$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa File: E4C0040A8C8C11EBB81BA228C4F9AE02.roa (raw, json) Hash identifier: 8m0invG+9b38yvDYCSRYwDKUjVKmIVlF+1uQJsgg3lY= Subject key identifier: 87:74:A7:70:8B:C9:74:73:ED:F6:61:9E:F6:78:02:56:5E:C1:07:47 Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 056E Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa Signing time: Sat 02 Sep 2023 23:10:46 +0000 ROA not before: Sat 02 Sep 2023 23:10:46 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 1273 IP address blocks: 103.23.192.0/22 maxlen: 22 202.89.16.0/21 maxlen: 21 202.89.16.0/22 maxlen: 22 203.169.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 2 23:10:46 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3c0f6-bbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9c:77:73:22:f2:eb:3c:6c:76:06:03:f2:50: 28:ac:79:d6:68:c3:ba:a3:5e:fe:fd:6a:1e:3a:0d: 2f:5b:1f:a1:e5:b3:b7:6e:4b:8a:c3:9d:01:39:77: 12:fe:79:de:aa:18:4a:54:cd:f2:2e:c4:ad:b2:c8: 82:ca:32:e8:45:3f:65:28:aa:25:b9:69:51:69:9e: b3:26:93:8b:e4:e1:9b:58:12:5d:0d:cd:25:e9:1b: 8d:6d:f2:47:df:93:4c:9d:52:dd:95:5e:35:21:e5: 29:66:64:de:55:51:90:56:c3:91:f8:c5:c6:25:cf: 53:a9:f9:7b:1b:e3:bd:0b:41:9b:17:14:6a:1d:8e: b2:f3:fe:ad:ce:46:0e:18:52:fa:ce:e2:c2:ef:32: 79:38:fc:0e:c3:60:f4:0c:d2:75:85:2b:d9:10:e4: d5:5c:4f:1a:90:6e:00:1a:75:6e:44:9a:4c:69:12: 96:ed:93:70:50:f3:d6:de:53:90:d6:80:c1:96:c4: 11:d5:24:43:4a:c4:be:38:2f:1a:79:8c:18:f3:6f: cf:11:3f:4b:4a:e4:0e:ae:c5:82:c3:0b:82:76:0a: f5:f2:9d:c7:e0:eb:a1:76:ed:d2:e2:d5:42:42:56: 6a:0d:11:7c:ed:ea:ea:83:ad:cd:99:df:37:51:d8: ec:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:74:A7:70:8B:C9:74:73:ED:F6:61:9E:F6:78:02:56:5E:C1:07:47 X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.192.0/22 202.89.16.0/21 203.169.56.0/23 Signature Algorithm: sha256WithRSAEncryption 38:4c:75:ca:b6:c1:0e:d3:31:54:06:a1:ec:93:97:5f:79:fe: c1:12:b9:cd:35:4c:a4:cd:ad:c0:9b:98:f5:17:33:eb:6a:10: 70:07:e3:53:b1:0d:4d:09:80:d7:ab:e7:f3:a8:54:d9:39:80: 89:1c:91:52:ad:61:02:86:a1:dc:44:3b:01:02:4c:e4:1e:02: 0e:70:d7:61:14:93:96:b3:a2:d0:2f:a6:06:99:49:d6:63:6f: a8:9d:cd:8e:1d:6c:0e:59:9b:e2:ca:31:36:6f:c0:cc:c1:86: a2:9d:71:e4:90:6e:cf:8f:24:56:69:24:4f:f6:8a:67:06:4b: 85:7a:09:64:43:5e:9a:04:aa:fe:5d:38:33:94:37:82:8b:43: 73:79:68:a3:02:84:5e:f5:75:3d:c9:c4:f0:68:3d:e6:d3:46: fb:7b:be:30:7e:b5:29:98:ca:06:91:c2:9f:5b:16:58:bb:3c: 78:7b:25:89:24:15:7f:36:4b:0a:03:61:98:47:ed:6d:2c:83: 4b:8a:b7:1e:3a:f8:46:95:42:69:d0:00:07:94:2b:07:06:16: e7:e4:61:4c:18:05:f5:84:da:cf:8e:74:63:6c:ca:aa:b6:90: ac:be:65:98:ef:6d:ed:83:39:5b:81:3c:99:e3:2e:c3:90:ee: 44:97:b5:12 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjMwOTAyMjMxMDQ2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYzBmNi1iYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupx3cyLy6zxsdgYD8lAorHnWaMO6o17+/WoeOg0vWx+h5bO3bkuKw50BOXcS /nneqhhKVM3yLsStssiCyjLoRT9lKKoluWlRaZ6zJpOL5OGbWBJdDc0l6RuNbfJH 35NMnVLdlV41IeUpZmTeVVGQVsOR+MXGJc9Tqfl7G+O9C0GbFxRqHY6y8/6tzkYO GFL6zuLC7zJ5OPwOw2D0DNJ1hSvZEOTVXE8akG4AGnVuRJpMaRKW7ZNwUPPW3lOQ 1oDBlsQR1SRDSsS+OC8aeYwY82/PET9LSuQOrsWCwwuCdgr18p3H4Ouhdu3S4tVC QlZqDRF87erqg63Nmd83Udjs4QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFId0p3CL yXRz7fZhnvZ4AlZewQdHMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvRTRDMDA0MEE4 QzhDMTFFQkI4MUJBMjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnF8ADBAPKWRADBAHLqTgwDQYJKoZIhvcNAQELBQADggEB ADhMdcq2wQ7TMVQGoeyTl195/sESuc01TKTNrcCbmPUXM+tqEHAH41OxDU0JgNer 5/OoVNk5gIkckVKtYQKGodxEOwECTOQeAg5w12EUk5azotAvpgaZSdZjb6idzY4d bA5Zm+LKMTZvwMzBhqKdceSQbs+PJFZpJE/2imcGS4V6CWRDXpoEqv5dODOUN4KL Q3N5aKMChF71dT3JxPBoPebTRvt7vjB+tSmYygaRwp9bFli7PHh7JYkkFX82SwoD YZhH7W0sg0uKtx46+EaVQmnQAAeUKwcGFufkYUwYBfWE2s+OdGNsyqq2kKy+ZZjv be2DOVuBPJnjLsOQ7kSXtRI= -----END CERTIFICATE-----Generated at Fri May 17 01:02:49 2024 by rpki-client on console-ams.rpki-client.org