$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/CAB0B6B2F7C311EA8A722484C4F9AE02.roa File: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (raw, json) Hash identifier: eQp+KNojP7FrZXXNy8xSk8f/R+qu8SqcLiMXunoIGOc= Subject key identifier: 55:48:99:56:1C:A3:9C:8D:A5:7E:29:68:DD:66:AE:61:1F:1A:CA:CE Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 069D Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/CAB0B6B2F7C311EA8A722484C4F9AE02.roa Signing time: Mon 16 Oct 2023 22:10:19 +0000 ROA not before: Mon 16 Oct 2023 22:10:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 17977 IP address blocks: 120.72.64.0/20 maxlen: 20 203.173.64.0/20 maxlen: 20 2404:1000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Oct 16 22:10:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652db4cb-464e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4d:d5:9b:67:ad:8c:32:8e:a2:54:80:dc:61: 18:8c:1a:fc:92:e1:b0:26:18:47:08:30:69:2a:0e: 35:81:22:49:90:29:53:56:90:3e:ee:bd:81:8a:28: 44:e3:25:60:6f:0f:03:d8:c4:28:38:05:72:5e:58: 54:ca:3c:c1:d1:70:81:04:49:08:bf:a2:2b:e3:0b: 1e:f7:66:1b:5a:22:6e:de:ec:c8:2d:26:00:d0:c7: 4d:d8:1a:d4:3f:ad:59:34:5a:e2:41:2d:e9:5c:c4: 58:52:9b:38:f4:da:9e:bc:ee:59:05:c6:a9:3e:20: 30:16:6a:7f:83:46:a0:57:d4:b9:56:f4:7c:00:60: 1b:94:40:a3:b6:98:0e:84:a8:12:2c:b0:2e:32:c1: c8:36:32:d4:a8:35:ba:7d:ef:23:3f:01:2d:fb:09: 8d:b1:64:88:3b:c2:7a:89:1d:72:42:a5:8d:8b:31: 59:20:59:3b:cf:25:1e:06:d0:14:31:4d:a0:aa:a0: 39:4a:ea:f8:a0:92:f2:94:f9:8f:ad:3c:59:6c:f7: 4b:5f:a5:ef:00:ed:db:fd:8e:2f:48:76:fe:87:0e: 39:af:ac:dc:0f:ea:f2:9c:f8:6d:a8:0f:3a:84:42: e9:c9:2f:70:e6:2a:e9:6f:67:2d:8f:50:39:65:bb: dd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:48:99:56:1C:A3:9C:8D:A5:7E:29:68:DD:66:AE:61:1F:1A:CA:CE X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/CAB0B6B2F7C311EA8A722484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.72.64.0/20 203.173.64.0/20 IPv6: 2404:1000::/32 Signature Algorithm: sha256WithRSAEncryption a4:01:aa:a8:54:49:11:8a:42:77:9f:0d:fa:f8:d8:36:bd:bd: 00:8c:43:be:5c:83:5c:fa:f6:10:e8:42:ed:a1:8a:f9:eb:9f: 1f:73:ed:6e:62:0f:08:e3:40:15:e9:df:0e:c5:25:a9:06:3d: e2:0d:6c:18:f5:7c:2f:7e:e3:6b:f4:98:70:16:97:72:d1:b9: c3:52:26:78:4d:5f:56:49:d4:e1:d6:44:67:eb:6e:d8:02:fa: 72:fc:73:67:bb:84:93:93:d1:b5:dc:5a:4c:04:9d:bb:a3:31: 11:74:d7:2d:f9:1a:a1:a4:d4:56:a4:97:a1:54:79:09:e9:77: 41:9a:d1:97:be:f3:92:20:22:0c:cb:98:e6:1c:91:ac:0a:66: 68:ea:25:e4:3d:bb:08:1d:bd:09:20:8e:1c:81:36:5e:4c:37: 14:15:8a:67:78:67:be:45:49:00:84:36:ac:36:1a:32:db:52: 94:6e:e9:c9:3d:2b:f4:81:17:44:c4:f8:e3:5c:3b:31:4d:dd: f2:d5:70:b9:29:d6:c7:2d:11:a6:2d:5c:8d:91:70:74:19:10: d1:d6:53:b9:d8:ba:6d:75:0f:82:60:0b:dc:5d:ab:0e:42:92: d3:66:b0:0a:9e:f7:4e:89:b3:36:e0:38:9b:95:8e:b6:0c:62: 6f:ac:e9:da -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjMxMDE2MjIxMDE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYjRjYi00NjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwk3Vm2etjDKOolSA3GEYjBr8kuGwJhhHCDBpKg41gSJJkClTVpA+7r2BiihE 4yVgbw8D2MQoOAVyXlhUyjzB0XCBBEkIv6Ir4wse92YbWiJu3uzILSYA0MdN2BrU P61ZNFriQS3pXMRYUps49NqevO5ZBcapPiAwFmp/g0agV9S5VvR8AGAblECjtpgO hKgSLLAuMsHINjLUqDW6fe8jPwEt+wmNsWSIO8J6iR1yQqWNizFZIFk7zyUeBtAU MU2gqqA5Sur4oJLylPmPrTxZbPdLX6XvAO3b/Y4vSHb+hw45r6zcD+rynPhtqA86 hELpyS9w5irpb2ctj1A5Zbvd2wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFVImVYc o5yNpX4paN1mrmEfGsrOMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FBQUQvRTNCMkI2NDRGN0MxMTFFQTgyNzVDQjY2QzRGOUFFMDIvQ0FCMEI2QjJG N0MzMTFFQThBNzIyNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAR4SEADBATLrUAwDQQCAAIwBwMFACQEEAAwDQYJKoZIhvcN AQELBQADggEBAKQBqqhUSRGKQnefDfr42Da9vQCMQ75cg1z69hDoQu2hivnrnx9z 7W5iDwjjQBXp3w7FJakGPeINbBj1fC9+42v0mHAWl3LRucNSJnhNX1ZJ1OHWRGfr btgC+nL8c2e7hJOT0bXcWkwEnbujMRF01y35GqGk1Fakl6FUeQnpd0Ga0Ze+85Ig IgzLmOYckawKZmjqJeQ9uwgdvQkgjhyBNl5MNxQVimd4Z75FSQCENqw2GjLbUpRu 6ck9K/SBF0TE+ONcOzFN3fLVcLkp1sctEaYtXI2RcHQZENHWU7nYum11D4JgC9xd qw5CktNmsAqe906JszbgOJuVjrYMYm+s6do= -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org