$ rpki-client -vvf rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/E1B42772611A11EE9022C77EC4F9AE02.roa File: E1B42772611A11EE9022C77EC4F9AE02.roa (raw, json) Hash identifier: rihTg/cAg86XODANY58nGeXrXqb2a2j3EKJ+pY71Ob8= Subject key identifier: D5:28:46:C0:70:05:89:AC:D0:1C:92:CE:A0:73:72:AA:CD:1E:E1:54 Certificate issuer: /CN=A915F6E4/serialNumber=884B6129A8DA98296714C53A5A1280FD1019F8A3 Certificate serial: 19 Authority key identifier: 88:4B:61:29:A8:DA:98:29:67:14:C5:3A:5A:12:80:FD:10:19:F8:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEthKajamClnFMU6WhKA_RAZ-KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/E1B42772611A11EE9022C77EC4F9AE02.roa Signing time: Mon 02 Oct 2023 12:00:22 +0000 ROA not before: Mon 02 Oct 2023 12:00:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151783 IP address blocks: 103.26.30.0/23 maxlen: 23 103.26.30.0/24 maxlen: 24 103.26.31.0/24 maxlen: 24 2001:df2:dbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/iEthKajamClnFMU6WhKA_RAZ-KM.crl rsync://rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/iEthKajamClnFMU6WhKA_RAZ-KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEthKajamClnFMU6WhKA_RAZ-KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F6E4/serialNumber=884B6129A8DA98296714C53A5A1280FD1019F8A3 Validity Not Before: Oct 2 12:00:22 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651ab0d6-cf73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:80:ac:c8:f2:ad:ce:54:25:eb:42:86:5f:32: 32:10:3e:31:8b:03:77:b3:2d:91:8d:c8:d6:82:07: 43:4f:da:70:32:64:98:65:b9:c0:95:f5:cd:a5:0c: d3:c8:f3:68:42:19:c8:9c:72:2f:e3:0c:35:d3:64: 23:47:10:ad:4f:bc:78:ea:32:76:5f:8f:32:31:1a: d2:b4:d7:19:8f:12:f8:22:c1:34:11:ad:cc:39:cf: 34:93:fd:f0:d7:b6:7f:dc:02:52:eb:fb:31:83:15: 54:b0:a7:50:d8:2e:8e:97:85:de:78:12:de:d4:9a: 5a:b9:92:46:f6:2e:f2:d7:06:1a:35:28:51:72:47: 7a:b6:b3:37:aa:ff:d7:46:0f:3a:cb:c5:f7:e1:0d: 71:e9:e8:33:f0:f7:7e:a4:df:aa:a3:41:46:e3:7c: 69:49:b9:fa:9c:99:31:db:fd:f5:af:73:ca:d8:53: 0f:80:14:f7:92:8c:62:f6:fb:c1:a9:76:57:58:95: ba:ec:26:50:0c:42:08:cc:9d:4b:72:5a:70:d9:f3: 7b:c3:0e:e9:8c:a1:65:84:67:13:c7:aa:32:b2:a2: ca:55:79:47:9e:22:08:19:c7:68:09:81:1f:6a:3c: 26:8a:fa:6a:0f:df:21:58:5d:43:f5:a6:39:97:ee: 22:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:28:46:C0:70:05:89:AC:D0:1C:92:CE:A0:73:72:AA:CD:1E:E1:54 X509v3 Authority Key Identifier: keyid:88:4B:61:29:A8:DA:98:29:67:14:C5:3A:5A:12:80:FD:10:19:F8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/iEthKajamClnFMU6WhKA_RAZ-KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEthKajamClnFMU6WhKA_RAZ-KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F6E4/CA81D9FE4E1011EE9FE0BD26C4F9AE02/E1B42772611A11EE9022C77EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.30.0/23 IPv6: 2001:df2:dbc0::/48 Signature Algorithm: sha256WithRSAEncryption b5:9b:19:6a:4b:6a:68:30:ba:3e:b8:bc:03:f0:78:bc:ec:82: d8:fd:1f:60:f2:e6:13:5f:0d:60:16:e3:89:d1:09:28:ad:40: 74:20:fd:f3:4c:20:06:b8:90:fc:cc:4e:89:76:04:ea:20:3d: d8:1e:bd:e8:fc:75:06:9b:d8:5f:71:ba:17:09:86:be:67:eb: bb:6e:4a:e7:e0:e8:91:15:02:73:48:f7:c2:f9:06:d5:5b:c9: f7:af:f8:1c:0c:70:a4:a1:6e:48:83:2b:8d:af:63:6b:1d:09: 3e:ab:85:8f:93:67:4e:58:89:16:29:13:9a:e6:ed:98:c7:fc: aa:17:ca:b7:2c:5a:4a:d1:0d:c1:d3:40:e6:62:7a:b7:0d:af: f8:ac:35:44:ff:8c:21:08:88:a0:c6:2b:bc:ee:1c:c0:18:97: cf:98:16:f9:73:b4:2a:db:d5:25:2c:a4:53:2c:2c:c5:2d:46: 06:fb:c1:f2:9d:94:c7:ad:2d:21:99:62:38:90:45:15:58:39: a8:4b:24:59:43:02:60:f6:be:cd:88:28:90:0d:0e:32:c4:cb: a7:b1:3f:32:07:7b:4e:83:f4:d4:ae:6e:60:34:a5:63:e6:83: ff:7f:a6:94:36:07:4c:f8:f9:8b:c9:34:dc:8c:14:63:9e:10: 38:a8:4a:eb -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RjZFNDExMC8GA1UEBRMoODg0QjYxMjlBOERBOTgyOTY3MTRDNTNBNUExMjgwRkQx MDE5RjhBMzAeFw0yMzEwMDIxMjAwMjJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MWFiMGQ2LWNmNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCygKzI8q3OVCXrQoZfMjIQPjGLA3ezLZGNyNaCB0NP2nAyZJhlucCV9c2lDNPI 82hCGcicci/jDDXTZCNHEK1PvHjqMnZfjzIxGtK01xmPEvgiwTQRrcw5zzST/fDX tn/cAlLr+zGDFVSwp1DYLo6Xhd54Et7Umlq5kkb2LvLXBho1KFFyR3q2szeq/9dG DzrLxffhDXHp6DPw936k36qjQUbjfGlJufqcmTHb/fWvc8rYUw+AFPeSjGL2+8Gp dldYlbrsJlAMQgjMnUtyWnDZ83vDDumMoWWEZxPHqjKyospVeUeeIggZx2gJgR9q PCaK+moP3yFYXUP1pjmX7iIZAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU1ShGwHAF iazQHJLOoHNyqs0e4VQwHwYDVR0jBBgwFoAUiEthKajamClnFMU6WhKA/RAZ+KMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGNkU0L0NBODFEOUZFNEUx MDExRUU5RkUwQkQyNkM0RjlBRTAyL2lFdGhLYWphbUNsbkZNVTZXaEtBX1JBWi1L TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUV0aEthamFtQ2xuRk1VNldoS0FfUkFaLUtNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjZFNC9DQTgxRDlGRTRFMTAxMUVFOUZFMEJEMjZDNEY5QUUwMi9FMUI0Mjc3MjYx MUExMUVFOTAyMkM3N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWcaHjAPBAIAAjAJAwcAIAEN8tvAMA0GCSqGSIb3DQEBCwUA A4IBAQC1mxlqS2poMLo+uLwD8Hi87ILY/R9g8uYTXw1gFuOJ0QkorUB0IP3zTCAG uJD8zE6JdgTqID3YHr3o/HUGm9hfcboXCYa+Z+u7bkrn4OiRFQJzSPfC+QbVW8n3 r/gcDHCkoW5IgyuNr2NrHQk+q4WPk2dOWIkWKROa5u2Yx/yqF8q3LFpK0Q3B00Dm Ynq3Da/4rDVE/4whCIigxiu87hzAGJfPmBb5c7Qq29UlLKRTLCzFLUYG+8HynZTH rS0hmWI4kEUVWDmoSyRZQwJg9r7NiCiQDQ4yxMunsT8yB3tOg/TUrm5gNKVj5oP/ f6aUNgdM+PmLyTTcjBRjnhA4qErr -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:15 2024 by rpki-client on console-ams.rpki-client.org