$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/634556A61F8411E79BCB6D54C4F9AE02.roa File: 634556A61F8411E79BCB6D54C4F9AE02.roa (raw, json) Hash identifier: XhTsav0xpJjWdlplehBc3Nc1KWkAolJry5gRZodOyhc= Subject key identifier: A6:19:96:7C:F1:D6:F5:74:29:E0:03:9B:FC:14:F2:CF:54:5A:11:11 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1A46 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/634556A61F8411E79BCB6D54C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:53:55 +0000 ROA not before: Tue 02 Jan 2024 16:53:55 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134785 IP address blocks: 103.82.128.0/22 maxlen: 22 103.82.128.0/24 maxlen: 24 103.82.129.0/24 maxlen: 24 103.82.130.0/24 maxlen: 24 103.82.131.0/24 maxlen: 24 125.62.64.0/24 maxlen: 24 125.62.65.0/24 maxlen: 24 125.62.66.0/24 maxlen: 24 125.62.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6726 (0x1a46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: Jan 2 16:53:55 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65943fa2-2714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:91:1c:be:e2:7f:b8:8e:ad:fe:12:39:49:75: 0d:91:7c:ea:79:41:f0:40:00:15:e7:d9:c9:43:cd: 75:2c:63:76:48:07:7a:54:e9:f9:ac:6b:72:b6:03: a5:fd:ec:7a:73:85:82:09:7a:a0:e2:e0:ee:52:12: 82:b3:21:89:0c:39:30:c0:cd:ba:53:70:dc:7e:e3: eb:45:36:dd:4f:3e:ef:1d:7c:62:12:a0:47:23:58: b7:6d:8e:31:79:f7:28:46:e6:f1:40:b0:e1:3c:db: 35:42:b3:0c:86:d9:4b:3d:0c:d9:92:22:00:75:ef: 7d:75:a9:5e:69:d3:4d:f2:b0:c1:3a:d2:dd:71:44: 17:3f:98:96:a7:30:cd:e3:a7:ab:9e:7f:45:79:da: 4e:2c:2e:56:4e:b3:39:19:7d:1f:4f:c3:f5:65:45: 08:d1:e3:bd:be:b2:9b:16:de:7b:d2:67:65:10:34: c5:44:7d:a5:5f:3a:e6:f3:7d:87:be:a1:b0:87:33: 54:f8:15:a1:a3:16:bd:52:2a:e6:83:c8:77:28:9c: 3f:0e:26:0c:09:06:d4:25:d0:4e:c1:76:90:0a:dc: 9f:e4:be:8a:30:df:ce:ff:60:dd:c5:f6:d1:87:cd: 52:9d:39:fa:d3:a5:3d:40:c0:1f:9b:0e:42:2e:ce: 05:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:19:96:7C:F1:D6:F5:74:29:E0:03:9B:FC:14:F2:CF:54:5A:11:11 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/634556A61F8411E79BCB6D54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 125.62.64.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:83:85:3f:fd:d3:ac:14:0c:a0:e8:43:9c:51:1a:55:88:08: 42:b0:df:03:1b:2f:6d:58:38:57:24:1c:6b:31:aa:d5:d9:eb: f2:58:71:6f:cb:5c:c1:d6:1d:fd:92:a1:b2:c2:a9:fd:ef:c3: a9:50:ef:cd:63:07:f7:67:e9:2f:9c:a2:d1:6f:95:ed:b6:63: 6d:23:c5:be:b3:c5:6d:52:92:be:2e:0c:6b:ed:37:5a:24:61: 71:a1:4c:57:73:fd:cc:27:37:7b:91:4c:23:60:c7:1f:99:91: aa:6f:cf:91:d6:19:32:8f:20:b6:be:8b:e8:f6:5b:93:bd:f7: 9d:a0:d5:4c:2b:92:5b:7c:77:8c:1d:e7:77:0b:72:a4:9b:d4: 9f:45:61:83:3d:47:28:f1:ef:24:bf:ea:d4:ab:2e:a0:20:05: 14:0e:a6:42:07:94:c0:21:3a:bd:4e:01:69:ce:8a:ea:8b:de: 81:6b:0f:05:3b:23:35:88:77:5a:51:fe:c7:a6:9c:cc:d4:18: 90:fa:d4:eb:21:45:06:21:31:2a:13:99:18:a6:21:d1:12:82: 9e:83:e3:1d:91:22:9f:1f:ed:f3:b4:1a:b3:54:ac:64:64:4c: 54:8d:a8:07:25:06:e6:20:cc:12:32:00:2e:8c:ae:bf:b7:65: 1a:eb:4a:ed -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjQwMTAyMTY1MzU1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZhMi0yNzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15EcvuJ/uI6t/hI5SXUNkXzqeUHwQAAV59nJQ811LGN2SAd6VOn5rGtytgOl /ex6c4WCCXqg4uDuUhKCsyGJDDkwwM26U3DcfuPrRTbdTz7vHXxiEqBHI1i3bY4x efcoRubxQLDhPNs1QrMMhtlLPQzZkiIAde99daleadNN8rDBOtLdcUQXP5iWpzDN 46ernn9FedpOLC5WTrM5GX0fT8P1ZUUI0eO9vrKbFt570mdlEDTFRH2lXzrm832H vqGwhzNU+BWhoxa9Uirmg8h3KJw/DiYMCQbUJdBOwXaQCtyf5L6KMN/O/2DdxfbR h81SnTn606U9QMAfmw5CLs4FowIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKYZlnzx 1vV0KeADm/wU8s9UWhERMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvNjM0NTU2QTYx Rjg0MTFFNzlCQ0I2RDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUoADBAJ9PkAwDQYJKoZIhvcNAQELBQADggEBABuDhT/9 06wUDKDoQ5xRGlWICEKw3wMbL21YOFckHGsxqtXZ6/JYcW/LXMHWHf2SobLCqf3v w6lQ781jB/dn6S+cotFvle22Y20jxb6zxW1Skr4uDGvtN1okYXGhTFdz/cwnN3uR TCNgxx+Zkapvz5HWGTKPILa+i+j2W5O9952g1Uwrklt8d4wd53cLcqSb1J9FYYM9 Ryjx7yS/6tSrLqAgBRQOpkIHlMAhOr1OAWnOiuqL3oFrDwU7IzWId1pR/semnMzU GJD61OshRQYhMSoTmRimIdESgp6D4x2RIp8f7fO0GrNUrGRkTFSNqAclBuYgzBIy AC6Mrr+3ZRrrSu0= -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org