$ rpki-client -vvf rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/F50351E0C70A11EDB29DDE85C4F9AE02.roa File: F50351E0C70A11EDB29DDE85C4F9AE02.roa (raw, json) Hash identifier: ZzGWfShy+q0K03Ilr3Gj1zQvQhciFYMihkhjni/eMIo= Subject key identifier: E0:95:83:23:08:7E:D2:E3:22:33:D6:E2:86:42:23:46:5B:DA:0E:1F Certificate issuer: /CN=A911B8D9/serialNumber=038EC0AEB8350C9DA7E6F20B26D2F350BA6C2409 Certificate serial: D5 Authority key identifier: 03:8E:C0:AE:B8:35:0C:9D:A7:E6:F2:0B:26:D2:F3:50:BA:6C:24:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A47Arrg1DJ2n5vILJtLzULpsJAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/F50351E0C70A11EDB29DDE85C4F9AE02.roa Signing time: Fri 03 May 2024 06:19:49 +0000 ROA not before: Fri 03 May 2024 06:19:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134122 IP address blocks: 103.105.122.0/23 maxlen: 23 103.105.122.0/24 maxlen: 24 103.105.123.0/24 maxlen: 24 2400:eb20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/A47Arrg1DJ2n5vILJtLzULpsJAk.crl rsync://rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/A47Arrg1DJ2n5vILJtLzULpsJAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A47Arrg1DJ2n5vILJtLzULpsJAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B8D9/serialNumber=038EC0AEB8350C9DA7E6F20B26D2F350BA6C2409 Validity Not Before: May 3 06:19:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66348204-6acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4f:bc:0b:6d:61:08:05:3d:56:6a:6f:03:a0: e1:a1:ac:98:64:eb:df:86:ab:d9:79:c2:25:f5:e6: 4a:e5:c0:cc:38:e8:4c:67:d3:a9:5f:bc:1a:d3:8d: c0:97:35:2d:36:73:80:4c:b2:51:02:48:ca:2b:d2: 46:82:49:7c:c9:5e:46:0d:98:8c:d9:86:b6:10:49: 67:13:9d:63:71:cc:27:cc:86:07:1b:03:30:94:b6: 57:c1:5e:a0:11:ad:43:b1:25:a0:fb:ad:1d:98:89: 6a:a8:58:19:8a:36:7a:7e:ef:11:24:6d:7b:8b:fc: 0a:92:c2:f3:de:83:0d:1a:81:20:70:61:1c:75:98: a9:7d:37:bd:bb:6d:62:f3:fd:73:73:6f:96:f9:e8: 4b:2d:aa:3b:93:4b:35:05:5e:32:59:12:de:6c:00: 0f:32:16:ed:13:4b:ad:2a:6a:7f:8b:3b:c6:b0:dc: d2:7e:c6:ec:1d:18:6e:db:64:2e:01:ef:65:a3:57: fa:09:79:97:3f:3c:6f:7a:72:e2:98:5c:01:45:cb: 6d:b4:7c:c9:3e:15:c5:d7:15:fb:ac:07:23:99:9f: c7:f7:38:41:48:85:de:dc:7b:a3:cd:af:45:98:16: 3e:77:db:e3:39:83:10:96:37:5c:09:3b:dc:3b:37: 4a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:95:83:23:08:7E:D2:E3:22:33:D6:E2:86:42:23:46:5B:DA:0E:1F X509v3 Authority Key Identifier: keyid:03:8E:C0:AE:B8:35:0C:9D:A7:E6:F2:0B:26:D2:F3:50:BA:6C:24:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/A47Arrg1DJ2n5vILJtLzULpsJAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A47Arrg1DJ2n5vILJtLzULpsJAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B8D9/AF5CDB04C70811EDA874AE85C4F9AE02/F50351E0C70A11EDB29DDE85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.122.0/23 IPv6: 2400:eb20::/32 Signature Algorithm: sha256WithRSAEncryption 3e:32:17:21:30:26:6d:57:f7:75:19:d8:79:90:ba:f5:e8:0b: ea:ff:a0:90:2c:1f:b5:ac:2b:fe:cf:0b:0a:b5:4a:dc:c3:16: 16:33:87:b9:8c:d9:49:a1:6c:22:6f:ad:d0:f6:6d:1f:f9:7b: 79:1c:ec:39:03:a6:fc:f3:7a:82:e4:01:46:ba:f2:1f:65:09: c5:6b:e2:3f:f1:98:9e:0b:b7:d5:e8:b6:c2:54:c4:83:2a:98: 39:06:80:31:2e:b1:8f:da:ee:50:b8:73:1a:2e:26:ce:cf:98: fb:ad:cc:22:6e:59:53:c1:a1:6a:78:bf:6f:84:60:12:b8:73: 1d:0e:dd:7e:1d:55:ee:e7:b2:03:46:84:67:f4:5f:1e:11:ec: 27:f7:3e:92:19:4b:6c:32:6b:c6:00:be:a1:8f:0d:7e:ba:29: fd:6b:1a:99:1b:b5:c1:dd:60:e6:30:5d:e7:1c:3f:7e:17:f7: 78:6a:b0:ea:2b:94:a6:44:67:1c:49:0a:41:ad:16:8f:bd:a1: 0f:16:df:15:aa:4c:fa:ad:0c:ae:71:51:bc:55:31:11:e9:51: 67:36:da:7b:f8:07:1c:fa:ae:e5:2d:e4:ce:df:e4:20:34:9e: 7f:f4:c4:6f:1f:5b:d7:17:be:a6:01:ec:27:4a:93:46:31:4d: 67:bf:60:c4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4RDkxMTAvBgNVBAUTKDAzOEVDMEFFQjgzNTBDOURBN0U2RjIwQjI2RDJGMzUw QkE2QzI0MDkwHhcNMjQwNTAzMDYxOTQ5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0ODIwNC02YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU+8C21hCAU9VmpvA6DhoayYZOvfhqvZecIl9eZK5cDMOOhMZ9OpX7wa043A lzUtNnOATLJRAkjKK9JGgkl8yV5GDZiM2Ya2EElnE51jccwnzIYHGwMwlLZXwV6g Ea1DsSWg+60dmIlqqFgZijZ6fu8RJG17i/wKksLz3oMNGoEgcGEcdZipfTe9u21i 8/1zc2+W+ehLLao7k0s1BV4yWRLebAAPMhbtE0utKmp/izvGsNzSfsbsHRhu22Qu Ae9lo1f6CXmXPzxvenLimFwBRctttHzJPhXF1xX7rAcjmZ/H9zhBSIXe3Hujza9F mBY+d9vjOYMQljdcCTvcOzdKlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOCVgyMI ftLjIjPW4oZCI0Zb2g4fMB8GA1UdIwQYMBaAFAOOwK64NQydp+byCybS81C6bCQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjhEOS9BRjVDREIwNEM3 MDgxMUVEQTg3NEFFODVDNEY5QUUwMi9BNDdBcnJnMURKMm41dklMSnRMelVMcHNK QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0N0FycmcxREoybjV2SUxKdEx6VUxwc0pBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4RDkvQUY1Q0RCMDRDNzA4MTFFREE4NzRBRTg1QzRGOUFFMDIvRjUwMzUxRTBD NzBBMTFFREIyOURERTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnaXowDQQCAAIwBwMFACQA6yAwDQYJKoZIhvcNAQELBQAD ggEBAD4yFyEwJm1X93UZ2HmQuvXoC+r/oJAsH7WsK/7PCwq1StzDFhYzh7mM2Umh bCJvrdD2bR/5e3kc7DkDpvzzeoLkAUa68h9lCcVr4j/xmJ4Lt9XotsJUxIMqmDkG gDEusY/a7lC4cxouJs7PmPutzCJuWVPBoWp4v2+EYBK4cx0O3X4dVe7nsgNGhGf0 Xx4R7Cf3PpIZS2wya8YAvqGPDX66Kf1rGpkbtcHdYOYwXeccP34X93hqsOorlKZE ZxxJCkGtFo+9oQ8W3xWqTPqtDK5xUbxVMRHpUWc22nv4Bxz6ruUt5M7f5CA0nn/0 xG8fW9cXvqYB7CdKk0YxTWe/YMQ= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:33 2024 by rpki-client on console-ams.rpki-client.org