$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/3BA8735E9F4611EAB20AAA63C4F9AE02.roa File: 3BA8735E9F4611EAB20AAA63C4F9AE02.roa (raw, json) Hash identifier: FB6+lzfURa8UzLsSkPLLUxc6KbwXp3GLtyAebsACLXs= Subject key identifier: 66:F1:9D:E2:66:DD:E5:C4:CF:CE:D0:FB:ED:FA:D9:51:0D:AB:2B:A5 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 07CD Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/3BA8735E9F4611EAB20AAA63C4F9AE02.roa Signing time: Tue 04 Jul 2023 21:07:46 +0000 ROA not before: Tue 04 Jul 2023 21:07:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38084 IP address blocks: 45.113.36.0/22 maxlen: 24 103.9.60.0/22 maxlen: 24 2402:6c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Jul 4 21:07:46 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a48a22-3ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:8a:eb:1c:d9:19:8a:02:c7:9f:04:73:43: 77:e0:c0:3a:48:fd:6b:52:45:58:90:49:4e:9f:ab: 57:4c:47:ac:93:da:39:cc:02:3f:21:85:bb:bb:8f: fc:bb:a6:f5:33:b8:29:ef:f8:c8:e7:85:d9:40:f3: 21:c3:46:52:98:09:3c:cb:50:6c:c8:d3:df:37:cd: 25:45:93:96:87:37:77:76:4d:f5:ac:0d:23:ab:99: cc:b6:a6:75:91:4e:b9:f4:bd:4e:3f:04:59:9a:ee: f2:29:b5:34:85:97:17:fd:ad:9b:85:5b:cf:da:c3: 62:c8:ac:a4:d3:c1:ae:73:b9:95:bc:c6:fa:06:32: 03:f8:d5:d1:54:83:65:04:9e:d6:70:d2:74:31:de: 2e:c6:94:e0:3d:30:4c:42:e6:a8:72:0a:fb:72:19: 8b:5f:82:f2:96:f5:77:1c:29:89:af:ff:4b:14:08: 19:96:02:57:95:f7:b8:b2:b4:93:4b:10:ba:5c:db: 43:01:53:85:c8:25:59:21:24:37:7f:a5:62:22:4e: 65:23:18:0f:8f:b0:25:8b:cc:9c:15:6b:05:4a:04: 1e:05:3d:4a:df:eb:66:10:7b:2c:a8:dd:b7:15:7a: 9d:ea:9d:a1:1b:40:9e:78:91:30:9f:de:81:23:d4: 2a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F1:9D:E2:66:DD:E5:C4:CF:CE:D0:FB:ED:FA:D9:51:0D:AB:2B:A5 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/3BA8735E9F4611EAB20AAA63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.36.0/22 103.9.60.0/22 IPv6: 2402:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 4c:c1:4e:3d:17:ae:1e:f9:51:74:f1:82:4d:06:f2:11:a1:de: f9:ed:b3:ef:7a:a4:a5:b6:5a:24:47:c6:71:08:2f:2e:5c:f5: bd:f5:09:94:52:42:2a:2f:57:b9:21:61:22:57:12:74:64:52: b4:ad:fb:36:42:d8:f2:ae:98:4d:bb:a8:13:ca:ab:7f:e2:0d: 03:5e:4d:e4:85:0a:3e:cb:86:08:52:e4:6c:bc:97:74:d4:cd: fc:16:4f:11:54:10:1f:8a:c6:c2:d7:ad:6b:b5:a9:9e:bf:93: d2:b1:4b:5d:99:d5:a3:db:ae:80:f5:c9:8d:1c:89:bc:7d:bb: b8:21:7e:63:56:0d:c6:07:8b:41:10:d3:4a:5f:fc:15:ec:e4: 67:91:66:05:3f:f8:e8:71:2b:be:5f:c1:95:27:fa:08:43:e8: 5f:ae:56:5a:4f:5c:b7:a3:a2:ff:74:a8:a4:16:33:a0:6d:48: d9:4e:da:42:d1:46:72:1c:22:f2:74:38:09:de:99:eb:95:f8: d3:90:08:1b:9e:b8:33:5e:3b:c3:8b:4a:a0:6d:35:91:ab:c3: 72:2c:11:82:9f:ea:a0:a7:af:42:e2:19:6a:47:38:6e:0a:3e: e1:bb:55:81:b4:51:af:37:d4:04:87:ac:c8:4f:8e:bb:34:44: 57:43:d1:2a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjMwNzA0MjEwNzQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0OGEyMi0zY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NOK6xzZGYoCx58Ec0N34MA6SP1rUkVYkElOn6tXTEesk9o5zAI/IYW7u4/8 u6b1M7gp7/jI54XZQPMhw0ZSmAk8y1BsyNPfN80lRZOWhzd3dk31rA0jq5nMtqZ1 kU659L1OPwRZmu7yKbU0hZcX/a2bhVvP2sNiyKyk08Guc7mVvMb6BjID+NXRVINl BJ7WcNJ0Md4uxpTgPTBMQuaocgr7chmLX4LylvV3HCmJr/9LFAgZlgJXlfe4srST SxC6XNtDAVOFyCVZISQ3f6ViIk5lIxgPj7Ali8ycFWsFSgQeBT1K3+tmEHssqN23 FXqd6p2hG0CeeJEwn96BI9QqlQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGbxneJm 3eXEz87Q++362VENqyulMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ2ODcvNzZCNDNCNjQ5RjQ1MTFFQTlFNTIzNTYzQzRGOUFFMDIvM0JBODczNUU5 RjQ2MTFFQUIyMEFBQTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcSQDBAJnCTwwDQQCAAIwBwMFACQCbEAwDQYJKoZIhvcN AQELBQADggEBAEzBTj0Xrh75UXTxgk0G8hGh3vnts+96pKW2WiRHxnEILy5c9b31 CZRSQiovV7khYSJXEnRkUrSt+zZC2PKumE27qBPKq3/iDQNeTeSFCj7LhghS5Gy8 l3TUzfwWTxFUEB+KxsLXrWu1qZ6/k9KxS12Z1aPbroD1yY0cibx9u7ghfmNWDcYH i0EQ00pf/BXs5GeRZgU/+OhxK75fwZUn+ghD6F+uVlpPXLejov90qKQWM6BtSNlO 2kLRRnIcIvJ0OAnemeuV+NOQCBueuDNeO8OLSqBtNZGrw3IsEYKf6qCnr0LiGWpH OG4KPuG7VYG0Ua831ASHrMhPjrs0RFdD0So= -----END CERTIFICATE-----Generated at Thu May 16 22:34:47 2024 by rpki-client on console-ams.rpki-client.org