$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa File: 65DCB430F25A11E9937D9D73C4F9AE02.roa (raw, json) Hash identifier: g8AtMP8I6yqyvKB1e5W7725XdH9whZm2gw04J8HNztg= Subject key identifier: 63:48:82:6B:AE:27:41:C1:EE:7C:71:4D:F0:D8:D2:E8:4C:E1:10:CA Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0BF7 Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa Signing time: Thu 21 Mar 2024 04:37:52 +0000 ROA not before: Thu 21 Mar 2024 04:37:52 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63969 IP address blocks: 59.152.96.0/20 maxlen: 24 103.85.156.0/22 maxlen: 24 144.48.116.0/22 maxlen: 24 182.48.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3063 (0xbf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Mar 21 04:37:52 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65fbb9a0-5363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:08:46:ca:31:a2:0a:7f:06:78:60:b3:a0:cd: e4:84:00:34:5f:81:74:af:5e:17:d0:2d:c3:36:62: 14:cb:4b:ce:02:bb:c0:08:42:a8:83:1b:7c:21:94: 07:df:bc:06:73:8e:65:51:c0:9a:f5:da:91:75:e0: fd:2d:be:14:b3:ee:3a:d3:5e:e9:96:bc:18:83:28: 10:b0:fa:15:e5:fb:3a:ef:2d:6f:6b:ab:40:64:ab: 0b:02:7a:8f:f3:87:b6:a4:88:94:89:3b:43:ae:3c: f5:53:e4:7f:36:bd:69:58:7d:c2:6c:b7:0f:8b:4f: f0:78:e6:3a:36:0e:19:60:8a:2e:a6:c9:e7:e7:d3: 71:9b:ca:25:64:a2:79:69:6a:68:c8:d0:8f:be:d8: 1c:f4:ac:b6:4b:af:48:0c:67:c9:3a:86:dc:f8:eb: 2a:5f:3f:5d:af:da:8a:64:32:78:15:91:6a:6d:53: 79:51:13:e1:d3:d9:8c:2b:a3:08:5e:d3:de:1b:7d: 2e:74:31:b4:16:57:a6:43:0e:81:0b:f7:f8:65:e4: 05:7e:95:18:43:74:c4:d0:02:67:fd:ae:fd:32:4f: 06:ac:e5:e8:6c:a0:7e:3e:e6:59:ba:4d:1e:6f:ba: 7d:da:94:7a:e4:04:fa:cc:96:4f:c5:ea:16:82:a2: 52:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:48:82:6B:AE:27:41:C1:EE:7C:71:4D:F0:D8:D2:E8:4C:E1:10:CA X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.96.0/20 103.85.156.0/22 144.48.116.0/22 182.48.64.0/19 Signature Algorithm: sha256WithRSAEncryption 77:88:ce:b6:99:a6:4f:64:62:50:a5:a2:b1:33:1d:8f:be:61: 23:71:e7:cf:8c:e0:d4:c4:12:2b:d0:51:f4:4c:7a:cb:65:97: a5:39:c0:de:ac:59:ff:88:5b:68:14:97:69:cc:66:fc:b5:86: da:52:c9:97:00:8c:a7:b7:ba:36:89:0c:69:83:f5:b3:87:1e: c1:69:61:75:19:ab:af:32:e2:1b:93:61:ea:7b:30:a4:e7:f2: a1:2c:15:80:b6:13:19:36:21:c7:18:28:df:3e:3c:88:e9:c2: 7c:24:4f:99:81:03:f8:36:0d:a9:7b:ab:e9:b9:a0:d0:46:07: 43:b1:f4:28:cd:7d:47:72:7d:6f:e9:d3:2a:33:be:63:60:15: 0b:ec:82:ed:01:c1:d8:db:08:ba:0c:2e:38:47:60:2b:42:93: b0:ba:b6:32:f9:82:87:ae:fc:e9:f5:eb:12:36:ae:67:b5:88: b4:c3:cd:4a:10:9a:5d:3e:54:9e:61:e0:30:50:7b:ed:a6:34: 12:54:b0:71:ab:ad:f6:db:c9:fa:22:47:70:07:d0:52:b5:60: 6c:28:40:da:6d:49:57:6a:b4:76:df:ad:60:7f:30:e6:c2:d3: f3:33:7d:0f:60:58:87:07:6b:a9:7e:28:f5:3f:7b:06:b8:fa: 1f:a8:7a:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICC/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjQwMzIxMDQzNzUyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiYjlhMC01MzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwhGyjGiCn8GeGCzoM3khAA0X4F0r14X0C3DNmIUy0vOArvACEKogxt8IZQH 37wGc45lUcCa9dqRdeD9Lb4Us+46017plrwYgygQsPoV5fs67y1va6tAZKsLAnqP 84e2pIiUiTtDrjz1U+R/Nr1pWH3CbLcPi0/weOY6Ng4ZYIoupsnn59Nxm8olZKJ5 aWpoyNCPvtgc9Ky2S69IDGfJOobc+OsqXz9dr9qKZDJ4FZFqbVN5URPh09mMK6MI XtPeG30udDG0FlemQw6BC/f4ZeQFfpUYQ3TE0AJn/a79Mk8GrOXobKB+PuZZuk0e b7p92pR65AT6zJZPxeoWgqJSNwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFGNIgmuu J0HB7nxxTfDY0uhM4RDKMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5OTgvQUIzNEZCRDRGMjU4MTFFOUI3NUUzQzcwQzRGOUFFMDIvNjVEQ0I0MzBG MjVBMTFFOTkzN0Q5RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAQ7mGADBAJnVZwDBAKQMHQDBAW2MEAwDQYJKoZIhvcNAQEL BQADggEBAHeIzraZpk9kYlClorEzHY++YSNx58+M4NTEEivQUfRMestll6U5wN6s Wf+IW2gUl2nMZvy1htpSyZcAjKe3ujaJDGmD9bOHHsFpYXUZq68y4huTYep7MKTn 8qEsFYC2Exk2IccYKN8+PIjpwnwkT5mBA/g2Dal7q+m5oNBGB0Ox9CjNfUdyfW/p 0yozvmNgFQvsgu0BwdjbCLoMLjhHYCtCk7C6tjL5goeu/On16xI2rme1iLTDzUoQ ml0+VJ5h4DBQe+2mNBJUsHGrrfbbyfoiR3AH0FK1YGwoQNptSVdqtHbfrWB/MObC 0/MzfQ9gWIcHa6l+KPU/ewa4+h+oemE= -----END CERTIFICATE-----Generated at Wed May 8 21:04:01 2024 by rpki-client on console-fra.rpki-client.org