$ rpki-client -vvf rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa File: A12DD18E2F1C11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: CfeDTQgkJrOB3G5IeP7pVkG87sRDt1MhW/A1ZvzImlA= Subject key identifier: 32:80:29:F5:B1:F2:F5:FF:0C:8A:B9:BB:52:73:AA:C8:6E:8B:38:C0 Certificate issuer: /CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Certificate serial: 0780 Authority key identifier: E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:23 +0000 ROA not before: Thu 02 Nov 2023 22:09:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 15412 IP address blocks: 43.248.216.0/22 maxlen: 22 103.15.116.0/22 maxlen: 22 103.144.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Validity Not Before: Nov 2 22:09:23 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65441e12-f0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c7:5b:63:98:cd:27:ce:fe:fb:3d:16:03:2f: 6a:f5:12:ae:68:7c:81:48:5b:39:3b:58:5b:43:75: 5e:a1:44:88:52:6b:e7:dd:41:e6:bc:fb:1d:3e:e0: 2c:9f:ab:90:d9:3c:9a:61:3d:f1:3f:8a:66:2e:a9: 63:9a:cb:b6:b7:62:54:fe:9d:22:ed:f4:2d:45:ae: cd:fa:fc:e2:d9:6c:46:93:e1:44:f5:54:4c:8f:37: 14:f2:60:c6:f6:0c:48:55:e1:64:fd:67:59:0b:48: d2:6e:4d:35:db:e6:95:e0:82:3e:b0:4d:9e:b8:e5: 50:78:ef:e6:19:ce:38:04:e0:54:c6:af:8b:f2:aa: d0:c3:9b:f9:7b:f1:2b:2b:45:38:ee:9c:ab:32:1a: ca:ad:b5:58:f8:58:73:1d:38:08:2f:de:d3:5c:ac: 2c:89:df:a6:c5:e3:4e:eb:d9:f1:d4:c7:f4:de:c1: 2d:c9:c0:b5:e2:fd:fb:a9:9a:22:86:d5:5e:ee:75: 86:1e:76:e6:43:6a:8e:5e:f7:70:bf:33:3f:d3:e6: e1:7e:94:e7:33:02:46:36:2c:63:dd:de:bb:5c:d5: 8d:93:f5:ee:fe:e1:14:be:6d:8c:1f:49:ee:15:08: dd:97:e0:2b:b3:bb:7a:76:01:36:88:9a:f4:fb:3c: 22:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:80:29:F5:B1:F2:F5:FF:0C:8A:B9:BB:52:73:AA:C8:6E:8B:38:C0 X509v3 Authority Key Identifier: keyid:E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.216.0/22 103.15.116.0/22 103.144.202.0/23 Signature Algorithm: sha256WithRSAEncryption a2:c3:64:a4:61:74:cd:48:77:db:de:9e:84:f4:35:e7:e0:71: 75:4f:bc:36:69:88:e1:1e:2b:b2:81:01:b7:db:a8:2d:5c:5e: 56:52:d6:40:75:2a:63:5b:05:87:b9:0c:01:3a:ba:80:5b:e7: fa:8e:0b:91:8b:7d:13:ee:b2:aa:f7:44:0a:f0:99:a8:f9:e1: 36:25:83:79:b3:7e:a9:d6:88:59:18:9c:ba:e6:36:e5:36:42: 11:58:7f:58:3b:aa:f4:a6:4b:33:f2:fe:2b:2b:27:47:87:6b: b3:3f:66:9c:76:7b:56:a4:1f:a0:37:b8:aa:2c:eb:75:b4:4f: ba:5f:5e:6c:fd:28:88:d6:4a:06:61:b3:e5:4f:0f:59:13:41: 81:ac:28:5f:e1:a2:e4:e2:b0:11:55:9e:43:3e:a1:e7:ef:19: 50:68:27:b2:7c:69:eb:30:72:a9:0a:1c:43:0d:20:3a:63:6f: e9:4d:d4:84:1f:fd:ee:2a:08:eb:68:1a:e3:20:9e:98:ab:69: f0:90:45:e8:fc:86:64:a1:f4:56:7a:23:ce:eb:69:93:f1:5d: 80:f3:6f:01:21:b6:4d:28:f8:94:e2:d6:83:1e:ad:4d:33:e4: 92:9a:1a:c9:49:89:94:33:ed:13:c9:6a:cf:e3:0e:b3:b5:18: 6a:42:f4:fb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyRjcxMTAvBgNVBAUTKEU1MDI3NTdDNjE3QzIxRDQ3QjFCMzU1OUMwOUQ2RUE3 QzNBRkU0MDMwHhcNMjMxMTAyMjIwOTIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUxMi1mMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMdbY5jNJ87++z0WAy9q9RKuaHyBSFs5O1hbQ3VeoUSIUmvn3UHmvPsdPuAs n6uQ2TyaYT3xP4pmLqljmsu2t2JU/p0i7fQtRa7N+vzi2WxGk+FE9VRMjzcU8mDG 9gxIVeFk/WdZC0jSbk012+aV4II+sE2euOVQeO/mGc44BOBUxq+L8qrQw5v5e/Er K0U47pyrMhrKrbVY+FhzHTgIL97TXKwsid+mxeNO69nx1Mf03sEtycC14v37qZoi htVe7nWGHnbmQ2qOXvdwvzM/0+bhfpTnMwJGNixj3d67XNWNk/Xu/uEUvm2MH0nu FQjdl+Ars7t6dgE2iJr0+zwiXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDKAKfWx 8vX/DIq5u1JzqshuizjAMB8GA1UdIwQYMBaAFOUCdXxhfCHUexs1WcCdbqfDr+QD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTJGNy83Q0M0NUZBRUJB QUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElkUjdHelZad0oxdXA4T3Y1 QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRSjFmR0Y4SWRSN0d6Vlp3SjF1cDhPdjVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyRjcvN0NDNDVGQUVCQUFGMTFFQUE2REQxQTNEQzRGOUFFMDIvQTEyREQxOEUy RjFDMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr+NgDBAJnD3QDBAFnkMowDQYJKoZIhvcNAQELBQADggEB AKLDZKRhdM1Id9venoT0NefgcXVPvDZpiOEeK7KBAbfbqC1cXlZS1kB1KmNbBYe5 DAE6uoBb5/qOC5GLfRPusqr3RArwmaj54TYlg3mzfqnWiFkYnLrmNuU2QhFYf1g7 qvSmSzPy/isrJ0eHa7M/Zpx2e1akH6A3uKos63W0T7pfXmz9KIjWSgZhs+VPD1kT QYGsKF/houTisBFVnkM+oefvGVBoJ7J8aeswcqkKHEMNIDpjb+lN1IQf/e4qCOto GuMgnpirafCQRej8hmSh9FZ6I87raZPxXYDzbwEhtk0o+JTi1oMerU0z5JKaGslJ iZQz7RPJas/jDrO1GGpC9Ps= -----END CERTIFICATE-----Generated at Tue May 14 22:49:18 2024 by rpki-client on console-ams.rpki-client.org