$ rpki-client -vvf rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B728544E843011EAB4270B83C4F9AE02.roa File: B728544E843011EAB4270B83C4F9AE02.roa (raw, json) Hash identifier: YfDmB/QaBB/8X0tfxFe8aFOSIeGyaNiqnqcAalVs0kc= Subject key identifier: DC:F5:B8:9E:5E:4A:13:DF:D1:DE:7D:1B:05:55:D3:E9:D3:AF:05:95 Certificate issuer: /CN=A916B33E/serialNumber=D0072EDEB67E1752AB752263A4FD9450DD3A33EC Certificate serial: 1735 Authority key identifier: D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B728544E843011EAB4270B83C4F9AE02.roa Signing time: Wed 02 Aug 2023 17:14:18 +0000 ROA not before: Wed 02 Aug 2023 17:14:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45454 IP address blocks: 163.53.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.crl rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5941 (0x1735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B33E/serialNumber=D0072EDEB67E1752AB752263A4FD9450DD3A33EC Validity Not Before: Aug 2 17:14:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ca8ee9-c41f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ea:de:e9:a2:cb:cb:b0:81:6a:7a:78:6b:69: 41:ac:ab:17:11:a3:08:92:76:38:05:45:4f:e8:66: c6:e9:e5:ff:59:35:54:bb:35:5c:6c:d6:1a:49:73: d0:16:d6:61:4a:85:60:65:bd:9d:e6:b0:05:2f:b8: 44:3e:cb:44:1c:9f:ad:2b:df:9d:3b:6e:79:6f:c1: d4:61:31:0a:a6:f1:9e:23:d0:29:84:12:dc:d7:9d: 40:ce:97:86:bf:9f:46:c2:69:b0:30:d2:f4:0d:fc: 4c:c3:94:fa:b6:37:52:7f:71:29:99:ac:19:65:17: 7b:8b:3d:8b:a2:ac:68:80:d0:d5:60:e5:bc:8c:e2: f3:59:36:52:a7:26:de:89:5e:57:82:0f:03:11:84: 69:d0:25:b4:2f:bc:7d:19:87:60:ae:2f:26:a2:7b: 36:20:ce:5b:8f:be:f7:87:31:ef:85:5c:4f:e2:1a: 24:a4:bd:70:65:85:ec:39:2e:1b:6e:f1:13:c0:04: 89:ea:40:3f:a8:87:00:b0:95:1e:e6:44:44:12:0b: b9:55:85:16:12:c3:7e:c6:93:ed:a8:40:c2:31:44: f0:4a:59:f6:4e:7d:a4:07:09:72:f3:84:6b:a2:2a: c2:a7:31:e0:5f:2f:4d:45:79:eb:5c:9b:5e:e3:d5: 0a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F5:B8:9E:5E:4A:13:DF:D1:DE:7D:1B:05:55:D3:E9:D3:AF:05:95 X509v3 Authority Key Identifier: keyid:D0:07:2E:DE:B6:7E:17:52:AB:75:22:63:A4:FD:94:50:DD:3A:33:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/0Acu3rZ-F1KrdSJjpP2UUN06M-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Acu3rZ-F1KrdSJjpP2UUN06M-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B33E/2F66B57AB83E11E7A01D6650C4F9AE02/B728544E843011EAB4270B83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.248.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:48:d0:3f:be:b1:44:5e:05:46:4c:47:c7:24:35:f1:84:bd: e3:4b:8b:c9:27:15:e6:49:0a:04:c2:eb:70:86:30:ce:58:b5: 6b:5a:2d:26:58:20:99:3b:50:ba:c0:b6:e5:33:44:39:07:33: 0c:d0:ca:83:5a:63:56:4a:f7:27:83:38:bd:3a:77:99:18:43: 77:14:6e:9e:43:17:c6:c2:fe:03:e9:93:01:3b:d5:d6:52:50: df:67:78:d5:21:17:8f:2c:5e:55:7b:04:80:51:d4:96:af:24: 58:ec:72:42:3a:94:b4:9f:b9:41:94:1d:0e:b0:2a:4b:0f:ec: c0:e7:b5:fd:43:98:63:ff:a7:db:f2:b1:48:8e:97:b7:ae:12: 3d:26:04:7e:57:15:f1:9c:a4:93:f4:6e:15:ea:76:d2:08:6f: bc:77:0d:45:05:48:59:b4:0d:2b:04:ad:d4:59:7f:ff:99:9b: 42:21:24:7c:b8:8c:86:52:6c:30:2b:4c:d3:97:c4:57:03:d3: 38:c9:53:90:af:16:b8:41:a5:00:ab:66:bf:58:b9:ef:a3:26: 6e:5e:4d:dd:56:4e:f4:c5:78:02:11:bc:51:fd:32:85:19:7d: 44:be:e9:d4:b5:b1:59:7f:b5:4c:1c:0c:36:ca:26:04:c2:ad: e6:d2:a4:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIzM0UxMTAvBgNVBAUTKEQwMDcyRURFQjY3RTE3NTJBQjc1MjI2M0E0RkQ5NDUw REQzQTMzRUMwHhcNMjMwODAyMTcxNDE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhOGVlOS1jNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOre6aLLy7CBanp4a2lBrKsXEaMIknY4BUVP6GbG6eX/WTVUuzVcbNYaSXPQ FtZhSoVgZb2d5rAFL7hEPstEHJ+tK9+dO255b8HUYTEKpvGeI9AphBLc151AzpeG v59GwmmwMNL0DfxMw5T6tjdSf3EpmawZZRd7iz2LoqxogNDVYOW8jOLzWTZSpybe iV5Xgg8DEYRp0CW0L7x9GYdgri8mons2IM5bj773hzHvhVxP4hokpL1wZYXsOS4b bvETwASJ6kA/qIcAsJUe5kREEgu5VYUWEsN+xpPtqEDCMUTwSln2Tn2kBwly84Rr oirCpzHgXy9NRXnrXJte49UKMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNz1uJ5e ShPf0d59GwVV0+nTrwWVMB8GA1UdIwQYMBaAFNAHLt62fhdSq3UiY6T9lFDdOjPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjMzRS8yRjY2QjU3QUI4 M0UxMUU3QTAxRDY2NTBDNEY5QUUwMi8wQWN1M3JaLUYxS3JkU0pqcFAyVVVOMDZN LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBY3UzclotRjFLcmRTSmpwUDJVVU4wNk0tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIzM0UvMkY2NkI1N0FCODNFMTFFN0EwMUQ2NjUwQzRGOUFFMDIvQjcyODU0NEU4 NDMwMTFFQUI0MjcwQjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKjNfgwDQYJKoZIhvcNAQELBQADggEBAH5I0D++sUReBUZM R8ckNfGEveNLi8knFeZJCgTC63CGMM5YtWtaLSZYIJk7ULrAtuUzRDkHMwzQyoNa Y1ZK9yeDOL06d5kYQ3cUbp5DF8bC/gPpkwE71dZSUN9neNUhF48sXlV7BIBR1Jav JFjsckI6lLSfuUGUHQ6wKksP7MDntf1DmGP/p9vysUiOl7euEj0mBH5XFfGcpJP0 bhXqdtIIb7x3DUUFSFm0DSsErdRZf/+Zm0IhJHy4jIZSbDArTNOXxFcD0zjJU5Cv FrhBpQCrZr9Yue+jJm5eTd1WTvTFeAIRvFH9MoUZfUS+6dS1sVl/tUwcDDbKJgTC rebSpHk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:06 2024 by rpki-client on console-ams.rpki-client.org