$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa File: 75522B0A002B11EA855CA925C4F9AE02.roa (raw, json) Hash identifier: DNIdF7VzSINBf9x4ARLGjb9ZVv+GA8bZRaH6cySDnAY= Subject key identifier: AE:4A:CD:9A:A7:65:84:F7:B7:B9:35:5A:3B:5E:86:AE:9A:5C:C7:94 Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 11B0 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa Signing time: Wed 02 Aug 2023 17:35:06 +0000 ROA not before: Wed 02 Aug 2023 17:35:06 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4637 IP address blocks: 101.167.176.0/22 maxlen: 24 101.167.180.0/22 maxlen: 24 101.167.184.0/22 maxlen: 24 101.167.188.0/22 maxlen: 24 101.167.192.0/21 maxlen: 24 101.167.200.0/21 maxlen: 24 101.167.208.0/22 maxlen: 24 101.167.212.0/22 maxlen: 24 101.167.216.0/21 maxlen: 24 203.36.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4528 (0x11b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Aug 2 17:35:06 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ca93ca-8714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2f:6d:93:53:67:6b:98:6a:91:d8:ac:d9:f3: e2:57:c5:5c:8c:cb:f1:bb:94:82:de:37:c3:2f:a4: 53:9e:7c:9c:db:db:e9:c4:c6:b6:48:98:7d:6c:9f: 2e:92:c6:24:d4:87:04:d0:88:bb:f4:1a:5c:69:bc: 4f:8d:10:c4:e2:43:36:02:78:c8:01:94:3d:be:00: 56:aa:c7:33:88:29:6e:54:90:ed:97:65:39:c5:f5: c1:81:f1:4c:43:46:d2:8c:ea:33:9f:b1:b7:b0:04: 72:55:89:75:d2:0b:1b:93:26:0d:88:3a:9c:38:b9: 66:ad:aa:34:b1:7a:4e:df:d3:7e:6a:ba:2b:2a:a7: 0c:14:84:4a:66:18:b9:64:d9:bd:e4:b4:4f:ad:bc: 32:0e:c3:cd:b3:af:38:c6:3e:2f:f8:ca:9c:e4:b6: 08:3a:5d:99:e9:fb:e9:04:f6:c7:ef:b5:e0:56:8c: 0f:1f:79:45:1b:24:64:1f:19:aa:3f:da:b1:a8:4c: 58:bb:ad:2e:b0:18:7b:17:45:3a:7d:cf:31:ba:5d: 92:5b:8b:6d:0b:25:a3:ff:4b:96:fe:9b:2e:6e:03: fa:70:75:8f:a2:1c:ac:7e:eb:ee:e4:cc:63:20:20: d9:e5:c8:69:ef:23:b6:44:84:4c:75:b4:95:ec:8b: c4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4A:CD:9A:A7:65:84:F7:B7:B9:35:5A:3B:5E:86:AE:9A:5C:C7:94 X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.167.176.0-101.167.223.255 203.36.128.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d7:2e:ca:5c:b2:91:67:e1:0e:c6:7a:7d:d1:ef:55:31:6b: b2:8f:6d:d7:1a:da:32:9f:fa:df:67:dc:77:4e:2a:56:00:47: db:37:82:5a:2d:26:21:da:2e:99:d1:26:25:6d:68:a5:af:d2: 9f:5b:be:d3:85:15:44:35:71:2e:61:4a:7e:d2:27:ea:4c:bc: 39:0d:8f:0f:93:d0:82:17:7a:87:94:d4:2d:f9:fb:95:25:e0: e5:af:b5:4b:3e:55:bf:43:63:65:60:11:fa:b2:f3:4b:ad:4d: e7:dc:ca:04:74:90:39:0b:9b:2e:32:d3:f0:e4:1c:64:47:fd: 56:33:e7:b9:e8:4a:b7:d1:5e:6c:f5:99:44:89:c9:da:43:08: 44:2f:bc:7b:a1:31:b2:2a:6e:2f:26:93:2b:82:40:87:75:6b: 8a:f2:28:83:1b:37:c9:b9:75:07:41:8c:1f:62:d8:37:ef:74: 1d:10:26:d6:69:29:11:b2:2c:22:a9:69:39:e0:41:56:f7:fc: b9:05:24:13:bb:a6:5d:84:84:3d:92:0d:bd:e2:2f:5d:5e:01: 7e:f5:bd:a0:5d:dc:d6:46:32:2e:88:61:8a:e8:ca:d1:96:72: 68:68:57:d3:d5:2f:b5:26:67:2d:dc:29:c6:9c:9c:e9:98:a2: d8:bc:17:c1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICEbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjMwODAyMTczNTA2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhOTNjYS04NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8C9tk1Nna5hqkdis2fPiV8VcjMvxu5SC3jfDL6RTnnyc29vpxMa2SJh9bJ8u ksYk1IcE0Ii79BpcabxPjRDE4kM2AnjIAZQ9vgBWqscziCluVJDtl2U5xfXBgfFM Q0bSjOozn7G3sARyVYl10gsbkyYNiDqcOLlmrao0sXpO39N+arorKqcMFIRKZhi5 ZNm95LRPrbwyDsPNs684xj4v+Mqc5LYIOl2Z6fvpBPbH77XgVowPH3lFGyRkHxmq P9qxqExYu60usBh7F0U6fc8xul2SW4ttCyWj/0uW/psubgP6cHWPohysfuvu5Mxj ICDZ5chp7yO2RIRMdbSV7IvEWQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFK5KzZqn ZYT3t7k1Wjtehq6aXMeUMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvNzU1MjJCMEEw MDJCMTFFQTg1NUNBOTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBGWnsAMEBWWnwAMEAMskgDANBgkqhkiG9w0BAQsFAAOC AQEABdcuylyykWfhDsZ6fdHvVTFrso9t1xraMp/632fcd04qVgBH2zeCWi0mIdou mdEmJW1opa/Sn1u+04UVRDVxLmFKftIn6ky8OQ2PD5PQghd6h5TULfn7lSXg5a+1 Sz5Vv0NjZWAR+rLzS61N59zKBHSQOQubLjLT8OQcZEf9VjPnuehKt9FebPWZRInJ 2kMIRC+8e6ExsipuLyaTK4JAh3VrivIogxs3ybl1B0GMH2LYN+90HRAm1mkpEbIs IqlpOeBBVvf8uQUkE7umXYSEPZINveIvXV4BfvW9oF3c1kYyLohhiujK0ZZyaGhX 09UvtSZnLdwpxpyc6Zii2LwXwQ== -----END CERTIFICATE-----Generated at Mon May 6 20:19:12 2024 by rpki-client on console-fra.rpki-client.org