$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa File: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (raw, json) Hash identifier: 4n66LkegDbFIHcYcBJKvAm09V+JbkaejJoVyaO9RbG0= Subject key identifier: F1:01:4B:07:37:20:36:F3:3E:3F:B5:47:76:1C:9D:7F:5D:DC:0C:C6 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 08D3 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa Signing time: Fri 10 Nov 2023 21:08:44 +0000 ROA not before: Fri 10 Nov 2023 21:08:44 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4809 IP address blocks: 63.140.3.0/24 maxlen: 24 63.140.4.0/24 maxlen: 24 63.140.5.0/24 maxlen: 24 63.140.6.0/24 maxlen: 24 63.140.7.0/24 maxlen: 24 63.140.8.0/24 maxlen: 24 63.140.9.0/24 maxlen: 24 63.140.10.0/24 maxlen: 24 63.140.11.0/24 maxlen: 24 63.140.13.0/24 maxlen: 24 63.140.14.0/24 maxlen: 24 63.140.15.0/24 maxlen: 24 69.194.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2259 (0x8d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 10 21:08:44 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654e9bdb-e6d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:86:e9:68:91:a2:32:e3:8c:ac:57:ef:0d:74: ed:2d:5d:a7:3d:cd:4c:9f:af:85:89:b4:be:2f:f7: bb:d2:ad:ec:f9:47:9d:89:4d:a2:29:38:fb:7a:95: e1:b7:fe:bf:eb:3b:5c:35:16:8c:9c:d7:6a:7b:0a: 93:bf:ba:7b:a5:d3:59:71:b1:38:44:ba:db:e6:0e: 17:40:19:f9:ef:18:10:bc:1b:cb:8b:56:2c:72:d3: 10:94:5c:f2:eb:60:1d:4d:61:3a:92:eb:38:36:62: 41:81:72:7c:5d:32:9f:a2:b0:44:9a:c5:f5:53:10: 59:b8:ed:c0:b5:07:6f:db:22:7f:92:d1:36:6e:29: df:8b:d8:33:76:97:5a:41:36:2d:21:55:23:ab:78: 8e:9d:27:41:c9:29:49:1d:25:a3:70:6f:77:9b:11: af:6e:c2:9a:eb:3b:38:8e:57:0e:18:f3:d1:a0:a1: 28:4c:1c:0e:88:9d:93:17:16:0c:db:ac:92:0e:c9: 62:2d:2b:1d:a3:ff:e6:b4:01:8e:b0:66:46:98:c9: 74:7b:55:e6:bd:4d:22:01:ff:5d:00:cd:73:e6:e4: 48:17:4c:bb:59:07:aa:38:e9:aa:da:92:1a:73:21: 0f:61:04:5d:fd:5f:98:43:47:52:a7:2a:3d:ae:64: 21:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:01:4B:07:37:20:36:F3:3E:3F:B5:47:76:1C:9D:7F:5D:DC:0C:C6 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 63.140.3.0-63.140.11.255 63.140.13.0-63.140.15.255 69.194.171.0/24 Signature Algorithm: sha256WithRSAEncryption 26:8c:16:09:a7:78:66:a4:e3:44:8b:08:b5:84:d8:9a:15:e3: 9b:e2:27:7e:4e:0e:ec:50:14:a3:a5:17:42:39:99:c3:22:89: ce:d8:73:0f:f8:c2:0e:97:1c:3f:64:31:5b:a3:97:e5:a0:7a: 72:08:97:f5:3f:4f:2f:4c:d0:85:e6:0d:b7:59:10:f4:36:10: 8d:4f:d9:2e:0b:be:12:1a:25:38:42:0b:47:e7:c6:07:fc:cc: 3d:9b:88:84:9f:37:cc:ba:0e:f6:4f:a7:a5:b2:9c:27:d1:a6: b7:23:52:df:b2:a6:7f:73:24:c6:b8:35:76:db:a7:37:6d:3d: ed:e5:a4:4c:e4:08:22:5e:a7:36:eb:66:ed:84:6f:fc:c4:b3: 9a:25:9e:2e:8d:ba:d2:1d:4c:c9:7b:3e:72:6c:e9:43:75:75: 59:ff:76:a4:89:49:93:f7:9c:4f:1b:29:af:84:02:8b:e7:11: cb:24:21:7c:d3:3c:5c:39:e3:e3:28:23:01:27:cb:c1:a3:49: cc:76:26:e9:c2:14:fc:4a:ed:69:04:9e:78:68:1c:14:30:41: 0b:ff:45:86:2d:b4:40:79:b2:06:56:47:80:ad:9c:7f:63:06: d3:e6:a6:53:63:2f:04:25:f7:79:60:91:88:6d:2a:ad:81:30: 60:3f:64:aa -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICCNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjMxMTEwMjEwODQ0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlOWJkYi1lNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4bpaJGiMuOMrFfvDXTtLV2nPc1Mn6+FibS+L/e70q3s+UediU2iKTj7epXh t/6/6ztcNRaMnNdqewqTv7p7pdNZcbE4RLrb5g4XQBn57xgQvBvLi1YsctMQlFzy 62AdTWE6kus4NmJBgXJ8XTKforBEmsX1UxBZuO3AtQdv2yJ/ktE2binfi9gzdpda QTYtIVUjq3iOnSdBySlJHSWjcG93mxGvbsKa6zs4jlcOGPPRoKEoTBwOiJ2TFxYM 26ySDsliLSsdo//mtAGOsGZGmMl0e1XmvU0iAf9dAM1z5uRIF0y7WQeqOOmq2pIa cyEPYQRd/V+YQ0dSpyo9rmQhAwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFPEBSwc3 IDbzPj+1R3YcnX9d3AzGMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMkU3NjdFMzI4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvNEQzQ0E1RDA4 MkQyMTFFQUIyRjRGNjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAD+MAwMEAj+MCDAMAwQAP4wNAwQEP4wAAwQARcKrMA0G CSqGSIb3DQEBCwUAA4IBAQAmjBYJp3hmpONEiwi1hNiaFeOb4id+Tg7sUBSjpRdC OZnDIonO2HMP+MIOlxw/ZDFbo5floHpyCJf1P08vTNCF5g23WRD0NhCNT9kuC74S GiU4QgtH58YH/Mw9m4iEnzfMug72T6elspwn0aa3I1LfsqZ/cyTGuDV226c3bT3t 5aRM5AgiXqc262bthG/8xLOaJZ4ujbrSHUzJez5ybOlDdXVZ/3akiUmT95xPGymv hAKL5xHLJCF80zxcOePjKCMBJ8vBo0nMdibpwhT8Su1pBJ54aBwUMEEL/0WGLbRA ebIGVkeArZx/YwbT5qZTYy8EJfd5YJGIbSqtgTBgP2Sq -----END CERTIFICATE-----Generated at Sat May 4 22:06:52 2024 by rpki-client on console-ams.rpki-client.org