$ rpki-client -vvf rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/B8B720BEF9EF11EDA3C9C234C4F9AE02.roa File: B8B720BEF9EF11EDA3C9C234C4F9AE02.roa (raw, json) Hash identifier: My0gxkPTiPIufgJL4YRuXb9RXfxXNWfL0lWpF2RiHBg= Subject key identifier: 10:19:CE:EA:C6:F4:E8:04:BB:B1:5C:2D:6B:A2:6E:DF:37:D0:55:F5 Certificate issuer: /CN=A913BBE6/serialNumber=9359DD2E1214EB6BA5622AB3C80B6A9216680CCC Certificate serial: 059A Authority key identifier: 93:59:DD:2E:12:14:EB:6B:A5:62:2A:B3:C8:0B:6A:92:16:68:0C:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k1ndLhIU62ulYiqzyAtqkhZoDMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/B8B720BEF9EF11EDA3C9C234C4F9AE02.roa Signing time: Sat 02 Nov 2024 23:01:50 +0000 ROA not before: Sat 02 Nov 2024 23:01:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132042 IP address blocks: 103.5.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/k1ndLhIU62ulYiqzyAtqkhZoDMw.crl rsync://rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/k1ndLhIU62ulYiqzyAtqkhZoDMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k1ndLhIU62ulYiqzyAtqkhZoDMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BBE6/serialNumber=9359DD2E1214EB6BA5622AB3C80B6A9216680CCC Validity Not Before: Nov 2 23:01:50 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726af5d-9010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:82:ab:e6:63:13:b6:f9:b4:d9:15:ca:fb: 45:16:38:14:80:b1:91:29:45:5e:09:b5:01:8b:91: c5:5f:75:ed:2b:47:b8:2e:5e:d6:91:a1:5c:46:7d: 20:54:fc:43:cc:fe:c1:aa:e9:60:55:85:31:18:e6: 8b:ad:09:3d:32:10:b6:75:bb:9e:87:ca:d2:19:a5: 50:04:4e:32:86:57:90:2f:3b:61:3e:5d:c0:0b:1c: 11:76:82:92:f8:64:ab:65:98:13:77:a9:bc:b0:21: 61:be:1c:9b:cb:7a:5d:45:07:a1:c5:f5:b5:d4:b1: 78:30:f1:1b:1c:20:1e:57:94:f8:83:63:2d:3f:ff: 5e:1f:58:8b:5d:74:5f:97:49:31:45:0a:6f:42:d4: 68:bf:d9:5f:d0:df:35:8d:40:60:f8:3a:c3:98:59: 50:94:99:2c:2f:63:60:a8:8a:0d:ae:bb:fd:5a:cc: 4e:39:d9:31:08:bd:3f:a8:3e:5b:bf:12:f9:6d:a6: e5:fc:32:10:5e:ae:83:1f:fc:67:18:a6:2c:21:96: 7c:f0:74:47:56:db:0b:1f:4b:60:70:48:dc:27:6a: 08:3a:55:12:c6:86:03:34:0d:9d:6c:31:71:4e:13: 1b:7c:d5:52:e1:0e:e4:98:7d:de:af:bf:33:91:df: b0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:19:CE:EA:C6:F4:E8:04:BB:B1:5C:2D:6B:A2:6E:DF:37:D0:55:F5 X509v3 Authority Key Identifier: keyid:93:59:DD:2E:12:14:EB:6B:A5:62:2A:B3:C8:0B:6A:92:16:68:0C:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/k1ndLhIU62ulYiqzyAtqkhZoDMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k1ndLhIU62ulYiqzyAtqkhZoDMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BBE6/A097F0D4AD3011EBB127B623C4F9AE02/B8B720BEF9EF11EDA3C9C234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.224.0/22 Signature Algorithm: sha256WithRSAEncryption 06:77:e3:d7:78:59:b8:1c:eb:4b:d5:30:4c:28:e2:90:4d:bf: e1:6d:53:d7:f6:79:80:da:40:de:7b:fc:c4:91:69:e6:cd:f4: 55:8d:0b:d5:4f:e6:4c:b3:4d:22:13:6e:5e:02:5e:c1:54:de: c7:d0:bf:1b:56:de:c6:7b:25:88:e3:ab:01:84:30:2c:08:65: db:46:11:c8:7c:ea:58:b5:58:e2:d0:6c:38:34:ac:61:c2:24: bc:b5:e7:c1:3e:e6:51:ac:f2:29:e8:e9:40:14:e6:e2:b6:52: 70:68:85:b3:32:10:44:d0:07:89:b4:41:25:2f:fa:67:0b:55: 9e:9a:b8:aa:ac:cb:e4:de:84:d1:52:82:f4:3e:f0:0e:1b:23: 88:88:ae:8a:8b:2e:83:48:07:1b:69:bc:52:4a:7a:b7:d5:3b: 62:70:99:b6:80:af:17:d7:e1:f4:50:38:d9:a0:7f:d6:05:96: 4e:7a:63:e0:23:6d:c8:79:01:27:bd:46:3a:c3:31:9f:25:47: 75:93:ce:96:cb:80:73:36:59:e3:f2:d5:6f:7b:ad:e0:ca:f6: 9f:f9:21:c6:3a:80:2e:ed:b5:3c:e0:08:fc:8c:34:e9:b6:b9: 00:d1:da:e5:09:97:e0:68:c8:f5:0c:fd:91:0b:00:f3:98:02: fe:fd:bb:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JCRTYxMTAvBgNVBAUTKDkzNTlERDJFMTIxNEVCNkJBNTYyMkFCM0M4MEI2QTky MTY2ODBDQ0MwHhcNMjQxMTAyMjMwMTUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YWY1ZC05MDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3SCq+ZjE7b5tNkVyvtFFjgUgLGRKUVeCbUBi5HFX3XtK0e4Ll7WkaFcRn0g VPxDzP7BqulgVYUxGOaLrQk9MhC2dbueh8rSGaVQBE4yhleQLzthPl3ACxwRdoKS +GSrZZgTd6m8sCFhvhyby3pdRQehxfW11LF4MPEbHCAeV5T4g2MtP/9eH1iLXXRf l0kxRQpvQtRov9lf0N81jUBg+DrDmFlQlJksL2NgqIoNrrv9WsxOOdkxCL0/qD5b vxL5babl/DIQXq6DH/xnGKYsIZZ88HRHVtsLH0tgcEjcJ2oIOlUSxoYDNA2dbDFx ThMbfNVS4Q7kmH3er78zkd+wjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAZzurG 9OgEu7FcLWuibt830FX1MB8GA1UdIwQYMBaAFJNZ3S4SFOtrpWIqs8gLapIWaAzM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkJFNi9BMDk3RjBENEFE MzAxMUVCQjEyN0I2MjNDNEY5QUUwMi9rMW5kTGhJVTYydWxZaXF6eUF0cWtoWm9E TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2sxbmRMaElVNjJ1bFlpcXp5QXRxa2hab0RNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0JCRTYvQTA5N0YwRDRBRDMwMTFFQkIxMjdCNjIzQzRGOUFFMDIvQjhCNzIwQkVG OUVGMTFFREEzQzlDMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBeAwDQYJKoZIhvcNAQELBQADggEBAAZ349d4Wbgc60vV MEwo4pBNv+FtU9f2eYDaQN57/MSRaebN9FWNC9VP5kyzTSITbl4CXsFU3sfQvxtW 3sZ7JYjjqwGEMCwIZdtGEch86li1WOLQbDg0rGHCJLy158E+5lGs8ino6UAU5uK2 UnBohbMyEETQB4m0QSUv+mcLVZ6auKqsy+TehNFSgvQ+8A4bI4iIroqLLoNIBxtp vFJKerfVO2JwmbaArxfX4fRQONmgf9YFlk56Y+Ajbch5ASe9RjrDMZ8lR3WTzpbL gHM2WePy1W97reDK9p/5IcY6gC7ttTzgCPyMNOm2uQDR2uUJl+BoyPUM/ZELAPOY Av79uyI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org