$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa File: D0566D20F25411E9AEDBEA62C4F9AE02.roa (raw, json) Hash identifier: N/UpdGLNU8SBBwq+XJEniHuQpJLkvYwYbJ6YzYRpczs= Subject key identifier: 62:48:A7:78:33:5E:C2:1B:19:7B:79:2A:52:B2:D7:0D:8E:B4:85:A5 Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0B8B Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa Signing time: Tue 28 Nov 2023 00:30:41 +0000 ROA not before: Tue 28 Nov 2023 00:30:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139623 IP address blocks: 103.142.158.0/23 maxlen: 23 2405:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: Nov 28 00:30:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656534b1-78f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ee:2e:e8:a9:45:9d:f9:5d:7f:60:f4:38:69: 87:85:e4:8c:c6:ed:23:0c:6b:c5:42:36:d3:e1:fe: df:c5:fe:df:f3:5b:d9:f1:cb:97:46:b5:14:5e:e5: 01:6b:3a:b0:8e:a2:96:25:66:0b:a8:11:b4:6c:8e: 59:8f:4c:0f:50:d2:5a:7c:87:e2:34:fa:9a:61:8e: 91:70:92:11:f6:4c:53:bd:5d:86:b2:9b:7e:55:8b: 85:92:14:3e:36:03:61:05:fc:f7:b0:f9:7e:98:2a: 16:c7:e3:64:76:51:69:03:d1:10:ea:ba:53:a6:48: cc:2a:55:d5:95:54:d5:71:64:fa:70:ab:b6:ab:34: f4:6e:34:16:ff:69:8e:b6:eb:f6:e5:3c:a0:a6:79: 53:8d:3c:5b:a1:ec:a3:55:90:4f:3f:bf:17:75:80: 6f:05:6f:4a:8b:87:7b:32:c6:0c:d8:4e:0e:86:3f: db:7d:16:62:22:0f:72:a3:3b:7b:7b:10:40:2d:99: 87:8f:c2:77:a3:6e:5d:e2:f0:d0:bc:e7:8e:cb:5a: 96:de:3c:be:8b:18:31:0d:82:c3:c4:d8:8c:ab:17: 2e:01:37:2d:f0:03:25:94:e6:8f:30:b1:31:fa:41: 2f:98:ae:ed:5c:19:1a:3e:b5:18:92:37:39:38:2b: 97:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:48:A7:78:33:5E:C2:1B:19:7B:79:2A:52:B2:D7:0D:8E:B4:85:A5 X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.158.0/23 IPv6: 2405:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 40:74:1e:a3:1b:9c:60:81:c8:40:98:cd:57:11:dd:10:c5:68: 81:be:06:c5:be:60:c5:28:f1:79:1b:06:8a:45:32:07:e9:0e: 1e:33:26:e2:ef:f6:c4:34:18:59:f9:5b:8f:9d:db:7b:45:9a: c0:df:71:52:66:a7:8e:7e:84:04:ba:37:5b:ff:59:32:ab:e3: 86:0b:98:49:6c:c5:be:b9:a6:9e:5d:c4:7f:8a:45:b0:8a:c8: 3d:3a:5a:0e:78:83:5b:c1:17:83:cc:97:de:f8:dd:5a:e5:34: 14:77:11:c4:af:3a:05:59:a1:5a:49:e6:80:e7:05:2f:aa:69: de:b9:b6:39:22:68:5d:27:15:36:b8:4b:63:49:1e:18:3b:4e: d6:7c:8a:f1:37:bb:7a:2e:41:34:07:44:97:d2:c1:85:8a:fc: 4f:f9:0c:bc:78:6a:d5:b7:2c:79:4d:e5:ef:77:9e:2a:2e:75: 94:d8:8b:12:40:6a:df:c2:15:e2:58:f8:68:2d:bd:14:06:e2: 25:e1:81:23:48:da:5c:eb:d7:e8:45:fd:56:4d:89:94:67:0a: b2:81:28:fd:89:5c:46:aa:1b:b6:69:4a:39:b5:6c:32:af:e1: e6:1e:49:34:91:2d:f8:21:48:95:94:bf:5b:f0:56:b5:bf:cf: 55:17:0c:c8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjMxMTI4MDAzMDQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY1MzRiMS03OGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze4u6KlFnfldf2D0OGmHheSMxu0jDGvFQjbT4f7fxf7f81vZ8cuXRrUUXuUB azqwjqKWJWYLqBG0bI5Zj0wPUNJafIfiNPqaYY6RcJIR9kxTvV2Gspt+VYuFkhQ+ NgNhBfz3sPl+mCoWx+NkdlFpA9EQ6rpTpkjMKlXVlVTVcWT6cKu2qzT0bjQW/2mO tuv25TygpnlTjTxboeyjVZBPP78XdYBvBW9Ki4d7MsYM2E4Ohj/bfRZiIg9yozt7 exBALZmHj8J3o25d4vDQvOeOy1qW3jy+ixgxDYLDxNiMqxcuATct8AMllOaPMLEx +kEvmK7tXBkaPrUYkjc5OCuXWQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGJIp3gz XsIbGXt5KlKy1w2OtIWlMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvRDA1NjZEMjBG MjU0MTFFOUFFREJFQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjp4wDQQCAAIwBwMFACQFPMAwDQYJKoZIhvcNAQELBQAD ggEBAEB0HqMbnGCByECYzVcR3RDFaIG+BsW+YMUo8XkbBopFMgfpDh4zJuLv9sQ0 GFn5W4+d23tFmsDfcVJmp45+hAS6N1v/WTKr44YLmElsxb65pp5dxH+KRbCKyD06 Wg54g1vBF4PMl9743VrlNBR3EcSvOgVZoVpJ5oDnBS+qad65tjkiaF0nFTa4S2NJ Hhg7TtZ8ivE3u3ouQTQHRJfSwYWK/E/5DLx4atW3LHlN5e93nioudZTYixJAat/C FeJY+GgtvRQG4iXhgSNI2lzr1+hF/VZNiZRnCrKBKP2JXEaqG7ZpSjm1bDKv4eYe STSRLfghSJWUv1vwVrW/z1UXDMg= -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org