$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa File: 760C74EC021A11EF9D39D267C4F9AE02.roa (raw, json) Hash identifier: rh4X+qJ7ZDKocjLDVjEf80yULt0Eazfld4AaA5ZlTz0= Subject key identifier: 7C:AD:15:3A:65:4B:33:13:3C:0C:71:0D:AD:E2:99:B3:0F:B7:CA:0C Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 3357 Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa Signing time: Sun 28 Apr 2024 02:31:28 +0000 ROA not before: Sun 28 Apr 2024 02:31:28 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 53356 IP address blocks: 122.8.32.0/22 maxlen: 22 122.8.36.0/23 maxlen: 23 122.8.38.0/24 maxlen: 24 122.8.48.0/22 maxlen: 22 122.8.64.0/22 maxlen: 22 122.8.112.0/22 maxlen: 22 122.8.116.0/22 maxlen: 22 122.8.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13143 (0x3357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Validity Not Before: Apr 28 02:31:28 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=662db500-7810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4b:f9:bd:e2:e2:7e:71:d5:38:21:ca:cd:69: 94:5e:92:2f:22:c4:78:2e:0d:ff:1d:19:e2:13:14: cc:50:a2:44:17:78:34:a0:f1:f0:36:df:71:4b:64: f3:fc:0c:30:03:a6:8f:c1:ef:af:77:4f:a2:7e:dd: b3:d1:45:09:75:e0:fb:dc:6a:3e:e3:1e:48:49:64: d2:c6:6b:3b:fc:82:ab:28:e3:ab:6e:2b:9c:8a:98: 72:25:1f:ff:10:0b:9f:d1:6a:ab:a2:2d:73:a8:a4: 66:74:89:1e:fd:70:5a:c0:db:18:ea:2b:98:4b:8d: fa:94:01:03:55:1e:f2:7a:0e:e4:24:aa:76:43:0c: 16:93:ca:6c:39:1b:48:b8:05:1e:5e:cf:5a:72:ea: 11:9b:92:f0:01:8f:ef:be:de:3f:37:68:60:5b:31: 44:36:a6:63:35:a0:d7:92:ac:79:a7:00:19:57:ca: 6c:e3:88:c6:63:91:12:e9:30:44:a6:28:7e:16:71: ab:91:ce:5b:86:ae:4d:ed:87:71:a8:f1:be:15:b8: 30:a5:89:8c:e2:10:5e:bb:d0:81:43:4e:1b:1f:ba: 02:8e:71:08:78:73:fb:e5:44:1a:9f:33:69:dd:79: d9:df:f7:e1:60:9d:07:07:3e:7f:ef:e0:d4:34:36: 74:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AD:15:3A:65:4B:33:13:3C:0C:71:0D:AD:E2:99:B3:0F:B7:CA:0C X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/760C74EC021A11EF9D39D267C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.8.32.0-122.8.38.255 122.8.48.0/22 122.8.64.0/22 122.8.112.0/21 122.8.124.0/22 Signature Algorithm: sha256WithRSAEncryption b5:d0:ae:d9:b2:b5:78:87:95:64:b1:f1:a1:d9:bd:c1:31:64: 88:47:11:70:ef:11:7c:e4:e3:93:e4:9c:a1:56:bc:1f:73:95: e4:5b:f3:30:c3:67:bb:01:7a:59:de:c0:d7:ba:10:3d:9a:f3: ea:f4:70:de:eb:a9:d8:5e:61:84:6c:ae:b8:5a:2d:31:28:17: 15:da:35:1e:73:18:17:d1:ec:a5:94:29:a1:a5:92:d1:f2:eb: e5:9d:45:31:50:9e:72:a8:ca:b3:a7:21:97:ac:cf:10:8f:4e: ab:85:ee:3b:c4:dc:56:ca:f5:74:28:9b:4f:ac:d0:2a:f9:8e: 65:15:bc:9d:4e:3d:4c:c4:ab:36:13:9c:6a:d0:d2:7d:b4:21: b8:ea:65:f0:0a:83:3e:bb:b1:f3:7a:90:a9:ee:1b:01:4b:9f: 3d:73:af:0d:03:6d:72:f7:9e:3a:f6:aa:58:86:ce:2a:7f:fe: 74:71:e9:13:2a:9a:7a:02:c4:5f:06:2a:1d:b1:62:22:cf:dd: e2:14:c5:d2:43:e0:2a:a0:4b:c6:35:f7:93:69:74:44:b5:95: 92:a9:a5:58:fa:64:26:e1:21:a1:7e:c1:34:b8:29:03:8a:63: fa:9c:1f:9d:f5:23:4c:26:f0:4a:ee:8e:f9:f1:fa:ef:28:60: 4c:4b:ea:04 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICM1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQwNDI4MDIzMTI4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjJkYjUwMC03ODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkv5veLifnHVOCHKzWmUXpIvIsR4Lg3/HRniExTMUKJEF3g0oPHwNt9xS2Tz /AwwA6aPwe+vd0+ift2z0UUJdeD73Go+4x5ISWTSxms7/IKrKOOrbiuciphyJR// EAuf0Wqroi1zqKRmdIke/XBawNsY6iuYS436lAEDVR7yeg7kJKp2QwwWk8psORtI uAUeXs9acuoRm5LwAY/vvt4/N2hgWzFENqZjNaDXkqx5pwAZV8ps44jGY5ES6TBE pih+FnGrkc5bhq5N7YdxqPG+FbgwpYmM4hBeu9CBQ04bH7oCjnEIeHP75UQanzNp 3XnZ3/fhYJ0HBz5/7+DUNDZ0NQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFHytFTpl SzMTPAxxDa3imbMPt8oMMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvNzYwQzc0RUMw MjFBMTFFRjlEMzlEMjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYwDAMEBXoIIAMEAHoIJgMEAnoIMAMEAnoIQAMEA3oIcAMEAnoI fDANBgkqhkiG9w0BAQsFAAOCAQEAtdCu2bK1eIeVZLHxodm9wTFkiEcRcO8RfOTj k+ScoVa8H3OV5FvzMMNnuwF6Wd7A17oQPZrz6vRw3uup2F5hhGyuuFotMSgXFdo1 HnMYF9HspZQpoaWS0fLr5Z1FMVCecqjKs6chl6zPEI9Oq4XuO8TcVsr1dCibT6zQ KvmOZRW8nU49TMSrNhOcatDSfbQhuOpl8AqDPrux83qQqe4bAUufPXOvDQNtcvee OvaqWIbOKn/+dHHpEyqaegLEXwYqHbFiIs/d4hTF0kPgKqBLxjX3k2l0RLWVkqml WPpkJuEhoX7BNLgpA4pj+pwfnfUjTCbwSu6O+fH67yhgTEvqBA== -----END CERTIFICATE-----Generated at Thu May 16 16:14:31 2024 by rpki-client on console-fra.rpki-client.org