$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa File: 4F1B63805A0A11ECAEA43C36C4F9AE02.roa (raw, json) Hash identifier: Nk4ibWKpPuVtlG9/CDhXT/kC4VGAOuhpnoAKVaH7bcI= Subject key identifier: A6:87:42:EB:48:B6:A0:38:12:5F:6C:47:98:96:09:BF:3D:B2:B8:BF Certificate issuer: /CN=A914DC55/serialNumber=F38589F8464AA5A91699F808649EC536831B004A Certificate serial: 03D5 Authority key identifier: F3:85:89:F8:46:4A:A5:A9:16:99:F8:08:64:9E:C5:36:83:1B:00:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa Signing time: Sun 29 Oct 2023 01:33:13 +0000 ROA not before: Sun 29 Oct 2023 01:33:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134677 IP address blocks: 45.127.32.0/24 maxlen: 24 45.127.33.0/24 maxlen: 24 45.127.34.0/24 maxlen: 24 45.127.35.0/24 maxlen: 24 103.195.188.0/24 maxlen: 24 103.195.189.0/24 maxlen: 24 103.195.190.0/24 maxlen: 24 103.195.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.crl rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC55/serialNumber=F38589F8464AA5A91699F808649EC536831B004A Validity Not Before: Oct 29 01:33:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653db659-4709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:b7:d8:d1:f5:23:66:f5:f5:76:f5:1b:75: 11:a9:ec:24:29:66:ee:30:39:76:92:19:8c:32:24: 0b:51:67:3c:38:01:8b:75:5c:ce:08:b1:c8:3c:cd: 66:f5:fa:a3:58:bb:6b:7b:e6:d8:23:03:78:35:4c: 18:20:25:cf:9c:a6:e0:82:92:cb:dd:e4:a1:77:6c: e2:11:85:38:b4:d6:74:46:64:b4:bb:4a:d2:09:e8: 78:fb:6f:eb:95:02:48:a8:46:d7:71:6e:31:34:ef: 05:b9:7d:48:fd:21:09:ec:eb:2a:55:a4:19:21:06: fe:d9:0e:41:c1:57:aa:9d:d9:4d:39:31:0b:21:8f: b1:0f:31:0c:5b:44:cf:15:7e:6b:93:1a:93:1b:a2: 56:3d:50:aa:5f:c2:55:cc:73:30:10:f1:a4:6b:17: 52:b1:e9:e9:ac:99:92:24:e1:ea:21:a2:f7:7e:22: 5e:e9:cb:30:b5:70:73:f1:12:f4:af:68:14:6d:19: dc:ce:43:14:b3:49:e8:84:a1:c9:3c:d6:19:e0:44: cd:d7:fc:a0:6a:26:08:91:6f:12:32:65:e8:1c:77: cb:42:de:bb:29:89:88:e6:e2:39:fd:9e:f1:35:94: d6:36:24:20:2b:81:d1:7e:40:df:a9:58:fe:54:d4: da:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:87:42:EB:48:B6:A0:38:12:5F:6C:47:98:96:09:BF:3D:B2:B8:BF X509v3 Authority Key Identifier: keyid:F3:85:89:F8:46:4A:A5:A9:16:99:F8:08:64:9E:C5:36:83:1B:00:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.32.0/22 103.195.188.0/22 Signature Algorithm: sha256WithRSAEncryption 03:5f:a7:65:a8:f1:00:1d:1c:2a:7f:87:5f:fe:dc:34:b4:60: d8:54:18:7e:38:a9:f5:b5:d0:cf:9f:95:40:dd:a3:2a:ce:de: c1:e1:81:4c:35:63:a3:f2:15:5f:d1:5f:fc:5e:da:77:2f:6c: d9:98:a5:00:9f:4f:a0:99:f5:c3:ca:59:b8:1d:b4:b1:3a:09: 92:f7:90:c9:f2:bc:23:15:94:e7:3b:23:bf:91:db:ec:33:41: 2e:ef:69:16:e6:53:1c:78:0e:0a:58:29:e6:06:31:4d:99:5b: ff:f8:89:07:88:0f:d8:e1:93:ef:31:78:dc:88:02:32:f2:46: 4d:d7:9a:cf:55:a5:21:1b:ac:d5:01:16:f5:85:be:4a:7f:56: 2a:e2:64:09:81:2b:27:31:f1:e9:04:83:39:0e:ac:b5:7c:0f: 8c:b8:94:c0:91:a7:97:3b:35:7e:7d:7b:0f:26:69:8b:63:e9: 60:24:96:93:a0:5b:be:5e:89:86:a3:a2:57:40:9e:6b:69:99: 22:1f:60:eb:79:e3:d7:54:d1:c5:d1:70:74:ce:98:93:81:05: de:91:28:06:90:36:10:a7:01:37:00:ec:20:85:4f:64:88:c5: 57:5b:83:c1:a6:40:00:96:d4:25:4a:b4:65:e3:cd:c0:03:5b: b5:b5:42:b9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTUxMTAvBgNVBAUTKEYzODU4OUY4NDY0QUE1QTkxNjk5RjgwODY0OUVDNTM2 ODMxQjAwNEEwHhcNMjMxMDI5MDEzMzEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkYjY1OS00NzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2w632NH1I2b19Xb1G3URqewkKWbuMDl2khmMMiQLUWc8OAGLdVzOCLHIPM1m 9fqjWLtre+bYIwN4NUwYICXPnKbggpLL3eShd2ziEYU4tNZ0RmS0u0rSCeh4+2/r lQJIqEbXcW4xNO8FuX1I/SEJ7OsqVaQZIQb+2Q5BwVeqndlNOTELIY+xDzEMW0TP FX5rkxqTG6JWPVCqX8JVzHMwEPGkaxdSsenprJmSJOHqIaL3fiJe6cswtXBz8RL0 r2gUbRnczkMUs0nohKHJPNYZ4ETN1/ygaiYIkW8SMmXoHHfLQt67KYmI5uI5/Z7x NZTWNiQgK4HRfkDfqVj+VNTa1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKaHQutI tqA4El9sR5iWCb89sri/MB8GA1UdIwQYMBaAFPOFifhGSqWpFpn4CGSexTaDGwBK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1NS9DQ0JFMUJBNjE3 NjIxMUVDODFBMEQxMUVDNEY5QUUwMi84NFdKLUVaS3Bha1dtZmdJWko3Rk5vTWJB RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0V0otRVpLcGFrV21mZ0laSjdGTm9NYkFFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNTUvQ0NCRTFCQTYxNzYyMTFFQzgxQTBEMTFFQzRGOUFFMDIvNEYxQjYzODA1 QTBBMTFFQ0FFQTQzQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfyADBAJnw7wwDQYJKoZIhvcNAQELBQADggEBAANfp2Wo 8QAdHCp/h1/+3DS0YNhUGH44qfW10M+flUDdoyrO3sHhgUw1Y6PyFV/RX/xe2ncv bNmYpQCfT6CZ9cPKWbgdtLE6CZL3kMnyvCMVlOc7I7+R2+wzQS7vaRbmUxx4DgpY KeYGMU2ZW//4iQeID9jhk+8xeNyIAjLyRk3Xms9VpSEbrNUBFvWFvkp/ViriZAmB Kycx8ekEgzkOrLV8D4y4lMCRp5c7NX59ew8maYtj6WAklpOgW75eiYajoldAnmtp mSIfYOt549dU0cXRcHTOmJOBBd6RKAaQNhCnATcA7CCFT2SIxVdbg8GmQACW1CVK tGXjzcADW7W1Qrk= -----END CERTIFICATE-----Generated at Fri May 17 02:38:38 2024 by rpki-client on console-fra.rpki-client.org