$ rpki-client -vvf rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa File: B8370F3A5E6011EDB5361D3BC4F9AE02.roa (raw, json) Hash identifier: eDs+FODPLbK7SjrVCnnoIgwxQiFL07sdUe8HcBgP7UM= Subject key identifier: DE:66:3A:9D:0D:A2:42:1A:9F:11:CE:A1:B3:1E:DD:F0:18:16:B9:05 Certificate issuer: /CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Certificate serial: 7E Authority key identifier: C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa Signing time: Wed 05 Jul 2023 03:52:52 +0000 ROA not before: Wed 05 Jul 2023 03:52:52 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45353 IP address blocks: 202.45.144.0/22 maxlen: 22 202.45.144.0/24 maxlen: 24 202.45.145.0/24 maxlen: 24 202.45.146.0/24 maxlen: 24 202.45.147.0/24 maxlen: 24 2001:df0:8b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Validity Not Before: Jul 5 03:52:52 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a4e913-4237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:e2:2a:17:56:35:51:86:b8:17:33:f3:99: c6:e9:e5:a5:42:8b:33:65:2e:1f:f2:f4:55:ea:ab: d5:7d:52:81:17:c9:9d:93:66:ed:82:f4:92:ff:89: ea:b8:3d:5c:e1:d5:a7:4e:a0:e5:2c:f4:1c:cf:bb: 7b:cf:f1:66:19:45:9d:3a:1c:9a:cd:3b:b6:99:e0: 0b:f0:05:fd:8e:0d:0b:1b:50:bb:33:12:70:49:fa: 49:7b:d6:5e:96:d0:44:21:3d:87:a6:d2:91:85:f4: ab:18:f8:6c:ba:fa:0a:9b:5e:e8:55:22:77:9c:3f: c3:c8:68:ca:55:34:b8:03:15:c3:15:0e:b6:25:73: b8:c3:d6:a7:8c:88:02:14:2e:98:90:cf:ac:cc:65: 7b:ba:85:fd:70:a7:0c:f4:20:af:be:ce:45:76:8c: d0:e2:95:2d:49:37:81:63:45:71:67:a5:4f:e7:e8: 31:be:27:15:d6:2b:14:31:ef:78:3a:e4:6e:0b:56: 07:11:dc:ff:34:69:27:17:11:3e:8e:72:64:38:60: de:64:c0:15:3f:10:d9:7c:37:54:75:ee:2a:22:f0: 4a:ea:ae:52:50:b3:36:37:12:32:e4:97:3f:71:01: 5a:31:73:55:13:6e:c7:f8:65:10:56:e0:f6:12:6f: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:66:3A:9D:0D:A2:42:1A:9F:11:CE:A1:B3:1E:DD:F0:18:16:B9:05 X509v3 Authority Key Identifier: keyid:C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.144.0/22 IPv6: 2001:df0:8b::/48 Signature Algorithm: sha256WithRSAEncryption 9f:22:47:cc:ab:72:56:96:0f:bf:e8:08:54:54:c0:e3:49:45: d8:26:46:10:43:7f:d9:eb:0f:8b:83:7b:3e:0b:28:14:d5:b7: 7e:38:b0:11:ea:21:9e:3c:46:50:f2:5b:be:cf:f8:18:6e:af: 40:c0:e3:01:60:06:68:d8:97:80:a3:4c:1a:a1:a2:df:6d:49: 14:80:e3:a3:a4:16:fe:8e:aa:d0:5a:71:05:50:70:d7:60:79: c5:dc:f7:1d:78:5b:ec:0e:a7:a9:ca:78:70:27:4c:53:31:95: 03:ca:fc:3e:2f:2c:bb:6c:2e:e2:f4:82:79:c5:2f:5b:19:a4: fb:7a:d6:1b:57:16:24:43:0b:91:ed:e5:5e:e2:a8:a2:11:e0: 4e:ee:ef:9e:60:17:6f:1c:2b:6b:85:d8:ca:1a:b9:f9:14:e0: af:ca:be:31:ed:eb:52:72:5b:b0:a4:23:8e:2f:f3:89:25:cd: 78:d7:0f:c6:80:43:78:08:2e:1e:33:c8:5e:38:4b:39:a3:57: 93:ae:25:ca:37:af:07:19:e6:9f:e4:85:e2:7b:61:88:3f:5b: 6f:72:fc:b8:ad:58:d8:81:c2:f0:ae:b8:c1:20:00:33:aa:45: 64:a3:89:3c:fa:1a:a2:2d:5f:69:7a:4e:e4:6d:b8:dc:32:eb: d8:79:52:46 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTY3NTExMC8GA1UEBRMoQzdCMTMwOUQwMDg3MkQwNjY2Mzk2QjRDMjNEOEVGNUMz MTJDNkJFQjAeFw0yMzA3MDUwMzUyNTJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YTRlOTEzLTQyMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEDeIqF1Y1UYa4FzPzmcbp5aVCizNlLh/y9FXqq9V9UoEXyZ2TZu2C9JL/ieq4 PVzh1adOoOUs9BzPu3vP8WYZRZ06HJrNO7aZ4AvwBf2ODQsbULszEnBJ+kl71l6W 0EQhPYem0pGF9KsY+Gy6+gqbXuhVInecP8PIaMpVNLgDFcMVDrYlc7jD1qeMiAIU LpiQz6zMZXu6hf1wpwz0IK++zkV2jNDilS1JN4FjRXFnpU/n6DG+JxXWKxQx73g6 5G4LVgcR3P80aScXET6OcmQ4YN5kwBU/ENl8N1R17ioi8ErqrlJQszY3EjLklz9x AVoxc1UTbsf4ZRBW4PYSb1F3AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU3mY6nQ2i QhqfEc6hsx7d8BgWuQUwHwYDVR0jBBgwFoAUx7EwnQCHLQZmOWtMI9jvXDEsa+sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1Njc1LzZEMTFGNTc4NUU1 QzExRUQ5RERERDIxREM0RjlBRTAyL3g3RXduUUNITFFabU9XdE1JOWp2WERFc2Et cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDdFd25RQ0hMUVptT1d0TUk5anZYREVzYS1zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY3NS82RDExRjU3ODVFNUMxMUVEOUREREQyMURDNEY5QUUwMi9CODM3MEYzQTVF NjAxMUVEQjUzNjFEM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAsotkDAPBAIAAjAJAwcAIAEN8ACLMA0GCSqGSIb3DQEBCwUA A4IBAQCfIkfMq3JWlg+/6AhUVMDjSUXYJkYQQ3/Z6w+Lg3s+CygU1bd+OLAR6iGe PEZQ8lu+z/gYbq9AwOMBYAZo2JeAo0waoaLfbUkUgOOjpBb+jqrQWnEFUHDXYHnF 3PcdeFvsDqepynhwJ0xTMZUDyvw+Lyy7bC7i9IJ5xS9bGaT7etYbVxYkQwuR7eVe 4qiiEeBO7u+eYBdvHCtrhdjKGrn5FOCvyr4x7etScluwpCOOL/OJJc141w/GgEN4 CC4eM8heOEs5o1eTriXKN68HGeaf5IXie2GIP1tvcvy4rVjYgcLwrrjBIAAzqkVk o4k8+hqiLV9pek7kbbjcMuvYeVJG -----END CERTIFICATE-----Generated at Fri May 17 06:46:22 2024 by rpki-client on console-ams.rpki-client.org