$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa File: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (raw, json) Hash identifier: E+oIn482BPyJkmibWcETKP/96GJSMoGPWaphK0YLOX4= Subject key identifier: D4:33:A3:FC:E3:E8:D1:1E:DE:B1:3A:C8:D7:E4:C3:8F:54:11:84:9D Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: E1 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa Signing time: Wed 01 May 2024 06:39:56 +0000 ROA not before: Wed 01 May 2024 06:39:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141778 IP address blocks: 103.121.178.0/24 maxlen: 24 103.121.179.0/24 maxlen: 24 2001:df2:2ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: May 1 06:39:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3bb-d061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4e:38:9e:1c:9b:9b:32:46:96:1d:5f:45:ed: a8:e8:ec:ee:24:de:8e:86:3d:10:80:6e:3d:ee:f6: 0c:7e:de:58:bc:66:fc:e8:87:1e:62:c2:55:58:8e: 68:88:59:37:83:a6:b9:bb:80:47:8e:9f:ab:b3:d1: ab:84:c6:96:e6:0c:82:e2:fc:a6:20:65:42:ee:29: 94:5d:2a:ab:f8:f0:80:3e:e4:2b:38:b9:06:05:2f: f3:4a:b4:9b:94:35:0b:23:de:d1:9a:f0:09:bf:b6: 43:ea:5f:d1:d9:d3:52:fb:f8:ba:8b:de:dd:af:a8: b6:62:d1:27:a3:f0:8f:c5:11:fc:cf:8c:b0:4f:55: a1:a6:67:06:41:02:06:eb:66:07:e0:2a:9f:c8:58: ce:f7:b2:6f:58:7e:f3:a0:ad:28:39:0b:a4:0f:fa: cb:16:c0:c6:6e:cd:c2:a5:45:b5:e5:5e:6a:8a:60: c2:9d:a3:da:c8:00:36:04:7e:36:82:23:7b:8b:e1: 30:e6:81:3e:32:11:8c:5f:32:e9:1c:66:1c:8d:77: 64:01:a5:81:41:3f:98:f4:d6:e4:2b:67:79:61:15: 25:93:a1:a2:9b:44:37:98:c0:59:32:e0:dc:4c:e4: 10:e5:14:a4:1d:55:0a:2c:7d:db:d1:92:8e:12:05: 06:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:33:A3:FC:E3:E8:D1:1E:DE:B1:3A:C8:D7:E4:C3:8F:54:11:84:9D X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.178.0/23 IPv6: 2001:df2:2ec0::/48 Signature Algorithm: sha256WithRSAEncryption b5:d5:be:02:a1:8a:98:f6:6d:e4:01:ef:1e:c7:01:02:6f:96: 2c:9c:38:11:da:ab:59:a0:d9:f4:74:1e:45:74:5a:94:88:62: 11:f0:85:fe:91:f7:5f:49:bb:0a:0c:f3:59:62:f2:32:bf:8a: 13:2a:fd:62:f4:4e:61:aa:3d:27:df:9e:f2:a8:cd:9b:0b:70: 4e:e1:73:27:5e:cb:0a:63:f9:a2:aa:fd:cd:a1:73:fa:29:2c: 94:5d:c9:ac:b9:d3:bc:28:35:77:b8:08:d4:d8:07:8b:7d:07: 22:b3:8f:71:f4:f9:85:1d:80:66:4e:70:3b:08:43:54:74:c0: 27:92:3b:cb:c4:fd:03:ef:e4:7d:2d:b2:4b:8b:1e:0b:73:5e: 4b:24:1a:16:8c:04:22:de:60:16:c8:5e:fa:63:65:5d:56:aa: bb:8c:e6:5e:18:3c:31:84:d8:29:eb:bc:39:02:a5:4b:b5:48: a3:fd:c7:b6:23:49:53:d1:99:1e:19:93:bd:c8:9c:8d:a5:ec: 3b:a0:e5:37:ae:bc:0e:b3:a2:ec:97:4e:95:46:3e:c3:37:52: 49:45:42:2f:c3:ff:31:19:bb:4f:b4:e8:ea:71:37:d7:87:0d: d0:7a:bd:30:eb:98:30:25:e5:64:ce:bf:3c:bf:c8:82:1d:22: 1c:30:c7:e3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjQwNTAxMDYzOTU2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNiYi1kMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApU44nhybmzJGlh1fRe2o6OzuJN6Ohj0QgG497vYMft5YvGb86IceYsJVWI5o iFk3g6a5u4BHjp+rs9GrhMaW5gyC4vymIGVC7imUXSqr+PCAPuQrOLkGBS/zSrSb lDULI97RmvAJv7ZD6l/R2dNS+/i6i97dr6i2YtEno/CPxRH8z4ywT1WhpmcGQQIG 62YH4CqfyFjO97JvWH7zoK0oOQukD/rLFsDGbs3CpUW15V5qimDCnaPayAA2BH42 giN7i+Ew5oE+MhGMXzLpHGYcjXdkAaWBQT+Y9NbkK2d5YRUlk6Gim0Q3mMBZMuDc TOQQ5RSkHVUKLH3b0ZKOEgUGBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNQzo/zj 6NEe3rE6yNfkw49UEYSdMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQxRDUvMzQzMzYxRUVDQzhDMTFFREE0QzFBMTQzQzRGOUFFMDIvMTlFMTlEQTBF NUNFMTFFREI2OTdCQzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnebIwDwQCAAIwCQMHACABDfIuwDANBgkqhkiG9w0BAQsF AAOCAQEAtdW+AqGKmPZt5AHvHscBAm+WLJw4EdqrWaDZ9HQeRXRalIhiEfCF/pH3 X0m7CgzzWWLyMr+KEyr9YvROYao9J9+e8qjNmwtwTuFzJ17LCmP5oqr9zaFz+iks lF3JrLnTvCg1d7gI1NgHi30HIrOPcfT5hR2AZk5wOwhDVHTAJ5I7y8T9A+/kfS2y S4seC3NeSyQaFowEIt5gFshe+mNlXVaqu4zmXhg8MYTYKeu8OQKlS7VIo/3HtiNJ U9GZHhmTvcicjaXsO6DlN668DrOi7JdOlUY+wzdSSUVCL8P/MRm7T7To6nE314cN 0Hq9MOuYMCXlZM6/PL/Igh0iHDDH4w== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org