$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/2578CBCCFD4611EDA9A46F52C4F9AE02.roa File: 2578CBCCFD4611EDA9A46F52C4F9AE02.roa (raw, json) Hash identifier: jydEv4NneB7Sx0FI1skcD0suh5/17vxrfrRhEQ0JaqY= Subject key identifier: 02:23:19:F6:C6:B0:D7:79:88:B3:D6:C9:65:32:75:12:67:8F:A4:4D Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Certificate serial: 19C0 Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/2578CBCCFD4611EDA9A46F52C4F9AE02.roa Signing time: Tue 02 Apr 2024 17:24:38 +0000 ROA not before: Tue 02 Apr 2024 17:24:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 18254 IP address blocks: 103.19.8.0/23 maxlen: 24 103.93.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6592 (0x19c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Validity Not Before: Apr 2 17:24:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c3f56-0d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:d9:76:5d:fc:a0:65:30:d4:f1:72:ba:55: e3:67:e2:dd:55:85:3d:c9:62:d1:46:ac:aa:cd:40: 45:1c:37:4c:0f:ee:3b:d9:3e:0a:4f:93:8f:fa:60: b5:6f:f3:3a:79:41:78:fe:0c:68:e3:16:f9:d0:af: 53:0c:87:09:98:23:c1:38:8a:f5:90:07:89:ad:79: 2b:90:a9:83:28:66:31:72:90:da:4a:f3:a9:ca:3c: 49:37:83:0b:5c:08:1e:1b:6d:1f:fd:69:73:fe:97: f8:69:43:7d:a5:ea:9b:4f:50:0c:7a:76:cd:f9:1a: c2:22:8b:56:d8:c6:ed:90:2b:ca:6c:aa:40:26:68: 62:0c:d5:85:a9:c7:af:00:07:92:44:22:f4:c1:4a: 7a:ac:ab:0f:75:a9:e2:9b:d7:a1:13:22:64:36:17: 6b:a3:71:a4:4f:7a:6a:d0:63:df:f5:14:9d:89:92: 40:77:dc:69:6c:62:9f:8f:19:b5:26:47:e5:a9:ef: cc:ba:b4:af:db:26:21:05:76:68:b9:a8:f5:30:da: 09:fd:67:e7:00:9c:72:79:aa:bd:32:eb:46:7f:f2: b6:5c:10:73:a6:18:29:9d:69:67:ab:9d:d1:6a:55: 5b:0d:61:31:bd:0f:a0:5e:5c:69:33:f4:a5:57:55: 0e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:23:19:F6:C6:B0:D7:79:88:B3:D6:C9:65:32:75:12:67:8F:A4:4D X509v3 Authority Key Identifier: keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/2578CBCCFD4611EDA9A46F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.8.0/23 103.93.252.0/23 Signature Algorithm: sha256WithRSAEncryption 71:50:ab:93:de:ea:6b:64:cb:dd:19:75:63:38:87:c7:be:90: bc:8f:39:fc:47:7e:63:e9:db:79:b7:77:22:2e:a7:c3:09:11: aa:78:c9:51:c6:7b:5f:24:04:6b:e0:b0:42:93:52:87:44:65: ba:65:f7:57:99:e1:43:c0:70:f4:6c:e0:20:a7:f7:9e:22:5a: 85:cf:e6:73:39:5b:fb:af:e2:07:37:63:db:2f:32:51:d7:a3: 28:c7:54:34:1c:9d:8a:09:60:e5:ae:02:80:60:8a:31:0f:91: 6c:07:ba:cb:16:88:a0:56:32:4b:40:83:ff:9c:e2:e3:9c:a7: 41:43:46:0f:3d:c0:ea:45:39:ea:44:38:54:f2:38:97:6f:ff: 45:2d:98:2a:a2:87:92:18:20:69:29:d9:7b:52:13:a0:5c:52: 81:42:f8:75:45:3d:1b:d7:7b:4e:69:78:31:98:4a:04:75:f4: 7e:cc:7a:bb:94:35:41:f2:77:d9:c6:f2:da:20:54:c5:0d:71: 01:be:a5:df:82:78:b1:f4:09:ff:d5:c4:c3:81:c1:b2:50:9d: 70:98:e5:ad:16:05:f3:ab:d9:94:12:f5:66:12:f7:45:09:15: 70:99:92:ed:9b:9c:6e:3b:78:81:5e:6c:46:37:10:e8:ba:fe: 59:7f:e3:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY2QTgxMTAvBgNVBAUTKEY3RDc0QzdGQjhCMEJBRUZDMzYzNUNENEUzNTA0OEFG ODhFMzlFRUYwHhcNMjQwNDAyMTcyNDM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjM2Y1Ni0wZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPjZdl38oGUw1PFyulXjZ+LdVYU9yWLRRqyqzUBFHDdMD+472T4KT5OP+mC1 b/M6eUF4/gxo4xb50K9TDIcJmCPBOIr1kAeJrXkrkKmDKGYxcpDaSvOpyjxJN4ML XAgeG20f/Wlz/pf4aUN9peqbT1AMenbN+RrCIotW2MbtkCvKbKpAJmhiDNWFqcev AAeSRCL0wUp6rKsPdanim9ehEyJkNhdro3GkT3pq0GPf9RSdiZJAd9xpbGKfjxm1 Jkflqe/MurSv2yYhBXZouaj1MNoJ/WfnAJxyeaq9MutGf/K2XBBzphgpnWlnq53R alVbDWExvQ+gXlxpM/SlV1UO1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAIjGfbG sNd5iLPWyWUydRJnj6RNMB8GA1UdIwQYMBaAFPfXTH+4sLrvw2Nc1ONQSK+I457v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjZBOC9GM0JENEMzNjQ5 Q0IxMUU3QTRBODdDN0JDNEY5QUUwMi85OWRNZjdpd3V1X0RZMXpVNDFCSXI0ampu dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5ZE1mN2l3dXVfRFkxelU0MUJJcjRqam51OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY2QTgvRjNCRDRDMzY0OUNCMTFFN0E0QTg3QzdCQzRGOUFFMDIvMjU3OENCQ0NG RDQ2MTFFREE5QTQ2RjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnEwgDBAFnXfwwDQYJKoZIhvcNAQELBQADggEBAHFQq5Pe 6mtky90ZdWM4h8e+kLyPOfxHfmPp23m3dyIup8MJEap4yVHGe18kBGvgsEKTUodE Zbpl91eZ4UPAcPRs4CCn954iWoXP5nM5W/uv4gc3Y9svMlHXoyjHVDQcnYoJYOWu AoBgijEPkWwHussWiKBWMktAg/+c4uOcp0FDRg89wOpFOepEOFTyOJdv/0UtmCqi h5IYIGkp2XtSE6BcUoFC+HVFPRvXe05peDGYSgR19H7MeruUNUHyd9nG8togVMUN cQG+pd+CeLH0Cf/VxMOBwbJQnXCY5a0WBfOr2ZQS9WYS90UJFXCZku2bnG47eIFe bEY3EOi6/ll/48A= -----END CERTIFICATE-----Generated at Thu May 16 18:26:07 2024 by rpki-client on console-fra.rpki-client.org