$ rpki-client -vvf rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa File: F1F8A98442D811ED854B9670C4F9AE02.roa (raw, json) Hash identifier: 68UhoesYGikbuVbpG1LhadzOBhmFT6P9iM2ISJXE1AM= Subject key identifier: FE:4F:C1:96:74:53:25:38:45:7A:BB:7F:C8:DF:A6:A7:46:9E:49:D6 Certificate issuer: /CN=A916C3CC/serialNumber=1B3A411A075A5DB1A2C642F8D4A1BC3CB5BCBB1C Certificate serial: E7 Authority key identifier: 1B:3A:41:1A:07:5A:5D:B1:A2:C6:42:F8:D4:A1:BC:3C:B5:BC:BB:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa Signing time: Wed 13 Dec 2023 04:35:33 +0000 ROA not before: Wed 13 Dec 2023 04:35:33 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9253 IP address blocks: 45.115.196.0/22 maxlen: 24 103.84.220.0/22 maxlen: 24 202.126.48.0/20 maxlen: 24 2406:9400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.crl rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C3CC/serialNumber=1B3A411A075A5DB1A2C642F8D4A1BC3CB5BCBB1C Validity Not Before: Dec 13 04:35:33 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65793495-aabc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:03:f2:8d:d8:08:ca:e5:3c:b7:b2:3a:0e: da:bf:fa:e5:96:e6:f1:31:dd:8e:18:bb:90:99:4d: 72:38:a5:e5:4f:62:f6:0e:58:d2:9c:95:20:09:0c: f7:e9:68:fe:1a:06:77:9e:cf:2c:e9:b4:60:ae:87: 4a:62:b6:ce:75:13:6f:52:3e:3f:9b:6d:fa:73:42: 5b:6b:8c:e6:73:e9:03:16:bf:c7:cf:4a:ee:89:ed: 65:d8:35:94:78:fe:9e:93:87:50:c0:d6:ab:b0:58: 28:2e:4c:4a:e8:20:8e:42:a6:b6:eb:39:d4:14:b3: ab:11:79:7d:ae:d3:96:77:a1:b6:3c:56:28:8b:2c: e5:53:12:5a:3f:39:99:3e:bd:8d:cc:82:54:f5:01: 3b:12:86:09:79:a8:91:8e:bb:0b:39:b8:82:84:c4: e5:75:9b:0c:84:91:17:89:bb:bb:39:75:b8:bc:69: d4:fa:c3:d4:fc:f5:64:d7:07:d7:be:2c:f4:56:d6: cb:78:c5:6f:97:49:7b:fc:6e:a6:fe:7a:94:08:d2: 3a:ac:ba:8b:f4:77:c4:39:32:5c:1d:1f:4c:43:54: d3:4b:94:90:49:81:d0:bb:0b:bf:c1:1a:c8:74:b7: 2a:a2:a4:a7:74:54:eb:72:94:08:39:16:dc:38:a3: 25:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4F:C1:96:74:53:25:38:45:7A:BB:7F:C8:DF:A6:A7:46:9E:49:D6 X509v3 Authority Key Identifier: keyid:1B:3A:41:1A:07:5A:5D:B1:A2:C6:42:F8:D4:A1:BC:3C:B5:BC:BB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.196.0/22 103.84.220.0/22 202.126.48.0/20 IPv6: 2406:9400::/32 Signature Algorithm: sha256WithRSAEncryption 74:4d:03:da:93:ab:c0:82:fe:5a:46:74:17:c1:48:23:cd:4e: e3:de:a6:2f:80:2f:92:9c:d9:d4:cf:f8:4f:3d:5a:60:af:cf: 36:0b:e7:c4:0e:1d:f2:cb:e2:f5:c2:06:1c:b0:a7:29:c5:64: 42:2b:99:66:b0:6b:e9:2c:60:cd:f6:d2:09:d8:5f:95:db:1b: 1b:ce:0d:e5:60:f1:b2:78:64:7e:11:9e:d2:0e:87:8b:e5:f2: 04:e2:81:c7:b6:7f:08:09:dd:4c:aa:f1:23:7f:08:47:3f:f2: a7:e0:1f:95:dd:34:e5:c1:4f:c9:96:b4:61:35:cd:f0:0a:4f: 2f:f1:9f:1c:59:da:fb:2f:cd:73:06:f8:54:7a:d6:90:71:ef: cb:4d:a7:b2:51:d0:6e:30:d9:3f:c4:fe:68:fb:59:c6:c4:2c: 46:59:b1:d5:16:4d:2c:2e:a3:21:1b:58:6c:8d:c9:98:1f:b1: d5:b0:86:58:e6:70:2a:96:5b:5d:a7:a3:79:ae:31:76:1b:e2: 02:da:cb:60:39:35:99:3a:c2:b5:a2:e7:bc:9f:93:33:47:e4: 2d:67:76:32:57:e0:20:1e:0b:20:78:ad:d1:11:e3:49:46:fe: 74:91:f4:8d:26:33:8c:e2:c8:51:b3:2b:11:16:bb:14:65:09: d3:2e:d1:8b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMzQ0MxMTAvBgNVBAUTKDFCM0E0MTFBMDc1QTVEQjFBMkM2NDJGOEQ0QTFCQzND QjVCQ0JCMUMwHhcNMjMxMjEzMDQzNTMzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5MzQ5NS1hYWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy8D8o3YCMrlPLeyOg7av/rllubxMd2OGLuQmU1yOKXlT2L2DljSnJUgCQz3 6Wj+GgZ3ns8s6bRgrodKYrbOdRNvUj4/m236c0Jba4zmc+kDFr/Hz0ruie1l2DWU eP6ek4dQwNarsFgoLkxK6CCOQqa26znUFLOrEXl9rtOWd6G2PFYoiyzlUxJaPzmZ Pr2NzIJU9QE7EoYJeaiRjrsLObiChMTldZsMhJEXibu7OXW4vGnU+sPU/PVk1wfX viz0VtbLeMVvl0l7/G6m/nqUCNI6rLqL9HfEOTJcHR9MQ1TTS5SQSYHQuwu/wRrI dLcqoqSndFTrcpQIORbcOKMlYQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFP5PwZZ0 UyU4RXq7f8jfpqdGnknWMB8GA1UdIwQYMBaAFBs6QRoHWl2xosZC+NShvDy1vLsc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzNDQy80QTE0NzQwNDQy RDQxMUVEQTEyNjBFNkFDNEY5QUUwMi9HenBCR2dkYVhiR2l4a0w0MUtHOFBMVzh1 eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d6cEJHZ2RhWGJHaXhrTDQxS0c4UExXOHV4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMzQ0MvNEExNDc0MDQ0MkQ0MTFFREExMjYwRTZBQzRGOUFFMDIvRjFGOEE5ODQ0 MkQ4MTFFRDg1NEI5NjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItc8QDBAJnVNwDBATKfjAwDQQCAAIwBwMFACQGlAAwDQYJ KoZIhvcNAQELBQADggEBAHRNA9qTq8CC/lpGdBfBSCPNTuPepi+AL5Kc2dTP+E89 WmCvzzYL58QOHfLL4vXCBhywpynFZEIrmWawa+ksYM320gnYX5XbGxvODeVg8bJ4 ZH4RntIOh4vl8gTigce2fwgJ3Uyq8SN/CEc/8qfgH5XdNOXBT8mWtGE1zfAKTy/x nxxZ2vsvzXMG+FR61pBx78tNp7JR0G4w2T/E/mj7WcbELEZZsdUWTSwuoyEbWGyN yZgfsdWwhljmcCqWW12no3muMXYb4gLay2A5NZk6wrWi57yfkzNH5C1ndjJX4CAe CyB4rdER40lG/nSR9I0mM4ziyFGzKxEWuxRlCdMu0Ys= -----END CERTIFICATE-----Generated at Tue May 7 05:39:53 2024 by rpki-client on console-fra.rpki-client.org