$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa File: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (raw, json) Hash identifier: s4rQaco4ff6xs+m3PT25pKqq9I6A1uhItS4VaVYLziQ= Subject key identifier: 42:0D:98:D7:1B:2F:C6:F6:AD:99:34:95:D5:50:FB:98:DA:8D:FE:D7 Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 53 Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa Signing time: Tue 01 Aug 2023 05:24:49 +0000 ROA not before: Tue 01 Aug 2023 05:24:49 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45352 IP address blocks: 43.246.176.0/24 maxlen: 24 43.246.177.0/24 maxlen: 24 43.246.178.0/24 maxlen: 24 43.246.179.0/24 maxlen: 24 103.12.152.0/23 maxlen: 24 103.12.154.0/24 maxlen: 24 103.12.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Validity Not Before: Aug 1 05:24:49 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64c89721-f684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:aa:07:e5:29:20:72:58:a2:1b:e8:b9:f2:0d: 76:7f:db:df:bf:d2:7a:cb:3a:3f:50:48:da:71:0a: c2:9a:06:78:73:7b:3a:40:b3:0e:7f:4d:7f:ec:92: 58:ff:1c:b4:5c:39:b1:28:67:9f:c5:0b:5a:fe:5b: 79:7b:48:6f:a0:37:35:7b:8b:43:66:2c:50:53:eb: 57:55:c0:09:b7:9f:4f:8f:ee:e8:9b:49:14:41:cb: 20:1c:01:53:0e:40:e4:58:64:1a:3e:9e:5f:9b:03: 60:ba:e5:bb:f0:78:2f:d8:a7:6b:ed:c7:68:b6:e8: d0:20:c5:ac:9c:58:ea:e5:be:85:65:da:60:72:e7: 9b:b8:28:91:8c:b3:b5:43:c1:ec:00:d2:ee:59:5a: 3e:97:f8:b0:36:50:8e:d8:8a:3c:ef:dd:9a:79:54: 18:4a:7d:33:51:7d:29:86:7e:8e:03:51:c9:f3:4c: cc:31:95:09:ad:73:74:a9:d0:1a:5e:18:6b:47:f5: 01:1f:79:be:76:be:35:08:ff:1c:5f:82:16:f0:37: 58:21:dd:d4:af:10:39:c1:82:5c:44:54:b0:99:fe: 6e:f2:b5:31:4f:81:d0:55:72:05:f7:33:48:c2:5f: 2f:09:5e:f8:9e:c2:d0:46:16:0c:55:c7:3c:52:68: 8b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0D:98:D7:1B:2F:C6:F6:AD:99:34:95:D5:50:FB:98:DA:8D:FE:D7 X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.176.0/22 103.12.152.0/22 Signature Algorithm: sha256WithRSAEncryption 04:8a:6f:8b:2d:0d:9c:0b:15:69:d8:17:08:ed:2a:8f:a9:60: 5c:f8:f2:d4:f1:8b:eb:e1:99:df:14:74:23:8c:51:7f:eb:1d: 61:48:d4:04:97:62:77:ac:2c:c9:6a:64:29:78:bc:57:aa:af: 09:58:4f:16:10:73:64:33:36:1d:e5:bf:6e:df:65:7a:bb:d0: e7:cb:8a:33:6f:11:9f:18:42:21:91:67:d9:30:b4:01:6f:5f: 78:cc:72:51:a9:12:1e:95:ed:00:5b:3f:8b:e0:74:8a:24:9e: 50:0c:30:a5:3b:55:de:20:ed:97:cd:e5:28:04:a6:1c:e8:50: ff:8d:af:84:1a:66:97:cc:1e:40:29:08:d6:45:ca:e6:68:85: 71:57:70:56:7e:a3:c7:b8:5b:e7:af:e1:62:87:32:d7:cc:19: bc:3b:00:d4:c4:ab:a5:ca:d9:d9:24:1d:89:66:63:e6:c4:ac: 98:77:ec:20:f8:e8:77:9e:08:44:a8:4f:07:1b:32:40:97:c1: 7d:e8:ba:d2:bc:2d:39:19:89:de:ce:cc:fd:cf:19:c4:1f:d0: 6c:69:1f:7c:a5:e9:bd:38:18:fb:17:0c:bb:15:b3:62:cb:1f: c2:1f:2a:78:a3:2d:6b:13:2c:89:6f:3a:51:85:67:a0:3d:b0: fd:eb:6e:bf -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTI4NTExMC8GA1UEBRMoNjIyOEFCNjhBMjQ2MEJEQzU2Njg4QjZFNTU4OTE3OTBE RDgwNEIxMDAeFw0yMzA4MDEwNTI0NDlaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Yzg5NzIxLWY2ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWqgflKSByWKIb6LnyDXZ/29+/0nrLOj9QSNpxCsKaBnhzezpAsw5/TX/sklj/ HLRcObEoZ5/FC1r+W3l7SG+gNzV7i0NmLFBT61dVwAm3n0+P7uibSRRByyAcAVMO QORYZBo+nl+bA2C65bvweC/Yp2vtx2i26NAgxaycWOrlvoVl2mBy55u4KJGMs7VD wewA0u5ZWj6X+LA2UI7Yijzv3Zp5VBhKfTNRfSmGfo4DUcnzTMwxlQmtc3Sp0Bpe GGtH9QEfeb52vjUI/xxfghbwN1gh3dSvEDnBglxEVLCZ/m7ytTFPgdBVcgX3M0jC Xy8JXviewtBGFgxVxzxSaIv9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUQg2Y1xsv xvatmTSV1VD7mNqN/tcwHwYDVR0jBBgwFoAUYiiraKJGC9xWaItuVYkXkN2ASxAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBMjg1L0U4MTkyMDM4Qjk3 QTExRURBMjg1QTU1NEM0RjlBRTAyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWlpcmFLSkdDOXhXYUl0dVZZa1hrTjJBU3hBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTI4NS9FODE5MjAzOEI5N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9DQ0E4MDFBMkI5 N0YxMUVEOThFRDNBNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAiv2sAMEAmcMmDANBgkqhkiG9w0BAQsFAAOCAQEABIpviy0N nAsVadgXCO0qj6lgXPjy1PGL6+GZ3xR0I4xRf+sdYUjUBJdid6wsyWpkKXi8V6qv CVhPFhBzZDM2HeW/bt9lervQ58uKM28RnxhCIZFn2TC0AW9feMxyUakSHpXtAFs/ i+B0iiSeUAwwpTtV3iDtl83lKASmHOhQ/42vhBpml8weQCkI1kXK5miFcVdwVn6j x7hb56/hYocy18wZvDsA1MSrpcrZ2SQdiWZj5sSsmHfsIPjod54IRKhPBxsyQJfB fei60rwtORmJ3s7M/c8ZxB/QbGkffKXpvTgY+xcMuxWzYssfwh8qeKMtaxMsiW86 UYVnoD2w/etuvw== -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org