$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/C930C34ACC0611EC93451840C4F9AE02.roa File: C930C34ACC0611EC93451840C4F9AE02.roa (raw, json) Hash identifier: aCLxmixFYu/M0T449e7aMT5ZslZ1hsUohi6W0nKvgCM= Subject key identifier: 9D:B5:7E:76:D6:86:18:A5:99:77:99:0A:24:62:8D:E0:A9:B1:AA:66 Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1DB4 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/C930C34ACC0611EC93451840C4F9AE02.roa Signing time: Fri 10 May 2024 16:54:11 +0000 ROA not before: Fri 10 May 2024 16:54:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9297 IP address blocks: 43.248.44.0/22 maxlen: 22 103.74.188.0/23 maxlen: 23 119.252.0.0/19 maxlen: 19 2401:1400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7604 (0x1db4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: May 10 16:54:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663e5133-09b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a0:ee:f4:6c:92:32:0b:85:97:eb:cb:6e:80: 2d:91:74:10:56:82:d9:0b:61:d1:20:d8:3e:52:89: f1:fa:64:71:12:e6:5e:dc:0a:fa:60:76:54:20:80: 95:79:0c:71:d3:47:ab:cc:91:df:c2:e3:1a:3d:ab: 4b:9d:e6:21:3f:d0:99:6b:43:1e:83:a3:a8:bd:6d: df:43:ce:46:b4:c8:38:99:6c:9e:da:8d:0a:d8:57: f4:80:04:da:af:31:fd:52:ed:d3:66:9c:68:be:d6: 26:f3:94:2a:88:de:8b:6e:74:ed:08:4b:3a:b3:83: f4:e5:e3:6b:d0:35:52:f2:7b:33:30:36:af:cd:85: 7e:71:b7:e6:9c:92:7c:21:c9:5b:ab:75:38:92:26: 54:18:bc:cf:6c:f6:86:64:24:91:4e:fb:cd:70:29: ff:54:ff:ce:31:65:85:fa:6a:d6:db:d1:d0:9a:82: b0:86:26:14:37:60:2f:6f:d4:c5:f0:5c:96:80:b5: e7:e8:66:ff:9d:f7:a4:25:6a:fe:1c:60:65:47:ba: 6e:d1:24:5d:cf:2a:71:b9:6e:76:02:cd:58:dc:39: 5e:bd:d7:53:21:6f:ad:93:2f:4b:e5:98:a7:a3:38: 71:f6:f8:ea:83:79:8d:62:ec:bd:05:9e:0f:d9:13: 75:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B5:7E:76:D6:86:18:A5:99:77:99:0A:24:62:8D:E0:A9:B1:AA:66 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/C930C34ACC0611EC93451840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.44.0/22 103.74.188.0/23 119.252.0.0/19 IPv6: 2401:1400::/32 Signature Algorithm: sha256WithRSAEncryption 2b:37:9b:88:db:84:10:40:6e:8d:fb:31:0a:dc:76:2c:9b:5a: 2b:ed:46:f4:75:dc:dd:4f:1f:79:e5:b7:63:c4:4d:5e:ae:e2: 00:68:dc:73:a8:54:34:2e:b8:e1:d4:9b:6e:82:24:b8:15:13: c8:91:e6:7e:68:47:61:0d:8e:35:77:ae:3c:20:19:96:15:3e: bd:8b:c7:31:93:ed:e6:71:a6:1f:ce:37:b7:dc:ca:57:c7:bb: e8:6e:24:b2:25:74:5b:a7:2c:f0:42:2c:8e:d9:2f:8f:76:69: 02:66:f7:75:b4:0c:8b:c8:7e:05:85:ec:2c:30:99:e5:12:45: f8:2a:fc:c4:ad:72:92:be:53:62:28:93:6a:d0:23:1f:80:09: 8f:33:54:90:f6:37:a1:13:6d:6e:fa:1c:ae:5b:25:49:4d:74: 5c:f1:51:73:d9:c7:39:7b:83:28:9d:b1:96:c9:df:75:a4:a7: a1:f4:75:53:b9:ed:a7:b9:0d:d0:b3:79:d8:cb:5f:a4:55:2a: 8a:68:b2:e7:ee:2e:b7:06:53:0f:5c:9d:85:33:fa:c2:a7:2d: 68:d5:8e:a6:75:12:54:8f:98:98:6a:fd:b2:d5:a9:d6:6c:a4: 63:73:8d:33:8c:58:ec:c0:97:e1:da:6f:20:27:c5:fb:9d:58: 72:d7:bf:b9 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICHbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjQwNTEwMTY1NDExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlNTEzMy0wOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaDu9GySMguFl+vLboAtkXQQVoLZC2HRINg+Uonx+mRxEuZe3Ar6YHZUIICV eQxx00erzJHfwuMaPatLneYhP9CZa0Meg6OovW3fQ85GtMg4mWye2o0K2Ff0gATa rzH9Uu3TZpxovtYm85QqiN6LbnTtCEs6s4P05eNr0DVS8nszMDavzYV+cbfmnJJ8 Iclbq3U4kiZUGLzPbPaGZCSRTvvNcCn/VP/OMWWF+mrW29HQmoKwhiYUN2Avb9TF 8FyWgLXn6Gb/nfekJWr+HGBlR7pu0SRdzypxuW52As1Y3DlevddTIW+tky9L5Zin ozhx9vjqg3mNYuy9BZ4P2RN1EwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFJ21fnbW hhilmXeZCiRijeCpsapmMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM3N0QvN0Q0QkZFMDY3NDk5MTFFNkIwMjUyQjg0QzRGOUFFMDIvQzkzMEMzNEFD QzA2MTFFQzkzNDUxODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr+CwDBAFnSrwDBAV3/AAwDQQCAAIwBwMFACQBFAAwDQYJ KoZIhvcNAQELBQADggEBACs3m4jbhBBAbo37MQrcdiybWivtRvR13N1PH3nlt2PE TV6u4gBo3HOoVDQuuOHUm26CJLgVE8iR5n5oR2ENjjV3rjwgGZYVPr2LxzGT7eZx ph/ON7fcylfHu+huJLIldFunLPBCLI7ZL492aQJm93W0DIvIfgWF7CwwmeUSRfgq /MStcpK+U2Iok2rQIx+ACY8zVJD2N6ETbW76HK5bJUlNdFzxUXPZxzl7gyidsZbJ 33Wkp6H0dVO57ae5DdCzedjLX6RVKoposufuLrcGUw9cnYUz+sKnLWjVjqZ1ElSP mJhq/bLVqdZspGNzjTOMWOzAl+HabyAnxfudWHLXv7k= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org