$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa File: A6B5F55C23F911E79BE44454C4F9AE02.roa (raw, json) Hash identifier: Qv5AAU60Mi7+dJ3KtkU01WrlemqwaBBxsC0pxuHLu6k= Subject key identifier: 4E:C1:EE:C5:F7:6D:7D:57:3F:AA:AF:F2:FB:6F:EC:2E:99:12:AB:56 Certificate issuer: /CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Certificate serial: 19E5 Authority key identifier: E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa Signing time: Fri 22 Dec 2023 16:43:52 +0000 ROA not before: Fri 22 Dec 2023 16:43:52 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38826 IP address blocks: 103.243.84.0/22 maxlen: 22 119.15.96.0/20 maxlen: 20 175.106.4.0/22 maxlen: 22 2400:5000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6629 (0x19e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Validity Not Before: Dec 22 16:43:52 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6585bcc7-4d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a5:83:d6:41:9f:05:01:b3:d9:1d:77:8a:5a: 67:a2:08:e2:79:f2:d5:87:b0:c4:b3:27:57:cf:da: cd:d9:7c:bc:48:ee:73:a7:28:93:fe:57:38:eb:67: 58:d1:62:e8:48:55:2f:57:7e:13:2a:35:4f:12:e7: c5:7e:23:e2:6c:d1:97:7f:cd:7d:e7:6e:7c:23:1c: c7:bb:9e:5c:9f:93:7f:07:6b:31:31:db:8b:94:b3: 4b:2b:18:1a:e6:f6:48:79:c5:a5:7c:c2:7a:23:ba: 2f:89:f1:17:d5:95:ea:a8:17:68:6e:d5:bc:b4:df: f8:52:6b:65:48:e9:d7:8f:a2:df:67:f0:61:1c:cf: 30:9e:b7:ae:b0:9d:a7:20:9b:34:9a:5a:a0:12:03: 22:54:b5:17:1f:f6:19:34:07:06:7a:2a:6a:04:e7: 76:51:0e:27:c7:93:30:38:33:17:c3:03:47:fc:01: b0:26:92:15:d3:22:5f:04:ea:73:d9:ea:98:40:03: bc:c2:e9:90:3b:b3:75:74:94:79:10:7c:57:70:a5: 70:4f:d0:86:49:50:4b:18:a9:0c:45:b9:f5:01:8e: 30:19:5e:38:4b:f3:8f:a2:54:03:8f:b2:d5:9f:98: fa:93:79:47:ba:6e:4f:43:1f:e6:4c:4a:f8:95:78: 2b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C1:EE:C5:F7:6D:7D:57:3F:AA:AF:F2:FB:6F:EC:2E:99:12:AB:56 X509v3 Authority Key Identifier: keyid:E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.84.0/22 119.15.96.0/20 175.106.4.0/22 IPv6: 2400:5000::/32 Signature Algorithm: sha256WithRSAEncryption c3:9a:ea:17:88:90:25:0e:82:e7:05:7d:82:71:da:9e:3a:94: 13:88:03:98:2c:94:53:00:eb:b1:30:6a:f7:ef:f6:16:fe:42: 3f:c6:23:34:c4:80:fb:41:10:c8:78:19:c7:c6:61:f4:b4:07: d6:be:5d:04:0d:44:b7:56:c8:7c:14:ef:7c:51:96:3d:ee:ef: 33:5c:a1:9e:bd:91:c1:27:43:46:24:87:a3:17:06:c5:14:b6: 9d:21:5d:6f:07:d2:f3:2d:c8:1c:d8:4e:78:53:9d:cf:2b:99: e9:7c:ef:81:fb:28:fa:52:83:c2:84:ef:03:c5:c6:9e:23:15: c0:ab:42:e2:ca:34:56:2f:4e:ad:e8:88:42:f7:a8:c2:48:0a: 87:5d:15:a8:37:71:ba:25:46:8d:29:1a:2f:92:8f:64:eb:ef: 89:99:2c:94:21:ae:fa:e0:9d:a9:06:44:0a:bb:ec:b4:b9:4d: ad:55:12:77:66:79:37:cc:a8:d5:6b:46:f7:e2:0a:75:52:83: ca:4b:22:e6:73:b2:b7:7a:d1:d5:10:fc:3d:43:39:2a:5b:da: 4b:ba:d2:75:08:85:0c:74:c0:aa:95:e8:74:c5:12:67:65:66: 9c:74:38:d5:66:6b:e5:27:8c:b7:1d:e8:f6:c2:20:e2:29:14: 47:b6:db:f0 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzQzIxMTAvBgNVBAUTKEU3MDYxREIyMjI4MzhERTY4QTkzQ0UyMUVGMjkxQjA1 NTQyRDg3MjYwHhcNMjMxMjIyMTY0MzUyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1YmNjNy00ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6WD1kGfBQGz2R13ilpnogjiefLVh7DEsydXz9rN2Xy8SO5zpyiT/lc462dY 0WLoSFUvV34TKjVPEufFfiPibNGXf8195258IxzHu55cn5N/B2sxMduLlLNLKxga 5vZIecWlfMJ6I7ovifEX1ZXqqBdobtW8tN/4UmtlSOnXj6LfZ/BhHM8wnreusJ2n IJs0mlqgEgMiVLUXH/YZNAcGeipqBOd2UQ4nx5MwODMXwwNH/AGwJpIV0yJfBOpz 2eqYQAO8wumQO7N1dJR5EHxXcKVwT9CGSVBLGKkMRbn1AY4wGV44S/OPolQDj7LV n5j6k3lHum5PQx/mTEr4lXgrjwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFE7B7sX3 bX1XP6qv8vtv7C6ZEqtWMB8GA1UdIwQYMBaAFOcGHbIig43mipPOIe8pGwVULYcm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDNDMi83MkQ3Q0ZENjIz RjgxMUU3OTU4OUQ3NTJDNEY5QUUwMi81d1lkc2lLRGplYUtrODRoN3lrYkJWUXRo eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV3WWRzaUtEamVhS2s4NGg3eWtiQlZRdGh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQzQzIvNzJEN0NGRDYyM0Y4MTFFNzk1ODlENzUyQzRGOUFFMDIvQTZCNUY1NUMy M0Y5MTFFNzlCRTQ0NDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJn81QDBAR3D2ADBAKvagQwDQQCAAIwBwMFACQAUAAwDQYJ KoZIhvcNAQELBQADggEBAMOa6heIkCUOgucFfYJx2p46lBOIA5gslFMA67Ewavfv 9hb+Qj/GIzTEgPtBEMh4GcfGYfS0B9a+XQQNRLdWyHwU73xRlj3u7zNcoZ69kcEn Q0Ykh6MXBsUUtp0hXW8H0vMtyBzYTnhTnc8rmel874H7KPpSg8KE7wPFxp4jFcCr QuLKNFYvTq3oiEL3qMJICoddFag3cbolRo0pGi+Sj2Tr74mZLJQhrvrgnakGRAq7 7LS5Ta1VEndmeTfMqNVrRvfiCnVSg8pLIuZzsrd60dUQ/D1DOSpb2ku60nUIhQx0 wKqV6HTFEmdlZpx0ONVma+UnjLcd6PbCIOIpFEe22/A= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org