$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/0B6054BA851E11EA86E0DF24C4F9AE02.roa File: 0B6054BA851E11EA86E0DF24C4F9AE02.roa (raw, json) Hash identifier: pMAsKsji+HcxirLO71f3m6CRMaBF9E462V6DMiv0eM4= Subject key identifier: B2:E0:3E:2F:8B:C7:BB:25:74:17:10:BE:B9:19:4D:EC:B8:83:D5:EB Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0A60 Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/0B6054BA851E11EA86E0DF24C4F9AE02.roa Signing time: Thu 30 Nov 2023 16:22:22 +0000 ROA not before: Thu 30 Nov 2023 16:22:22 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55785 IP address blocks: 43.252.68.0/22 maxlen: 22 103.247.152.0/22 maxlen: 22 2403:4d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2656 (0xa60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: Nov 30 16:22:22 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6568b6be-da16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:39:99:be:ce:b2:b8:f3:71:72:9b:c1:b8: 15:a4:0f:8d:fc:46:65:83:fb:d0:7b:8f:5a:46:b6: 31:8d:9d:ca:b4:01:ea:c1:a2:e0:83:91:1c:fe:3e: 48:e3:28:42:a6:99:6d:8c:ac:16:63:11:64:4d:3d: 66:b0:6a:6c:f6:c1:7d:30:53:92:0d:96:30:4c:68: 26:eb:f5:dd:5e:b6:11:73:aa:86:cc:d2:b9:94:27: b3:17:08:68:91:4c:94:31:47:d2:6d:ef:66:cf:eb: 95:72:b1:c0:92:dd:be:b4:0b:ec:dd:f0:2f:11:12: 5e:c3:ce:90:f9:bc:d4:09:9f:19:9d:96:25:7b:e3: 0e:8e:5c:c1:bd:bf:a9:e8:d6:55:76:14:c3:00:6b: 27:0c:de:66:9f:fa:08:e5:55:12:f1:9b:e6:0b:b9: 2a:0b:75:28:ee:71:45:0e:29:6b:50:af:9e:3a:7f: ad:cb:18:d2:96:04:67:96:46:70:2c:69:3d:a0:4c: 42:26:ee:84:ee:40:27:82:8a:a3:2a:b9:69:c8:9c: 3c:47:27:7d:db:17:df:d3:3e:89:cf:9f:d7:8d:e0: 92:67:bc:db:95:6c:23:a4:93:1d:86:4e:83:07:73: a9:7a:0a:a6:09:90:34:65:4d:f0:9c:a2:22:12:17: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E0:3E:2F:8B:C7:BB:25:74:17:10:BE:B9:19:4D:EC:B8:83:D5:EB X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/0B6054BA851E11EA86E0DF24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.68.0/22 103.247.152.0/22 IPv6: 2403:4d00::/32 Signature Algorithm: sha256WithRSAEncryption 2e:3b:ef:50:d1:e1:db:47:6f:16:4d:f7:2e:bc:8f:42:a4:14: 10:29:c6:e0:76:ac:bd:3e:01:75:b7:22:bb:86:29:c6:e7:a6: c0:7f:ba:c9:6e:bb:3a:53:52:04:bb:e5:0c:08:cb:ad:b1:06: 38:04:98:eb:a0:9f:cb:f3:0d:e7:66:ad:a5:84:0e:b6:d7:17: 8b:ed:da:b1:5a:18:42:ac:0f:97:70:90:d0:70:a3:77:0f:4a: e3:a0:ab:cb:a1:f8:47:a9:e6:d4:99:2c:44:e7:f2:f7:00:68: a3:e3:c3:79:83:b8:de:87:b5:34:8e:28:fb:70:9d:2a:fb:38: 17:69:08:e4:0a:c3:cb:52:fb:12:7a:e4:d8:91:0e:cc:dd:be: ad:78:72:fb:f3:0f:74:1d:98:47:8a:68:7f:a0:aa:88:7b:48: 50:b1:bb:60:84:97:0d:37:21:99:b5:e9:f7:55:a8:d3:4d:17: c6:bb:7c:5e:f3:47:ef:36:8f:bf:30:b6:ed:d1:0a:60:e8:70: 56:6d:fc:9f:95:2f:81:5c:db:d4:ca:40:26:f7:ec:2e:06:4d: 02:5c:87:06:e5:8f:b7:26:1a:25:e1:0c:2c:83:dd:41:61:76: 3e:f8:19:d9:0e:87:1f:fa:39:ac:81:c5:8c:28:6f:08:4c:7f: 31:96:93:08 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjMxMTMwMTYyMjIyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4YjZiZS1kYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvA5mb7OsrjzcXKbwbgVpA+N/EZlg/vQe49aRrYxjZ3KtAHqwaLgg5Ec/j5I 4yhCppltjKwWYxFkTT1msGps9sF9MFOSDZYwTGgm6/XdXrYRc6qGzNK5lCezFwho kUyUMUfSbe9mz+uVcrHAkt2+tAvs3fAvERJew86Q+bzUCZ8ZnZYle+MOjlzBvb+p 6NZVdhTDAGsnDN5mn/oI5VUS8ZvmC7kqC3Uo7nFFDilrUK+eOn+tyxjSlgRnlkZw LGk9oExCJu6E7kAngoqjKrlpyJw8Ryd92xff0z6Jz5/XjeCSZ7zblWwjpJMdhk6D B3OpegqmCZA0ZU3wnKIiEheFzwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLLgPi+L x7sldBcQvrkZTey4g9XrMB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIwQTMvNzFBREUxRkVEODI4MTFFNEFBN0M4QTQ3QzRGOUFFMDIvMEI2MDU0QkE4 NTFFMTFFQTg2RTBERjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr/EQDBAJn95gwDQQCAAIwBwMFACQDTQAwDQYJKoZIhvcN AQELBQADggEBAC4771DR4dtHbxZN9y68j0KkFBApxuB2rL0+AXW3IruGKcbnpsB/ usluuzpTUgS75QwIy62xBjgEmOugn8vzDedmraWEDrbXF4vt2rFaGEKsD5dwkNBw o3cPSuOgq8uh+Eep5tSZLETn8vcAaKPjw3mDuN6HtTSOKPtwnSr7OBdpCOQKw8tS +xJ65NiRDszdvq14cvvzD3QdmEeKaH+gqoh7SFCxu2CElw03IZm16fdVqNNNF8a7 fF7zR+82j78wtu3RCmDocFZt/J+VL4Fc29TKQCb37C4GTQJchwblj7cmGiXhDCyD 3UFhdj74GdkOhx/6OayBxYwobwhMfzGWkwg= -----END CERTIFICATE-----Generated at Thu May 16 17:51:21 2024 by rpki-client on console-ams.rpki-client.org