$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/8C163A62FD4611EE8FAE061EC4F9AE02.roa File: 8C163A62FD4611EE8FAE061EC4F9AE02.roa (raw, json) Hash identifier: Gc/xs0dKSRVGBSBb/kk4roxhd9wMFyrdDuu1YKZPJwI= Subject key identifier: 5F:36:21:B4:E4:0F:7F:2F:BB:6E:17:5A:EA:90:71:3A:C8:8D:23:2A Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 123E Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/8C163A62FD4611EE8FAE061EC4F9AE02.roa Signing time: Thu 18 Apr 2024 05:43:13 +0000 ROA not before: Thu 18 Apr 2024 05:43:13 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 19905 IP address blocks: 203.36.128.0/24 maxlen: 24 203.38.12.0/24 maxlen: 24 203.38.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4670 (0x123e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Apr 18 05:43:13 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6620b2f1-b957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8d:42:7f:6b:bc:23:3b:3f:4a:82:e8:e9:c2: aa:e4:97:1e:2d:08:14:95:c9:99:b5:5f:e5:ac:95: a3:58:5b:e0:c4:4d:b7:59:d9:56:3b:8b:5a:55:6f: a2:90:1c:32:61:e8:ce:a1:5d:9c:a2:3c:ca:39:f1: db:8e:d3:ba:3f:72:7c:0d:ba:ff:2a:a7:7f:a7:40: d1:21:cc:89:52:7c:98:e0:cf:c7:a5:aa:02:26:c5: f8:69:da:55:ec:36:83:0f:2f:29:ae:f6:c8:1b:93: 20:74:65:e7:f0:fc:1e:db:15:ea:99:19:f6:ab:e9: a2:67:a5:e7:6a:a9:81:02:6e:ff:76:76:0e:0c:bb: dc:89:a3:9b:b0:6a:96:85:b6:f1:26:a3:3d:bb:cc: 8d:96:ac:6f:34:08:d9:71:7c:16:f1:e3:f8:65:71: 2c:4b:80:67:ef:8c:4c:df:00:1b:e7:b0:53:7f:78: 15:42:82:1d:46:1b:2d:23:be:1b:29:55:88:fb:0e: 71:e4:89:b4:95:61:51:14:38:b9:87:59:6c:3a:78: 41:d9:25:55:06:21:b3:0f:ca:c6:44:58:74:c0:17: 54:ba:a3:83:6a:6e:3f:2f:15:1f:46:05:5c:5f:7b: 20:c1:ca:ff:f4:b4:17:4c:ca:df:42:f8:99:61:13: 0a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:36:21:B4:E4:0F:7F:2F:BB:6E:17:5A:EA:90:71:3A:C8:8D:23:2A X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/8C163A62FD4611EE8FAE061EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.36.128.0/24 203.38.12.0/24 203.38.183.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:b7:c1:97:33:cd:ce:e5:08:91:79:60:3e:11:43:ab:12:a7: 3e:76:9d:c9:b8:33:f9:38:b9:28:3b:0c:e4:84:4b:df:25:f6: 54:cd:84:5f:45:78:e5:32:70:08:c8:8d:35:51:03:90:2f:90: 1e:67:f8:09:d7:f6:5a:0f:2e:df:21:6c:c0:62:61:8f:96:57: 4c:e9:e0:cd:15:24:c9:00:33:56:eb:68:54:f2:d3:3d:cf:70: 70:ca:14:f0:b9:3f:d9:ea:82:45:9e:0b:ae:77:28:c0:58:11: a4:78:d6:23:11:ae:4d:ea:48:ae:54:de:cc:85:37:8f:11:51: 35:9a:0d:68:cd:a7:0d:7c:74:a8:51:a2:96:ad:ab:92:4f:e1: 3f:af:47:84:c4:ab:4d:62:b1:af:97:14:50:65:aa:07:de:a1: 18:b5:28:82:87:9a:7a:35:51:fd:88:c1:db:55:19:32:bc:d8: c1:29:d7:0a:67:e2:25:24:ed:01:2f:d3:be:04:9a:16:67:55: 3d:39:ae:d5:fd:96:aa:b7:d9:91:9a:db:45:16:b2:92:d1:6a: 39:d6:b8:9e:e0:49:bc:43:df:7d:af:85:27:1c:fc:c5:77:66: 10:b9:6e:34:de:85:e0:d4:19:94:f1:2f:0e:59:8d:2e:59:d9: 0a:91:9c:2f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjQwNDE4MDU0MzEzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIwYjJmMS1iOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo1Cf2u8Izs/SoLo6cKq5JceLQgUlcmZtV/lrJWjWFvgxE23WdlWO4taVW+i kBwyYejOoV2cojzKOfHbjtO6P3J8Dbr/Kqd/p0DRIcyJUnyY4M/HpaoCJsX4adpV 7DaDDy8prvbIG5MgdGXn8Pwe2xXqmRn2q+miZ6XnaqmBAm7/dnYODLvciaObsGqW hbbxJqM9u8yNlqxvNAjZcXwW8eP4ZXEsS4Bn74xM3wAb57BTf3gVQoIdRhstI74b KVWI+w5x5Im0lWFRFDi5h1lsOnhB2SVVBiGzD8rGRFh0wBdUuqODam4/LxUfRgVc X3sgwcr/9LQXTMrfQviZYRMKqQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFF82IbTk D38vu24XWuqQcTrIjSMqMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvOEMxNjNBNjJG RDQ2MTFFRThGQUUwNjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADLJIADBADLJgwDBADLJrcwDQYJKoZIhvcNAQELBQADggEB ACq3wZczzc7lCJF5YD4RQ6sSpz52ncm4M/k4uSg7DOSES98l9lTNhF9FeOUycAjI jTVRA5AvkB5n+AnX9loPLt8hbMBiYY+WV0zp4M0VJMkAM1braFTy0z3PcHDKFPC5 P9nqgkWeC653KMBYEaR41iMRrk3qSK5U3syFN48RUTWaDWjNpw18dKhRopatq5JP 4T+vR4TEq01isa+XFFBlqgfeoRi1KIKHmno1Uf2IwdtVGTK82MEp1wpn4iUk7QEv 074EmhZnVT05rtX9lqq32ZGa20UWspLRajnWuJ7gSbxD332vhScc/MV3ZhC5bjTe heDUGZTxLw5ZjS5Z2QqRnC8= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:02 2024 by rpki-client on console-fra.rpki-client.org