$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa File: F5257E60FD4111ED947CD631C4F9AE02.roa (raw, json) Hash identifier: UAirDrULY6myyNx1vMq3KsBU3lZ7343RMeFE+Epfgj4= Subject key identifier: 36:9D:F7:D8:60:ED:92:56:33:9A:03:A2:D3:8B:2D:3E:0D:4A:14:A6 Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Certificate serial: 19C3 Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa Signing time: Tue 02 Apr 2024 17:24:41 +0000 ROA not before: Tue 02 Apr 2024 17:24:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 997 IP address blocks: 103.19.8.0/23 maxlen: 24 103.93.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6595 (0x19c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Validity Not Before: Apr 2 17:24:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c3f59-3e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e7:19:a4:e3:4b:26:ca:8d:c8:d2:07:bd:7e: c5:1a:16:f7:70:40:ac:97:e2:a3:72:8c:fa:86:ee: 9d:3c:2e:99:b3:25:4b:7c:7a:c0:d6:b4:cc:48:9e: dd:7d:18:23:db:27:52:ab:26:9b:1e:de:5c:1f:b8: 8f:88:a8:56:52:0a:e3:fd:e0:6f:79:1f:ea:bd:ef: bc:ce:ed:55:b5:6b:32:08:0a:bb:d6:b7:ea:b2:7c: b7:0c:c2:34:d6:9b:3b:a3:7d:5c:2c:7e:1c:b6:b6: c6:5b:09:1b:ca:03:e1:55:22:78:74:90:26:db:4d: 37:08:70:52:88:5b:0f:3a:72:7b:86:c7:58:b1:bc: 9d:d9:5a:6d:ee:83:05:c7:1d:49:0d:ef:ab:75:bb: f3:3c:f8:88:10:98:0d:db:c2:10:ba:8b:23:5e:2b: f9:9c:98:19:a7:ba:0a:cb:a3:89:da:9b:bb:a0:ec: 3e:08:4e:c8:f7:11:cb:86:de:2d:e3:aa:39:f6:5b: ba:20:08:fb:3f:8f:66:ed:ec:f4:e5:03:49:ca:f7: e8:a5:b6:7d:37:e8:95:f4:9f:43:37:68:0c:be:9c: c0:d4:9b:7a:7c:4b:f3:23:00:73:0b:4b:48:fc:cb: 33:09:1f:fc:9c:5b:a9:7e:1f:dc:ad:9d:5d:ef:7a: 08:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9D:F7:D8:60:ED:92:56:33:9A:03:A2:D3:8B:2D:3E:0D:4A:14:A6 X509v3 Authority Key Identifier: keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.8.0/23 103.93.252.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:84:18:03:bf:bb:b1:26:37:50:df:50:a0:8e:1e:b5:6e:32: c0:84:b7:f1:6d:04:db:1c:e9:29:90:84:a3:22:6b:57:c7:9f: c8:c6:87:83:fc:ca:36:5f:b8:ba:3b:bd:a1:ac:5c:1b:b9:03: 26:34:5a:f7:48:05:f3:b3:58:a3:a8:de:38:81:28:11:5b:9c: 12:0c:68:f4:c9:84:00:ea:68:8a:09:6b:f6:72:e3:f5:eb:19: 1a:5f:69:ed:c3:50:f3:d4:ca:f9:75:9f:b9:54:dd:e0:8c:07: 8c:ca:5e:1c:d3:1b:21:f9:f0:02:d7:df:4e:fb:87:4d:80:2f: 48:7e:65:90:34:a5:82:b1:e5:9d:0e:ba:62:a6:19:21:37:0b: 68:2f:b5:50:fd:3b:70:12:25:79:6b:30:91:69:95:3a:3d:ba: 2e:82:c4:66:d9:b8:53:20:52:a8:0e:72:ad:48:22:94:d2:40: d3:20:21:8d:c3:6b:fe:24:11:e3:f8:af:c8:d8:3c:1d:2f:06: 46:71:03:d5:93:2b:3c:34:c8:cf:72:55:5c:f0:4b:3d:35:4c: 0a:f7:9b:dc:27:26:2d:80:11:10:7d:71:b3:33:5f:bf:cc:e7: 66:bf:47:42:7e:86:3b:90:16:da:53:5d:89:37:96:38:e1:9d: 39:0a:e0:b1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY2QTgxMTAvBgNVBAUTKEY3RDc0QzdGQjhCMEJBRUZDMzYzNUNENEUzNTA0OEFG ODhFMzlFRUYwHhcNMjQwNDAyMTcyNDQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjM2Y1OS0zZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ucZpONLJsqNyNIHvX7FGhb3cECsl+Kjcoz6hu6dPC6ZsyVLfHrA1rTMSJ7d fRgj2ydSqyabHt5cH7iPiKhWUgrj/eBveR/qve+8zu1VtWsyCAq71rfqsny3DMI0 1ps7o31cLH4ctrbGWwkbygPhVSJ4dJAm2003CHBSiFsPOnJ7hsdYsbyd2Vpt7oMF xx1JDe+rdbvzPPiIEJgN28IQuosjXiv5nJgZp7oKy6OJ2pu7oOw+CE7I9xHLht4t 46o59lu6IAj7P49m7ez05QNJyvfopbZ9N+iV9J9DN2gMvpzA1Jt6fEvzIwBzC0tI /MszCR/8nFupfh/crZ1d73oIHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDad99hg 7ZJWM5oDotOLLT4NShSmMB8GA1UdIwQYMBaAFPfXTH+4sLrvw2Nc1ONQSK+I457v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjZBOC9GM0JENEMzNjQ5 Q0IxMUU3QTRBODdDN0JDNEY5QUUwMi85OWRNZjdpd3V1X0RZMXpVNDFCSXI0ampu dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5ZE1mN2l3dXVfRFkxelU0MUJJcjRqam51OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY2QTgvRjNCRDRDMzY0OUNCMTFFN0E0QTg3QzdCQzRGOUFFMDIvRjUyNTdFNjBG RDQxMTFFRDk0N0NENjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnEwgDBAFnXfwwDQYJKoZIhvcNAQELBQADggEBAIyEGAO/ u7EmN1DfUKCOHrVuMsCEt/FtBNsc6SmQhKMia1fHn8jGh4P8yjZfuLo7vaGsXBu5 AyY0WvdIBfOzWKOo3jiBKBFbnBIMaPTJhADqaIoJa/Zy4/XrGRpfae3DUPPUyvl1 n7lU3eCMB4zKXhzTGyH58ALX3077h02AL0h+ZZA0pYKx5Z0OumKmGSE3C2gvtVD9 O3ASJXlrMJFplTo9ui6CxGbZuFMgUqgOcq1IIpTSQNMgIY3Da/4kEeP4r8jYPB0v BkZxA9WTKzw0yM9yVVzwSz01TAr3m9wnJi2AERB9cbMzX7/M52a/R0J+hjuQFtpT XYk3ljjhnTkK4LE= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org