$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa File: C44B0ADA83DA11E7AD4F156CC4F9AE02.roa (raw, json) Hash identifier: AnizUeFL15aVyGPVXYahIej4+dszsMs4Qefj7iCPVqw= Subject key identifier: 0C:D1:24:3D:BB:09:E2:D2:3C:E5:16:F5:EA:BE:05:C3:4E:DF:3E:DE Certificate issuer: /CN=A918EF61/serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Certificate serial: 17A1 Authority key identifier: C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa Signing time: Tue 04 Jul 2023 17:03:53 +0000 ROA not before: Tue 04 Jul 2023 17:03:53 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17882 IP address blocks: 59.153.112.0/24 maxlen: 24 59.153.113.0/24 maxlen: 24 59.153.114.0/24 maxlen: 24 59.153.115.0/24 maxlen: 24 103.57.92.0/24 maxlen: 24 103.57.93.0/24 maxlen: 24 103.57.94.0/24 maxlen: 24 103.57.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 16:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6049 (0x17a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF61/serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Validity Not Before: Jul 4 17:03:53 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a450f8-025c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:32:38:af:d5:28:bf:38:14:75:a8:f0:03: 2c:d9:f3:f4:13:b6:04:31:cc:8e:71:ce:fe:63:5f: 98:06:fa:4a:b6:d1:93:75:97:ec:a6:d1:d0:54:46: ad:ee:20:55:f7:29:ea:73:16:1a:57:0f:fc:3f:73: 37:50:e0:7b:40:1e:e9:4b:5b:9e:5f:94:77:41:d1: e6:6a:4f:c3:95:e7:4f:ea:c5:87:2b:92:06:c6:59: 81:44:e8:bc:8f:60:2d:8f:bb:0b:39:3f:23:f4:d8: 83:ff:42:e5:bc:3b:a7:71:b9:8c:27:53:d9:ea:28: f8:30:b9:a4:d9:d9:35:31:b0:af:f9:49:1f:48:09: fb:75:25:57:52:7c:3b:f8:49:12:7f:96:79:2b:64: a3:3d:4d:09:c1:27:71:b4:c9:52:cf:61:11:8a:74: 83:a5:34:02:e9:ad:8e:d9:1b:76:98:bf:72:e7:65: ca:70:9f:25:51:81:c7:f7:17:41:5d:3a:c2:62:ec: fe:a0:6d:ef:0a:be:30:0f:97:af:ad:cf:bd:a1:35: 52:a9:e2:2b:96:e9:4f:72:e2:bf:21:ed:0a:13:34: 10:9d:03:55:55:b4:d7:6e:fa:89:8e:2f:59:71:da: 25:3e:a5:27:76:4b:bc:0f:c8:b9:21:07:a3:0c:24: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D1:24:3D:BB:09:E2:D2:3C:E5:16:F5:EA:BE:05:C3:4E:DF:3E:DE X509v3 Authority Key Identifier: keyid:C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.112.0/22 103.57.92.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:ef:e9:7e:4c:d3:c6:4f:78:e8:ce:3b:1d:6e:49:38:93:4b: 9a:01:17:e0:c4:8c:4d:fb:7f:d0:e3:df:74:d1:8f:51:a2:c2: b5:0a:5e:c8:a9:58:95:80:e6:05:99:3b:5c:aa:a7:10:fc:fe: ab:c5:42:25:1e:b0:98:9e:93:ae:75:69:68:68:37:2f:a7:2e: 75:ad:2b:06:78:ae:8d:2d:1d:91:b0:d3:fe:8f:b0:b6:c3:d3: f2:b8:69:a8:2c:34:e9:eb:3d:5e:78:b9:4e:2c:7f:e6:37:18: cf:64:21:87:a9:1c:ab:d6:7c:0b:80:cf:e2:5b:34:c0:44:d8: ef:75:11:c4:d6:47:b8:77:8b:93:bd:1e:6d:82:92:1d:f1:dd: f6:ef:5b:07:6a:19:81:55:c2:50:4d:25:12:f8:90:d2:ef:58: 41:a9:8a:70:c0:33:13:85:52:36:33:8e:30:44:f2:c4:65:24: b6:92:2a:67:9f:f0:1b:fb:16:8b:e5:b4:42:13:a1:eb:06:49: c4:a9:f9:9d:26:2b:c5:69:7d:d7:44:45:31:dd:e2:88:19:bf: 1b:95:90:d9:dc:88:52:3a:41:33:87:cd:2b:3b:23:d4:b4:41: 90:1e:f4:b1:b2:74:f2:57:db:79:4a:96:35:bf:7e:0b:66:95: df:6c:d2:bd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGNjExMTAvBgNVBAUTKEM0OEFBQ0VCNEREQUVFM0M2MDQyRTY2MjE2QUQ3OTE1 MDdCNDdDNkIwHhcNMjMwNzA0MTcwMzUzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0NTBmOC0wMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVwyOK/VKL84FHWo8AMs2fP0E7YEMcyOcc7+Y1+YBvpKttGTdZfsptHQVEat 7iBV9ynqcxYaVw/8P3M3UOB7QB7pS1ueX5R3QdHmak/DledP6sWHK5IGxlmBROi8 j2Atj7sLOT8j9NiD/0LlvDuncbmMJ1PZ6ij4MLmk2dk1MbCv+UkfSAn7dSVXUnw7 +EkSf5Z5K2SjPU0JwSdxtMlSz2ERinSDpTQC6a2O2Rt2mL9y52XKcJ8lUYHH9xdB XTrCYuz+oG3vCr4wD5evrc+9oTVSqeIrlulPcuK/Ie0KEzQQnQNVVbTXbvqJji9Z cdolPqUndku8D8i5IQejDCTfDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAzRJD27 CeLSPOUW9eq+BcNO3z7eMB8GA1UdIwQYMBaAFMSKrOtN2u48YELmYhateRUHtHxr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY2MS8xNkE2REM2MDgz REExMUU3QTAwMzczNkJDNEY5QUUwMi94SXFzNjAzYTdqeGdRdVppRnExNUZRZTBm R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJcXM2MDNhN2p4Z1F1WmlGcTE1RlFlMGZHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVGNjEvMTZBNkRDNjA4M0RBMTFFN0EwMDM3MzZCQzRGOUFFMDIvQzQ0QjBBREE4 M0RBMTFFN0FENEYxNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI7mXADBAJnOVwwDQYJKoZIhvcNAQELBQADggEBAGrv6X5M 08ZPeOjOOx1uSTiTS5oBF+DEjE37f9Dj33TRj1GiwrUKXsipWJWA5gWZO1yqpxD8 /qvFQiUesJiek651aWhoNy+nLnWtKwZ4ro0tHZGw0/6PsLbD0/K4aagsNOnrPV54 uU4sf+Y3GM9kIYepHKvWfAuAz+JbNMBE2O91EcTWR7h3i5O9Hm2Ckh3x3fbvWwdq GYFVwlBNJRL4kNLvWEGpinDAMxOFUjYzjjBE8sRlJLaSKmef8Bv7FovltEIToesG ScSp+Z0mK8VpfddERTHd4ogZvxuVkNnciFI6QTOHzSs7I9S0QZAe9LGydPJX23lK ljW/fgtmld9s0r0= -----END CERTIFICATE-----Generated at Fri May 24 18:23:53 2024 by rpki-client on console-ams.rpki-client.org