$ rpki-client -vvf rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/4E1F212A15C711EB8720DC71C4F9AE02.roa File: 4E1F212A15C711EB8720DC71C4F9AE02.roa (raw, json) Hash identifier: uCYVydwlEOxsSRnMvhl5LmQaFeZ5CLA5JUdzvNDerFc= Subject key identifier: 42:B4:85:82:4A:AB:B2:88:D6:8C:58:8E:D6:67:BE:61:A8:F1:C1:84 Certificate issuer: /CN=A9126259/serialNumber=9752DD1A15F5EC61D97691CB5ECCEBECBD3A6137 Certificate serial: 06B0 Authority key identifier: 97:52:DD:1A:15:F5:EC:61:D9:76:91:CB:5E:CC:EB:EC:BD:3A:61:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1LdGhX17GHZdpHLXszr7L06YTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/4E1F212A15C711EB8720DC71C4F9AE02.roa Signing time: Mon 01 Apr 2024 00:02:12 +0000 ROA not before: Mon 01 Apr 2024 00:02:12 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56087 IP address blocks: 103.204.28.0/23 maxlen: 23 180.235.108.0/22 maxlen: 22 180.235.108.0/24 maxlen: 24 180.235.109.0/24 maxlen: 24 180.235.110.0/24 maxlen: 24 180.235.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/l1LdGhX17GHZdpHLXszr7L06YTc.crl rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/l1LdGhX17GHZdpHLXszr7L06YTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1LdGhX17GHZdpHLXszr7L06YTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126259/serialNumber=9752DD1A15F5EC61D97691CB5ECCEBECBD3A6137 Validity Not Before: Apr 1 00:02:12 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6609f983-579f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:d9:e8:27:08:d7:9f:e3:ba:b2:06:6b:e0: 23:5b:32:b7:93:4b:f5:77:79:10:fe:6b:46:2e:53: ac:3f:ca:dc:09:98:d0:ed:ff:07:eb:d7:36:6f:81: 7f:7c:be:95:08:08:a3:77:3e:9c:13:c9:2c:9d:27: 37:19:b8:45:59:80:97:f2:b6:3f:b2:7f:7a:09:60: a9:b4:83:5c:f2:5b:26:39:7d:0c:07:79:37:64:a5: af:33:d9:c7:7d:f9:41:63:4c:1a:7d:47:d6:37:a8: 8e:24:60:f2:4d:a3:98:8e:52:58:10:a8:32:6b:05: f2:21:dc:5e:00:dc:b7:64:b3:60:e2:35:ed:ba:6e: 91:c4:d0:ed:25:db:a3:d1:82:d4:cb:b9:9f:48:2f: 40:ba:ff:cb:a3:32:7a:c4:88:ef:2f:17:7c:a5:08: eb:54:aa:b8:2f:d3:9a:43:99:a5:ef:24:76:9f:d1: 75:de:6b:65:2e:99:4c:aa:d5:ee:d1:1a:37:43:29: 65:71:79:d6:d1:d0:38:c5:d2:2e:85:44:72:ed:13: 67:7e:09:db:9b:6f:ce:74:5c:3f:de:7f:33:03:fe: 98:51:ee:20:8a:f7:ac:c9:78:40:0d:10:0f:6e:8d: 44:49:a9:5e:f7:83:94:0a:e9:99:9f:f1:c2:b9:fc: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B4:85:82:4A:AB:B2:88:D6:8C:58:8E:D6:67:BE:61:A8:F1:C1:84 X509v3 Authority Key Identifier: keyid:97:52:DD:1A:15:F5:EC:61:D9:76:91:CB:5E:CC:EB:EC:BD:3A:61:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/l1LdGhX17GHZdpHLXszr7L06YTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1LdGhX17GHZdpHLXszr7L06YTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/4E1F212A15C711EB8720DC71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.28.0/23 180.235.108.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:5e:8f:84:e7:77:84:77:d4:0c:cf:d8:24:8f:d0:1f:8b:f5: d2:51:1e:64:43:4f:54:29:a2:ac:42:fa:3f:67:30:31:ba:4d: 94:38:0e:e5:e5:33:f0:ab:8b:0b:96:81:6d:e5:f4:81:9d:26: c7:f8:55:81:8c:f0:95:19:e4:7c:2c:c5:79:89:70:3a:8d:6e: 99:11:83:c6:bc:b9:8e:77:69:37:da:c1:6b:31:cb:35:d4:49: 39:d4:22:b1:bf:5d:6e:f3:56:49:6b:60:94:75:e3:ac:57:c5: ef:f8:ba:32:c6:f9:38:93:13:8e:9f:08:59:8e:c3:0e:7f:59: ae:ad:d6:13:3e:18:d1:6f:f2:0e:b0:30:84:30:50:87:44:1c: bf:28:c5:ab:42:af:24:7a:25:b0:31:56:bf:50:6f:70:c8:ad: 59:8e:ac:61:13:ea:dd:2f:2e:38:da:c4:69:56:9c:ac:ac:bb: 2e:49:f5:b2:51:09:e5:49:b3:86:1c:06:20:30:e1:e8:fa:a0: 62:a4:76:bb:96:07:3b:a8:2b:68:85:11:c1:71:b6:a4:9c:6d: da:d5:8b:bd:d8:3c:4e:d2:d4:cb:76:50:6b:74:ad:b1:a9:3a: f7:87:2b:e6:4c:1d:fa:2f:4b:3d:ac:e6:13:d1:e0:8b:e5:8c: 81:e1:65:69 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyNTkxMTAvBgNVBAUTKDk3NTJERDFBMTVGNUVDNjFEOTc2OTFDQjVFQ0NFQkVD QkQzQTYxMzcwHhcNMjQwNDAxMDAwMjEyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5Zjk4My01NzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7vZ6CcI15/jurIGa+AjWzK3k0v1d3kQ/mtGLlOsP8rcCZjQ7f8H69c2b4F/ fL6VCAijdz6cE8ksnSc3GbhFWYCX8rY/sn96CWCptINc8lsmOX0MB3k3ZKWvM9nH fflBY0wafUfWN6iOJGDyTaOYjlJYEKgyawXyIdxeANy3ZLNg4jXtum6RxNDtJduj 0YLUy7mfSC9Auv/LozJ6xIjvLxd8pQjrVKq4L9OaQ5ml7yR2n9F13mtlLplMqtXu 0Ro3QyllcXnW0dA4xdIuhURy7RNnfgnbm2/OdFw/3n8zA/6YUe4givesyXhADRAP bo1ESale94OUCumZn/HCufz21wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEK0hYJK q7KI1oxYjtZnvmGo8cGEMB8GA1UdIwQYMBaAFJdS3RoV9exh2XaRy17M6+y9OmE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjI1OS82OTEyOEM0QTE1 QzQxMUVCQTMyNkRENjlDNEY5QUUwMi9sMUxkR2hYMTdHSFpkcEhMWHN6cjdMMDZZ VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxTGRHaFgxN0dIWmRwSExYc3pyN0wwNllUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyNTkvNjkxMjhDNEExNUM0MTFFQkEzMjZERDY5QzRGOUFFMDIvNEUxRjIxMkEx NUM3MTFFQjg3MjBEQzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnzBwDBAK062wwDQYJKoZIhvcNAQELBQADggEBAE1ej4Tn d4R31AzP2CSP0B+L9dJRHmRDT1QpoqxC+j9nMDG6TZQ4DuXlM/CriwuWgW3l9IGd Jsf4VYGM8JUZ5HwsxXmJcDqNbpkRg8a8uY53aTfawWsxyzXUSTnUIrG/XW7zVklr YJR146xXxe/4ujLG+TiTE46fCFmOww5/Wa6t1hM+GNFv8g6wMIQwUIdEHL8oxatC ryR6JbAxVr9Qb3DIrVmOrGET6t0vLjjaxGlWnKysuy5J9bJRCeVJs4YcBiAw4ej6 oGKkdruWBzuoK2iFEcFxtqScbdrVi73YPE7S1Mt2UGt0rbGpOveHK+ZMHfovSz2s 5hPR4IvljIHhZWk= -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org