$ rpki-client -vvf rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/5A56D82CEE9711EA9A99063CC4F9AE02.roa File: 5A56D82CEE9711EA9A99063CC4F9AE02.roa (raw, json) Hash identifier: dvoU6rv4WmyJLk9iRDJv4tzFR57evRNSLVJVzcM3I5k= Subject key identifier: 58:4E:FD:26:4F:A6:5F:51:C5:E3:92:2E:A3:49:99:7E:FA:2C:E3:7B Certificate issuer: /CN=A916F42A/serialNumber=C071D61949A2772A9C44E5B5F063018AE0AE12D7 Certificate serial: 09D9 Authority key identifier: C0:71:D6:19:49:A2:77:2A:9C:44:E5:B5:F0:63:01:8A:E0:AE:12:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wHHWGUmidyqcROW18GMBiuCuEtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/5A56D82CEE9711EA9A99063CC4F9AE02.roa Signing time: Tue 02 Jan 2024 20:38:37 +0000 ROA not before: Tue 02 Jan 2024 20:38:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138494 IP address blocks: 103.126.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/wHHWGUmidyqcROW18GMBiuCuEtc.crl rsync://rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/wHHWGUmidyqcROW18GMBiuCuEtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wHHWGUmidyqcROW18GMBiuCuEtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2521 (0x9d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F42A/serialNumber=C071D61949A2772A9C44E5B5F063018AE0AE12D7 Validity Not Before: Jan 2 20:38:37 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594744c-eebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:dc:f0:55:97:14:a6:2d:01:b5:9a:2d:c0:68: b1:43:f3:35:b4:d9:e3:06:c6:cb:2c:6c:11:ca:53: c1:b4:6c:40:2d:a3:05:fa:c8:f6:ee:b1:59:77:3d: 04:00:61:ad:a4:c9:cd:8b:83:1e:03:6b:2f:12:6f: da:23:69:ec:5d:3c:25:3f:dc:2f:1d:50:4e:a3:89: 77:2e:cd:f9:3f:21:a9:20:ee:58:74:c0:84:f0:56: bc:4c:ab:e4:9c:65:18:64:e3:f5:24:ab:bc:63:85: 38:f6:4c:bd:da:04:23:a5:45:13:84:22:6a:ff:21: 45:a2:2f:a7:0b:66:13:99:fb:71:4a:ab:c0:04:03: 6a:0b:e4:12:be:b9:c5:c4:e7:3e:b2:0b:db:eb:8f: ec:70:46:31:93:c3:54:21:06:bb:18:35:1d:7e:6c: 86:1d:9d:39:c8:c8:1d:ca:f8:b4:44:29:b8:73:1e: 68:94:e7:7f:dc:21:e0:fc:3b:95:cc:5b:8e:b4:8a: 73:7f:d8:ee:d8:05:fc:74:db:98:46:e8:44:86:8b: 72:8a:83:1d:b1:e2:2c:4c:68:a7:69:90:7e:38:63: cb:6a:70:2e:67:a1:f7:e6:0c:22:10:93:dd:bc:94: f6:06:49:81:f5:00:2f:e2:ae:01:d2:c3:34:8a:de: 0b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4E:FD:26:4F:A6:5F:51:C5:E3:92:2E:A3:49:99:7E:FA:2C:E3:7B X509v3 Authority Key Identifier: keyid:C0:71:D6:19:49:A2:77:2A:9C:44:E5:B5:F0:63:01:8A:E0:AE:12:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/wHHWGUmidyqcROW18GMBiuCuEtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wHHWGUmidyqcROW18GMBiuCuEtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F42A/1B20557E4BBE11EABC27A547C4F9AE02/5A56D82CEE9711EA9A99063CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.248.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:28:33:b3:0d:41:85:84:b3:55:91:a3:30:1a:71:5c:dc:7a: 9a:e2:03:60:e2:b6:06:ec:ac:b6:06:9d:ab:c5:69:d4:7b:5f: d3:6d:bc:be:c2:81:be:93:19:a7:a0:ab:96:e0:52:0d:d9:49: 9a:44:05:2c:67:0a:eb:ee:d1:cb:ab:34:09:e1:a7:92:f5:44: 6b:42:fc:14:7a:2a:d2:d3:d7:35:5d:21:e5:fd:56:c0:25:0c: 65:64:34:de:3c:fb:5c:29:97:47:4b:e0:22:6a:92:18:50:ee: 56:03:6e:24:7b:5c:05:9d:d3:94:cd:31:fb:ac:66:eb:18:64: 81:c1:bc:c2:f5:51:60:e9:16:62:e0:1f:c6:a4:1b:41:a2:8d: 90:d2:06:71:ea:d1:e9:3d:bd:a2:f7:fa:e6:0e:11:09:a4:a0: 8d:13:31:b9:0f:eb:8e:9c:ea:94:c4:c1:96:4a:b6:d6:0e:3b: 4a:8a:4c:5a:9f:c4:2d:39:a6:16:c8:1d:df:a3:aa:22:15:af: 11:20:08:f5:51:13:c9:3a:09:06:c7:a6:65:01:47:42:c1:53: f3:91:53:10:ed:35:e8:ab:d9:2f:1c:b8:22:ec:66:77:8e:bd: c9:1f:e8:88:44:2b:f9:b3:5a:fc:36:7d:b1:79:09:ce:80:97: 04:68:64:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY0MkExMTAvBgNVBAUTKEMwNzFENjE5NDlBMjc3MkE5QzQ0RTVCNUYwNjMwMThB RTBBRTEyRDcwHhcNMjQwMTAyMjAzODM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0NzQ0Yy1lZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dzwVZcUpi0BtZotwGixQ/M1tNnjBsbLLGwRylPBtGxALaMF+sj27rFZdz0E AGGtpMnNi4MeA2svEm/aI2nsXTwlP9wvHVBOo4l3Ls35PyGpIO5YdMCE8Fa8TKvk nGUYZOP1JKu8Y4U49ky92gQjpUUThCJq/yFFoi+nC2YTmftxSqvABANqC+QSvrnF xOc+sgvb64/scEYxk8NUIQa7GDUdfmyGHZ05yMgdyvi0RCm4cx5olOd/3CHg/DuV zFuOtIpzf9ju2AX8dNuYRuhEhotyioMdseIsTGinaZB+OGPLanAuZ6H35gwiEJPd vJT2BkmB9QAv4q4B0sM0it4LQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFhO/SZP pl9RxeOSLqNJmX76LON7MB8GA1UdIwQYMBaAFMBx1hlJoncqnETltfBjAYrgrhLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjQyQS8xQjIwNTU3RTRC QkUxMUVBQkMyN0E1NDdDNEY5QUUwMi93SEhXR1VtaWR5cWNST1cxOEdNQml1Q3VF dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dISFdHVW1pZHlxY1JPVzE4R01CaXVDdUV0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkY0MkEvMUIyMDU1N0U0QkJFMTFFQUJDMjdBNTQ3QzRGOUFFMDIvNUE1NkQ4MkNF RTk3MTFFQTlBOTkwNjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfvgwDQYJKoZIhvcNAQELBQADggEBAA4oM7MNQYWEs1WR ozAacVzcepriA2DitgbsrLYGnavFadR7X9NtvL7Cgb6TGaegq5bgUg3ZSZpEBSxn Cuvu0curNAnhp5L1RGtC/BR6KtLT1zVdIeX9VsAlDGVkNN48+1wpl0dL4CJqkhhQ 7lYDbiR7XAWd05TNMfusZusYZIHBvML1UWDpFmLgH8akG0GijZDSBnHq0ek9vaL3 +uYOEQmkoI0TMbkP646c6pTEwZZKttYOO0qKTFqfxC05phbIHd+jqiIVrxEgCPVR E8k6CQbHpmUBR0LBU/ORUxDtNeir2S8cuCLsZneOvckf6IhEK/mzWvw2fbF5Cc6A lwRoZDc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org