$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/5871666CFAD711EEA3D2F145C4F9AE02.roa File: 5871666CFAD711EEA3D2F145C4F9AE02.roa (raw, json) Hash identifier: O+0LHsC3L1ZFYZgFSrcwWJudGaOFWfmZO8s0ITSqe78= Subject key identifier: 75:7A:C7:FF:45:73:2F:BC:D6:02:86:C7:E9:02:E3:0C:D2:0D:4F:2C Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 095B Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/5871666CFAD711EEA3D2F145C4F9AE02.roa Signing time: Mon 15 Apr 2024 03:22:10 +0000 ROA not before: Mon 15 Apr 2024 03:22:10 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149495 IP address blocks: 43.247.120.0/24 maxlen: 24 43.247.121.0/24 maxlen: 24 43.247.122.0/24 maxlen: 24 2403:7980:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 15 03:22:10 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=661c9d62-3f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d4:b7:ab:95:df:f2:87:30:67:0c:bf:ab:a9: 87:b9:cc:9d:d2:e9:1d:49:38:c7:ee:0b:22:80:fc: a6:7a:42:5e:0a:21:55:52:d6:c4:83:56:87:c5:a2: f8:d9:4c:6f:78:91:1c:25:ef:f2:d1:47:44:4f:7b: e3:56:3b:86:c3:83:db:e6:f2:ae:e0:56:1a:df:cb: c1:87:c9:01:de:42:c4:0a:d3:80:d6:37:dc:ec:48: 90:d0:cc:f8:23:6f:0f:3d:1e:bd:88:8f:c4:18:e2: 27:92:7b:75:48:f4:c5:d8:3e:45:1c:64:b1:56:0b: 8d:24:c8:c4:74:32:5f:63:a5:f7:6a:b4:ea:5f:34: 13:1b:08:55:b4:60:d3:5e:4c:fb:04:6d:64:26:a7: 2d:06:2a:d0:c5:4f:a3:ac:56:88:1b:df:d0:b3:79: da:b0:54:7a:42:6a:86:82:66:d1:c9:60:6c:27:01: e3:fc:7d:c4:41:02:ff:62:b1:c1:fc:3a:03:d6:1c: 9b:b5:bd:2c:af:16:20:3f:5b:f2:df:ff:36:20:40: fa:d1:d1:00:55:52:38:6a:17:92:08:79:f3:ff:09: b0:c9:a5:be:ff:e1:ab:93:57:16:d8:84:2d:69:34: 1e:a3:f7:a9:e6:0b:69:a1:20:5f:88:c1:71:0d:8f: 09:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7A:C7:FF:45:73:2F:BC:D6:02:86:C7:E9:02:E3:0C:D2:0D:4F:2C X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/5871666CFAD711EEA3D2F145C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.120.0-43.247.122.255 IPv6: 2403:7980:f000::/36 Signature Algorithm: sha256WithRSAEncryption 31:61:bc:e8:51:f6:f8:fc:a8:7f:2c:c3:ee:60:59:06:41:42: 0a:4d:58:5b:91:c8:d3:58:0c:0f:a3:c5:10:b9:70:26:5a:10: ad:5c:85:9c:df:2b:85:62:1a:b0:37:00:c6:d0:75:a7:ca:4f: 1c:05:b6:b9:af:13:26:0c:9e:51:12:8e:f2:20:6d:9a:39:20: 5b:12:78:88:13:70:b1:10:ea:e0:28:93:26:23:62:1f:a3:42: d7:b3:b2:45:40:4d:57:0e:22:26:73:d9:f0:a5:f1:9b:13:20: b8:a7:7a:67:f1:7b:d2:ef:d5:2c:e2:c0:d7:d4:c8:9d:b9:c9: cf:61:02:78:53:05:e4:ce:3d:2d:7e:4d:f6:6e:c0:29:18:8f: 29:39:3a:fc:45:61:18:d1:af:51:30:0c:9f:9e:ee:6a:b2:e6: aa:a3:15:cd:71:6c:b7:ee:4a:ba:e6:6a:a0:d8:4e:92:42:42: 37:3f:fc:08:6e:4b:e4:fc:22:75:f8:42:ae:c3:34:a8:70:c2: c2:d7:5b:6e:84:2f:81:ef:eb:c4:9b:92:80:4d:ef:eb:8b:20: 87:13:f7:62:d3:d8:0e:fc:1e:7d:76:4f:3c:bf:a4:c4:89:11: 75:33:44:92:d0:14:7d:54:2e:4b:b3:34:26:fc:f1:04:c7:e9: ba:22:75:3b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjQwNDE1MDMyMjEwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFjOWQ2Mi0zZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9S3q5Xf8ocwZwy/q6mHucyd0ukdSTjH7gsigPymekJeCiFVUtbEg1aHxaL4 2UxveJEcJe/y0UdET3vjVjuGw4Pb5vKu4FYa38vBh8kB3kLECtOA1jfc7EiQ0Mz4 I28PPR69iI/EGOInknt1SPTF2D5FHGSxVguNJMjEdDJfY6X3arTqXzQTGwhVtGDT Xkz7BG1kJqctBirQxU+jrFaIG9/Qs3nasFR6QmqGgmbRyWBsJwHj/H3EQQL/YrHB /DoD1hybtb0srxYgP1vy3/82IED60dEAVVI4aheSCHnz/wmwyaW+/+Grk1cW2IQt aTQeo/ep5gtpoSBfiMFxDY8J7wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFHV6x/9F cy+81gKGx+kC4wzSDU8sMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNTg3MTY2NkNG QUQ3MTFFRUEzRDJGMTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMBQEAgABMA4wDAMEAyv3eAMEACv3ejAOBAIAAjAIAwYEJAN5gPAwDQYJKoZI hvcNAQELBQADggEBADFhvOhR9vj8qH8sw+5gWQZBQgpNWFuRyNNYDA+jxRC5cCZa EK1chZzfK4ViGrA3AMbQdafKTxwFtrmvEyYMnlESjvIgbZo5IFsSeIgTcLEQ6uAo kyYjYh+jQtezskVATVcOIiZz2fCl8ZsTILinemfxe9Lv1SziwNfUyJ25yc9hAnhT BeTOPS1+TfZuwCkYjyk5OvxFYRjRr1EwDJ+e7mqy5qqjFc1xbLfuSrrmaqDYTpJC Qjc//AhuS+T8InX4Qq7DNKhwwsLXW26EL4Hv68SbkoBN7+uLIIcT92LT2A78Hn12 Tzy/pMSJEXUzRJLQFH1ULkuzNCb88QTH6boidTs= -----END CERTIFICATE-----Generated at Wed May 22 22:41:50 2024 by rpki-client on console-fra.rpki-client.org