10:7c:ba:fc:31:b1:f1: 7c:dd:94:73:03:db:87:38:cc:d7:7c:57:ac:1d:64:06:bc:6b: 06:3c:5b:24:04:6e:a3:ed:b9:1c:13:8a:30:93:8e:13:4c:07: e7:90:8e:99:aa:e1:ce:e7:6e:4e:ad:59:b6:64:62:80:51:79: 20:a5:59:ff:a6:02:2e:d6:26:5c:43:ee:ee:83:6c:69:a4:d6: ec:1e:f3:81:cd:bc:ca:9c:91:ef:cd:98:7c:2f:f4:6a:e7:50: 6d:ae:4a:0d:34:e8:f8:b8:44:33:96:78:cb:9a:97:c9:2f:0d: ff:0e:46:7a:b6:1d:90:c6:15:ff:3c:20:0a:bb:fc:40:4e:89: bb:5b:ab:1a:99:c9:65:27:a0:09:5a:db:de:83:4b:ee:b6:22: 07:fb:cc:3f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ1RjUxMTAvBgNVBAUTKDQ1RDg2MTBGQ0UxN0Q5RkY0RThDOUUyRDdBMjUzREE1 QzJGODdGOUIwHhcNMjQwMzMxMjIwMDI5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5ZGNmZC0yOTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKgHQYwfXHdj7VATo+2HJuCEPhssTEV3oedtBr9HgQYMlIEXwmtnb2ECrWGs ZZLI+8wP0G65rVKzzc2B0Gr2jR/B72tTGJTUVxfU0Hcw8oYApSIIJ4D+TEuIr6hJ SIy8d8aaiT5q/njkPNmH7O5Q8GC8w+Cl3LHN0e1aShGreq0W8dptiu1xBlZj5b3q Z10tJJjDb0BNEAcctt/T9eiaU6Na+1dNL2Q6yB0ipK89B4vNpixxAdCkQ2Ksw1tC 1GX07snqmCYWTeelGybhoGBgxOYjtxeAKa90UgmWPEkmz26q0t0UKi0vgoEY4/vF JaBtJ9NY/0Vj2fw+Y+sSeY5nBwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFM1LMLr1 ooUjaR6fqm+Z8ca9uTNJMB8GA1UdIwQYMBaAFEXYYQ/OF9n/ToyeLXolPaXC+H+b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDVGNS85QjE4QjQzMDg4 RjIxMUVBODk5RUJFNjdDNEY5QUUwMi9SZGhoRDg0WDJmOU9qSjR0ZWlVOXBjTDRm NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JkaGhEODRYMmY5T2pKNHRlaVU5cGNMNGY1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQ1RjUvOUIxOEI0MzA4OEYyMTFFQTg5OUVCRTY3QzRGOUFFMDIvMDMzQUQyNDY5 MzFCMTFFQTk3NEYwRDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAHr8kQMEA3r8kDANBgkqhkiG9w0BAQsFAAOCAQEASeKc mqfdts0AgkIxs5iCNDr8O1yjiyLMj6VV5NkUJuOkVDOB9h7d91qlBKEFieN+HfXj JYA3tjiHktiWbkMSsEMdQV+0Lwo+sBnan9FYODsq5ifRuW3CJCWpPikK77lcX8VV kh4QfLr8MbHxfN2UcwPbhzjM13xXrB1kBrxrBjxbJARuo+25HBOKMJOOE0wH55CO marhzuduTq1ZtmRigFF5IKVZ/6YCLtYmXEPu7oNsaaTW7B7zgc28ypyR782YfC/0 audQba5KDTTo+LhEM5Z4y5qXyS8N/w5GerYdkMYV/zwgCrv8QE6Ju1urGpnJZSeg CVrb3oNL7rYiB/vMPw== -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:00 2024 by rpki-client on console-fra.rpki-client.org