$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa File: 354FE56C6C5111EC9FF8F481C4F9AE02.roa (raw, json) Hash identifier: wX34fJEXPihTL8EEvxnv+SptLLr8V8hDmFdFazCeFYk= Subject key identifier: EF:59:02:4B:E3:3D:3F:F6:D9:68:96:43:00:88:CD:F1:91:15:D9:40 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 121D Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa Signing time: Mon 02 Oct 2023 17:34:56 +0000 ROA not before: Mon 02 Oct 2023 17:34:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139074 IP address blocks: 103.130.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 17:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4637 (0x121d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Oct 2 17:34:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651aff40-cc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:82:b4:aa:aa:f2:71:cb:c7:d1:83:d7:65: aa:26:63:71:d7:15:ef:d2:47:ed:c6:51:c9:c1:35: bd:a9:c2:bc:0a:13:59:14:a5:b8:77:37:3f:60:ee: e5:22:8c:b4:76:16:81:8a:db:87:e5:7d:68:64:ad: f4:11:ef:5b:e3:8a:0e:2c:b6:ae:bd:64:56:0c:b8: f4:a9:49:8d:78:59:d6:60:d8:7b:81:79:8e:48:ec: 83:f4:98:6e:a2:cc:e3:e6:a0:64:15:07:06:6a:0b: 43:0e:e2:64:33:4d:07:96:e7:02:0e:84:b1:92:8d: dd:44:f6:29:89:54:70:cc:2d:dd:e5:f7:bd:91:63: be:a5:cf:1a:c8:6f:39:eb:6c:6f:dd:f2:70:07:f3: 11:6e:5c:19:b4:9b:3c:fa:d8:ef:9b:a8:94:c3:f8: 63:26:85:d4:52:c4:46:5a:16:1c:cb:f9:e2:51:fb: 88:09:e1:6e:bc:db:1d:f5:9d:b2:9c:ba:c6:f1:66: cf:8d:c2:e8:93:6a:48:ab:fd:8f:75:18:db:11:0e: d8:88:6d:9d:86:59:5d:b5:ea:f9:0a:c5:62:63:87: 91:5e:ac:e5:b8:d2:93:23:2e:4c:96:fd:15:d7:1c: 78:a6:2b:e4:d7:c9:52:eb:55:52:bc:8e:40:71:82: a2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:59:02:4B:E3:3D:3F:F6:D9:68:96:43:00:88:CD:F1:91:15:D9:40 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.68.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:d2:e3:35:eb:02:d6:65:05:24:78:46:57:a1:b2:bd:1d:80: ca:bb:57:80:17:46:a7:56:10:65:b4:74:42:e7:e4:e0:92:8d: e4:bf:4b:2d:7f:e5:be:d1:41:18:b9:5e:f7:28:4a:7e:ba:88: 65:e1:31:89:70:1b:73:77:ad:cd:0d:03:61:a7:f1:58:a9:35: 1b:c5:bf:18:c2:9b:cf:16:69:01:33:0d:28:95:b7:2b:7e:81: 83:27:35:2f:f1:b6:b6:97:fa:e5:ab:47:de:71:58:1e:9a:81: 79:0c:48:fc:2e:d8:b3:ec:39:36:29:a7:4d:69:21:31:05:d8: 82:00:b0:a5:22:80:3e:6b:a1:a2:36:c8:02:f1:87:fa:92:8a: d0:12:0c:41:91:8c:20:e9:cd:66:33:16:df:66:1c:77:92:ec: 40:e5:31:f4:59:1b:c9:66:cc:b7:ed:77:c6:99:a2:10:1c:ae: ba:7a:8f:9f:2b:20:dd:00:f9:9f:86:67:c2:21:2b:fa:8e:8f: d3:6b:f5:d1:43:b6:62:7a:46:e5:2a:c2:03:66:c8:33:d5:13: e4:28:65:f4:63:35:98:cb:98:38:50:da:2a:18:02:53:61:c4: 64:23:e9:bd:d8:9d:97:76:7f:03:3f:5e:4b:cc:88:b9:e5:20: 49:85:87:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjMxMDAyMTczNDU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZmY0MC1jYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWKCtKqq8nHLx9GD12WqJmNx1xXv0kftxlHJwTW9qcK8ChNZFKW4dzc/YO7l Ioy0dhaBituH5X1oZK30Ee9b44oOLLauvWRWDLj0qUmNeFnWYNh7gXmOSOyD9Jhu oszj5qBkFQcGagtDDuJkM00HlucCDoSxko3dRPYpiVRwzC3d5fe9kWO+pc8ayG85 62xv3fJwB/MRblwZtJs8+tjvm6iUw/hjJoXUUsRGWhYcy/niUfuICeFuvNsd9Z2y nLrG8WbPjcLok2pIq/2PdRjbEQ7YiG2dhlldter5CsViY4eRXqzluNKTIy5Mlv0V 1xx4pivk18lS61VSvI5AcYKiBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9ZAkvj PT/22WiWQwCIzfGRFdlAMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvQkNFREY0NDJCMEJGMTFFODg2MzkyMjM3QzRGOUFFMDIvMzU0RkU1NkM2 QzUxMTFFQzlGRjhGNDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngkQwDQYJKoZIhvcNAQELBQADggEBACzS4zXrAtZlBSR4 Rlehsr0dgMq7V4AXRqdWEGW0dELn5OCSjeS/Sy1/5b7RQRi5XvcoSn66iGXhMYlw G3N3rc0NA2Gn8VipNRvFvxjCm88WaQEzDSiVtyt+gYMnNS/xtraX+uWrR95xWB6a gXkMSPwu2LPsOTYpp01pITEF2IIAsKUigD5roaI2yALxh/qSitASDEGRjCDpzWYz Ft9mHHeS7EDlMfRZG8lmzLftd8aZohAcrrp6j58rIN0A+Z+GZ8IhK/qOj9Nr9dFD tmJ6RuUqwgNmyDPVE+QoZfRjNZjLmDhQ2ioYAlNhxGQj6b3YnZd2fwM/XkvMiLnl IEmFh8M= -----END CERTIFICATE-----Generated at Fri Jun 14 19:10:31 2024 by rpki-client on console-ams.rpki-client.org