$ rpki-client -vvf rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa File: F13A6FB883D011E7948A8052C4F9AE02.roa (raw, json) Hash identifier: DeYR5wShVTYBW5DReQ2E13/QDJNNqsDxKSv/3It5cDM= Subject key identifier: 5C:8E:28:2E:48:AA:83:F1:0B:46:F0:94:EA:02:45:10:3C:3B:27:63 Certificate issuer: /CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Certificate serial: 17A1 Authority key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa Signing time: Tue 04 Jul 2023 17:03:47 +0000 ROA not before: Tue 04 Jul 2023 17:03:47 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17882 IP address blocks: 43.242.240.0/24 maxlen: 24 43.242.241.0/24 maxlen: 24 43.242.242.0/24 maxlen: 24 43.242.243.0/24 maxlen: 24 103.26.192.0/24 maxlen: 24 103.26.193.0/24 maxlen: 24 103.26.194.0/24 maxlen: 24 103.26.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6049 (0x17a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Validity Not Before: Jul 4 17:03:47 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a450f3-0bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:33:d2:24:07:47:f3:f3:54:d9:5f:d3:05:63: 54:9a:14:9d:9a:77:de:01:80:0f:1b:3d:e8:44:7e: be:c7:be:a2:9a:11:95:f5:69:86:be:df:3c:0e:33: 79:3e:4b:4e:62:cf:44:95:75:b4:40:73:cc:c6:1e: 52:f8:18:f0:8b:95:b6:6f:4a:f0:b7:7c:cf:42:45: c6:7b:ba:62:f5:82:b1:85:f1:ad:21:a9:92:48:c9: 0c:73:dc:5d:bf:a0:0f:22:76:59:09:f2:93:78:da: 90:c6:26:c9:5a:c6:75:69:71:b8:48:ab:96:f1:3b: 04:18:0f:73:f2:a6:63:9b:c5:75:4d:df:b9:4f:b1: da:d5:62:38:df:76:68:c1:1c:80:29:4c:bb:73:11: dd:98:22:da:6a:07:13:c6:d5:91:32:09:f0:79:4a: e6:6f:97:e7:40:e3:52:d7:ef:44:2f:41:cd:4f:4b: ab:3d:bf:1f:01:5e:c7:b5:4c:0f:7a:87:44:d6:05: 92:32:95:08:c7:bf:43:bb:e6:81:f6:88:4b:fd:9e: 8b:85:b8:c3:e6:a3:7f:1f:75:f6:83:f0:f5:17:77: 68:d3:87:de:be:14:d9:a3:6d:5b:8a:e1:5d:86:94: 61:3e:d1:e6:bd:c3:b5:55:57:e4:e5:f8:2c:f2:fd: 39:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8E:28:2E:48:AA:83:F1:0B:46:F0:94:EA:02:45:10:3C:3B:27:63 X509v3 Authority Key Identifier: keyid:8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.240.0/22 103.26.192.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:8c:df:c2:05:5e:41:1d:b1:d3:19:01:1e:47:de:ed:83:87: f5:0a:1e:ee:47:3e:6f:16:1e:e9:a5:93:95:00:a8:3f:78:bc: ae:39:01:e7:7e:e6:30:30:e3:89:34:62:00:b8:ad:9d:69:16: f3:43:26:ba:03:8b:10:dd:82:77:39:c0:d5:1b:05:2b:7f:82: 91:c0:d8:ed:78:c7:6d:e3:62:5e:55:ce:00:93:fe:13:49:38: 99:6f:a0:c1:a0:5f:89:cf:5f:65:40:15:a9:c0:10:42:53:5b: 6f:d8:68:1a:62:1b:b9:26:94:56:1d:33:03:b8:18:76:8c:68: 5d:86:c3:85:5d:b3:29:6f:83:65:db:5a:d7:d1:7b:09:01:97: 84:86:e9:a2:2c:6a:51:39:56:78:ba:23:a9:57:28:c8:47:96: a3:24:dc:8c:b8:9a:83:e1:7d:58:a0:8b:82:5d:78:86:d2:27: 64:89:27:a3:c3:e7:48:c2:20:3c:ff:91:03:77:a8:53:f9:3d: 78:b7:5a:41:dd:6b:fd:8f:e5:1b:6f:2b:13:99:ed:31:57:6d: b1:11:e6:ef:d4:04:b0:75:09:14:a8:c0:c8:e6:d1:3f:36:2c: 75:e4:0a:07:d9:a6:ee:cf:57:8e:70:36:71:60:a4:e6:16:59: 92:0e:64:e1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1MTAxMTAvBgNVBAUTKDhCREY1MTE4OUExREJERjk2ODQzNEI1RTczNkFBOUFC RkQ0NTU2MUMwHhcNMjMwNzA0MTcwMzQ3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0NTBmMy0wYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjPSJAdH8/NU2V/TBWNUmhSdmnfeAYAPGz3oRH6+x76imhGV9WmGvt88DjN5 PktOYs9ElXW0QHPMxh5S+Bjwi5W2b0rwt3zPQkXGe7pi9YKxhfGtIamSSMkMc9xd v6APInZZCfKTeNqQxibJWsZ1aXG4SKuW8TsEGA9z8qZjm8V1Td+5T7Ha1WI433Zo wRyAKUy7cxHdmCLaagcTxtWRMgnweUrmb5fnQONS1+9EL0HNT0urPb8fAV7HtUwP eodE1gWSMpUIx79Du+aB9ohL/Z6LhbjD5qN/H3X2g/D1F3do04fevhTZo21biuFd hpRhPtHmvcO1VVfk5fgs8v05QwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFyOKC5I qoPxC0bwlOoCRRA8OydjMB8GA1UdIwQYMBaAFIvfURiaHb35aENLXnNqqav9RVYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTUxMC8wRERGNUIwODgz Q0YxMUU3ODM4RUE4NEVDNEY5QUUwMi9pOTlSR0pvZHZmbG9RMHRlYzJxcHFfMUZW aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5OVJHSm9kdmZsb1EwdGVjMnFwcV8xRlZody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk1MTAvMERERjVCMDg4M0NGMTFFNzgzOEVBODRFQzRGOUFFMDIvRjEzQTZGQjg4 M0QwMTFFNzk0OEE4MDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8vADBAJnGsAwDQYJKoZIhvcNAQELBQADggEBAEuM38IF XkEdsdMZAR5H3u2Dh/UKHu5HPm8WHumlk5UAqD94vK45Aed+5jAw44k0YgC4rZ1p FvNDJroDixDdgnc5wNUbBSt/gpHA2O14x23jYl5VzgCT/hNJOJlvoMGgX4nPX2VA FanAEEJTW2/YaBpiG7kmlFYdMwO4GHaMaF2Gw4Vdsylvg2XbWtfRewkBl4SG6aIs alE5Vni6I6lXKMhHlqMk3Iy4moPhfVigi4JdeIbSJ2SJJ6PD50jCIDz/kQN3qFP5 PXi3WkHda/2P5RtvKxOZ7TFXbbER5u/UBLB1CRSowMjm0T82LHXkCgfZpu7PV45w NnFgpOYWWZIOZOE= -----END CERTIFICATE-----Generated at Sat May 18 18:21:35 2024 by rpki-client on console-ams.rpki-client.org