$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/4654B41C3DCF11EF9418A322C4F9AE02.roa File: 4654B41C3DCF11EF9418A322C4F9AE02.roa (raw, json) Hash identifier: i6jGTKnUYZo7ApWay5fXicJvsMCWdgascnO00CUZQtI= Subject key identifier: 50:A0:67:4A:09:F6:8A:C5:CB:75:81:64:70:02:39:C2:8C:B8:44:CD Certificate issuer: /CN=A912E5AE/serialNumber=89FE87C35C91A2655E711EB154B85E6F8ECE2353 Certificate serial: 04 Authority key identifier: 89:FE:87:C3:5C:91:A2:65:5E:71:1E:B1:54:B8:5E:6F:8E:CE:23:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if6Hw1yRomVecR6xVLheb47OI1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/4654B41C3DCF11EF9418A322C4F9AE02.roa Signing time: Tue 09 Jul 2024 08:43:12 +0000 ROA not before: Tue 09 Jul 2024 08:43:12 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132392 IP address blocks: 103.20.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/if6Hw1yRomVecR6xVLheb47OI1M.crl rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/if6Hw1yRomVecR6xVLheb47OI1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if6Hw1yRomVecR6xVLheb47OI1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5AE/serialNumber=89FE87C35C91A2655E711EB154B85E6F8ECE2353 Validity Not Before: Jul 9 08:43:12 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=668cf820-762a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:85:e3:78:82:09:6e:92:9e:bf:6e:71:ca:2c: d0:b8:a0:ed:05:33:1c:0c:17:64:4c:b4:bf:e5:d3: 9f:3d:5b:70:39:90:73:4a:76:d6:06:b5:74:85:f1: 5f:93:1d:fb:3a:ef:4a:7e:77:99:2d:0e:a2:6a:4c: 18:76:1f:c3:c3:98:03:1d:88:d3:29:6e:2b:a9:90: df:c8:12:fd:5c:91:69:14:67:3b:7a:74:df:cf:9c: d8:13:1d:7c:ea:a8:e9:86:21:48:d6:da:91:cd:ba: e3:d8:d2:4d:d6:25:fe:58:fb:50:8f:81:8f:58:f8: 94:69:f5:2c:d9:6a:a0:34:77:1f:ac:c6:09:ea:e4: 24:1b:a2:e0:7c:4b:f2:ac:67:41:6d:e4:42:44:8a: 1f:a8:63:f5:f6:90:e6:72:cc:ff:9d:24:c2:7f:9a: 1f:22:80:f6:28:41:c4:cc:e2:c6:5f:36:29:5c:54: 38:0e:99:85:8a:a8:65:1b:16:e2:12:3c:db:c3:36: 76:7f:68:86:50:41:39:71:e8:cd:f9:b4:32:1b:82: 03:27:ee:51:4a:27:c5:f9:4e:4a:7c:92:15:05:5b: 90:d8:1b:be:da:d0:01:72:a6:98:ac:81:c2:17:86: 78:5e:f6:c2:e6:86:b6:94:7a:fc:2e:2e:3f:b7:6f: 49:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A0:67:4A:09:F6:8A:C5:CB:75:81:64:70:02:39:C2:8C:B8:44:CD X509v3 Authority Key Identifier: keyid:89:FE:87:C3:5C:91:A2:65:5E:71:1E:B1:54:B8:5E:6F:8E:CE:23:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/if6Hw1yRomVecR6xVLheb47OI1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if6Hw1yRomVecR6xVLheb47OI1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5AE/33F74DDC3DCC11EF89B5B073C4F9AE02/4654B41C3DCF11EF9418A322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.18.0/23 Signature Algorithm: sha256WithRSAEncryption 96:c3:34:ae:7b:4d:1e:23:5a:63:df:81:ca:a1:a9:65:c7:18: 98:f6:11:f7:35:b4:36:37:10:e0:72:48:c7:39:a2:df:88:44: ce:99:de:b1:7b:c8:df:50:be:7f:a8:65:d2:f4:96:e7:1a:70: b0:57:e8:c8:7a:35:b1:96:ff:49:c1:fa:2a:98:36:bf:86:7d: 0f:85:16:ec:e9:70:e3:42:e0:fb:09:51:fa:62:9e:4f:0b:f7: 34:34:35:e6:81:6b:5e:0b:62:0c:ff:fd:84:28:9a:f3:c2:f4: ba:da:b1:7c:d3:30:b6:81:5a:a8:16:bf:e5:09:2b:78:c1:c5: 92:93:49:a5:c8:18:75:cf:6f:65:98:df:f9:7f:03:cf:3e:b0: de:e2:52:ad:88:ac:2c:5f:63:71:03:cd:6d:df:5e:10:a0:ad: 2d:82:f6:7d:f9:2a:79:4a:bd:6a:c3:c6:eb:47:2d:b4:1a:cc: 8c:cd:9a:a1:dd:1f:ad:61:f7:ff:70:a2:b6:cc:0b:f1:5b:64: 2e:0a:79:8e:09:3a:17:b7:c5:6d:09:43:0f:f3:15:30:2f:70: ab:4a:32:fe:91:a6:25:fe:c9:a3:d7:17:6f:60:3c:c5:f7:d4: 3d:89:d4:8c:c9:90:05:21:a6:42:f4:3c:96:d3:ce:b9:bb:3c: 82:79:dc:e6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTVBRTExMC8GA1UEBRMoODlGRTg3QzM1QzkxQTI2NTVFNzExRUIxNTRCODVFNkY4 RUNFMjM1MzAeFw0yNDA3MDkwODQzMTJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGNmODIwLTc2MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYheN4gglukp6/bnHKLNC4oO0FMxwMF2RMtL/l0589W3A5kHNKdtYGtXSF8V+T Hfs670p+d5ktDqJqTBh2H8PDmAMdiNMpbiupkN/IEv1ckWkUZzt6dN/PnNgTHXzq qOmGIUjW2pHNuuPY0k3WJf5Y+1CPgY9Y+JRp9SzZaqA0dx+sxgnq5CQbouB8S/Ks Z0Ft5EJEih+oY/X2kOZyzP+dJMJ/mh8igPYoQcTM4sZfNilcVDgOmYWKqGUbFuIS PNvDNnZ/aIZQQTlx6M35tDIbggMn7lFKJ8X5Tkp8khUFW5DYG77a0AFyppisgcIX hnhe9sLmhraUevwuLj+3b0mtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUKBnSgn2 isXLdYFkcAI5woy4RM0wHwYDVR0jBBgwFoAUif6Hw1yRomVecR6xVLheb47OI1Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFNUFFLzMzRjc0RERDM0RD QzExRUY4OUI1QjA3M0M0RjlBRTAyL2lmNkh3MXlSb21WZWNSNnhWTGhlYjQ3T0kx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWY2SHcxeVJvbVZlY1I2eFZMaGViNDdPSTFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVBRS8zM0Y3NEREQzNEQ0MxMUVGODlCNUIwNzNDNEY5QUUwMi80NjU0QjQxQzNE Q0YxMUVGOTQxOEEzMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcUEjANBgkqhkiG9w0BAQsFAAOCAQEAlsM0rntNHiNaY9+B yqGpZccYmPYR9zW0NjcQ4HJIxzmi34hEzpnesXvI31C+f6hl0vSW5xpwsFfoyHo1 sZb/ScH6Kpg2v4Z9D4UW7Olw40Lg+wlR+mKeTwv3NDQ15oFrXgtiDP/9hCia88L0 utqxfNMwtoFaqBa/5QkreMHFkpNJpcgYdc9vZZjf+X8Dzz6w3uJSrYisLF9jcQPN bd9eEKCtLYL2ffkqeUq9asPG60cttBrMjM2aod0frWH3/3CitswL8VtkLgp5jgk6 F7fFbQlDD/MVMC9wq0oy/pGmJf7Jo9cXb2A8xffUPYnUjMmQBSGmQvQ8ltPOubs8 gnnc5g== -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:14 2024 by rpki-client on console-fra.rpki-client.org