$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA7F11E840E611EE98FC951DC4F9AE02.roa File: BA7F11E840E611EE98FC951DC4F9AE02.roa (raw, json) Hash identifier: evzDw+cDjBxiD++LCBuU7LSnX3XZ3wFFcCO2qM8wsy4= Subject key identifier: 19:AD:BA:51:0B:E1:2F:EA:BB:C4:43:DA:99:11:9F:4E:0E:C0:5F:45 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7846 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA7F11E840E611EE98FC951DC4F9AE02.roa Signing time: Tue 22 Aug 2023 12:36:27 +0000 ROA not before: Tue 22 Aug 2023 12:36:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132323 IP address blocks: 45.115.188.0/22 maxlen: 24 45.116.116.0/22 maxlen: 24 103.12.132.0/22 maxlen: 24 2001:df2:9ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30790 (0x7846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 22 12:36:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64e4abcb-c7fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:37:dd:f4:33:be:1c:f2:ac:5c:e9:a2:4a: 8f:ae:3c:90:c9:07:b7:10:40:46:96:69:3a:e8:fa: 4f:05:13:38:1a:f4:90:5e:c5:00:19:4b:31:ad:f4: 04:e9:73:d2:28:c8:8b:58:97:cd:c4:12:85:94:73: 4b:9b:a1:14:a2:3c:7e:fd:29:80:b7:2d:66:f4:47: 58:24:59:b5:7e:90:3f:6d:6f:13:69:5d:65:ae:6a: 00:4b:6b:b2:1b:14:a4:81:cd:09:33:19:de:80:c7: ea:f9:08:47:75:07:7d:7d:6f:51:66:6e:fe:f9:93: e6:e1:65:a0:7e:2a:23:f5:2f:c5:3f:7a:a4:2b:55: b0:1e:e3:33:0d:1a:d3:01:06:a8:6f:70:81:5c:23: 29:2f:7f:16:4e:86:af:5e:64:4e:69:4f:24:69:6a: fd:5b:b5:e8:b6:d0:3e:b3:90:73:5d:da:52:36:78: 43:3e:10:d3:dc:b6:10:bb:06:6b:aa:14:75:0e:bf: 14:dd:60:6d:70:79:c5:81:31:74:1e:92:64:c0:5e: ad:09:76:20:bf:0d:76:e2:b4:77:7a:bb:3e:dd:2c: c5:b8:2b:b8:4c:99:f5:05:f1:70:18:24:95:eb:5e: 95:e1:a7:d2:35:59:6e:17:40:f8:e5:3f:7d:fa:e7: cd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AD:BA:51:0B:E1:2F:EA:BB:C4:43:DA:99:11:9F:4E:0E:C0:5F:45 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA7F11E840E611EE98FC951DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.188.0/22 45.116.116.0/22 103.12.132.0/22 IPv6: 2001:df2:9ac0::/48 Signature Algorithm: sha256WithRSAEncryption 32:ab:14:51:20:0c:56:22:97:5a:52:60:07:1f:11:52:27:6a: 8f:d4:a3:6c:da:60:ab:00:d2:96:b4:d3:44:3f:c0:09:e3:10: 79:be:f0:0d:ec:7d:b3:0a:21:29:f6:04:cf:98:f2:9d:70:34: ff:b3:ac:e8:b5:ab:df:0c:a1:10:fb:6e:b8:b6:ca:5b:ea:2a: 95:8a:49:24:eb:cb:6a:94:a3:96:d3:d4:45:56:12:a8:f8:b9: 3c:17:d3:ab:b9:a0:09:71:93:58:28:be:c8:d9:ee:2d:e6:d3: 29:69:e4:9e:a5:86:16:f3:b8:b5:6c:b5:32:59:3a:d9:ff:55: 7c:df:c3:f4:a9:05:52:dc:5d:de:1e:e7:58:c3:19:30:7b:37: 21:9a:b9:29:65:ca:5c:7b:61:62:f5:97:5e:3c:c6:09:71:ed: c9:5c:1b:2a:1e:af:f9:54:9e:10:63:d6:a6:a2:d0:27:ac:8b: ae:31:f3:71:10:9e:f2:39:eb:e9:e9:37:c5:06:6d:a6:00:8e: 3e:e0:69:f0:74:d2:f8:08:10:c7:a9:df:f4:5b:3f:6a:07:7f: d7:b6:11:df:d7:7c:c1:a8:8a:da:24:c6:ae:70:8d:f0:5b:fe: 95:41:55:fc:18:01:02:08:00:64:23:a2:57:07:14:c0:0c:65: 30:48:04:d7 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICeEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODIyMTIzNjI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU0YWJjYi1jN2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWY33fQzvhzyrFzpokqPrjyQyQe3EEBGlmk66PpPBRM4GvSQXsUAGUsxrfQE 6XPSKMiLWJfNxBKFlHNLm6EUojx+/SmAty1m9EdYJFm1fpA/bW8TaV1lrmoAS2uy GxSkgc0JMxnegMfq+QhHdQd9fW9RZm7++ZPm4WWgfioj9S/FP3qkK1WwHuMzDRrT AQaob3CBXCMpL38WToavXmROaU8kaWr9W7XottA+s5BzXdpSNnhDPhDT3LYQuwZr qhR1Dr8U3WBtcHnFgTF0HpJkwF6tCXYgvw124rR3ers+3SzFuCu4TJn1BfFwGCSV 616V4afSNVluF0D45T99+ufNUQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFBmtulEL 4S/qu8RD2pkRn04OwF9FMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkE3RjExRTg0 MEU2MTFFRTk4RkM5NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAItc7wDBAItdHQDBAJnDIQwDwQCAAIwCQMHACABDfKawDAN BgkqhkiG9w0BAQsFAAOCAQEAMqsUUSAMViKXWlJgBx8RUidqj9SjbNpgqwDSlrTT RD/ACeMQeb7wDex9swohKfYEz5jynXA0/7Os6LWr3wyhEPtuuLbKW+oqlYpJJOvL apSjltPURVYSqPi5PBfTq7mgCXGTWCi+yNnuLebTKWnknqWGFvO4tWy1Mlk62f9V fN/D9KkFUtxd3h7nWMMZMHs3IZq5KWXKXHthYvWXXjzGCXHtyVwbKh6v+VSeEGPW pqLQJ6yLrjHzcRCe8jnr6ek3xQZtpgCOPuBp8HTS+AgQx6nf9Fs/agd/17YR39d8 waiK2iTGrnCN8Fv+lUFV/BgBAggAZCOiVwcUwAxlMEgE1w== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org