$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E5D6608E94011EB9619BF0DC4F9AE02.roa File: 0E5D6608E94011EB9619BF0DC4F9AE02.roa (raw, json) Hash identifier: +VS3uPwh+wavijARUpH6Vv96JC9PJ9aLxGyf+8N7Res= Subject key identifier: 67:01:45:05:15:30:50:DA:C3:5F:F2:34:7F:65:5A:B6:3D:D6:06:F4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 76E6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E5D6608E94011EB9619BF0DC4F9AE02.roa Signing time: Fri 04 Aug 2023 06:11:07 +0000 ROA not before: Fri 04 Aug 2023 06:11:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58725 IP address blocks: 14.192.12.0/22 maxlen: 24 45.115.0.0/22 maxlen: 24 103.12.117.0/24 maxlen: 24 103.12.118.0/24 maxlen: 24 103.12.119.0/24 maxlen: 24 103.24.20.0/22 maxlen: 24 2402:8c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30438 (0x76e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 4 06:11:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64cc967a-978c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:59:ab:69:3a:8a:8d:fa:d5:3f:f2:5c:77: 11:b7:8d:4d:08:35:b3:04:f0:48:3b:0d:57:2d:48: 9b:51:1b:5e:93:19:1a:74:fb:b4:72:24:cc:17:e4: 12:b5:a6:81:bd:5e:0a:d1:76:da:a1:8f:38:ca:e5: ad:5c:5b:45:42:bf:db:91:cc:d5:28:f7:c7:14:ff: e7:65:c7:68:a4:83:82:47:85:ce:56:fa:3b:fd:1c: 9a:29:2b:1c:2a:08:e4:5e:7a:69:9e:cf:d0:4d:e9: d0:38:5e:c5:ac:57:20:c1:e9:14:41:49:27:20:f6: 70:ed:88:ef:6b:92:ac:15:bd:c0:87:4d:20:6e:2e: 48:95:e9:49:13:a4:49:c4:80:60:4f:27:2a:a3:3c: c2:81:fb:b4:61:46:da:35:da:05:c3:fc:3a:fd:90: dc:83:be:a8:cd:7d:6b:2b:00:64:bc:be:60:fb:b7: 84:cd:11:57:b9:4c:00:56:c5:e4:10:d4:4a:8c:67: d4:d3:96:07:7c:d0:e8:70:47:83:15:65:6a:e4:67: e3:9a:a7:b0:7c:41:55:6e:d8:c7:71:21:92:06:8d: c1:db:4e:52:2f:2b:d0:21:b9:54:5e:9b:70:5b:15: f1:0d:27:4c:e8:51:0a:88:4c:d1:4d:c0:5e:0b:9a: 59:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:01:45:05:15:30:50:DA:C3:5F:F2:34:7F:65:5A:B6:3D:D6:06:F4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E5D6608E94011EB9619BF0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.12.0/22 45.115.0.0/22 103.12.117.0-103.12.119.255 103.24.20.0/22 IPv6: 2402:8c40::/32 Signature Algorithm: sha256WithRSAEncryption 4b:80:16:99:a7:48:47:07:d7:66:92:b3:cf:ea:84:79:d5:74: 80:34:0a:9d:73:e4:e1:24:3a:c4:0e:08:cb:22:c5:f8:da:33: 39:ef:a5:ca:72:67:e5:9a:34:b0:6f:7a:24:6e:ef:07:2a:4b: 8b:08:31:77:68:88:a4:2c:30:52:24:13:f8:bb:97:84:e4:2e: fc:88:b1:0c:d0:95:8f:ac:e8:e0:f1:8e:b4:8c:0f:89:a6:2f: 52:32:93:c2:dd:22:83:67:6d:3f:37:2c:6d:91:03:39:11:45: fa:20:38:dd:b0:b0:cf:31:b0:fc:dd:67:28:12:ad:77:28:5f: e9:d3:cf:7a:bd:fa:0a:b7:03:c1:84:a6:3f:20:c2:4d:2c:b0: 7d:02:da:03:48:c8:39:7e:04:de:cf:e4:59:0e:7a:9d:c7:ca: e5:9d:d0:e5:bc:d3:5c:e6:09:9b:72:77:f7:36:5f:a8:2c:a1: d9:c3:22:93:55:b2:6d:5c:00:75:f6:39:16:35:20:1b:76:21: 94:aa:02:19:c7:b9:7a:c2:81:0e:43:85:04:df:73:1f:ea:ee: 07:a5:b2:67:74:55:f6:34:a4:38:45:b8:c2:ce:46:f8:ec:36: 7a:77:60:4c:80:18:6d:f2:50:e0:e7:17:33:8e:53:8c:9b:7f: 78:f0:d1:d1 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICduYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODA0MDYxMTA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNjOTY3YS05NzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudBZq2k6io361T/yXHcRt41NCDWzBPBIOw1XLUibURtekxkadPu0ciTMF+QS taaBvV4K0XbaoY84yuWtXFtFQr/bkczVKPfHFP/nZcdopIOCR4XOVvo7/RyaKSsc KgjkXnppns/QTenQOF7FrFcgwekUQUknIPZw7Yjva5KsFb3Ah00gbi5IlelJE6RJ xIBgTycqozzCgfu0YUbaNdoFw/w6/ZDcg76ozX1rKwBkvL5g+7eEzRFXuUwAVsXk ENRKjGfU05YHfNDocEeDFWVq5GfjmqewfEFVbtjHcSGSBo3B205SLyvQIblUXptw WxXxDSdM6FEKiEzRTcBeC5pZvQIDAQABo4ICvjCCArowHQYDVR0OBBYEFGcBRQUV MFDaw1/yNH9lWrY91gb0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEU1RDY2MDhF OTQwMTFFQjk2MTlCRjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCADBAIOwAwDBAItcwAwDAMEAGcMdQMEA2cMcAMEAmcYFDANBAIA AjAHAwUAJAKMQDANBgkqhkiG9w0BAQsFAAOCAQEAS4AWmadIRwfXZpKzz+qEedV0 gDQKnXPk4SQ6xA4IyyLF+NozOe+lynJn5Zo0sG96JG7vBypLiwgxd2iIpCwwUiQT +LuXhOQu/IixDNCVj6zo4PGOtIwPiaYvUjKTwt0ig2dtPzcsbZEDORFF+iA43bCw zzGw/N1nKBKtdyhf6dPPer36CrcDwYSmPyDCTSywfQLaA0jIOX4E3s/kWQ56ncfK 5Z3Q5bzTXOYJm3J39zZfqCyh2cMik1WybVwAdfY5FjUgG3YhlKoCGce5esKBDkOF BN9zH+ruB6WyZ3RV9jSkOEW4ws5G+Ow2endgTIAYbfJQ4OcXM45TjJt/ePDR0Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org