$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/698B3FA6986011EE969A225FC4F9AE02.roa File: 698B3FA6986011EE969A225FC4F9AE02.roa (raw, json) Hash identifier: JOW95DxuDbCPOlXMPAcREee3ZkPFrVFju1CW3GLZcIs= Subject key identifier: CC:3B:AC:8F:C6:A2:05:52:F5:BC:3A:4A:9D:06:E7:05:D5:EF:96:AA Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 110A Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/698B3FA6986011EE969A225FC4F9AE02.roa Signing time: Mon 11 Dec 2023 20:03:55 +0000 ROA not before: Mon 11 Dec 2023 20:03:55 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 20473 IP address blocks: 66.42.32.0/20 maxlen: 32 66.42.48.0/20 maxlen: 32 139.180.128.0/19 maxlen: 32 139.180.160.0/19 maxlen: 32 139.180.192.0/20 maxlen: 32 139.180.208.0/20 maxlen: 32 158.247.192.0/18 maxlen: 32 167.179.64.0/18 maxlen: 32 207.148.64.0/20 maxlen: 32 207.148.80.0/21 maxlen: 32 207.148.88.0/21 maxlen: 32 207.148.96.0/20 maxlen: 32 207.148.112.0/22 maxlen: 32 207.148.116.0/22 maxlen: 32 207.148.120.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4362 (0x110a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Dec 11 20:03:55 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65776b2b-c229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7f:20:e5:56:2f:bb:1d:b7:92:a2:8d:64:31: 5e:b0:97:2b:60:3b:87:0a:65:38:aa:80:57:51:f9: 0a:f0:04:53:bd:9e:5a:bb:92:d7:ce:2d:08:2f:35: 9f:24:fd:47:82:17:d7:c9:ef:bf:f9:92:6a:9d:50: b8:78:be:4d:80:4b:c5:45:45:74:ae:2c:0e:02:b7: e3:f4:7d:20:4e:ab:bb:69:a6:4e:21:bb:eb:cc:4e: 78:0a:e6:1d:ab:3d:f5:9a:9f:72:85:91:99:ef:07: 5c:85:f3:85:01:73:2a:70:af:26:f5:90:b2:ac:2d: 23:47:09:d5:b6:a3:b2:dd:3e:b7:31:d7:09:15:c4: 18:12:7a:69:e3:32:09:cb:5b:ea:93:94:26:8e:63: 1e:0e:be:48:df:a1:25:23:d0:b5:b5:ba:f3:20:ed: 6a:9c:98:3b:4f:f4:b7:71:6f:c5:c5:95:09:50:47: b7:46:9d:5c:19:4a:f7:8f:4e:ca:9f:09:23:c6:4e: 6e:eb:2c:5d:68:05:c0:a5:75:ac:aa:8c:01:f1:ae: 6e:c5:59:f3:83:e7:3b:e7:33:e7:05:87:12:82:29: 5d:23:06:09:62:e1:e8:a7:3d:58:fc:33:09:82:3b: 44:49:81:ca:c5:d1:07:f1:f1:16:6c:27:cc:e4:94: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3B:AC:8F:C6:A2:05:52:F5:BC:3A:4A:9D:06:E7:05:D5:EF:96:AA X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/698B3FA6986011EE969A225FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.42.32.0/19 139.180.128.0-139.180.223.255 158.247.192.0/18 167.179.64.0/18 207.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption 98:c6:25:9d:1a:63:7d:fa:01:f9:66:1e:cd:1a:a0:9b:91:a1: 28:57:85:51:ab:18:c1:03:82:2d:17:6e:6f:90:57:3d:7d:57: 89:48:cc:51:af:04:9f:30:ca:6c:da:17:a0:42:cf:74:8d:53: 4d:f3:69:3e:14:8e:b8:42:e3:14:e5:d6:0b:95:47:8d:43:f4: 56:ce:94:43:b7:ef:a0:2c:8a:ab:47:8a:bc:97:c3:ab:5b:22: 86:47:b6:33:91:dc:84:3a:39:82:ba:08:ac:97:51:c1:9d:b3: eb:68:b1:c4:8f:f6:5f:5f:97:14:54:5c:8a:a2:d0:99:13:65: d9:82:e0:a2:23:27:03:c0:29:ce:8f:33:76:b0:d1:c2:56:e1: 00:dd:16:a2:b9:84:62:38:da:97:bb:eb:5e:ba:f6:2f:bb:b3: 53:22:8c:ac:e0:b6:a0:3f:90:2c:c0:a1:ac:96:98:bf:27:e8: c1:78:60:3c:d7:ef:c2:19:a2:86:a1:4c:0d:89:0e:eb:ea:1c: c3:8c:e2:81:f2:11:32:fb:e0:f9:3b:ec:9d:e5:73:9a:fe:b6: 40:ff:34:6e:5b:7c:a8:1b:f8:dd:c0:f5:2c:fd:21:e8:90:aa: 9f:80:55:e4:4b:90:d4:a3:93:74:e1:68:a9:31:74:b8:05:ca: a6:cf:5a:45 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICEQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjMxMjExMjAwMzU1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc3NmIyYi1jMjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA238g5VYvux23kqKNZDFesJcrYDuHCmU4qoBXUfkK8ARTvZ5au5LXzi0ILzWf JP1HghfXye+/+ZJqnVC4eL5NgEvFRUV0riwOArfj9H0gTqu7aaZOIbvrzE54CuYd qz31mp9yhZGZ7wdchfOFAXMqcK8m9ZCyrC0jRwnVtqOy3T63MdcJFcQYEnpp4zIJ y1vqk5QmjmMeDr5I36ElI9C1tbrzIO1qnJg7T/S3cW/FxZUJUEe3Rp1cGUr3j07K nwkjxk5u6yxdaAXApXWsqowB8a5uxVnzg+c75zPnBYcSgildIwYJYuHopz1Y/DMJ gjtESYHKxdEH8fEWbCfM5JRpvwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFMw7rI/G ogVS9bw6Sp0G5wXV75aqMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDREYvRUNFMEZCRTZFMzZEMTFFODk1NkYzNTE2QzRGOUFFMDIvNjk4QjNGQTY5 ODYwMTFFRTk2OUEyMjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAVCKiAwDAMEB4u0gAMEBYu0wAMEBp73wAMEBqezQAMEBs+U QDANBgkqhkiG9w0BAQsFAAOCAQEAmMYlnRpjffoB+WYezRqgm5GhKFeFUasYwQOC LRdub5BXPX1XiUjMUa8EnzDKbNoXoELPdI1TTfNpPhSOuELjFOXWC5VHjUP0Vs6U Q7fvoCyKq0eKvJfDq1sihke2M5HchDo5groIrJdRwZ2z62ixxI/2X1+XFFRciqLQ mRNl2YLgoiMnA8Apzo8zdrDRwlbhAN0WormEYjjal7vrXrr2L7uzUyKMrOC2oD+Q LMChrJaYvyfowXhgPNfvwhmihqFMDYkO6+ocw4zigfIRMvvg+TvsneVzmv62QP80 blt8qBv43cD1LP0h6JCqn4BV5EuQ1KOTdOFoqTF0uAXKps9aRQ== -----END CERTIFICATE-----Generated at Mon May 6 20:19:12 2024 by rpki-client on console-fra.rpki-client.org