$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/C098D762675111E9A0C4BB36C4F9AE02.roa File: C098D762675111E9A0C4BB36C4F9AE02.roa (raw, json) Hash identifier: Qkw8G566t7lS5tPEhifJ2WDoPHsgJSUH+pX7qb6EhGM= Subject key identifier: 85:A9:88:D5:58:7A:47:71:04:A0:13:DF:23:07:79:EF:42:0A:40:56 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3374 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/C098D762675111E9A0C4BB36C4F9AE02.roa Signing time: Fri 06 Oct 2023 15:51:05 +0000 ROA not before: Fri 06 Oct 2023 15:51:05 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132423 IP address blocks: 103.21.124.0/22 maxlen: 22 103.21.124.0/24 maxlen: 24 103.21.125.0/24 maxlen: 24 103.21.126.0/24 maxlen: 24 103.21.127.0/24 maxlen: 24 2001:df0:413::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 15:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13172 (0x3374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Oct 6 15:51:05 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65202ce9-e2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:55:ea:bc:3b:28:d3:44:be:2b:3e:37:13:c5: 02:23:e2:fb:df:69:de:b8:24:05:31:4f:47:59:25: dc:02:d9:71:e0:0d:0b:d3:42:f4:b8:d2:79:dc:9b: 91:2d:31:79:bd:85:09:7d:58:83:87:8f:9e:e9:24: e2:52:56:c2:0b:a3:51:a2:03:b7:4b:05:7e:8a:28: 38:46:d2:2d:1d:54:f4:c1:e5:8c:ab:8e:4c:2f:5d: 31:9a:46:ff:80:6c:ff:6f:97:22:a0:06:83:c8:b6: 02:c8:91:2c:6a:4f:f4:11:f0:7c:0e:ad:82:2b:09: cd:5e:ad:a2:07:dc:2f:be:a9:94:35:a7:fe:8b:07: 15:28:7b:6f:9c:c5:10:f0:6e:9e:78:e8:88:8a:90: 1d:99:a4:38:78:29:38:f4:61:16:37:ec:14:49:86: 87:f5:71:9c:fa:5e:35:ee:98:cf:52:5f:82:bc:50: e4:a4:d6:7a:f7:22:1c:b0:e5:ea:fa:7c:42:81:c7: 2d:75:49:67:a2:e1:02:66:4f:e9:c1:40:11:f0:80: b2:60:7d:98:a0:30:3c:2a:8e:0e:32:61:9f:90:ac: 98:bc:ac:bf:4b:4b:f1:d0:9c:72:a0:11:6f:69:49: 59:d9:ec:20:91:fa:e9:9b:b5:df:25:58:bb:0b:9b: f6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A9:88:D5:58:7A:47:71:04:A0:13:DF:23:07:79:EF:42:0A:40:56 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/C098D762675111E9A0C4BB36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.124.0/22 IPv6: 2001:df0:413::/48 Signature Algorithm: sha256WithRSAEncryption 08:4e:28:b1:9b:30:c6:b3:f9:27:52:0b:2a:34:ee:7b:4d:5e: e9:5e:b3:7e:48:07:ed:a0:3d:19:23:47:75:36:3e:73:84:b5: fd:23:e1:10:da:a6:61:b7:e1:16:87:33:1a:cc:88:7b:3e:21: e3:7f:ad:53:18:66:0c:8d:ba:2e:94:50:98:6c:51:7f:77:1e: 91:1a:c0:30:5a:63:f5:84:fc:fd:16:07:f9:cc:c0:d8:81:ed: 59:6e:ec:63:f1:c5:ed:3a:dd:f3:fc:70:71:de:68:ee:91:73: 1f:86:32:06:49:af:23:78:d5:d5:6c:e5:ca:2a:e5:23:63:f0: 5b:1c:a8:36:9f:d3:86:85:dd:4e:a2:2f:2f:53:d8:72:5e:ca: 3f:44:0f:28:c7:7e:18:36:4a:d3:8d:b5:d1:7b:12:8e:1e:1b: 9d:bc:55:2f:41:f0:77:f3:1c:00:9d:35:41:f7:99:24:aa:87: 4f:4a:36:71:ce:d4:89:9e:50:cd:37:9e:27:13:46:94:05:91: 53:ab:a0:5a:a2:66:8e:9b:98:45:9d:35:f4:d3:d8:71:87:99: f8:37:da:11:3d:af:4d:de:61:4a:b6:51:0d:37:8c:54:ba:03: a0:0b:c7:9c:5c:53:2c:4a:39:8f:2e:d7:aa:7c:29:5c:0a:1a: 3f:3a:41:36 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICM3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjMxMDA2MTU1MTA1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwMmNlOS1lMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVXqvDso00S+Kz43E8UCI+L732neuCQFMU9HWSXcAtlx4A0L00L0uNJ53JuR LTF5vYUJfViDh4+e6STiUlbCC6NRogO3SwV+iig4RtItHVT0weWMq45ML10xmkb/ gGz/b5cioAaDyLYCyJEsak/0EfB8Dq2CKwnNXq2iB9wvvqmUNaf+iwcVKHtvnMUQ 8G6eeOiIipAdmaQ4eCk49GEWN+wUSYaH9XGc+l417pjPUl+CvFDkpNZ69yIcsOXq +nxCgcctdUlnouECZk/pwUAR8ICyYH2YoDA8Ko4OMmGfkKyYvKy/S0vx0JxyoBFv aUlZ2ewgkfrpm7XfJVi7C5v2awIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIWpiNVY ekdxBKAT3yMHee9CCkBWMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZCMUQvQzY4NENBOUMxREFCMTFFMkEyMUUzNUFBMDhCMDJDRDIvQzA5OEQ3NjI2 NzUxMTFFOUEwQzRCQjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnFXwwDwQCAAIwCQMHACABDfAEEzANBgkqhkiG9w0BAQsF AAOCAQEACE4osZswxrP5J1ILKjTue01e6V6zfkgH7aA9GSNHdTY+c4S1/SPhENqm YbfhFoczGsyIez4h43+tUxhmDI26LpRQmGxRf3cekRrAMFpj9YT8/RYH+czA2IHt WW7sY/HF7Trd8/xwcd5o7pFzH4YyBkmvI3jV1WzlyirlI2PwWxyoNp/ThoXdTqIv L1PYcl7KP0QPKMd+GDZK04210XsSjh4bnbxVL0Hwd/McAJ01QfeZJKqHT0o2cc7U iZ5QzTeeJxNGlAWRU6ugWqJmjpuYRZ019NPYcYeZ+DfaET2vTd5hSrZRDTeMVLoD oAvHnFxTLEo5jy7XqnwpXAoaPzpBNg== -----END CERTIFICATE-----Generated at Thu Jun 6 21:10:33 2024 by rpki-client on console-ams.rpki-client.org