$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/261A2BA2F39611EDA98C5D4DC4F9AE02.roa File: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (raw, json) Hash identifier: cO+lO6yNoyaxQ9zIQdsncGR/46no6uoF1ZfttfCv9RE= Subject key identifier: 3E:3A:70:3E:AD:8F:32:E6:D6:F0:A1:CB:AB:2B:7D:06:92:4F:7C:66 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0A54 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/261A2BA2F39611EDA98C5D4DC4F9AE02.roa Signing time: Tue 16 Apr 2024 21:00:00 +0000 ROA not before: Tue 16 Apr 2024 21:00:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 63139 IP address blocks: 103.84.109.0/24 maxlen: 24 175.176.194.0/24 maxlen: 24 2404:a140:31::/48 maxlen: 48 2404:a140:34::/48 maxlen: 48 2404:a140:35::/48 maxlen: 48 2404:a140:36::/48 maxlen: 48 2404:a140:37::/48 maxlen: 48 2404:a140:4e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 20:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Apr 16 21:00:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661ee6cf-b7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cd:78:ee:5d:47:c4:8c:ee:f2:47:07:8d:97: b8:e0:c9:36:b6:7c:e0:90:6d:9d:3a:66:99:8e:e2: f1:f4:e1:0c:3c:67:dc:1f:9e:dc:eb:63:93:a8:5b: d9:6c:ca:9e:14:9d:77:33:3f:95:ae:81:8d:98:8d: 05:dc:1b:6b:f0:97:af:27:3b:43:50:f7:b7:2c:b9: 1f:77:b9:43:13:ce:d0:97:d5:80:14:ca:2c:99:23: e7:26:2e:1b:dd:0d:e5:08:45:32:ca:7e:37:cf:00: 45:8b:b0:11:3c:98:75:93:f7:3c:b5:05:41:20:ec: d7:9c:54:4f:10:32:91:f0:f4:0e:10:1f:db:07:6b: e5:4a:58:87:8b:11:3b:aa:eb:21:99:72:5b:87:d4: 26:97:e6:0d:72:50:b2:bf:09:08:82:0f:c2:6d:db: cd:b4:dc:86:86:12:32:4d:a3:d9:92:3e:5a:5d:01: c3:5b:e1:9e:31:c2:b2:43:0a:8e:1a:5e:67:47:0f: b4:12:cc:da:49:f6:71:c8:f5:f8:0c:a5:dd:d7:2f: 51:01:8e:19:ca:1e:ae:bf:70:7a:c7:e3:05:91:11: 9d:f9:b3:1d:ec:cd:82:81:9e:a1:33:5b:ea:83:b7: 09:08:84:e8:d1:1a:68:48:d4:dc:93:de:46:cd:c9: e0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3A:70:3E:AD:8F:32:E6:D6:F0:A1:CB:AB:2B:7D:06:92:4F:7C:66 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/261A2BA2F39611EDA98C5D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.109.0/24 175.176.194.0/24 IPv6: 2404:a140:31::/48 2404:a140:34::/46 2404:a140:4e::/48 Signature Algorithm: sha256WithRSAEncryption 50:c3:a5:c5:7c:86:96:70:d4:89:84:57:aa:91:02:36:1d:24: 17:8f:a8:68:ec:41:69:ec:32:eb:52:3b:43:13:43:d4:c8:9a: 59:da:7e:66:e3:83:9f:58:bd:68:1b:5c:46:81:df:1b:33:2c: 38:f5:b1:7d:73:7b:d1:d3:bf:f5:10:8c:ca:89:45:33:00:4b: ba:85:f4:3b:a3:24:0d:a9:2e:8a:ee:c8:3f:f1:e7:4e:ed:88: 3b:a1:cf:59:0f:97:e2:fc:35:0c:82:b5:95:1c:26:a5:23:17: 91:7d:fe:f1:da:17:fc:bf:db:23:d7:53:af:2b:dd:2c:0b:6c: 09:1f:b4:bb:71:cd:c4:27:41:e0:b9:87:c8:51:db:ff:e4:81: b2:fa:44:cd:73:16:06:a4:46:e2:1c:25:db:ab:a8:25:6d:78: 24:5a:da:87:35:07:f8:51:1f:05:53:2b:64:4d:84:e3:b7:c2: d9:d1:29:7c:34:c2:02:e9:ec:8a:20:1d:a4:a0:eb:c1:69:3e: d4:b6:96:7e:d4:06:9b:ab:50:73:c6:bd:fd:7e:75:a4:40:01: a3:7d:f8:bf:4a:36:8a:4f:a6:4f:a6:72:71:a8:db:36:1c:d6: eb:02:79:5f:2b:c2:04:92:01:c3:ae:5b:09:5c:03:da:93:cc: 1b:2f:60:8d -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjQwNDE2MjEwMDAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlZTZjZi1iN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08147l1HxIzu8kcHjZe44Mk2tnzgkG2dOmaZjuLx9OEMPGfcH57c62OTqFvZ bMqeFJ13Mz+VroGNmI0F3Btr8JevJztDUPe3LLkfd7lDE87Ql9WAFMosmSPnJi4b 3Q3lCEUyyn43zwBFi7ARPJh1k/c8tQVBIOzXnFRPEDKR8PQOEB/bB2vlSliHixE7 qushmXJbh9Qml+YNclCyvwkIgg/CbdvNtNyGhhIyTaPZkj5aXQHDW+GeMcKyQwqO Gl5nRw+0EszaSfZxyPX4DKXd1y9RAY4Zyh6uv3B6x+MFkRGd+bMd7M2CgZ6hM1vq g7cJCITo0RpoSNTck95GzcngQwIDAQABo4ICvjCCArowHQYDVR0OBBYEFD46cD6t jzLm1vChy6srfQaST3xmMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4QUYvRDFGNjRFNzI1RUVGMTFFQUE1NEU2QzZDQzRGOUFFMDIvMjYxQTJCQTJG Mzk2MTFFREE5OEM1RDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MBIEAgABMAwDBABnVG0DBACvsMIwIQQCAAIwGwMHACQEoUAAMQMHAiQEoUAA NAMHACQEoUAATjANBgkqhkiG9w0BAQsFAAOCAQEAUMOlxXyGlnDUiYRXqpECNh0k F4+oaOxBaewy61I7QxND1MiaWdp+ZuODn1i9aBtcRoHfGzMsOPWxfXN70dO/9RCM yolFMwBLuoX0O6MkDakuiu7IP/HnTu2IO6HPWQ+X4vw1DIK1lRwmpSMXkX3+8doX /L/bI9dTryvdLAtsCR+0u3HNxCdB4LmHyFHb/+SBsvpEzXMWBqRG4hwl26uoJW14 JFrahzUH+FEfBVMrZE2E47fC2dEpfDTCAunsiiAdpKDrwWk+1LaWftQGm6tQc8a9 /X51pEABo334v0o2ik+mT6ZycajbNhzW6wJ5XyvCBJIBw65bCVwD2pPMGy9gjQ== -----END CERTIFICATE-----Generated at Fri May 24 21:42:59 2024 by rpki-client on console-ams.rpki-client.org