$ rpki-client -vvf rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa File: E3D5A6F4422411E8804DBC3AC4F9AE02.roa (raw, json) Hash identifier: /JgYGo3qS7GdOEYuvjiyt8nj1OmHxHJ+X1Z1GtdQPR8= Subject key identifier: 31:7C:B6:3E:F9:98:3D:9F:75:BC:F9:E8:0C:1B:2B:42:3E:53:AE:80 Certificate issuer: /CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Certificate serial: 1669 Authority key identifier: BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa Signing time: Fri 28 Jul 2023 17:14:18 +0000 ROA not before: Fri 28 Jul 2023 17:14:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135425 IP address blocks: 103.96.28.0/23 maxlen: 24 2001:df1:cd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5737 (0x1669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Validity Not Before: Jul 28 17:14:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c3f76a-eafc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:79:5e:85:f1:f4:00:8e:e2:df:6c:e4:dc:8b: c1:77:54:33:ff:40:2e:0a:b3:e4:20:d7:ef:2f:35: 9f:c8:b1:ff:e2:68:2a:ee:2f:db:c6:bf:13:8e:15: c1:3c:ab:56:d6:3d:3c:bc:20:0f:df:9f:2d:15:c4: 50:97:bf:4c:13:b2:5b:32:08:2a:c0:20:68:3b:2a: 22:c3:80:38:12:0c:6a:ef:8b:90:a1:f4:55:2d:bd: 72:a3:b8:45:3c:e7:9d:21:67:b0:0e:8d:37:60:4d: 24:79:f7:8c:38:02:40:80:f2:1e:69:89:e5:64:ac: 84:2e:77:ed:01:2e:fa:05:af:94:fc:15:af:39:72: 33:b4:89:9c:41:67:31:99:2f:c1:a6:05:5d:d5:6b: d6:ba:d9:e3:cd:e9:35:9d:5a:e8:fd:11:f0:cc:e8: 6e:46:62:1c:aa:69:e7:d3:4f:1b:7a:b7:dc:b1:fd: 19:22:69:39:af:e9:55:c6:8b:bf:36:ad:73:1d:c7: 34:50:df:68:23:0e:f5:00:54:39:dd:54:1b:27:66: 1c:40:77:2d:e5:ea:76:96:c6:b1:ad:c2:4e:ef:8f: ab:e7:b3:3b:89:1e:79:c3:a8:7d:24:7d:f3:8d:27: 21:35:51:eb:24:c7:93:f6:4c:31:23:92:3e:0b:bb: 5e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7C:B6:3E:F9:98:3D:9F:75:BC:F9:E8:0C:1B:2B:42:3E:53:AE:80 X509v3 Authority Key Identifier: keyid:BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.28.0/23 IPv6: 2001:df1:cd00::/48 Signature Algorithm: sha256WithRSAEncryption 34:7e:27:5b:31:d2:c6:2b:27:f3:22:06:99:8e:26:f4:47:c6: a1:27:9b:24:ae:bf:a7:41:61:56:dd:60:4f:89:54:a6:ad:92: e4:c9:23:17:3d:e4:c7:4b:89:f8:ac:62:71:bd:ad:e8:23:f9: 6e:6a:16:77:74:73:2b:27:23:51:a8:ee:a3:c2:8f:3d:67:ca: 5d:8b:ae:95:eb:99:4f:7d:89:15:a4:da:35:11:fa:03:6e:2f: 74:52:77:87:7c:76:8c:b4:e8:ec:68:ac:2a:20:13:08:1a:69: 23:82:9f:0b:93:f2:0d:a5:3c:21:d1:b4:a7:c1:c3:09:14:d8: c3:d5:c3:c9:07:d7:74:db:53:66:5d:c4:f2:59:3f:8f:92:31: 9b:c6:db:be:e0:b7:76:1c:6b:b4:cb:1e:d9:32:bc:ae:56:05: 5d:22:10:44:95:76:ff:1a:0d:eb:db:76:98:1f:3c:99:10:72: 11:15:b6:d3:3b:a1:2d:f9:f0:97:33:91:de:0f:14:1d:85:f9: d8:1e:49:6b:2b:20:c0:78:10:ba:f5:0a:b3:66:d7:13:63:18: 59:ef:dd:a3:42:45:d1:fb:65:a3:b9:7c:0f:87:93:3f:f4:18: d6:8f:51:fc:e1:19:82:bc:ab:e2:d4:b1:d5:75:69:c6:ca:ff: 03:da:de:49 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFEMkUxMTAvBgNVBAUTKEJCQjg0MEIwNTM5MzRENUUxRkVERDQwREQwMjNFRjdB RjQyOEJBRTAwHhcNMjMwNzI4MTcxNDE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzZjc2YS1lYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnlehfH0AI7i32zk3IvBd1Qz/0AuCrPkINfvLzWfyLH/4mgq7i/bxr8TjhXB PKtW1j08vCAP358tFcRQl79ME7JbMggqwCBoOyoiw4A4Egxq74uQofRVLb1yo7hF POedIWewDo03YE0kefeMOAJAgPIeaYnlZKyELnftAS76Ba+U/BWvOXIztImcQWcx mS/BpgVd1WvWutnjzek1nVro/RHwzOhuRmIcqmnn008berfcsf0ZImk5r+lVxou/ Nq1zHcc0UN9oIw71AFQ53VQbJ2YcQHct5ep2lsaxrcJO74+r57M7iR55w6h9JH3z jSchNVHrJMeT9kwxI5I+C7te/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDF8tj75 mD2fdbz56AwbK0I+U66AMB8GA1UdIwQYMBaAFLu4QLBTk01eH+3UDdAj73r0KLrg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUQyRS8wNzhDNjJBQUM1 MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRWNGY3ZFFOMENQdmV2UW91 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3aEFzRk9UVFY0ZjdkUU4wQ1B2ZXZRb3V1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFEMkUvMDc4QzYyQUFDNTMzMTFFN0ExMURCQjRBQzRGOUFFMDIvRTNENUE2RjQ0 MjI0MTFFODgwNERCQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnYBwwDwQCAAIwCQMHACABDfHNADANBgkqhkiG9w0BAQsF AAOCAQEANH4nWzHSxisn8yIGmY4m9EfGoSebJK6/p0FhVt1gT4lUpq2S5MkjFz3k x0uJ+Kxicb2t6CP5bmoWd3RzKycjUajuo8KPPWfKXYuuleuZT32JFaTaNRH6A24v dFJ3h3x2jLTo7GisKiATCBppI4KfC5PyDaU8IdG0p8HDCRTYw9XDyQfXdNtTZl3E 8lk/j5Ixm8bbvuC3dhxrtMse2TK8rlYFXSIQRJV2/xoN69t2mB88mRByERW20zuh LfnwlzOR3g8UHYX52B5JaysgwHgQuvUKs2bXE2MYWe/do0JF0ftlo7l8D4eTP/QY 1o9R/OEZgryr4tSx1XVpxsr/A9reSQ== -----END CERTIFICATE-----Generated at Wed May 8 20:35:49 2024 by rpki-client on console-ams.rpki-client.org