$ rpki-client -vvf rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/F70F5E7A505E11ED9947920DC4F9AE02.roa File: F70F5E7A505E11ED9947920DC4F9AE02.roa (raw, json) Hash identifier: 0wiokmGEtmj/IuwbmlOpHGusH2+aKsyq7eWY/s6wrJI= Subject key identifier: 44:73:BC:A4:06:C4:D8:49:18:99:61:F2:CC:85:CB:5D:EE:32:AB:CA Certificate issuer: /CN=A912611F/serialNumber=1BE8D07AAD0EB809643D0E8DD8A4235703D4F745 Certificate serial: 085A Authority key identifier: 1B:E8:D0:7A:AD:0E:B8:09:64:3D:0E:8D:D8:A4:23:57:03:D4:F7:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G-jQeq0OuAlkPQ6N2KQjVwPU90U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/F70F5E7A505E11ED9947920DC4F9AE02.roa Signing time: Thu 18 Apr 2024 18:26:09 +0000 ROA not before: Thu 18 Apr 2024 18:26:09 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132298 IP address blocks: 103.135.252.0/24 maxlen: 24 103.135.253.0/24 maxlen: 24 103.135.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/G-jQeq0OuAlkPQ6N2KQjVwPU90U.crl rsync://rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/G-jQeq0OuAlkPQ6N2KQjVwPU90U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G-jQeq0OuAlkPQ6N2KQjVwPU90U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912611F/serialNumber=1BE8D07AAD0EB809643D0E8DD8A4235703D4F745 Validity Not Before: Apr 18 18:26:09 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=662165c0-a27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2e:f9:4e:82:b4:f7:d5:48:de:32:b7:50:e7: 82:3d:8c:f8:79:5b:91:d9:b1:fe:79:ba:50:d2:a1: 1e:88:1d:11:60:2c:cd:7f:1c:8e:ee:d1:38:00:31: a9:92:2d:56:1d:bb:7f:b2:88:2f:d2:65:00:b2:b9: 5f:14:6e:8c:50:15:9a:dc:ca:7d:6e:a7:5a:d1:e6: 1b:82:52:c2:19:d2:d5:c6:42:21:2d:41:2a:51:cd: b8:8e:d2:44:49:68:fa:df:9f:60:c2:85:fa:03:bf: ea:79:64:2e:b8:8e:41:ac:42:ee:ed:b1:2d:10:1a: 21:9b:15:fd:40:22:ed:88:0b:78:83:4d:5b:61:fc: ed:6c:89:97:b2:a6:8f:00:ba:2a:e4:42:8b:72:74: 11:04:f0:e9:5d:84:ec:48:cc:11:39:6e:b6:9f:68: f3:85:a9:04:0c:f1:d8:a7:14:9a:03:10:14:8a:9b: 46:d9:fd:0b:fb:6d:6b:7f:72:39:8a:58:51:61:f7: 61:f3:e1:04:98:96:dd:95:ae:f5:f9:22:74:35:fb: cf:25:df:43:35:ee:2f:fe:b3:21:2d:6b:46:05:e3: 1d:d3:92:89:9b:75:ea:ac:ae:44:fb:e8:91:8c:54: f4:99:99:0d:c9:52:73:98:99:e3:ad:1f:b4:74:f5: 88:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:73:BC:A4:06:C4:D8:49:18:99:61:F2:CC:85:CB:5D:EE:32:AB:CA X509v3 Authority Key Identifier: keyid:1B:E8:D0:7A:AD:0E:B8:09:64:3D:0E:8D:D8:A4:23:57:03:D4:F7:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/G-jQeq0OuAlkPQ6N2KQjVwPU90U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G-jQeq0OuAlkPQ6N2KQjVwPU90U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912611F/4A8B04EA4C7C11E981A43969C4F9AE02/F70F5E7A505E11ED9947920DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.252.0-103.135.254.255 Signature Algorithm: sha256WithRSAEncryption 01:02:e0:a9:50:e3:d0:ba:c3:a8:48:02:c5:e8:49:71:da:02: 87:1c:1f:06:9c:67:fb:7c:35:06:6b:d3:76:61:cf:86:bb:9e: 02:b5:0e:60:19:e2:d0:39:1c:89:de:60:cf:65:9a:12:e0:2d: 28:80:ff:3f:f7:55:9b:00:d9:47:6c:6f:9e:ca:cf:71:ad:39: e5:1d:c1:d3:ca:97:7e:7c:e1:00:22:b8:61:33:05:0a:ff:d6: bb:9b:39:59:b7:01:86:a2:ce:74:77:3e:58:d4:58:91:16:5d: ee:53:e8:7f:69:10:33:4e:78:f4:37:80:ef:00:43:32:64:6d: 61:59:d4:7d:8e:7c:68:59:27:f3:14:cf:12:f6:81:70:3e:20: 4b:fd:36:55:cf:44:bc:44:89:99:f4:9d:f4:d3:15:d5:6f:1f: c3:0f:9e:27:70:1d:f2:e2:a5:ca:29:ae:ec:a6:ce:13:9c:04: bc:81:37:6f:0b:42:0d:af:b3:6d:e9:b5:83:9e:0a:e1:c6:90: f2:99:2c:cb:e1:7e:d2:d3:57:d9:02:6a:cd:53:02:e1:bc:63: 30:f6:b0:4e:04:95:1f:82:f3:fa:59:45:8c:03:a2:b9:bb:7a: 22:7f:8f:72:95:0e:e6:a7:d2:cc:9d:2b:40:7c:fd:d1:d6:18: 53:22:89:6f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYxMUYxMTAvBgNVBAUTKDFCRThEMDdBQUQwRUI4MDk2NDNEMEU4REQ4QTQyMzU3 MDNENEY3NDUwHhcNMjQwNDE4MTgyNjA5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxNjVjMC1hMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvC75ToK099VI3jK3UOeCPYz4eVuR2bH+ebpQ0qEeiB0RYCzNfxyO7tE4ADGp ki1WHbt/sogv0mUAsrlfFG6MUBWa3Mp9bqda0eYbglLCGdLVxkIhLUEqUc24jtJE SWj6359gwoX6A7/qeWQuuI5BrELu7bEtEBohmxX9QCLtiAt4g01bYfztbImXsqaP ALoq5EKLcnQRBPDpXYTsSMwROW62n2jzhakEDPHYpxSaAxAUiptG2f0L+21rf3I5 ilhRYfdh8+EEmJbdla71+SJ0NfvPJd9DNe4v/rMhLWtGBeMd05KJm3XqrK5E++iR jFT0mZkNyVJzmJnjrR+0dPWIzwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFERzvKQG xNhJGJlh8syFy13uMqvKMB8GA1UdIwQYMBaAFBvo0HqtDrgJZD0OjdikI1cD1PdF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjExRi80QThCMDRFQTRD N0MxMUU5ODFBNDM5NjlDNEY5QUUwMi9HLWpRZXEwT3VBbGtQUTZOMktRalZ3UFU5 MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ctalFlcTBPdUFsa1BRNk4yS1FqVndQVTkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYxMUYvNEE4QjA0RUE0QzdDMTFFOTgxQTQzOTY5QzRGOUFFMDIvRjcwRjVFN0E1 MDVFMTFFRDk5NDc5MjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmeH/AMEAGeH/jANBgkqhkiG9w0BAQsFAAOCAQEAAQLg qVDj0LrDqEgCxehJcdoChxwfBpxn+3w1BmvTdmHPhrueArUOYBni0Dkcid5gz2Wa EuAtKID/P/dVmwDZR2xvnsrPca055R3B08qXfnzhACK4YTMFCv/Wu5s5WbcBhqLO dHc+WNRYkRZd7lPof2kQM0549DeA7wBDMmRtYVnUfY58aFkn8xTPEvaBcD4gS/02 Vc9EvESJmfSd9NMV1W8fww+eJ3Ad8uKlyimu7KbOE5wEvIE3bwtCDa+zbem1g54K 4caQ8pksy+F+0tNX2QJqzVMC4bxjMPawTgSVH4Lz+llFjAOiubt6In+PcpUO5qfS zJ0rQHz90dYYUyKJbw== -----END CERTIFICATE-----Generated at Thu Jun 6 21:10:31 2024 by rpki-client on console-ams.rpki-client.org