$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa File: 0B72CFAC049211EBB8144531C4F9AE02.roa (raw, json) Hash identifier: mDuFCJlPDmckocR6ma03jYQ+PIoKh5owGtsBoIrTZaM= Subject key identifier: D1:E8:B7:25:D2:9C:AC:66:E1:51:07:35:F2:04:91:24:33:6A:60:FF Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 226B Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa Signing time: Fri 02 Jun 2023 16:44:00 +0000 ROA not before: Fri 02 Jun 2023 16:44:00 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133466 IP address blocks: 45.112.36.0/22 maxlen: 24 103.4.124.0/22 maxlen: 24 2401:d00::/32 maxlen: 32 2401:d00::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8811 (0x226b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: Jun 2 16:44:00 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a1c50-d6b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:c0:94:a4:2a:06:8d:44:39:44:db:48:32: 21:f6:4c:8b:5c:47:c6:fd:3a:5f:ba:a9:5c:ed:d2: 6e:7c:1e:f0:36:8c:1c:d2:45:21:9e:58:98:3b:0b: 31:eb:44:4e:7d:ac:40:0d:4d:b5:be:69:79:cd:69: 23:57:4e:b0:07:7e:aa:82:03:bd:03:ba:04:15:7f: 6c:01:e6:c5:09:7d:a1:a1:c4:1b:4b:1c:95:07:01: fd:07:f6:24:c3:a4:b4:0f:2f:f9:9d:a7:16:15:f2: 66:73:c5:1c:bb:af:e6:57:53:8d:32:c3:fc:3a:ac: 12:60:6e:bb:52:6c:15:62:19:0f:f7:20:f7:cc:db: 37:3d:c2:ab:1d:4a:91:c1:2f:23:ae:73:01:b7:cc: d0:59:58:21:78:d5:37:ab:90:32:3e:9a:e2:3b:27: 32:a8:ff:0d:fa:83:9f:5d:2b:d0:5d:3a:d1:b3:63: 29:56:77:f7:1a:65:cd:0e:c0:d9:cf:45:b4:62:a9: 38:b6:2a:9e:5a:60:54:db:d8:69:66:3a:85:c6:f9: 0e:01:21:51:6d:49:71:57:5a:af:cb:4e:d6:18:a0: 51:7f:28:9d:24:9b:a1:65:3e:02:b2:c2:40:b6:0a: 5f:ba:31:ee:61:0c:6e:e5:5d:1c:e4:2b:2d:a1:2d: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E8:B7:25:D2:9C:AC:66:E1:51:07:35:F2:04:91:24:33:6A:60:FF X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.36.0/22 103.4.124.0/22 IPv6: 2401:d00::/32 Signature Algorithm: sha256WithRSAEncryption 36:6d:b0:58:1b:17:5b:92:3b:41:a1:e4:89:9a:03:51:57:9f: 88:f3:a1:ae:00:fd:55:35:f4:16:ba:ca:36:ed:5e:38:2d:b8: c6:44:d1:20:e0:9f:4c:42:7c:0c:81:5e:28:4b:c5:1f:f2:ae: 4c:a3:c3:e3:e3:0f:e7:1f:39:0e:ae:ae:00:68:8b:81:6a:e9: 07:82:51:3d:c3:8d:f6:1a:69:a4:df:50:c2:32:97:27:80:81: 38:22:a8:b8:14:5c:53:fb:4f:67:43:e6:e2:29:94:f4:b5:87: 24:ae:81:62:06:0e:53:96:cd:c4:1c:99:1c:c1:8f:2c:9c:a1: f8:5c:79:ab:23:f4:06:04:4c:1d:60:49:d3:0c:a1:6e:77:d4: bf:f1:d8:2c:7a:21:44:3d:30:5e:ce:58:8e:e7:92:ba:82:39: 83:ff:6d:5a:86:32:29:00:3f:34:43:05:85:c2:9f:16:40:d0: 04:e9:06:0d:da:9e:78:15:d0:64:a6:77:aa:39:19:73:18:e9: a6:a1:d0:1c:02:9f:9a:94:05:db:1e:30:2b:0c:4f:da:63:43: 7c:b4:55:8d:6c:ad:db:ad:33:b1:c6:1a:47:bd:41:b9:13:05: 89:2f:c0:db:24:1b:84:86:0d:6b:db:b7:fb:a3:09:22:92:9b: 0e:a9:12:59 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICImswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjMwNjAyMTY0NDAwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhMWM1MC1kNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRzAlKQqBo1EOUTbSDIh9kyLXEfG/Tpfuqlc7dJufB7wNowc0kUhnliYOwsx 60ROfaxADU21vml5zWkjV06wB36qggO9A7oEFX9sAebFCX2hocQbSxyVBwH9B/Yk w6S0Dy/5nacWFfJmc8Ucu6/mV1ONMsP8OqwSYG67UmwVYhkP9yD3zNs3PcKrHUqR wS8jrnMBt8zQWVgheNU3q5AyPpriOycyqP8N+oOfXSvQXTrRs2MpVnf3GmXNDsDZ z0W0Yqk4tiqeWmBU29hpZjqFxvkOASFRbUlxV1qvy07WGKBRfyidJJuhZT4CssJA tgpfujHuYQxu5V0c5CstoS08XwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNHotyXS nKxm4VEHNfIEkSQzamD/MB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0N0UvM0U2QkVDNTY2OTA5MTFFNTgwNEYwMDcyQzRGOUFFMDIvMEI3MkNGQUMw NDkyMTFFQkI4MTQ0NTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcCQDBAJnBHwwDQQCAAIwBwMFACQBDQAwDQYJKoZIhvcN AQELBQADggEBADZtsFgbF1uSO0Gh5ImaA1FXn4jzoa4A/VU19Ba6yjbtXjgtuMZE 0SDgn0xCfAyBXihLxR/yrkyjw+PjD+cfOQ6urgBoi4Fq6QeCUT3DjfYaaaTfUMIy lyeAgTgiqLgUXFP7T2dD5uIplPS1hySugWIGDlOWzcQcmRzBjyycofhceasj9AYE TB1gSdMMoW531L/x2Cx6IUQ9MF7OWI7nkrqCOYP/bVqGMikAPzRDBYXCnxZA0ATp Bg3anngV0GSmd6o5GXMY6aah0BwCn5qUBdseMCsMT9pjQ3y0VY1srdutM7HGGke9 QbkTBYkvwNskG4SGDWvbt/ujCSKSmw6pElk= -----END CERTIFICATE-----Generated at Fri May 10 17:10:26 2024 by rpki-client on console-fra.rpki-client.org