$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A510073CA2F611EE8477DC13C4F9AE02.roa File: A510073CA2F611EE8477DC13C4F9AE02.roa (raw, json) Hash identifier: taFaljMaP9atIrw1KMTs48RoSW+yEQf4TZmr10eKlMk= Subject key identifier: 05:F9:A3:34:2F:8A:99:4E:5E:78:AE:12:57:AA:3E:42:D2:BB:44:D3 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0274 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A510073CA2F611EE8477DC13C4F9AE02.roa Signing time: Mon 25 Dec 2023 07:24:31 +0000 ROA not before: Mon 25 Dec 2023 07:24:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64021 IP address blocks: 43.255.117.0/24 maxlen: 24 103.235.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 25 07:24:31 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65892e2f-e4d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:12:87:eb:a8:69:07:e7:a1:a8:0e:40:d3: d6:0e:bf:00:5d:a8:91:77:05:41:0b:71:3d:da:a7: 06:5a:46:a2:1e:a1:43:f5:22:07:91:57:5d:03:77: e9:12:4d:a9:70:62:fa:60:a9:32:f7:4b:a8:5b:40: 27:0a:c2:74:ec:7f:1b:72:91:df:28:ae:dd:40:ab: ac:57:a7:f0:4a:c1:29:84:17:8e:3e:a4:8e:0a:67: 9a:0b:4b:81:d6:4a:dd:b6:28:d0:65:04:76:85:47: 3c:c0:a6:53:d5:98:c7:59:e7:1e:6e:9f:ce:48:0c: 26:cb:ee:d1:e7:16:b8:79:2a:10:b4:8e:c7:50:7c: 2e:10:31:fd:58:fe:84:da:77:89:ad:ee:81:61:c0: 36:c4:d3:0c:46:f4:f4:05:8b:87:9b:39:56:4d:f2: 8a:8d:d0:89:f9:4b:c1:b4:ea:87:a2:d3:14:34:9b: 26:71:1b:ca:df:7a:b8:20:49:00:54:8f:49:da:bd: 6f:a4:f7:76:ab:b7:bc:a5:65:54:98:a4:91:22:d2: 36:0a:f4:dc:43:82:cc:93:c9:e9:59:41:ee:04:52: f6:ad:50:e8:c2:dd:02:28:fe:7b:b2:c1:c9:bc:a7: ad:5e:79:81:5a:3c:9c:23:a7:ca:1e:ff:ec:ad:77: b4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F9:A3:34:2F:8A:99:4E:5E:78:AE:12:57:AA:3E:42:D2:BB:44:D3 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A510073CA2F611EE8477DC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.117.0/24 103.235.19.0/24 Signature Algorithm: sha256WithRSAEncryption 65:4e:2d:dc:d9:e7:42:b8:3b:88:99:d4:20:05:33:c5:88:8f: 16:85:54:b3:86:a9:d3:07:f1:c8:ef:27:27:fa:4d:f3:22:21: 20:d2:da:03:48:9c:a7:c8:96:c9:08:ba:45:b5:3d:fa:9e:8c: c3:41:c0:20:4c:cd:54:48:51:c0:ac:4f:9e:3a:b7:47:18:58: a3:e3:3c:90:cd:a7:c2:d6:2e:36:31:7f:65:27:cf:28:53:db: e6:3c:19:b0:87:19:bb:e2:7c:59:25:c1:6b:a5:17:3a:ec:c6: b3:4d:b3:ca:e3:82:8e:97:09:5c:9a:61:92:6d:dd:81:84:89: 62:9a:e9:c8:52:df:92:86:03:43:a5:4c:0d:c8:08:02:fa:f8: 29:42:c9:78:4c:ae:a1:d7:32:dc:29:35:9c:07:26:8a:a5:72: d3:48:8a:1d:81:90:d2:f9:77:e1:98:a2:5a:d7:84:86:7f:bc: 53:da:e3:3a:ce:58:a7:2e:1d:99:e3:14:f3:e8:13:51:ec:ab: 8b:dd:a9:52:4e:e8:a1:04:0f:c0:9d:bd:15:6b:08:3b:7a:a0: 1a:12:e6:ee:95:62:fc:1d:64:b4:a2:26:19:ca:ab:85:b2:cb: e9:cf:4b:cf:4a:1c:5a:6c:e6:84:f1:76:51:52:48:81:57:84: 7f:00:8e:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjMxMjI1MDcyNDMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg5MmUyZi1lNGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyUSh+uoaQfnoagOQNPWDr8AXaiRdwVBC3E92qcGWkaiHqFD9SIHkVddA3fp Ek2pcGL6YKky90uoW0AnCsJ07H8bcpHfKK7dQKusV6fwSsEphBeOPqSOCmeaC0uB 1krdtijQZQR2hUc8wKZT1ZjHWecebp/OSAwmy+7R5xa4eSoQtI7HUHwuEDH9WP6E 2neJre6BYcA2xNMMRvT0BYuHmzlWTfKKjdCJ+UvBtOqHotMUNJsmcRvK33q4IEkA VI9J2r1vpPd2q7e8pWVUmKSRItI2CvTcQ4LMk8npWUHuBFL2rVDowt0CKP57ssHJ vKetXnmBWjycI6fKHv/srXe0WQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAX5ozQv iplOXniuEleqPkLSu0TTMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvQTUxMDA3M0NB MkY2MTFFRTg0NzdEQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr/3UDBABn6xMwDQYJKoZIhvcNAQELBQADggEBAGVOLdzZ 50K4O4iZ1CAFM8WIjxaFVLOGqdMH8cjvJyf6TfMiISDS2gNInKfIlskIukW1Pfqe jMNBwCBMzVRIUcCsT546t0cYWKPjPJDNp8LWLjYxf2UnzyhT2+Y8GbCHGbvifFkl wWulFzrsxrNNs8rjgo6XCVyaYZJt3YGEiWKa6chS35KGA0OlTA3ICAL6+ClCyXhM rqHXMtwpNZwHJoqlctNIih2BkNL5d+GYolrXhIZ/vFPa4zrOWKcuHZnjFPPoE1Hs q4vdqVJO6KEED8CdvRVrCDt6oBoS5u6VYvwdZLSiJhnKq4Wyy+nPS89KHFps5oTx dlFSSIFXhH8AjoQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:04 2024 by rpki-client on console-ams.rpki-client.org