$ rpki-client -vvf rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa File: 576B4A9298AB11EDBC12AA81C4F9AE02.roa (raw, json) Hash identifier: JZgAU07Bi0HqDL101YC0HF8IlWmVAbHCUJLwrTHOnPc= Subject key identifier: 04:2F:3C:70:AF:C8:BD:01:1A:CD:49:79:1D:B5:FD:D1:6D:1F:A5:A6 Certificate issuer: /CN=A9174B04/serialNumber=69D70B3635676E4F731B8EF1C5855B5E2F27F388 Certificate serial: 4C Authority key identifier: 69:D7:0B:36:35:67:6E:4F:73:1B:8E:F1:C5:85:5B:5E:2F:27:F3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa Signing time: Mon 05 Jun 2023 08:11:46 +0000 ROA not before: Mon 05 Jun 2023 08:11:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135427 IP address blocks: 45.250.200.0/24 maxlen: 24 45.250.201.0/24 maxlen: 24 45.250.202.0/24 maxlen: 24 45.250.203.0/24 maxlen: 24 103.219.108.0/24 maxlen: 24 103.219.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.crl rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174B04/serialNumber=69D70B3635676E4F731B8EF1C5855B5E2F27F388 Validity Not Before: Jun 5 08:11:46 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647d98c2-0764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:d1:f4:18:23:e1:62:73:96:23:0d:d3:25: 7b:f3:1c:83:e9:0d:30:4e:76:d4:ef:37:02:87:c5: 6f:0b:4c:34:2f:1a:91:e4:4d:fc:69:99:d8:16:05: 95:8d:f9:44:3d:25:d1:ce:1f:9e:ca:1a:6f:c1:c1: 6e:35:4e:af:1a:55:d0:52:9b:91:1a:39:7e:fd:f7: dd:15:3b:83:18:bc:19:47:9b:76:25:8e:e7:f3:1b: b3:39:3c:0c:3f:5a:ff:21:4e:0e:3e:a0:56:84:40: df:8d:05:08:80:0a:75:af:26:eb:db:b4:4a:47:a0: 2f:8f:c8:14:b0:1b:88:b0:c7:b6:f2:6a:83:82:5c: 54:8d:33:d1:17:c1:1f:6c:a2:04:93:48:ea:60:78: 85:14:86:96:9e:24:f4:48:ae:8c:4d:96:6c:df:03: 95:d9:90:d0:34:5f:be:99:9a:0e:d9:de:50:a8:66: 34:62:ae:58:b7:1a:52:68:0d:fc:b5:3b:02:4a:9d: 1d:95:b7:17:e2:4a:07:84:ec:48:98:99:77:d2:d4: 35:6c:b9:16:ab:4b:1b:cd:83:67:9c:04:00:b3:f6: 15:c5:af:a9:59:39:20:d7:cd:95:f6:8c:22:7a:ed: b5:d1:7b:8f:cc:e0:32:48:3f:4c:e6:97:fd:26:91: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2F:3C:70:AF:C8:BD:01:1A:CD:49:79:1D:B5:FD:D1:6D:1F:A5:A6 X509v3 Authority Key Identifier: keyid:69:D7:0B:36:35:67:6E:4F:73:1B:8E:F1:C5:85:5B:5E:2F:27:F3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.200.0/22 103.219.108.0/23 Signature Algorithm: sha256WithRSAEncryption 41:96:6e:87:33:f7:cb:3d:23:b8:fd:80:bd:58:1b:98:bc:74: 5d:8b:08:7c:b6:67:bf:65:2c:61:0c:d2:b7:13:33:b5:8b:32: 85:4f:85:f3:9c:89:5d:de:90:8e:18:fa:b1:b4:bf:cd:d2:0c: e2:0e:18:e6:4b:78:8e:44:9f:85:64:09:95:3d:ed:52:c8:f6: 2e:02:52:bd:fb:4a:54:58:0c:41:a8:de:e8:6a:6e:aa:19:b3: cb:42:67:10:c9:18:7d:8d:6e:97:71:7c:70:8f:ec:59:62:1e: 87:f9:5c:d9:b3:7a:af:73:e2:b4:a0:ad:ac:73:52:56:5a:e0: 93:42:ea:ac:ba:82:7f:1a:67:7d:7a:59:c4:84:b8:79:c7:46: ff:a0:92:dd:dc:6c:ad:64:68:0e:39:d2:51:6c:a1:d8:e9:ea: 7d:f7:7e:d4:cb:c4:58:ad:8a:c3:a3:7d:50:bb:43:ad:4a:5b: 5e:a9:64:56:70:f9:67:4b:e9:21:27:85:33:a9:86:5f:74:a0: 66:4d:ac:15:8e:40:68:ba:0a:79:78:45:93:85:6c:23:c7:ce: 80:04:b4:50:45:79:16:37:0c:8c:b1:f9:61:4f:e7:52:05:5e: 2c:c9:9d:20:e2:7b:e5:34:b8:5d:06:1d:ac:c9:7a:41:46:ee: 2c:aa:1f:6e -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEIwNDExMC8GA1UEBRMoNjlENzBCMzYzNTY3NkU0RjczMUI4RUYxQzU4NTVCNUUy RjI3RjM4ODAeFw0yMzA2MDUwODExNDZaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0N2Q5OGMyLTA3NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJldH0GCPhYnOWIw3TJXvzHIPpDTBOdtTvNwKHxW8LTDQvGpHkTfxpmdgWBZWN +UQ9JdHOH57KGm/BwW41Tq8aVdBSm5EaOX79990VO4MYvBlHm3YljufzG7M5PAw/ Wv8hTg4+oFaEQN+NBQiACnWvJuvbtEpHoC+PyBSwG4iwx7byaoOCXFSNM9EXwR9s ogSTSOpgeIUUhpaeJPRIroxNlmzfA5XZkNA0X76Zmg7Z3lCoZjRirli3GlJoDfy1 OwJKnR2VtxfiSgeE7EiYmXfS1DVsuRarSxvNg2ecBACz9hXFr6lZOSDXzZX2jCJ6 7bXRe4/M4DJIP0zml/0mkc9bAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUBC88cK/I vQEazUl5HbX90W0fpaYwHwYDVR0jBBgwFoAUadcLNjVnbk9zG47xxYVbXi8n84gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0QjA0LzNDNjg5RTA2OThB NzExRURCOTREQzg3QkM0RjlBRTAyL2FkY0xOalZuYms5ekc0N3h4WVZiWGk4bjg0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWRjTE5qVm5iazl6RzQ3eHhZVmJYaThuODRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEIwNC8zQzY4OUUwNjk4QTcxMUVEQjk0REM4N0JDNEY5QUUwMi81NzZCNEE5Mjk4 QUIxMUVEQkMxMkFBODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAi36yAMEAWfbbDANBgkqhkiG9w0BAQsFAAOCAQEAQZZuhzP3 yz0juP2AvVgbmLx0XYsIfLZnv2UsYQzStxMztYsyhU+F85yJXd6Qjhj6sbS/zdIM 4g4Y5kt4jkSfhWQJlT3tUsj2LgJSvftKVFgMQaje6Gpuqhmzy0JnEMkYfY1ul3F8 cI/sWWIeh/lc2bN6r3PitKCtrHNSVlrgk0LqrLqCfxpnfXpZxIS4ecdG/6CS3dxs rWRoDjnSUWyh2Onqffd+1MvEWK2Kw6N9ULtDrUpbXqlkVnD5Z0vpISeFM6mGX3Sg Zk2sFY5AaLoKeXhFk4VsI8fOgAS0UEV5FjcMjLH5YU/nUgVeLMmdIOJ75TS4XQYd rMl6QUbuLKofbg== -----END CERTIFICATE-----Generated at Tue May 7 06:20:17 2024 by rpki-client on console-fra.rpki-client.org