$ rpki-client -vvf rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/E47D0082AEB311E9922EDD41C4F9AE02.roa File: E47D0082AEB311E9922EDD41C4F9AE02.roa (raw, json) Hash identifier: FwXTtPFIaWq26Ow21vrwhb2KIlKG1+rkGSDT7JP7RZE= Subject key identifier: 26:8E:E7:3A:F4:E5:2C:58:9F:0C:A2:20:F8:B2:99:5A:D1:61:C9:B2 Certificate issuer: /CN=A917F259/serialNumber=7FC5941AC872C0A3A0DB1D2F59CFD98D21986F54 Certificate serial: 0C8B Authority key identifier: 7F:C5:94:1A:C8:72:C0:A3:A0:DB:1D:2F:59:CF:D9:8D:21:98:6F:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/E47D0082AEB311E9922EDD41C4F9AE02.roa Signing time: Tue 06 Jun 2023 19:29:37 +0000 ROA not before: Tue 06 Jun 2023 19:29:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135411 IP address blocks: 45.249.100.0/24 maxlen: 24 45.249.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.crl rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F259/serialNumber=7FC5941AC872C0A3A0DB1D2F59CFD98D21986F54 Validity Not Before: Jun 6 19:29:37 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647f8921-69aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:35:59:e3:ae:43:6d:a5:7f:65:d1:bc:03:16: b1:6f:2d:64:e1:39:94:b2:90:fd:4e:5d:f4:ee:f1: 42:fe:5c:23:cc:ca:80:9e:6d:f1:e0:34:14:e0:87: 43:64:1a:f9:fe:7f:1c:d7:b4:fa:1f:9b:b2:ae:10: 73:c6:b4:f3:36:4d:ca:0f:2f:2e:80:3a:c3:79:31: 4d:68:35:b1:f0:e3:bf:f9:e0:1c:f4:8c:73:c6:0a: db:5c:40:a8:ab:53:e4:a1:27:f3:fa:76:a1:a2:b4: 19:83:e0:81:7c:e5:5a:a4:73:7c:4e:15:d1:75:97: 9f:f5:6c:9e:8f:bf:29:4c:eb:9f:39:f2:cc:f3:79: d4:c5:2a:7c:e1:d4:eb:d7:16:9c:b0:63:48:b6:bb: 30:f3:1a:b8:6b:9c:af:20:93:b6:76:7c:27:fe:d9: e8:77:d6:4d:6a:f8:f0:6d:e4:d4:a5:1c:a2:e0:75: 41:0c:27:45:3b:70:96:f4:e3:0c:22:25:ea:be:99: 3e:d4:90:34:cc:f1:07:c0:ff:3a:ce:d8:0a:b2:de: 9d:ca:97:75:7f:00:27:19:19:e0:8a:b1:ff:c2:99: 85:d1:05:85:1d:9a:7b:f3:13:b6:5b:57:d3:63:c8: 46:64:ff:2f:55:c3:d1:83:38:fd:9f:8a:28:53:aa: cc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8E:E7:3A:F4:E5:2C:58:9F:0C:A2:20:F8:B2:99:5A:D1:61:C9:B2 X509v3 Authority Key Identifier: keyid:7F:C5:94:1A:C8:72:C0:A3:A0:DB:1D:2F:59:CF:D9:8D:21:98:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/f8WUGshywKOg2x0vWc_ZjSGYb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8WUGshywKOg2x0vWc_ZjSGYb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F259/A501DEC4AEB211E994932140C4F9AE02/E47D0082AEB311E9922EDD41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.100.0/23 Signature Algorithm: sha256WithRSAEncryption 13:a1:1c:c1:16:eb:4a:33:fe:fc:27:f9:11:18:5b:1d:61:99: 9b:25:86:45:23:ee:e8:e8:f2:e2:35:3a:5d:c0:0b:56:d3:3c: 0d:d7:12:9b:9b:e0:4e:bb:71:58:4c:49:3f:58:77:17:64:a9: 2b:3d:69:67:12:9e:41:b6:a9:0e:78:80:9d:0f:d6:1b:eb:22: 6b:7e:7d:8f:95:73:bf:0e:c4:78:c6:c3:4a:de:09:1f:17:5b: 41:04:16:c2:22:f6:2e:6b:b1:b8:f2:bb:96:51:c0:7b:b2:32: 78:7f:77:92:b8:50:92:b9:5b:c8:bc:89:fd:ad:a9:33:3a:82: 0e:e3:4d:c9:f1:b9:85:b8:a6:2d:13:d7:6c:a2:d5:2a:2f:e0: 44:85:fe:d3:bb:d1:98:15:c2:a8:ec:d8:8b:a5:b7:dd:e1:33: 42:d7:88:0c:44:65:6e:a6:90:92:e0:8a:3b:ce:ca:23:d3:ea: 72:e6:82:7d:f9:16:a8:32:8b:95:ab:33:4a:92:45:2e:5f:17: fd:98:2f:e8:3e:56:34:18:e9:8a:9d:e8:40:6f:82:03:4d:ad: a6:27:15:22:c3:9a:9d:9a:e9:a9:f6:58:ae:aa:8c:46:cb:b2: 54:09:59:7a:9c:d3:4f:ee:07:0f:c7:40:18:71:7a:2f:f1:eb: 8b:dc:02:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNTkxMTAvBgNVBAUTKDdGQzU5NDFBQzg3MkMwQTNBMERCMUQyRjU5Q0ZEOThE MjE5ODZGNTQwHhcNMjMwNjA2MTkyOTM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmODkyMS02OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjVZ465DbaV/ZdG8Axaxby1k4TmUspD9Tl307vFC/lwjzMqAnm3x4DQU4IdD ZBr5/n8c17T6H5uyrhBzxrTzNk3KDy8ugDrDeTFNaDWx8OO/+eAc9IxzxgrbXECo q1PkoSfz+nahorQZg+CBfOVapHN8ThXRdZef9Wyej78pTOufOfLM83nUxSp84dTr 1xacsGNItrsw8xq4a5yvIJO2dnwn/tnod9ZNavjwbeTUpRyi4HVBDCdFO3CW9OMM IiXqvpk+1JA0zPEHwP86ztgKst6dypd1fwAnGRngirH/wpmF0QWFHZp78xO2W1fT Y8hGZP8vVcPRgzj9n4ooU6rMbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCaO5zr0 5SxYnwyiIPiymVrRYcmyMB8GA1UdIwQYMBaAFH/FlBrIcsCjoNsdL1nP2Y0hmG9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI1OS9BNTAxREVDNEFF QjIxMUU5OTQ5MzIxNDBDNEY5QUUwMi9mOFdVR3NoeXdLT2cyeDB2V2NfWmpTR1li MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y4V1VHc2h5d0tPZzJ4MHZXY19aalNHWWIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0YyNTkvQTUwMURFQzRBRUIyMTFFOTk0OTMyMTQwQzRGOUFFMDIvRTQ3RDAwODJB RUIzMTFFOTkyMkVERDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEt+WQwDQYJKoZIhvcNAQELBQADggEBABOhHMEW60oz/vwn +REYWx1hmZslhkUj7ujo8uI1Ol3AC1bTPA3XEpub4E67cVhMST9YdxdkqSs9aWcS nkG2qQ54gJ0P1hvrImt+fY+Vc78OxHjGw0reCR8XW0EEFsIi9i5rsbjyu5ZRwHuy Mnh/d5K4UJK5W8i8if2tqTM6gg7jTcnxuYW4pi0T12yi1Sov4ESF/tO70ZgVwqjs 2Iult93hM0LXiAxEZW6mkJLgijvOyiPT6nLmgn35Fqgyi5WrM0qSRS5fF/2YL+g+ VjQY6Yqd6EBvggNNraYnFSLDmp2a6an2WK6qjEbLslQJWXqc00/uBw/HQBhxei/x 64vcAgs= -----END CERTIFICATE-----Generated at Thu May 16 19:49:59 2024 by rpki-client on console-fra.rpki-client.org