$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa File: 0294C902459511EE982FBC6DC4F9AE02.roa (raw, json) Hash identifier: WE8aZSntQEAYpLsSjqPT55dS2L+5fLoJPZPblkU1daM= Subject key identifier: DA:C4:77:58:EB:45:BA:FE:B5:F1:B7:8B:25:2A:1B:6C:6B:2A:99:51 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: 04 Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa Signing time: Mon 28 Aug 2023 11:21:54 +0000 ROA not before: Mon 28 Aug 2023 11:21:54 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151781 IP address blocks: 103.26.28.0/24 maxlen: 24 2001:df2:db40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Validity Not Before: Aug 28 11:21:54 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64ec8352-6d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:86:36:5f:18:ac:6a:67:eb:9f:17:cf:a9: ae:85:79:8a:66:14:20:0c:2a:91:ce:a7:19:45:e3: 2a:c5:19:b6:e4:c8:c4:31:71:18:39:37:ab:78:51: 21:0e:2c:79:a7:b7:16:44:a9:47:d6:63:b3:cf:a7: 2a:1f:26:92:2c:ab:e7:bf:d2:d2:10:c2:20:bd:b2: af:b0:7c:d6:86:84:a9:99:46:d8:21:d7:0e:07:ec: 18:76:5d:14:93:24:74:19:19:de:0d:37:da:d3:14: 18:58:4e:6f:1b:de:61:25:ca:4d:83:f3:a7:2c:b2: 98:ab:a0:50:03:7e:8a:5e:98:bd:a3:36:ac:ce:ea: 19:c6:bb:9f:0f:c2:37:75:4c:9d:87:15:d0:97:9c: a4:1c:32:ac:99:e7:0c:14:77:8c:19:f4:ad:a5:4a: 80:dc:b0:51:4f:87:ae:7f:93:ca:f3:76:4a:6e:30: 40:f2:4f:d1:4d:49:4d:97:32:33:53:9b:d7:bf:b5: 13:ec:aa:c0:31:9d:78:f2:bc:45:03:fd:f0:1a:0b: 4e:56:73:d7:cd:23:14:a1:57:0b:de:3e:b5:49:e7: e1:63:1a:4e:6a:12:a9:29:be:3f:c0:52:a5:de:68: 83:58:ee:78:cd:b6:b3:82:9e:a4:aa:d3:20:16:dd: ff:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C4:77:58:EB:45:BA:FE:B5:F1:B7:8B:25:2A:1B:6C:6B:2A:99:51 X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.28.0/24 IPv6: 2001:df2:db40::/48 Signature Algorithm: sha256WithRSAEncryption ab:42:8b:b2:5b:4e:f6:7f:e7:af:9f:c3:f2:c8:c4:c1:df:91: 92:a2:58:81:5d:6a:cc:6a:44:ab:b1:34:f1:1e:6d:9d:59:2e: 44:06:6c:ca:e0:fa:82:b3:6d:b3:97:88:25:c8:43:a5:cd:2e: 61:63:7e:b3:7b:47:3a:4b:18:ba:80:b0:35:1e:9e:e3:74:af: 55:6b:43:32:1c:b1:81:8a:fe:4f:79:80:69:09:ab:4a:71:a3: 48:73:90:3d:ef:7c:7f:29:4b:82:80:c6:31:92:2f:14:c6:96: ec:c3:dd:53:e3:ef:88:04:94:db:25:bb:0e:02:43:63:77:57: eb:a9:d0:2b:ad:52:3c:7f:47:a1:43:b6:c0:9a:24:97:fe:81: 73:fd:ac:54:c4:71:3f:7f:37:8d:1b:8a:4b:ab:ef:08:cf:15: 96:1c:7f:67:15:dc:a0:53:8c:76:54:d7:3b:dc:9f:a5:de:47: 24:d7:d0:43:3d:5f:35:1a:a0:58:b3:ac:91:1f:ad:e3:58:9f: f2:a1:fe:88:e0:0b:a1:39:ae:ab:2a:41:b2:25:e8:e3:8a:9b: 68:1b:4a:e6:2e:59:d1:e8:c8:b3:7a:89:0c:10:71:66:90:4f: fc:c2:ee:46:b9:2b:8f:96:21:6a:b6:65:8a:42:f0:b9:97:84: 48:2d:3e:e1 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QkVBNzExMC8GA1UEBRMoMTdBRDYwNUQwNkM3RUQwQTE0NDg1QzAyQTEyRjAwMTcw OUEyMkQ2MjAeFw0yMzA4MjgxMTIxNTRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZWM4MzUyLTZkOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEx4Y2XxisamfrnxfPqa6FeYpmFCAMKpHOpxlF4yrFGbbkyMQxcRg5N6t4USEO LHmntxZEqUfWY7PPpyofJpIsq+e/0tIQwiC9sq+wfNaGhKmZRtgh1w4H7Bh2XRST JHQZGd4NN9rTFBhYTm8b3mElyk2D86csspiroFADfopemL2jNqzO6hnGu58Pwjd1 TJ2HFdCXnKQcMqyZ5wwUd4wZ9K2lSoDcsFFPh65/k8rzdkpuMEDyT9FNSU2XMjNT m9e/tRPsqsAxnXjyvEUD/fAaC05Wc9fNIxShVwvePrVJ5+FjGk5qEqkpvj/AUqXe aINY7njNtrOCnqSq0yAW3f8hAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU2sR3WOtF uv618beLJSobbGsqmVEwHwYDVR0jBBgwFoAUF61gXQbH7QoUSFwCoS8AFwmiLWIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCRUE3L0JFNjdENzEwNDU5 NDExRUU4NTQ1MkU2REM0RjlBRTAyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxX SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRjYxZ1hRYkg3UW9VU0Z3Q29TOEFGd21pTFdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkVBNy9CRTY3RDcxMDQ1OTQxMUVFODU0NTJFNkRDNEY5QUUwMi8wMjk0QzkwMjQ1 OTUxMUVFOTgyRkJDNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGcaHDAPBAIAAjAJAwcAIAEN8ttAMA0GCSqGSIb3DQEBCwUA A4IBAQCrQouyW072f+evn8PyyMTB35GSoliBXWrMakSrsTTxHm2dWS5EBmzK4PqC s22zl4glyEOlzS5hY36ze0c6Sxi6gLA1Hp7jdK9Va0MyHLGBiv5PeYBpCatKcaNI c5A973x/KUuCgMYxki8Uxpbsw91T4++IBJTbJbsOAkNjd1frqdArrVI8f0ehQ7bA miSX/oFz/axUxHE/fzeNG4pLq+8IzxWWHH9nFdygU4x2VNc73J+l3kck19BDPV81 GqBYs6yRH63jWJ/yof6I4AuhOa6rKkGyJejjiptoG0rmLlnR6MizeokMEHFmkE/8 wu5GuSuPliFqtmWKQvC5l4RILT7h -----END CERTIFICATE-----Generated at Sun Jun 9 08:27:49 2024 by rpki-client on console-fra.rpki-client.org