$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa File: DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa (raw, json) Hash identifier: Ocl3HidpkRYsHDLW83MnIFTm13n7uWYjmu59XFUc298= Subject key identifier: AB:E4:F6:B8:EA:2C:B5:F3:1F:81:D8:CB:90:00:C4:AB:CD:50:98:36 Certificate issuer: /CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Certificate serial: 07EA Authority key identifier: 07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa Signing time: Fri 29 Mar 2024 07:20:52 +0000 ROA not before: Fri 29 Mar 2024 07:20:52 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17819 IP address blocks: 45.116.132.0/24 maxlen: 24 45.116.135.0/24 maxlen: 24 103.9.92.0/24 maxlen: 24 103.9.93.0/24 maxlen: 24 103.37.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Validity Not Before: Mar 29 07:20:52 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66066bd3-0148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:00:22:67:18:53:42:25:c0:2c:3f:76:d1:bf: 7c:27:f7:ac:53:c5:4b:c1:2b:d3:85:ce:8d:08:fa: ac:d6:f0:a2:55:e6:a1:d8:9b:5c:14:2f:46:ca:1a: 14:4d:8f:15:50:96:32:f2:0b:3d:09:a6:3d:ca:09: 4b:43:29:59:40:b4:5d:f6:73:ff:09:e7:b8:f5:c6: 84:30:b3:28:66:59:08:3b:dc:52:65:a6:1f:18:78: 3d:11:d3:65:d6:6f:80:79:96:0b:bc:75:b1:e7:14: a5:44:8a:65:83:c8:95:6c:0b:da:cb:48:a7:79:c6: a7:b6:ad:21:fe:8c:99:3f:16:e3:b3:b5:d7:f2:dc: f6:07:94:30:66:27:7c:6c:cd:b8:c9:3a:ef:70:7e: 0a:0e:dc:e1:e0:0d:86:e6:16:e7:ec:03:02:51:8b: 01:6e:f4:b9:4a:aa:64:a5:76:0f:b7:60:52:ef:60: 3c:7c:a4:70:6b:f7:c6:66:98:c0:e9:ca:14:d2:68: ce:85:f9:ea:fd:a0:b6:91:41:1d:90:91:85:9f:f5: 4b:31:53:96:ea:d9:72:da:b3:b6:f8:df:50:ce:b9: 20:a3:0e:e6:43:36:08:54:e7:42:cf:64:4a:66:76: cc:09:90:54:b4:ed:7b:ef:c8:64:dc:fe:e9:5c:76: a1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E4:F6:B8:EA:2C:B5:F3:1F:81:D8:CB:90:00:C4:AB:CD:50:98:36 X509v3 Authority Key Identifier: keyid:07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.132.0/24 45.116.135.0/24 103.9.92.0/23 103.37.132.0/24 Signature Algorithm: sha256WithRSAEncryption 68:71:fe:3f:e8:04:34:f9:a5:15:6f:65:9c:bd:65:c5:a2:3c: 5e:a3:9e:f6:aa:70:24:c2:5a:c0:de:d1:da:f5:47:af:98:85: ff:6d:f1:f6:b4:ce:61:a0:1b:a1:fd:ca:63:fe:6f:fe:8d:e7: e3:d8:49:9b:f0:0f:dc:8c:eb:15:28:88:6c:97:af:f0:e2:d0: 3b:3d:a9:4c:32:ba:32:6f:28:16:3a:d7:8a:09:6a:7d:d5:92: 39:9a:76:c2:a3:e1:20:2a:68:a5:83:3e:b3:39:c8:0b:06:22: c0:60:23:a1:c8:ab:41:3b:ec:81:f3:31:b6:11:31:fb:07:0e: 34:72:ec:80:7e:1e:41:aa:6d:8c:6e:96:4a:8b:b8:fd:80:86: f9:d8:ee:70:f9:ef:5d:a2:84:54:a2:e8:98:b7:ba:b1:1b:6b: 02:19:11:c7:6c:47:02:78:45:1d:cc:1b:32:c0:48:bf:03:83: 1d:84:46:f4:f1:d5:9e:d8:29:c5:77:69:5b:01:38:f7:d1:95: 0c:5a:f2:f4:98:3f:c8:93:4a:52:d8:2c:66:94:53:36:88:0b: fa:f2:5b:85:41:15:d2:69:67:cd:9e:f8:a8:c6:ef:84:1f:9d: 49:06:96:bc:ca:d1:84:e0:56:1f:c5:fc:1a:24:42:5c:45:5f: de:1f:ba:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDQjExMTAvBgNVBAUTKDA3MkNERjY1MUIzMTJDQUZCREIwNDlBMzM1NjlGRUE2 RUY2Qzk1MTcwHhcNMjQwMzI5MDcyMDUyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA2NmJkMy0wMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAAiZxhTQiXALD920b98J/esU8VLwSvThc6NCPqs1vCiVeah2JtcFC9GyhoU TY8VUJYy8gs9CaY9yglLQylZQLRd9nP/Cee49caEMLMoZlkIO9xSZaYfGHg9EdNl 1m+AeZYLvHWx5xSlRIplg8iVbAvay0inecantq0h/oyZPxbjs7XX8tz2B5QwZid8 bM24yTrvcH4KDtzh4A2G5hbn7AMCUYsBbvS5SqpkpXYPt2BS72A8fKRwa/fGZpjA 6coU0mjOhfnq/aC2kUEdkJGFn/VLMVOW6tly2rO2+N9Qzrkgow7mQzYIVOdCz2RK ZnbMCZBUtO1778hk3P7pXHahSQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKvk9rjq LLXzH4HYy5AAxKvNUJg2MB8GA1UdIwQYMBaAFAcs32UbMSyvvbBJozVp/qbvbJUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNCMS9EMDBERDQ5OEJD MDIxMUVBQjhDNzkwNDhDNEY5QUUwMi9CeXpmWlJzeExLLTlzRW1qTlduLXB1OXNs UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5emZaUnN4TEstOXNFbWpOV24tcHU5c2xSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDQjEvRDAwREQ0OThCQzAyMTFFQUI4Qzc5MDQ4QzRGOUFFMDIvREY1RTdDQjZF RDlDMTFFRTgxRUZENDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtdIQDBAAtdIcDBAFnCVwDBABnJYQwDQYJKoZIhvcNAQEL BQADggEBAGhx/j/oBDT5pRVvZZy9ZcWiPF6jnvaqcCTCWsDe0dr1R6+Yhf9t8fa0 zmGgG6H9ymP+b/6N5+PYSZvwD9yM6xUoiGyXr/Di0Ds9qUwyujJvKBY614oJan3V kjmadsKj4SAqaKWDPrM5yAsGIsBgI6HIq0E77IHzMbYRMfsHDjRy7IB+HkGqbYxu lkqLuP2AhvnY7nD5712ihFSi6Ji3urEbawIZEcdsRwJ4RR3MGzLASL8Dgx2ERvTx 1Z7YKcV3aVsBOPfRlQxa8vSYP8iTSlLYLGaUUzaIC/ryW4VBFdJpZ82e+KjG74Qf nUkGlrzK0YTgVh/F/BokQlxFX94fuic= -----END CERTIFICATE-----Generated at Tue May 14 23:01:09 2024 by rpki-client on console-fra.rpki-client.org