$ rpki-client -vvf rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/B2356D1A180911EB962CB216C4F9AE02.roa File: B2356D1A180911EB962CB216C4F9AE02.roa (raw, json) Hash identifier: C2i/RiLJBzEbP0nZIg2KE+fWatL836He7UvLKqX2hU8= Subject key identifier: A6:E2:E8:C2:E5:B4:B9:7A:E9:35:EA:0E:9A:92:64:05:5D:07:EC:5B Certificate issuer: /CN=A915617D/serialNumber=19EA5B45F01E80BE0A76DCDAC9926B6E6742F221 Certificate serial: 0692 Authority key identifier: 19:EA:5B:45:F0:1E:80:BE:0A:76:DC:DA:C9:92:6B:6E:67:42:F2:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GepbRfAegL4KdtzayZJrbmdC8iE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/B2356D1A180911EB962CB216C4F9AE02.roa Signing time: Mon 11 Mar 2024 01:51:07 +0000 ROA not before: Mon 11 Mar 2024 01:51:07 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135423 IP address blocks: 45.250.156.0/22 maxlen: 22 45.250.156.0/24 maxlen: 24 45.250.157.0/24 maxlen: 24 45.250.158.0/24 maxlen: 24 45.250.159.0/24 maxlen: 24 103.219.68.0/22 maxlen: 22 103.219.68.0/24 maxlen: 24 103.219.69.0/24 maxlen: 24 103.219.70.0/24 maxlen: 24 103.219.71.0/24 maxlen: 24 2405:4d80::/32 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/GepbRfAegL4KdtzayZJrbmdC8iE.crl rsync://rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/GepbRfAegL4KdtzayZJrbmdC8iE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GepbRfAegL4KdtzayZJrbmdC8iE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915617D/serialNumber=19EA5B45F01E80BE0A76DCDAC9926B6E6742F221 Validity Not Before: Mar 11 01:51:07 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65ee638a-38c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:67:03:76:8d:ea:86:47:b1:fd:1d:81:f2: 81:07:e8:74:37:11:73:d7:71:77:9b:04:24:5f:39: 80:04:7c:20:fb:6f:b6:6a:4d:51:5c:01:57:b9:f4: 7d:26:6e:7b:3e:43:61:1c:1e:fb:43:0c:7b:5b:0c: e7:6a:a3:6b:cc:c9:68:90:9d:a3:c6:98:01:86:2a: 6d:0f:f9:de:1c:50:18:e9:5a:ab:cb:89:d6:2c:c6: 15:ce:2e:32:25:0a:ae:f0:c4:3c:c7:28:53:4b:a1: 7e:27:3e:9f:ac:15:cf:3e:6d:f4:1c:1b:ee:aa:d3: f8:a5:01:a8:79:5d:45:0f:7f:1d:bb:4c:c4:10:e3: ee:69:ff:7d:4d:9f:0f:75:23:2a:81:e4:60:fb:32: 8d:da:81:6b:a9:50:d8:b1:f8:76:7e:00:09:ad:3c: 95:9c:98:8e:92:51:88:9a:d2:ac:76:de:ee:79:fa: ad:db:24:f2:24:af:5f:67:f7:e5:57:52:4a:8e:31: 73:12:11:d1:3a:ae:6e:d6:89:97:94:86:f7:30:3e: 05:30:9c:7a:4b:ae:d3:16:31:34:ef:c0:6e:86:3d: 9f:f4:f1:85:70:ad:23:09:de:8c:74:49:12:ec:90: 58:01:29:f3:22:d9:ab:6e:1f:37:c6:6c:79:06:50: 09:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E2:E8:C2:E5:B4:B9:7A:E9:35:EA:0E:9A:92:64:05:5D:07:EC:5B X509v3 Authority Key Identifier: keyid:19:EA:5B:45:F0:1E:80:BE:0A:76:DC:DA:C9:92:6B:6E:67:42:F2:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/GepbRfAegL4KdtzayZJrbmdC8iE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GepbRfAegL4KdtzayZJrbmdC8iE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915617D/18DC5742180811EBA8573012C4F9AE02/B2356D1A180911EB962CB216C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.156.0/22 103.219.68.0/22 IPv6: 2405:4d80::/32 Signature Algorithm: sha256WithRSAEncryption 5b:16:ca:05:4f:fa:1f:88:1e:0b:f3:5b:2d:8c:6f:ea:5e:05: 79:d6:f7:2b:8a:12:d2:7c:3b:b2:e5:6d:eb:b7:01:c4:ad:52: e5:fd:e7:a9:c3:11:8a:93:c2:be:f4:ea:01:34:e2:96:f9:8c: 69:a4:00:78:c3:47:73:7c:49:81:33:a5:b8:96:ea:3c:b0:c2: 3d:3b:03:13:24:8b:65:54:50:e8:a3:47:46:82:d1:27:16:37: 5c:e3:10:3e:a3:8f:29:63:d0:32:0d:d0:72:38:1a:56:76:cc: c2:57:80:8a:4b:a9:a5:89:59:32:a6:dc:0f:1e:01:88:05:2c: e1:f7:29:12:18:bd:17:e0:8e:29:29:cc:b4:6a:eb:55:3e:70: c6:73:b4:35:29:d9:72:35:eb:61:ce:42:a0:4a:08:92:eb:1c: fc:c5:f1:ed:52:7b:dc:26:1d:1b:a9:f4:ad:69:bc:b6:39:0d: 8b:f6:f8:e5:de:df:8a:01:4d:3e:c4:d5:7e:9b:d7:cc:2b:8e: e8:04:d1:c0:cc:2d:2a:29:11:88:d5:fe:70:6a:55:18:4a:0e: 6c:2f:f1:81:41:6b:17:08:f0:0f:ed:f6:91:c3:a5:b2:94:1c: 50:29:95:12:65:68:22:44:2b:46:45:66:26:ea:2d:7a:f6:00: 1f:9d:48:16 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxN0QxMTAvBgNVBAUTKDE5RUE1QjQ1RjAxRTgwQkUwQTc2RENEQUM5OTI2QjZF Njc0MkYyMjEwHhcNMjQwMzExMDE1MTA3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVlNjM4YS0zOGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs29nA3aN6oZHsf0dgfKBB+h0NxFz13F3mwQkXzmABHwg+2+2ak1RXAFXufR9 Jm57PkNhHB77Qwx7WwznaqNrzMlokJ2jxpgBhiptD/neHFAY6Vqry4nWLMYVzi4y JQqu8MQ8xyhTS6F+Jz6frBXPPm30HBvuqtP4pQGoeV1FD38du0zEEOPuaf99TZ8P dSMqgeRg+zKN2oFrqVDYsfh2fgAJrTyVnJiOklGImtKsdt7uefqt2yTyJK9fZ/fl V1JKjjFzEhHROq5u1omXlIb3MD4FMJx6S67TFjE078Buhj2f9PGFcK0jCd6MdEkS 7JBYASnzItmrbh83xmx5BlAJkwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKbi6MLl tLl66TXqDpqSZAVdB+xbMB8GA1UdIwQYMBaAFBnqW0XwHoC+Cnbc2smSa25nQvIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjE3RC8xOERDNTc0MjE4 MDgxMUVCQTg1NzMwMTJDNEY5QUUwMi9HZXBiUmZBZWdMNEtkdHpheVpKcmJtZEM4 aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dlcGJSZkFlZ0w0S2R0emF5WkpyYm1kQzhpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYxN0QvMThEQzU3NDIxODA4MTFFQkE4NTczMDEyQzRGOUFFMDIvQjIzNTZEMUEx ODA5MTFFQjk2MkNCMjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIt+pwDBAJn20QwDQQCAAIwBwMFACQFTYAwDQYJKoZIhvcN AQELBQADggEBAFsWygVP+h+IHgvzWy2Mb+peBXnW9yuKEtJ8O7Llbeu3AcStUuX9 56nDEYqTwr706gE04pb5jGmkAHjDR3N8SYEzpbiW6jywwj07AxMki2VUUOijR0aC 0ScWN1zjED6jjylj0DIN0HI4GlZ2zMJXgIpLqaWJWTKm3A8eAYgFLOH3KRIYvRfg jikpzLRq61U+cMZztDUp2XI162HOQqBKCJLrHPzF8e1Se9wmHRup9K1pvLY5DYv2 +OXe34oBTT7E1X6b18wrjugE0cDMLSopEYjV/nBqVRhKDmwv8YFBaxcI8A/t9pHD pbKUHFAplRJlaCJEK0ZFZibqLXr2AB+dSBY= -----END CERTIFICATE-----Generated at Tue May 7 00:53:17 2024 by rpki-client on console-ams.rpki-client.org