$ rpki-client -vvf rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/BC19A604053E11EABC1E707AC4F9AE02.roa File: BC19A604053E11EABC1E707AC4F9AE02.roa (raw, json) Hash identifier: NcBWc+R/l9a4ARiTsfueJzkOzm3hZiUOoPUxgy8X2fA= Subject key identifier: DF:33:3B:B0:5B:EA:F1:1D:07:5F:57:FC:FD:CC:91:E8:B4:FF:37:B6 Certificate issuer: /CN=A912CF99/serialNumber=F61F121048631FB768D555C3BFA9B020685E8F49 Certificate serial: 0B59 Authority key identifier: F6:1F:12:10:48:63:1F:B7:68:D5:55:C3:BF:A9:B0:20:68:5E:8F:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h8SEEhjH7do1VXDv6mwIGhej0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/BC19A604053E11EABC1E707AC4F9AE02.roa Signing time: Thu 08 Feb 2024 19:17:08 +0000 ROA not before: Thu 08 Feb 2024 19:17:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58813 IP address blocks: 103.17.36.0/22 maxlen: 24 163.53.180.0/22 maxlen: 24 2405:d440::/32 maxlen: 32 2405:d440:100::/48 maxlen: 48 2405:d440:1fb::/48 maxlen: 48 2405:d440:1fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/9h8SEEhjH7do1VXDv6mwIGhej0k.crl rsync://rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/9h8SEEhjH7do1VXDv6mwIGhej0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h8SEEhjH7do1VXDv6mwIGhej0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 19:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CF99/serialNumber=F61F121048631FB768D555C3BFA9B020685E8F49 Validity Not Before: Feb 8 19:17:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c528b4-0d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:75:61:83:68:88:79:97:47:b1:84:b3:95:60: 65:01:3a:13:5f:cc:66:67:24:71:c3:29:eb:af:8c: 4f:09:e0:bb:0e:c4:40:14:3d:ee:cd:f4:d6:00:fe: 15:f1:9f:f1:40:e4:01:c1:45:c2:76:85:cc:bb:46: e8:b8:cd:f1:df:f1:db:0e:85:30:95:21:5b:c2:d5: af:3f:32:6c:cb:23:c3:d1:ad:09:de:5e:1d:19:22: f0:68:2b:0c:c4:92:1b:13:7c:dc:71:29:39:9a:d9: da:43:cd:b8:f5:75:39:17:26:ce:d2:e5:62:d0:43: 6a:2f:e9:a2:60:1a:c6:37:1d:60:fb:1c:d6:8d:4b: e2:4d:90:11:9a:02:80:1a:ee:b1:3f:12:7c:a3:ea: 54:a6:f0:bd:92:a0:53:c2:ae:b8:ac:8a:cb:43:18: 42:a1:14:fc:58:c1:e4:08:34:73:39:a3:81:98:51: a4:de:bc:c1:99:35:ca:ba:cd:54:68:70:e7:62:d8: 53:14:f4:f9:08:91:19:8b:22:31:b0:dc:33:21:f2: 6c:31:b2:f3:16:32:5b:6d:d4:0b:c0:68:5b:f7:69: af:49:ee:0a:62:8d:47:b6:de:6d:36:de:85:30:34: bb:0d:dc:fd:ca:85:26:23:77:2c:3f:11:17:d9:1e: c7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:33:3B:B0:5B:EA:F1:1D:07:5F:57:FC:FD:CC:91:E8:B4:FF:37:B6 X509v3 Authority Key Identifier: keyid:F6:1F:12:10:48:63:1F:B7:68:D5:55:C3:BF:A9:B0:20:68:5E:8F:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/9h8SEEhjH7do1VXDv6mwIGhej0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h8SEEhjH7do1VXDv6mwIGhej0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CF99/B7384010053D11EA9B66BE78C4F9AE02/BC19A604053E11EABC1E707AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.36.0/22 163.53.180.0/22 IPv6: 2405:d440::/32 Signature Algorithm: sha256WithRSAEncryption 23:0b:d5:64:36:51:62:45:f4:05:97:51:46:5e:9f:f5:13:8b: 52:e7:38:a9:38:0c:23:8c:19:82:ce:f3:f3:e3:6c:22:65:1e: 25:ee:28:32:72:42:8b:73:73:f4:48:b6:c7:e6:ff:67:a6:c0: 08:bc:43:da:f3:53:a9:0a:bc:3d:39:2d:95:44:01:71:1d:e3: 42:97:b2:1c:68:55:7b:fa:99:39:79:c7:68:e1:be:50:8d:d2: 58:70:ca:c0:de:10:f0:3c:64:13:3b:bd:46:7a:d9:90:e2:74: c5:6f:10:9f:5c:70:8e:4d:3a:12:23:ff:4f:21:0b:00:2c:9b: c9:db:99:af:89:8a:23:5b:65:32:20:2c:7d:ef:9b:d2:12:20: f7:c6:57:5b:b4:4f:88:ee:07:2d:d9:a4:6e:bf:de:48:3a:16: 77:eb:74:72:7a:47:7f:ac:4a:12:0a:43:66:ce:8f:ab:d7:ce: 84:4c:e1:28:45:8f:2f:8d:c4:6a:e2:5b:50:07:d2:c4:28:0e: c5:85:df:b7:4f:9b:d3:e0:24:fd:6c:51:35:16:30:ff:e0:22: 43:1f:3b:8c:e9:0d:9c:4b:a9:b1:99:5b:dc:a7:1f:d8:ec:8a: ee:66:83:3f:8a:fa:70:a7:1c:78:5b:d7:65:98:4f:dc:ae:4c: f9:92:f8:67 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNGOTkxMTAvBgNVBAUTKEY2MUYxMjEwNDg2MzFGQjc2OEQ1NTVDM0JGQTlCMDIw Njg1RThGNDkwHhcNMjQwMjA4MTkxNzA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MjhiNC0wZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nVhg2iIeZdHsYSzlWBlAToTX8xmZyRxwynrr4xPCeC7DsRAFD3uzfTWAP4V 8Z/xQOQBwUXCdoXMu0bouM3x3/HbDoUwlSFbwtWvPzJsyyPD0a0J3l4dGSLwaCsM xJIbE3zccSk5mtnaQ8249XU5FybO0uVi0ENqL+miYBrGNx1g+xzWjUviTZARmgKA Gu6xPxJ8o+pUpvC9kqBTwq64rIrLQxhCoRT8WMHkCDRzOaOBmFGk3rzBmTXKus1U aHDnYthTFPT5CJEZiyIxsNwzIfJsMbLzFjJbbdQLwGhb92mvSe4KYo1Htt5tNt6F MDS7Ddz9yoUmI3csPxEX2R7HgwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFN8zO7Bb 6vEdB19X/P3Mkei0/ze2MB8GA1UdIwQYMBaAFPYfEhBIYx+3aNVVw7+psCBoXo9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0Y5OS9CNzM4NDAxMDA1 M0QxMUVBOUI2NkJFNzhDNEY5QUUwMi85aDhTRUVoakg3ZG8xVlhEdjZtd0lHaGVq MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzloOFNFRWhqSDdkbzFWWER2Nm13SUdoZWoway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNGOTkvQjczODQwMTAwNTNEMTFFQTlCNjZCRTc4QzRGOUFFMDIvQkMxOUE2MDQw NTNFMTFFQUJDMUU3MDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnESQDBAKjNbQwDQQCAAIwBwMFACQF1EAwDQYJKoZIhvcN AQELBQADggEBACML1WQ2UWJF9AWXUUZen/UTi1LnOKk4DCOMGYLO8/PjbCJlHiXu KDJyQotzc/RItsfm/2emwAi8Q9rzU6kKvD05LZVEAXEd40KXshxoVXv6mTl5x2jh vlCN0lhwysDeEPA8ZBM7vUZ62ZDidMVvEJ9ccI5NOhIj/08hCwAsm8nbma+JiiNb ZTIgLH3vm9ISIPfGV1u0T4juBy3ZpG6/3kg6FnfrdHJ6R3+sShIKQ2bOj6vXzoRM 4ShFjy+NxGriW1AH0sQoDsWF37dPm9PgJP1sUTUWMP/gIkMfO4zpDZxLqbGZW9yn H9jsiu5mgz+K+nCnHHhb12WYT9yuTPmS+Gc= -----END CERTIFICATE-----Generated at Fri Jun 14 20:49:00 2024 by rpki-client on console-ams.rpki-client.org