$ rpki-client -vvf rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa File: B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa (raw, json) Hash identifier: 720nSq3NR6M3vdSKFpAw0LFq5DCAYP1DxEmZpu4sU7A= Subject key identifier: 88:0B:B6:DE:BE:81:DF:EA:68:B9:04:18:E8:F4:BA:CE:51:FE:78:1F Certificate issuer: /CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Certificate serial: 063D Authority key identifier: 66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa Signing time: Thu 14 Sep 2023 22:40:39 +0000 ROA not before: Thu 14 Sep 2023 22:40:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 16552 IP address blocks: 43.247.168.0/22 maxlen: 24 103.14.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Validity Not Before: Sep 14 22:40:39 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65038be7-4e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:93:a7:a8:ee:21:83:fe:a2:c6:f4:5d:ab:66: 75:ea:8c:22:18:b3:21:30:b4:e1:c1:9d:14:64:51: 18:ef:ef:7a:13:5e:f0:7e:3e:d1:32:d0:f8:48:26: 3e:0e:d2:9b:d4:ec:b0:02:96:20:06:cb:76:13:bf: aa:3f:e6:7d:c9:1c:b7:41:f5:18:87:6e:45:cd:7b: 51:3c:ca:e3:57:50:fe:76:4c:6f:7d:bc:f9:91:be: 5a:7b:56:3f:88:fd:2e:56:30:82:1c:98:17:4d:d4: 8b:d9:19:f7:95:8c:2b:f8:fb:a5:c6:3b:39:c7:b3: e5:2f:76:a7:8b:67:58:6f:84:13:7f:9f:4f:90:2d: 7a:49:2b:39:e1:34:5b:3c:48:f8:80:26:0b:3e:bc: 6b:c4:73:30:29:e8:70:fa:10:2c:94:e7:bd:a2:c2: 2d:dd:b8:8f:47:93:c1:3e:6c:dc:7f:64:ce:2e:4d: b7:9c:d3:fb:2a:84:93:5e:ea:c1:a7:8f:28:1d:de: 7c:0c:3b:d4:62:52:d7:28:82:62:71:4a:22:0d:c7: d8:03:a3:1e:8b:78:92:97:b6:06:21:1d:d4:c7:fa: d2:48:02:e8:f3:6e:bc:b1:34:87:b6:96:b3:ba:df: 13:de:2f:55:bb:b9:b1:0f:37:96:b6:7e:0f:c1:dd: b8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0B:B6:DE:BE:81:DF:EA:68:B9:04:18:E8:F4:BA:CE:51:FE:78:1F X509v3 Authority Key Identifier: keyid:66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.168.0/22 103.14.220.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:a3:58:3d:8c:b8:17:11:08:72:f5:c8:7f:46:aa:6c:cd:ca: a9:23:da:a8:54:c1:dd:f3:08:3f:5f:9c:6f:e1:81:d8:0a:62: 51:68:86:b3:cd:0b:16:40:0a:3c:04:ed:e6:fb:6d:70:9f:a0: 6b:e2:87:46:20:d5:4e:97:4e:97:13:45:b3:88:44:68:7c:f2: a2:04:08:a9:0b:a0:74:f2:c5:3c:ad:27:d7:5f:72:e8:43:2e: 3b:a1:f7:10:43:33:6b:66:4f:3b:54:ab:cc:ac:45:c1:82:9e: bd:fb:3f:de:ea:bb:a7:7e:0c:2a:8b:f6:82:b3:00:7c:25:93: 93:88:1f:f5:2b:1d:0b:76:0e:4a:ea:4a:b3:4a:d8:15:51:0a: e1:fc:21:5c:b9:2c:2c:a7:ad:24:54:43:47:03:72:c1:00:24: 3e:ed:38:3e:d8:f7:12:8e:49:a5:ed:21:4b:d8:94:f4:2c:ce: c0:25:7c:31:e8:b3:dd:38:e9:a4:02:f6:f7:56:8e:46:e8:4e: ed:c5:e5:b0:be:92:6c:55:24:d9:39:2a:79:44:81:b5:33:c1: e0:26:71:88:0b:e6:5a:b9:71:15:0b:3a:23:20:e5:c1:98:10: f7:9e:3e:09:6c:f9:cb:33:f9:ae:dc:0a:af:c2:ea:10:5b:25: 6d:91:9a:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVENTcxMTAvBgNVBAUTKDY2ODg3MkU4Nzk5N0I3M0I5NzVGRTNEQUQ0REFDQThF QkVDOEVCQTMwHhcNMjMwOTE0MjI0MDM5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzOGJlNy00ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJOnqO4hg/6ixvRdq2Z16owiGLMhMLThwZ0UZFEY7+96E17wfj7RMtD4SCY+ DtKb1OywApYgBst2E7+qP+Z9yRy3QfUYh25FzXtRPMrjV1D+dkxvfbz5kb5ae1Y/ iP0uVjCCHJgXTdSL2Rn3lYwr+Pulxjs5x7PlL3ani2dYb4QTf59PkC16SSs54TRb PEj4gCYLPrxrxHMwKehw+hAslOe9osIt3biPR5PBPmzcf2TOLk23nNP7KoSTXurB p48oHd58DDvUYlLXKIJicUoiDcfYA6Mei3iSl7YGIR3Ux/rSSALo8268sTSHtpaz ut8T3i9Vu7mxDzeWtn4Pwd240wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIgLtt6+ gd/qaLkEGOj0us5R/ngfMB8GA1UdIwQYMBaAFGaIcuh5l7c7l1/j2tTayo6+yOuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUQ1Ny81Q0Q4MjQ0MjE3 QjAxMUVCQjk0REE3MTRDNEY5QUUwMi9ab2h5NkhtWHR6dVhYLVBhMU5yS2pyN0k2 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pvaHk2SG1YdHp1WFgtUGExTnJLanI3STY2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVENTcvNUNEODI0NDIxN0IwMTFFQkI5NERBNzE0QzRGOUFFMDIvQjRCMzREQTRE MkM2MTFFQ0JGM0IzRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr96gDBAJnDtwwDQYJKoZIhvcNAQELBQADggEBAE+jWD2M uBcRCHL1yH9GqmzNyqkj2qhUwd3zCD9fnG/hgdgKYlFohrPNCxZACjwE7eb7bXCf oGvih0Yg1U6XTpcTRbOIRGh88qIECKkLoHTyxTytJ9dfcuhDLjuh9xBDM2tmTztU q8ysRcGCnr37P97qu6d+DCqL9oKzAHwlk5OIH/UrHQt2DkrqSrNK2BVRCuH8IVy5 LCynrSRUQ0cDcsEAJD7tOD7Y9xKOSaXtIUvYlPQszsAlfDHos9046aQC9vdWjkbo Tu3F5bC+kmxVJNk5KnlEgbUzweAmcYgL5lq5cRULOiMg5cGYEPeePgls+csz+a7c Cq/C6hBbJW2Rmjk= -----END CERTIFICATE-----Generated at Wed May 29 02:29:44 2024 by rpki-client on console-ams.rpki-client.org