$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/C0C5CEF2CB9411EC87C24075C4F9AE02.roa File: C0C5CEF2CB9411EC87C24075C4F9AE02.roa (raw, json) Hash identifier: 41sE71E+d/ociPO6zSO1WR+akcfkRT6CahZ8yv98Y6Q= Subject key identifier: F8:CD:62:6F:A3:7A:E8:9B:56:1F:15:31:CC:08:8E:9A:CB:BF:DC:77 Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC Certificate serial: 12EC Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/C0C5CEF2CB9411EC87C24075C4F9AE02.roa Signing time: Wed 08 May 2024 08:44:33 +0000 ROA not before: Wed 08 May 2024 08:44:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135542 IP address blocks: 14.192.48.0/24 maxlen: 24 14.192.49.0/24 maxlen: 24 14.192.50.0/24 maxlen: 24 14.192.51.0/24 maxlen: 24 103.64.13.0/24 maxlen: 24 103.78.242.0/24 maxlen: 24 2001:df2:8e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC Validity Not Before: May 8 08:44:33 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=663b3b70-558b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cd:e9:90:56:6a:27:84:cf:46:62:ac:0a:2b: 3f:80:7c:0d:5c:cb:32:5f:63:71:8a:20:63:22:62: e8:47:6c:22:6b:8b:58:2d:f1:da:aa:72:cd:6d:33: c7:57:ec:40:d4:f6:62:83:d6:73:74:0f:a6:58:37: 33:a7:1d:f6:d3:37:7c:f9:71:c7:bf:52:56:51:82: 7f:b3:bb:72:34:c8:14:2b:3a:7d:9a:f0:16:69:f9: a2:10:e5:cf:4c:10:54:8a:e1:a4:55:9a:28:2d:33: 2e:a6:ec:1c:09:5d:29:0e:f3:4a:35:5d:91:98:7c: 1f:9a:b7:68:69:30:d7:23:fe:bf:77:a0:5d:24:ca: 2b:7b:7f:36:26:5b:3b:9e:8f:50:f3:a5:a3:44:b3: d0:30:bc:fa:20:0d:a3:d6:07:da:b4:71:57:d1:5f: 6a:0f:21:35:26:81:ee:82:61:23:a3:21:e2:36:c4: 24:6c:81:69:c6:58:c3:e0:2e:e2:36:e5:13:08:eb: 26:84:b1:d0:4d:c9:6d:02:1b:dd:5b:6c:06:6e:e0: ef:92:11:c4:e3:bc:d5:2a:3b:d2:71:a7:74:4a:7e: e2:87:e5:d1:a2:c0:ec:0e:b3:4e:52:16:87:50:af: 03:8c:32:9c:d1:71:ff:07:a4:a1:de:e4:1f:26:75: 8b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CD:62:6F:A3:7A:E8:9B:56:1F:15:31:CC:08:8E:9A:CB:BF:DC:77 X509v3 Authority Key Identifier: keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/C0C5CEF2CB9411EC87C24075C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.48.0/22 103.64.13.0/24 103.78.242.0/24 IPv6: 2001:df2:8e00::/48 Signature Algorithm: sha256WithRSAEncryption 56:b6:04:11:bc:d8:88:bb:75:14:30:a6:de:8d:e4:94:75:95: 65:0a:0d:da:07:a1:11:89:20:9d:85:d6:f5:91:1f:e3:d5:c6: 9b:eb:b1:a7:e4:97:78:4e:16:7b:65:4c:6c:78:97:f2:3a:00: 19:14:97:f8:70:f7:d8:65:d5:b7:5c:c1:24:d0:a6:9c:18:7b: 84:d1:c1:26:27:96:3d:9a:d9:6d:46:69:c1:1e:1e:cd:9c:f9: 06:cd:c5:b7:80:db:39:b2:4b:07:7f:82:d2:83:05:dd:03:a5: 4e:68:09:ca:b7:2d:1b:37:04:a5:95:da:94:23:d5:7f:c4:9c: 89:fd:72:1f:0a:75:40:ea:65:7b:76:47:3d:ef:e7:1e:eb:60: ff:a1:39:50:c0:ad:5c:b6:87:05:02:69:ed:d9:4e:92:d2:77: b6:d0:ce:ea:b5:12:51:38:f3:09:76:c0:06:36:c0:69:2d:fb: 7c:36:f0:db:9d:34:2c:41:cc:62:db:b5:61:80:6c:b9:83:38: f5:c0:c3:a2:a8:fe:e1:f8:f5:78:b4:de:a1:fb:16:bb:90:60: 64:df:ca:8a:37:05:dc:ca:a4:c1:a8:cd:3c:ec:94:5d:22:0e: 74:85:a7:6d:7b:d1:0a:0b:db:5c:e1:5c:bd:30:42:86:8b:d2: 10:7b:50:f3 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5M0YxMTAvBgNVBAUTKEIyRjhBQjAwRDU3NDY0REQ1RDA1QTQ1QTQ3QzQyMEY1 Rjg5NkI4RkMwHhcNMjQwNTA4MDg0NDMzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiM2I3MC01NThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M3pkFZqJ4TPRmKsCis/gHwNXMsyX2NxiiBjImLoR2wia4tYLfHaqnLNbTPH V+xA1PZig9ZzdA+mWDczpx320zd8+XHHv1JWUYJ/s7tyNMgUKzp9mvAWafmiEOXP TBBUiuGkVZooLTMupuwcCV0pDvNKNV2RmHwfmrdoaTDXI/6/d6BdJMore382Jls7 no9Q86WjRLPQMLz6IA2j1gfatHFX0V9qDyE1JoHugmEjoyHiNsQkbIFpxljD4C7i NuUTCOsmhLHQTcltAhvdW2wGbuDvkhHE47zVKjvScad0Sn7ih+XRosDsDrNOUhaH UK8DjDKc0XH/B6Sh3uQfJnWL3wIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFPjNYm+j euibVh8VMcwIjprLv9x3MB8GA1UdIwQYMBaAFLL4qwDVdGTdXQWkWkfEIPX4lrj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkzRi8yRUQ3NzVEQUEz NkMxMUU4OTE0MDU5MjZDNEY5QUUwMi9zdmlyQU5WMFpOMWRCYVJhUjhRZzlmaVd1 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2aXJBTlYwWk4xZEJhUmFSOFFnOWZpV3VQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5M0YvMkVENzc1REFBMzZDMTFFODkxNDA1OTI2QzRGOUFFMDIvQzBDNUNFRjJD Qjk0MTFFQzg3QzI0MDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAIOwDADBABnQA0DBABnTvIwDwQCAAIwCQMHACABDfKOADAN BgkqhkiG9w0BAQsFAAOCAQEAVrYEEbzYiLt1FDCm3o3klHWVZQoN2gehEYkgnYXW 9ZEf49XGm+uxp+SXeE4We2VMbHiX8joAGRSX+HD32GXVt1zBJNCmnBh7hNHBJieW PZrZbUZpwR4ezZz5Bs3Ft4DbObJLB3+C0oMF3QOlTmgJyrctGzcEpZXalCPVf8Sc if1yHwp1QOple3ZHPe/nHutg/6E5UMCtXLaHBQJp7dlOktJ3ttDO6rUSUTjzCXbA BjbAaS37fDbw2500LEHMYtu1YYBsuYM49cDDoqj+4fj1eLTeofsWu5BgZN/KijcF 3MqkwajNPOyUXSIOdIWnbXvRCgvbXOFcvTBChovSEHtQ8w== -----END CERTIFICATE-----Generated at Thu May 16 20:25:41 2024 by rpki-client on console-ams.rpki-client.org