$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa File: 061C3362985911EBA5F39B54C4F9AE02.roa (raw, json) Hash identifier: WXWPxOAEeX5n+cYH5tAIUtQ3nPOOt+5GBQi4UF7/MMA= Subject key identifier: 34:DC:65:BA:90:0A:EF:58:77:5C:90:F5:C9:07:87:B3:A2:0B:7F:66 Certificate issuer: /CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Certificate serial: 04C1 Authority key identifier: 44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa Signing time: Tue 06 Jun 2023 23:35:53 +0000 ROA not before: Tue 06 Jun 2023 23:35:53 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139034 IP address blocks: 104.255.36.0/22 maxlen: 22 104.255.36.0/24 maxlen: 24 104.255.37.0/24 maxlen: 24 104.255.38.0/24 maxlen: 24 104.255.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Validity Not Before: Jun 6 23:35:53 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647fc2d8-8706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:53:27:27:2a:6b:2b:da:8a:96:b9:73:94:aa: e5:aa:a0:08:eb:b2:54:30:3f:1d:ed:ef:8b:35:17: 45:90:c0:d5:a5:a0:28:fb:91:22:f0:1d:76:e9:11: 47:a4:03:86:fc:ee:c1:8e:40:de:62:ed:86:b4:2b: fc:6b:95:1c:8d:d2:0e:1a:d8:a8:9c:1f:f2:05:15: 56:04:88:da:e4:72:c3:45:f3:b6:2e:e1:68:a9:8a: a9:db:42:ff:a5:81:bd:d5:fa:c9:82:00:d3:6d:8f: 3b:ad:27:4c:c7:0f:e4:4a:c1:10:67:c2:ca:c1:be: 2e:ec:c6:68:c4:8b:3e:1a:a1:a6:94:17:37:2d:02: 26:95:9c:a7:fc:91:2c:ff:1a:ef:18:c0:75:97:69: 57:aa:62:a8:07:b8:0a:b2:03:ff:ab:4e:47:6b:08: b4:be:c1:98:03:75:e6:a3:49:be:d6:9a:71:d7:6e: b1:ab:71:8d:ce:9d:90:85:af:1d:3f:46:5d:86:25: f9:29:b8:1b:a1:b0:71:68:59:9f:d1:df:2b:c6:76: 5b:b7:6f:1f:0f:82:49:03:26:c0:fc:4a:ca:7a:d1: 0f:98:11:aa:08:14:47:0c:d4:c0:94:c8:43:a3:87: fb:3a:72:06:45:d7:23:b9:13:7c:a0:3b:06:13:63: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:DC:65:BA:90:0A:EF:58:77:5C:90:F5:C9:07:87:B3:A2:0B:7F:66 X509v3 Authority Key Identifier: keyid:44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.255.36.0/22 Signature Algorithm: sha256WithRSAEncryption 71:21:d0:ec:01:d0:ca:a4:07:7d:8b:99:ce:02:f2:d1:46:71: c3:d8:e5:bd:e3:8f:f1:5a:4c:26:e5:4c:89:3d:88:ab:d6:ea: 42:3f:62:ae:b0:52:41:db:5f:e9:d8:2b:8c:0b:6b:5c:80:ff: e6:1f:a8:5c:25:d0:f9:b1:1f:e0:10:de:b9:0d:9c:e7:b2:3b: f5:21:ec:a4:a3:e5:76:16:81:5a:2e:fd:f2:cb:df:ca:03:fa: 52:67:5d:ba:ce:97:11:49:6d:ff:86:1d:04:c6:ab:61:9b:40: 64:90:82:51:19:56:05:b0:27:bb:ba:21:b9:30:7b:b3:84:a4: 86:c4:81:20:53:90:31:5d:c2:40:c6:43:a3:e6:21:1c:72:dd: 04:f3:e8:da:2c:bc:79:5f:ea:30:82:b4:46:ec:0c:99:74:12: 31:65:af:ac:ae:fa:4b:6c:45:dc:79:72:80:63:ff:a8:a0:cd: a7:a9:28:11:cd:15:ba:12:9c:28:02:bc:4b:99:15:2a:c6:9e: ff:82:14:99:59:03:2a:96:b4:8c:60:33:a9:76:0c:2c:f2:1b: 92:1d:ac:22:e7:a5:7b:f6:da:02:34:ee:d1:eb:f9:fb:d8:bb: 89:fa:98:0a:c0:05:a9:f2:2a:16:15:c5:d7:a6:0a:80:e5:77: 55:36:a1:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCNTUxMTAvBgNVBAUTKDQ0MjNGQkY0MUFEOUYwRkM3NEQzQzE1NTU4QjhEMDlB MTY0QjI2MUIwHhcNMjMwNjA2MjMzNTUzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmYzJkOC04NzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FMnJyprK9qKlrlzlKrlqqAI67JUMD8d7e+LNRdFkMDVpaAo+5Ei8B126RFH pAOG/O7BjkDeYu2GtCv8a5UcjdIOGtionB/yBRVWBIja5HLDRfO2LuFoqYqp20L/ pYG91frJggDTbY87rSdMxw/kSsEQZ8LKwb4u7MZoxIs+GqGmlBc3LQImlZyn/JEs /xrvGMB1l2lXqmKoB7gKsgP/q05Hawi0vsGYA3Xmo0m+1ppx126xq3GNzp2Qha8d P0ZdhiX5KbgbobBxaFmf0d8rxnZbt28fD4JJAybA/ErKetEPmBGqCBRHDNTAlMhD o4f7OnIGRdcjuRN8oDsGE2NaFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDTcZbqQ Cu9Yd1yQ9ckHh7OiC39mMB8GA1UdIwQYMBaAFEQj+/Qa2fD8dNPBVVi40JoWSyYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI1NS8yMDQ4MDUzMjk4 NTgxMUVCOEE0MUZBMjBDNEY5QUUwMi9SQ1A3OUJyWjhQeDAwOEZWV0xqUW1oWkxK aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JDUDc5QnJaOFB4MDA4RlZXTGpRbWhaTEpocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCNTUvMjA0ODA1MzI5ODU4MTFFQjhBNDFGQTIwQzRGOUFFMDIvMDYxQzMzNjI5 ODU5MTFFQkE1RjM5QjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJo/yQwDQYJKoZIhvcNAQELBQADggEBAHEh0OwB0MqkB32L mc4C8tFGccPY5b3jj/FaTCblTIk9iKvW6kI/Yq6wUkHbX+nYK4wLa1yA/+YfqFwl 0PmxH+AQ3rkNnOeyO/Uh7KSj5XYWgVou/fLL38oD+lJnXbrOlxFJbf+GHQTGq2Gb QGSQglEZVgWwJ7u6Ibkwe7OEpIbEgSBTkDFdwkDGQ6PmIRxy3QTz6NosvHlf6jCC tEbsDJl0EjFlr6yu+ktsRdx5coBj/6igzaepKBHNFboSnCgCvEuZFSrGnv+CFJlZ AyqWtIxgM6l2DCzyG5IdrCLnpXv22gI07tHr+fvYu4n6mArABanyKhYVxdemCoDl d1U2oVI= -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org