$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa File: D3CE622872D911E9B41E5B11C4F9AE02.roa (raw, json) Hash identifier: yQZyuZqVCnoS+3RcqvkhWqGOviZ/vca32y57btxLrIw= Subject key identifier: 52:51:2F:5A:68:0C:33:A2:EF:D1:71:83:F4:09:A3:35:A3:59:6E:51 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D36 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:37 +0000 ROA not before: Tue 02 Jan 2024 16:54:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4847 IP address blocks: 115.171.0.0/16 maxlen: 16 115.171.0.0/18 maxlen: 18 115.171.64.0/18 maxlen: 18 115.171.128.0/18 maxlen: 18 115.171.192.0/18 maxlen: 18 218.30.179.0/24 maxlen: 24 218.30.180.0/24 maxlen: 24 218.30.181.0/24 maxlen: 24 218.30.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7478 (0x1d36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:37 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fcd-9690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9a:0d:32:0f:3a:2a:70:37:8c:55:d7:bb:03: 1e:0b:da:b0:64:3d:7e:77:ca:59:b7:c2:62:4d:c7: 1b:4f:56:c5:93:33:5b:ca:23:25:3f:4d:6d:f9:ae: 2e:5c:00:e8:47:77:1c:ef:b9:42:2f:51:84:3a:7f: bf:f9:50:0f:78:25:af:12:52:df:89:8b:ca:2b:93: 18:27:49:01:91:31:4b:67:cf:97:73:0f:e5:8a:4b: 46:57:52:c8:50:f3:97:f2:20:dc:cc:63:8a:ee:7a: f0:ce:eb:c3:94:20:43:e7:c2:c1:27:30:48:46:53: a8:4c:bc:bf:d4:02:b9:8f:f7:97:82:fc:2e:99:1f: 5a:6c:62:6d:33:c8:86:af:03:5f:93:1b:a3:b2:ee: 1d:b6:78:e9:b3:2f:c4:7f:6d:4d:1c:20:5c:d4:ae: 45:71:93:d5:90:0a:17:25:d3:e9:0f:6e:ff:bb:b4: db:01:da:f2:82:f7:01:00:b1:95:25:a9:c3:d3:aa: 47:bb:b6:8e:b6:f3:5a:03:f1:df:e9:7f:1a:90:96: d1:41:b1:1b:be:10:3e:3c:0e:06:97:1a:cf:6a:c2: 0b:f6:2f:06:bf:be:18:35:94:30:cb:dd:ba:69:c5: 83:4d:f0:a9:7d:a3:ed:2e:fc:cf:b7:17:94:85:63: 75:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:51:2F:5A:68:0C:33:A2:EF:D1:71:83:F4:09:A3:35:A3:59:6E:51 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.171.0.0/16 218.30.179.0-218.30.182.255 Signature Algorithm: sha256WithRSAEncryption 96:19:7c:e7:55:90:1e:3f:84:40:77:50:14:ff:61:e6:58:8a: 48:7d:b2:93:e5:ec:db:c3:a5:76:f1:f0:7d:de:e9:71:5f:e7: 30:7b:38:2e:c1:1d:de:8d:5d:34:da:7b:ad:5c:b9:d9:76:7e: 18:c0:32:c4:7c:9c:a3:b3:90:b4:27:44:39:a1:96:ce:c7:80: fc:4a:5d:4f:09:59:c4:44:08:83:1e:a3:26:36:dd:15:51:02: 08:d9:87:56:e9:76:73:7b:3c:fc:92:b0:8e:68:f2:20:87:48: 99:86:4d:e8:93:ec:f9:bd:b7:93:d8:20:52:e9:ef:37:fc:df: 14:e5:31:66:01:ce:dc:bd:24:46:34:c6:99:6f:c0:93:ab:e9: 45:f4:78:41:23:05:eb:e7:f4:18:04:26:df:e0:fe:e5:a6:dd: 4d:69:4d:ca:8e:f9:45:ed:99:ce:65:27:f6:68:01:42:20:e0: 19:66:31:17:0b:0f:30:49:a3:cd:72:cf:25:0d:71:15:a6:f3: b7:40:c6:97:29:78:86:13:c8:e9:90:9f:ea:45:a8:6e:53:8d: 23:40:2a:f5:c1:09:ac:61:12:25:21:56:ed:c3:e8:17:6f:89: 2f:a0:15:a2:91:84:e0:b2:2e:0b:7b:f1:ca:bd:38:0d:d7:3e: a9:8b:d8:a7 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICHTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjZC05NjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpoNMg86KnA3jFXXuwMeC9qwZD1+d8pZt8JiTccbT1bFkzNbyiMlP01t+a4u XADoR3cc77lCL1GEOn+/+VAPeCWvElLfiYvKK5MYJ0kBkTFLZ8+Xcw/liktGV1LI UPOX8iDczGOK7nrwzuvDlCBD58LBJzBIRlOoTLy/1AK5j/eXgvwumR9abGJtM8iG rwNfkxujsu4dtnjpsy/Ef21NHCBc1K5FcZPVkAoXJdPpD27/u7TbAdrygvcBALGV JanD06pHu7aOtvNaA/Hf6X8akJbRQbEbvhA+PA4GlxrPasIL9i8Gv74YNZQwy926 acWDTfCpfaPtLvzPtxeUhWN18wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFJRL1po DDOi79Fxg/QJozWjWW5RMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDNDRTYyMjg3 MkQ5MTFFOUI0MUU1QjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMDAwBzqzAMAwQA2h6zAwQA2h62MA0GCSqGSIb3DQEBCwUAA4IB AQCWGXznVZAeP4RAd1AU/2HmWIpIfbKT5ezbw6V28fB93ulxX+cwezguwR3ejV00 2nutXLnZdn4YwDLEfJyjs5C0J0Q5oZbOx4D8Sl1PCVnERAiDHqMmNt0VUQII2YdW 6XZzezz8krCOaPIgh0iZhk3ok+z5vbeT2CBS6e83/N8U5TFmAc7cvSRGNMaZb8CT q+lF9HhBIwXr5/QYBCbf4P7lpt1NaU3KjvlF7ZnOZSf2aAFCIOAZZjEXCw8wSaPN cs8lDXEVpvO3QMaXKXiGE8jpkJ/qRahuU40jQCr1wQmsYRIlIVbtw+gXb4kvoBWi kYTgsi4Le/HKvTgN1z6pi9in -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org