$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa File: BCA3B016F72811EE8C4CBB51C4F9AE02.roa (raw, json) Hash identifier: OTR8HrOSxP+KCA5e3CFiYWGKbOwEYWOR6RcfqgP8HyY= Subject key identifier: 21:28:CE:60:46:FB:C9:D2:C8:18:2A:8A:C5:18:8A:A0:78:A2:C9:68 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1883 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa Signing time: Wed 10 Apr 2024 12:20:15 +0000 ROA not before: Wed 10 Apr 2024 12:20:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55836 IP address blocks: 118.215.152.0/21 maxlen: 21 122.252.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6275 (0x1883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Apr 10 12:20:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=661683fe-8b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:d9:15:2a:68:a6:82:84:fd:d5:94:35:45: a1:6e:02:75:04:50:61:8b:cf:b1:bb:a1:c5:39:4c: e5:f3:19:5d:8b:1e:4a:52:f4:e2:0a:77:36:5a:bb: ac:aa:16:78:68:fa:1d:1c:5b:81:74:f3:10:20:08: 14:05:cc:74:da:d0:3d:98:12:54:27:8c:97:9a:92: 41:a3:c7:ac:ed:e6:1f:a9:9f:fc:5c:28:ba:1e:4f: 7c:82:75:21:02:42:14:73:8d:4e:9c:79:11:ec:ea: 4f:30:19:ce:6b:42:b2:6a:94:d8:5e:a9:14:8a:4d: df:95:c3:83:d2:c6:7b:fa:39:8b:77:e1:ba:0f:1f: 34:e0:fd:d8:c9:d1:32:4f:08:5f:f0:4f:ae:63:da: d3:f8:09:d8:34:29:3c:92:1d:2c:c1:3b:7a:2c:51: a2:21:d3:47:66:31:2e:10:9e:f2:5f:e7:37:eb:29: 75:b1:b2:70:35:fe:ad:db:54:23:fa:b8:2c:ed:64: 22:75:55:bf:e5:e9:4e:8c:6e:38:2a:f1:23:c5:0e: f1:b8:01:9c:7d:52:a0:52:e7:cf:37:c8:62:9c:b2: bf:55:1c:4f:1e:9d:62:18:da:81:06:c6:a3:6a:c2: d4:42:47:83:5e:99:a5:d8:a9:42:5e:f9:65:ee:37: 73:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:28:CE:60:46:FB:C9:D2:C8:18:2A:8A:C5:18:8A:A0:78:A2:C9:68 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.215.152.0/21 122.252.136.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:dd:c9:9d:95:fa:34:94:9f:e4:30:f7:71:7e:0f:23:e8:27: 12:a6:09:5d:b7:d4:de:02:e3:14:f9:18:1e:a8:86:c7:0f:75: 0e:90:86:f5:4c:69:a3:d5:e6:c1:22:10:2b:51:45:19:65:ed: 98:59:8d:4d:dd:06:b2:d6:a9:59:47:71:3c:29:99:11:fc:ad: 43:9a:d5:48:33:7e:62:c0:22:27:d5:c2:6b:0b:e9:e0:03:dd: b9:82:0b:65:30:8e:ee:7b:f6:52:5d:9a:e8:63:90:6f:db:2d: eb:f3:7d:c1:23:6a:41:43:3e:9a:7c:b8:1b:bd:fd:73:16:19: b1:ad:59:ac:9f:d9:25:53:20:cc:98:96:06:72:6d:09:41:30: ba:b6:9e:ce:ea:86:42:d1:59:68:51:6d:ea:7d:8a:b7:dc:5d: 26:40:cf:4a:7b:d8:b9:69:17:a1:83:ed:ad:9d:d0:fd:bf:f4: bd:6b:93:95:a9:2b:81:a1:a1:b4:f7:8e:cd:53:43:66:f2:82: 68:6a:0e:58:13:97:0b:c0:13:b2:13:13:ef:78:5e:77:53:99: 14:14:73:5b:95:dc:30:57:fd:f3:c3:f6:5a:58:5a:e3:4a:c8: 03:8f:06:e2:22:93:88:74:39:d2:e0:6c:33:2d:96:16:97:89: 5c:4d:b1:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjQwNDEwMTIyMDE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2ODNmZS04YjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIzZFSpopoKE/dWUNUWhbgJ1BFBhi8+xu6HFOUzl8xldix5KUvTiCnc2Wrus qhZ4aPodHFuBdPMQIAgUBcx02tA9mBJUJ4yXmpJBo8es7eYfqZ/8XCi6Hk98gnUh AkIUc41OnHkR7OpPMBnOa0KyapTYXqkUik3flcOD0sZ7+jmLd+G6Dx804P3YydEy Twhf8E+uY9rT+AnYNCk8kh0swTt6LFGiIdNHZjEuEJ7yX+c36yl1sbJwNf6t21Qj +rgs7WQidVW/5elOjG44KvEjxQ7xuAGcfVKgUufPN8hinLK/VRxPHp1iGNqBBsaj asLUQkeDXpml2KlCXvll7jdzGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCEozmBG +8nSyBgqisUYiqB4osloMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQkNBM0IwMTZG NzI4MTFFRThDNENCQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAN215gDBAN6/IgwDQYJKoZIhvcNAQELBQADggEBAI/dyZ2V +jSUn+Qw93F+DyPoJxKmCV231N4C4xT5GB6ohscPdQ6QhvVMaaPV5sEiECtRRRll 7ZhZjU3dBrLWqVlHcTwpmRH8rUOa1UgzfmLAIifVwmsL6eAD3bmCC2Uwju579lJd muhjkG/bLevzfcEjakFDPpp8uBu9/XMWGbGtWayf2SVTIMyYlgZybQlBMLq2ns7q hkLRWWhRbep9irfcXSZAz0p72LlpF6GD7a2d0P2/9L1rk5WpK4GhobT3js1TQ2by gmhqDlgTlwvAE7ITE+94XndTmRQUc1uV3DBX/fPD9lpYWuNKyAOPBuIik4h0OdLg bDMtlhaXiVxNsRE= -----END CERTIFICATE-----Generated at Fri May 31 19:47:48 2024 by rpki-client on console-fra.rpki-client.org