$ rpki-client -vvf rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/ACE45EC4C5AE11E998CC136CC4F9AE02.roa File: ACE45EC4C5AE11E998CC136CC4F9AE02.roa (raw, json) Hash identifier: hvAAPprjZ8XpBOcdJ3rf+ZF+RosexPPkkk6NSxWm8p4= Subject key identifier: 47:E0:7A:73:3F:49:AA:AB:A4:B3:82:7F:83:98:34:61:2E:F2:30:9A Certificate issuer: /CN=A915C532/serialNumber=0BA75469C62D259205BA8BB65DB99D0337BAD77D Certificate serial: 0CC9 Authority key identifier: 0B:A7:54:69:C6:2D:25:92:05:BA:8B:B6:5D:B9:9D:03:37:BA:D7:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6dUacYtJZIFuou2XbmdAze6130.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/ACE45EC4C5AE11E998CC136CC4F9AE02.roa Signing time: Tue 31 Oct 2023 19:06:27 +0000 ROA not before: Tue 31 Oct 2023 19:06:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 54187 IP address blocks: 103.21.28.0/22 maxlen: 24 2405:5500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/C6dUacYtJZIFuou2XbmdAze6130.crl rsync://rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/C6dUacYtJZIFuou2XbmdAze6130.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6dUacYtJZIFuou2XbmdAze6130.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C532/serialNumber=0BA75469C62D259205BA8BB65DB99D0337BAD77D Validity Not Before: Oct 31 19:06:27 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65415033-f36a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:08:62:ea:c9:1b:eb:13:14:dd:39:8a:62:d2: 68:4c:eb:90:51:2c:a1:16:79:0d:8b:b4:e8:39:67: e6:94:46:83:be:af:3b:a1:ca:18:13:8e:17:ec:2e: fd:9c:ec:8f:02:7f:00:4d:09:62:60:98:84:17:72: 9b:0d:09:f3:f5:93:84:56:53:53:57:2b:21:17:22: 49:64:43:d3:12:84:f5:72:f2:f2:d9:22:07:eb:bd: fc:3f:6e:32:6b:85:9f:bf:b3:84:4d:d9:62:8a:81: e6:25:39:ca:ef:cb:bb:87:46:be:63:5b:c8:7d:bd: 3f:d6:69:f2:7d:bd:9d:ab:f5:75:ed:f9:da:f2:b7: 2c:9d:e1:64:3a:fc:a7:16:ed:d7:26:c3:3c:d0:73: d8:a0:4b:67:a6:0f:cc:90:aa:07:13:49:6f:71:39: 6a:df:9e:d6:25:a0:9f:cb:64:7f:82:6f:81:ca:43: 49:0f:c4:62:35:8c:47:4a:33:dc:0a:b7:34:07:f5: c8:ba:d5:48:8c:c4:cb:af:8a:1c:07:50:cb:9d:39: 48:78:1b:f2:2f:60:50:f6:7d:7f:3b:cf:81:a0:1b: 25:33:54:8b:53:71:59:f4:a0:dc:c2:90:24:e8:f3: 6e:b0:e4:b5:db:9c:5a:e4:ad:4a:da:15:90:65:ad: 41:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E0:7A:73:3F:49:AA:AB:A4:B3:82:7F:83:98:34:61:2E:F2:30:9A X509v3 Authority Key Identifier: keyid:0B:A7:54:69:C6:2D:25:92:05:BA:8B:B6:5D:B9:9D:03:37:BA:D7:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/C6dUacYtJZIFuou2XbmdAze6130.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6dUacYtJZIFuou2XbmdAze6130.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C532/B42B7D22B21011E9AD7E0F79C4F9AE02/ACE45EC4C5AE11E998CC136CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.28.0/22 IPv6: 2405:5500::/32 Signature Algorithm: sha256WithRSAEncryption a2:21:1d:87:55:5f:27:90:be:be:43:1e:0f:7a:16:80:62:d2: fc:63:46:32:6c:b4:58:59:6b:9e:68:55:5a:56:32:08:c9:9a: 65:54:06:d4:53:ee:6b:82:ac:75:82:cc:92:a3:e2:4f:2b:0d: 81:10:4d:86:6e:23:17:56:eb:f2:57:81:40:98:22:b8:01:d1: ea:6b:3f:3b:6a:21:84:ac:51:cb:6a:08:77:61:76:da:be:c0: 20:3d:9e:c1:d3:ca:f5:d9:e6:7b:c1:fd:1b:ce:2f:0b:f0:62: 05:1c:c5:7c:6c:7a:dd:7e:87:26:b5:13:f0:51:da:0d:76:04: 08:04:11:c0:75:7b:54:81:aa:46:5d:d7:8f:8c:b8:59:f7:a9: f5:5e:c1:5d:d4:18:b2:56:d5:c0:39:eb:c4:a8:66:90:7f:36: 1f:ce:55:61:e2:77:94:c8:40:fb:dc:16:05:c2:ad:96:12:10: db:cf:eb:e5:9f:4b:83:f7:59:c6:1c:9e:06:e8:fd:69:6a:7c: 34:ef:b7:ca:0a:f7:20:5e:b9:65:cf:01:8d:5e:68:ca:03:f8: be:ef:21:6a:d3:38:ca:86:13:b6:a1:e5:12:09:cb:42:a6:d0: 62:db:a3:82:bc:b4:66:06:24:41:37:e9:2a:b3:e0:86:71:4a: 59:c9:ad:f4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM1MzIxMTAvBgNVBAUTKDBCQTc1NDY5QzYyRDI1OTIwNUJBOEJCNjVEQjk5RDAz MzdCQUQ3N0QwHhcNMjMxMDMxMTkwNjI3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxNTAzMy1mMzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywhi6skb6xMU3TmKYtJoTOuQUSyhFnkNi7ToOWfmlEaDvq87ocoYE44X7C79 nOyPAn8ATQliYJiEF3KbDQnz9ZOEVlNTVyshFyJJZEPTEoT1cvLy2SIH6738P24y a4Wfv7OETdliioHmJTnK78u7h0a+Y1vIfb0/1mnyfb2dq/V17fna8rcsneFkOvyn Fu3XJsM80HPYoEtnpg/MkKoHE0lvcTlq357WJaCfy2R/gm+BykNJD8RiNYxHSjPc Crc0B/XIutVIjMTLr4ocB1DLnTlIeBvyL2BQ9n1/O8+BoBslM1SLU3FZ9KDcwpAk 6PNusOS125xa5K1K2hWQZa1BywIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEfgenM/ SaqrpLOCf4OYNGEu8jCaMB8GA1UdIwQYMBaAFAunVGnGLSWSBbqLtl25nQM3utd9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzUzMi9CNDJCN0QyMkIy MTAxMUU5QUQ3RTBGNzlDNEY5QUUwMi9DNmRVYWNZdEpaSUZ1b3UyWGJtZEF6ZTYx MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2ZFVhY1l0SlpJRnVvdTJYYm1kQXplNjEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM1MzIvQjQyQjdEMjJCMjEwMTFFOUFEN0UwRjc5QzRGOUFFMDIvQUNFNDVFQzRD NUFFMTFFOTk4Q0MxMzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFRwwDQQCAAIwBwMFACQFVQAwDQYJKoZIhvcNAQELBQAD ggEBAKIhHYdVXyeQvr5DHg96FoBi0vxjRjJstFhZa55oVVpWMgjJmmVUBtRT7muC rHWCzJKj4k8rDYEQTYZuIxdW6/JXgUCYIrgB0eprPztqIYSsUctqCHdhdtq+wCA9 nsHTyvXZ5nvB/RvOLwvwYgUcxXxset1+hya1E/BR2g12BAgEEcB1e1SBqkZd14+M uFn3qfVewV3UGLJW1cA568SoZpB/Nh/OVWHid5TIQPvcFgXCrZYSENvP6+WfS4P3 WcYcngbo/WlqfDTvt8oK9yBeuWXPAY1eaMoD+L7vIWrTOMqGE7ah5RIJy0Km0GLb o4K8tGYGJEE36Sqz4IZxSlnJrfQ= -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org