$ rpki-client -vvf rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa File: 6C5A7912ED2311E680140D19C4F9AE02.roa (raw, json) Hash identifier: X8AQp7odAt1JQqP19nbrCZ2OfUpP0Ns8/BfHaNDUuYA= Subject key identifier: D1:AB:91:60:75:EE:13:7E:A3:A0:21:C3:48:3A:54:B7:25:94:26:40 Certificate issuer: /CN=A918770D/serialNumber=1BAF8251D1A13F4188060AB19A030D36CAA7ABD4 Certificate serial: 1AB7 Authority key identifier: 1B:AF:82:51:D1:A1:3F:41:88:06:0A:B1:9A:03:0D:36:CA:A7:AB:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa Signing time: Tue 18 Jul 2023 16:33:28 +0000 ROA not before: Tue 18 Jul 2023 16:33:28 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135371 IP address blocks: 103.215.192.0/22 maxlen: 22 103.215.192.0/24 maxlen: 24 103.215.193.0/24 maxlen: 24 103.215.194.0/24 maxlen: 24 103.215.195.0/24 maxlen: 24 157.119.76.0/22 maxlen: 22 157.119.76.0/24 maxlen: 24 157.119.77.0/24 maxlen: 24 157.119.78.0/24 maxlen: 24 157.119.79.0/24 maxlen: 24 2406:e480::/32 maxlen: 32 2406:e480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.crl rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6839 (0x1ab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918770D/serialNumber=1BAF8251D1A13F4188060AB19A030D36CAA7ABD4 Validity Not Before: Jul 18 16:33:28 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64b6bed8-c9e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:29:d0:55:6e:a7:85:06:3f:db:8e:54:f5: d3:e8:33:d4:ff:40:43:28:0e:70:f0:8d:c8:a0:9a: 46:40:c0:c6:90:fe:26:87:31:9c:31:d4:27:27:b9: 98:ff:5d:f1:bb:74:ee:7d:94:7b:85:03:cf:da:2b: 7e:a4:43:89:13:27:5f:0c:a4:0a:2c:fe:46:dd:0f: f7:79:d1:9d:69:e7:d8:26:ab:09:44:4a:46:1f:b2: 93:f3:c8:f8:4b:5d:b6:73:04:42:43:ec:a1:5f:13: 81:c4:7d:9e:fa:c0:df:3d:da:93:93:de:d6:05:c1: da:2e:fd:c4:57:f4:50:46:07:c3:e1:cf:6b:84:9b: 15:b0:93:50:0c:ea:4a:26:03:34:b8:23:bd:08:03: 8b:4b:6f:89:c3:85:27:70:d6:96:bd:4a:9e:18:00: 0d:b1:b1:96:e1:ec:fe:af:ac:22:7c:fb:e0:14:1f: 6b:e9:90:a1:08:85:13:36:c6:6f:d2:3b:f4:2d:aa: a2:8f:02:86:30:e3:7a:49:1d:d4:57:74:50:c7:a4: 23:3c:7e:78:e7:ae:c5:0b:7b:3d:00:cc:72:e0:0c: 80:d7:44:06:1a:89:ea:9e:b9:d3:42:ed:5a:0e:ae: cf:f6:d2:fd:6c:fa:93:c9:8f:f9:9e:94:00:dd:eb: e7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AB:91:60:75:EE:13:7E:A3:A0:21:C3:48:3A:54:B7:25:94:26:40 X509v3 Authority Key Identifier: keyid:1B:AF:82:51:D1:A1:3F:41:88:06:0A:B1:9A:03:0D:36:CA:A7:AB:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G6-CUdGhP0GIBgqxmgMNNsqnq9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918770D/176D4114ED2311E6938FD318C4F9AE02/6C5A7912ED2311E680140D19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.192.0/22 157.119.76.0/22 IPv6: 2406:e480::/32 Signature Algorithm: sha256WithRSAEncryption 94:43:c6:97:b7:58:f9:2e:bf:84:e8:47:31:e6:0b:ae:46:c8: d3:1a:63:5c:16:60:ad:03:96:a5:9a:0c:cf:99:71:b6:aa:65: 2a:31:8e:65:8d:33:63:a1:c2:ed:90:36:d0:66:7a:2b:e8:df: 9c:e9:1d:33:05:d3:45:79:3b:e1:fa:60:5b:33:74:e5:c1:28: 7a:a7:a9:d1:5a:54:15:d9:79:de:a3:42:6d:8b:32:6c:05:8a: eb:f8:da:29:ae:4b:9c:49:27:2c:b0:55:1c:4f:2d:28:69:8a: 63:50:49:99:b2:ff:66:59:a1:06:8b:79:ef:db:64:57:63:66: ba:b9:60:85:af:61:02:5e:86:65:c1:d3:bc:fa:45:8e:9c:ce: 85:0a:c3:b4:1a:09:65:e3:e7:d6:38:83:55:9f:84:f0:dc:31: e7:82:3a:b7:25:cf:6e:b2:b2:0f:fa:45:96:6f:36:aa:89:45: c1:4d:10:eb:67:de:9d:c1:d0:b1:50:6f:30:02:7f:93:d6:1c: 05:63:07:54:1e:08:ba:87:23:77:44:1b:a4:17:d4:cd:a7:ab: f4:55:73:fe:f2:44:d9:a5:30:8b:79:da:e9:f6:0c:4d:ad:ee: 8e:05:f6:42:c1:e3:cb:97:c5:a0:03:fb:3b:fc:7b:61:3c:07: e2:c9:62:b2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MEQxMTAvBgNVBAUTKDFCQUY4MjUxRDFBMTNGNDE4ODA2MEFCMTlBMDMwRDM2 Q0FBN0FCRDQwHhcNMjMwNzE4MTYzMzI4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI2YmVkOC1jOWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4Ip0FVup4UGP9uOVPXT6DPU/0BDKA5w8I3IoJpGQMDGkP4mhzGcMdQnJ7mY /13xu3TufZR7hQPP2it+pEOJEydfDKQKLP5G3Q/3edGdaefYJqsJREpGH7KT88j4 S122cwRCQ+yhXxOBxH2e+sDfPdqTk97WBcHaLv3EV/RQRgfD4c9rhJsVsJNQDOpK JgM0uCO9CAOLS2+Jw4UncNaWvUqeGAANsbGW4ez+r6wifPvgFB9r6ZChCIUTNsZv 0jv0LaqijwKGMON6SR3UV3RQx6QjPH54567FC3s9AMxy4AyA10QGGonqnrnTQu1a Dq7P9tL9bPqTyY/5npQA3evn4wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNGrkWB1 7hN+o6Ahw0g6VLcllCZAMB8GA1UdIwQYMBaAFBuvglHRoT9BiAYKsZoDDTbKp6vU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcwRC8xNzZENDExNEVE MjMxMUU2OTM4RkQzMThDNEY5QUUwMi9HNi1DVWRHaFAwR0lCZ3F4bWdNTk5zcW5x OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c2LUNVZEdoUDBHSUJncXhtZ01OTnNxbnE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc3MEQvMTc2RDQxMTRFRDIzMTFFNjkzOEZEMzE4QzRGOUFFMDIvNkM1QTc5MTJF RDIzMTFFNjgwMTQwRDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn18ADBAKdd0wwDQQCAAIwBwMFACQG5IAwDQYJKoZIhvcN AQELBQADggEBAJRDxpe3WPkuv4ToRzHmC65GyNMaY1wWYK0DlqWaDM+ZcbaqZSox jmWNM2Ohwu2QNtBmeivo35zpHTMF00V5O+H6YFszdOXBKHqnqdFaVBXZed6jQm2L MmwFiuv42imuS5xJJyywVRxPLShpimNQSZmy/2ZZoQaLee/bZFdjZrq5YIWvYQJe hmXB07z6RY6czoUKw7QaCWXj59Y4g1WfhPDcMeeCOrclz26ysg/6RZZvNqqJRcFN EOtn3p3B0LFQbzACf5PWHAVjB1QeCLqHI3dEG6QX1M2nq/RVc/7yRNmlMIt52un2 DE2t7o4F9kLB48uXxaAD+zv8e2E8B+LJYrI= -----END CERTIFICATE-----Generated at Thu May 16 17:51:23 2024 by rpki-client on console-ams.rpki-client.org