$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/8FEA9564C2AE11EB94777A0CC4F9AE02.roa File: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (raw, json) Hash identifier: yoKd3WvINlmK3i2rQSfdIpIQAcmmAKBdXCry++KEaCQ= Subject key identifier: FF:27:28:17:6A:C9:DA:87:70:C5:AE:C3:03:F0:69:55:FF:22:8C:C1 Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0628 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/8FEA9564C2AE11EB94777A0CC4F9AE02.roa Signing time: Thu 22 Jun 2023 23:24:59 +0000 ROA not before: Thu 22 Jun 2023 23:24:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134202 IP address blocks: 45.117.228.0/22 maxlen: 22 45.117.228.0/24 maxlen: 24 45.117.229.0/24 maxlen: 24 45.117.231.0/24 maxlen: 24 103.58.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Jun 22 23:24:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494d84b-e621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c0:ad:bb:6d:93:94:47:95:54:5e:d1:ba:c9: 73:91:e6:59:75:69:93:83:b4:c3:5c:51:8f:ef:d0: 84:79:b4:49:94:02:16:24:2c:66:49:2c:47:07:25: f7:df:ac:a1:1e:b9:9a:95:2e:15:aa:5d:16:75:6d: 18:05:cd:6d:b0:27:73:57:48:5e:27:77:f1:09:c0: be:fd:f5:59:ff:df:ea:1f:40:1d:37:4d:51:af:5c: 8e:25:15:aa:ed:1a:03:5c:87:b2:e0:69:42:f5:0d: 3d:80:db:5e:44:81:33:8a:4d:09:2c:bd:00:84:aa: aa:f5:f0:40:ed:4b:15:56:4f:8c:b4:8d:b9:75:e7: 6d:49:2c:79:32:99:7a:7d:7d:5d:75:37:9d:60:d6: 50:04:af:f2:bd:c0:9a:00:40:e3:25:2c:20:41:85: f7:36:96:54:d9:18:cf:46:56:bb:40:27:34:66:12: a1:15:d4:db:48:20:89:2d:2b:f3:cd:20:6c:71:cd: a0:6c:42:96:9f:66:19:3d:17:eb:8a:b2:f4:a6:12: 07:6e:48:c5:20:be:82:a1:90:e2:96:ba:cb:5a:02: c0:5b:68:11:3a:e8:0b:36:9e:19:4f:ff:bf:f5:e3: 1e:ec:f9:c0:18:21:16:b1:5d:35:29:36:8c:41:da: 55:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:27:28:17:6A:C9:DA:87:70:C5:AE:C3:03:F0:69:55:FF:22:8C:C1 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/8FEA9564C2AE11EB94777A0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.228.0/22 103.58.16.0/22 Signature Algorithm: sha256WithRSAEncryption 64:3b:75:2e:7e:66:9b:fa:36:57:8d:1a:c3:14:fb:06:3b:6c: 8e:07:2b:35:09:4e:7f:c5:6e:8c:63:14:40:54:40:a2:41:a6: 86:8d:c2:ea:66:fb:9e:49:87:a7:0c:3e:27:3f:73:35:97:68: 06:3d:e1:5c:c2:a8:b8:0d:a3:62:b3:03:b1:ca:01:08:4b:ba: 93:8b:5b:0d:6d:24:37:a9:50:22:0b:b6:cb:65:7e:a4:4a:19: 0b:e7:bd:46:89:42:04:89:d0:98:7d:ad:17:01:05:29:2f:44: 28:b8:9b:ef:2b:9b:52:b1:a4:b1:e1:45:a9:d2:8c:82:33:81: 71:da:88:5e:c8:f7:ab:46:f8:b1:3f:0e:7a:6e:9e:3f:ff:4a: d3:41:4e:64:58:b4:b5:12:f1:95:0d:9d:10:24:34:38:83:7d: ec:87:fe:77:e7:61:0e:c4:42:48:67:7f:1f:f8:c7:42:97:89: 78:f0:e3:96:a5:a6:55:8d:04:a3:94:32:2e:5c:9e:f5:c6:54: c7:60:24:e8:e7:be:61:94:f0:28:28:4e:62:5c:c6:bb:bb:fb: 96:fe:be:82:5d:d1:3d:31:fb:63:64:1e:53:93:de:f6:3f:28: 39:06:f9:6f:5c:a2:e5:ef:62:3b:77:62:b6:22:12:84:30:6e: 35:36:e2:9c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjMwNjIyMjMyNDU5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0ZDg0Yi1lNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsCtu22TlEeVVF7RuslzkeZZdWmTg7TDXFGP79CEebRJlAIWJCxmSSxHByX3 36yhHrmalS4Vql0WdW0YBc1tsCdzV0heJ3fxCcC+/fVZ/9/qH0AdN01Rr1yOJRWq 7RoDXIey4GlC9Q09gNteRIEzik0JLL0AhKqq9fBA7UsVVk+MtI25dedtSSx5Mpl6 fX1ddTedYNZQBK/yvcCaAEDjJSwgQYX3NpZU2RjPRla7QCc0ZhKhFdTbSCCJLSvz zSBscc2gbEKWn2YZPRfrirL0phIHbkjFIL6CoZDilrrLWgLAW2gROugLNp4ZT/+/ 9eMe7PnAGCEWsV01KTaMQdpVKQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP8nKBdq ydqHcMWuwwPwaVX/IozBMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JCNTkvQjY4QjkwRDYwRENBMTFFQkE3QzJFMjJEQzRGOUFFMDIvOEZFQTk1NjRD MkFFMTFFQjk0Nzc3QTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItdeQDBAJnOhAwDQYJKoZIhvcNAQELBQADggEBAGQ7dS5+ Zpv6NleNGsMU+wY7bI4HKzUJTn/FboxjFEBUQKJBpoaNwupm+55Jh6cMPic/czWX aAY94VzCqLgNo2KzA7HKAQhLupOLWw1tJDepUCILtstlfqRKGQvnvUaJQgSJ0Jh9 rRcBBSkvRCi4m+8rm1KxpLHhRanSjIIzgXHaiF7I96tG+LE/Dnpunj//StNBTmRY tLUS8ZUNnRAkNDiDfeyH/nfnYQ7EQkhnfx/4x0KXiXjw45alplWNBKOUMi5cnvXG VMdgJOjnvmGU8CgoTmJcxru7+5b+voJd0T0x+2NkHlOT3vY/KDkG+W9couXvYjt3 YrYiEoQwbjU24pw= -----END CERTIFICATE-----Generated at Tue May 14 23:38:43 2024 by rpki-client on console-ams.rpki-client.org