$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1328B7DCBA6711EE9A63996FC4F9AE02.roa File: 1328B7DCBA6711EE9A63996FC4F9AE02.roa (raw, json) Hash identifier: rRm+rUr3qcN16z/Oqf9uTNEkdYMxgFxb6sxz/dypYvc= Subject key identifier: 71:FF:D9:3B:39:1D:6A:80:C1:DF:5A:2D:6F:6E:08:69:46:3C:B3:B7 Certificate issuer: /CN=A912F535/serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Certificate serial: 4F Authority key identifier: D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1328B7DCBA6711EE9A63996FC4F9AE02.roa Signing time: Wed 15 May 2024 08:43:10 +0000 ROA not before: Wed 15 May 2024 08:43:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 18013 IP address blocks: 14.192.4.0/22 maxlen: 23 103.215.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535/serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Validity Not Before: May 15 08:43:10 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6644759e-0cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8e:7c:57:07:d7:a3:36:20:5c:04:c0:a9:af: dc:4d:10:b3:c7:31:a5:36:22:c9:a2:16:53:a5:78: 52:42:53:3a:b9:2a:28:f9:8e:50:3d:2b:c2:5d:b7: d6:1e:02:11:98:ad:5f:a9:75:2e:64:84:18:86:12: be:02:56:5a:2a:59:84:e9:02:26:e3:ed:15:cb:80: 87:78:68:e2:74:71:3f:97:e2:af:0a:fb:b7:ff:82: e7:d1:9d:6b:08:77:3c:ff:e9:d2:24:c1:c5:45:41: 04:b5:01:cd:21:5d:e1:18:46:6d:99:36:13:6b:05: 26:e5:9e:ed:88:89:db:56:d0:16:ec:eb:72:ee:6a: 54:ff:31:ad:35:34:94:f6:66:a5:1e:e7:9a:28:77: 15:fa:32:1e:93:44:7c:39:4d:1a:18:ac:f6:25:8d: ac:4d:e4:a5:b3:b9:34:c1:37:30:4f:04:82:8d:06: 00:de:7c:92:3b:04:aa:f5:97:c8:10:71:15:22:24: 6d:17:df:c6:4d:75:cf:e2:fe:10:ce:bd:1e:c4:04: 09:53:b4:bc:93:c7:ed:b5:61:a5:41:b4:ac:1f:b3: b4:87:ac:c3:46:39:f7:d7:05:11:a2:59:69:bf:df: 0c:86:d5:7a:bf:69:b9:34:a1:9e:5b:b0:8f:12:40: cc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FF:D9:3B:39:1D:6A:80:C1:DF:5A:2D:6F:6E:08:69:46:3C:B3:B7 X509v3 Authority Key Identifier: keyid:D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1328B7DCBA6711EE9A63996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.4.0/22 103.215.78.0/24 Signature Algorithm: sha256WithRSAEncryption b6:28:22:f3:b3:91:c5:09:bd:0e:d6:33:d6:f8:0b:89:ce:14: e2:16:af:5a:bb:05:ba:67:c3:bc:59:3a:61:ca:a0:95:ef:cf: 61:20:df:82:fe:a2:75:dc:b7:52:86:67:5e:b1:8d:95:1c:8c: 4c:22:46:01:5e:b5:38:23:79:b9:35:47:ce:e4:d6:6d:3e:b5: 40:99:25:6c:94:8a:86:01:aa:2e:a8:82:72:ec:e1:fb:f0:0b: aa:ed:e1:a5:bc:f4:08:73:34:f3:6c:04:94:81:a9:11:08:ff: 5c:e3:5e:0e:bc:e8:e0:05:b6:9d:6f:ef:07:88:f5:1d:3c:ba: 23:a7:93:35:6b:b3:48:aa:a9:32:2c:2d:bc:23:a8:b2:b8:aa: 4f:17:ae:c1:ab:8b:95:95:32:58:90:3c:97:7a:a3:d5:eb:66: 69:a9:c8:3f:34:4f:d4:26:2f:80:64:7d:3f:02:d6:46:31:06: a0:a2:ad:dd:3d:c9:3c:4e:74:41:ae:13:c3:e3:e2:af:2f:0d: 49:d4:67:88:d6:d7:ee:58:0f:92:89:d4:9b:e9:54:c5:46:04: 01:97:50:1a:17:3a:cf:6e:87:c2:e0:e9:aa:f7:e5:95:1f:b6: 2a:94:ec:ec:41:5d:bc:8e:f5:11:0b:c0:50:3c:19:e7:a1:0f: 58:61:8e:d2 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjUzNTExMC8GA1UEBRMoRDQ4Q0VEMThGNjhDQTIyNjk4M0Y5Rjk5OUExNDA2MzYy NzVCNkE1NTAeFw0yNDA1MTUwODQzMTBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDQ3NTllLTBjYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrjnxXB9ejNiBcBMCpr9xNELPHMaU2IsmiFlOleFJCUzq5Kij5jlA9K8Jdt9Ye AhGYrV+pdS5khBiGEr4CVloqWYTpAibj7RXLgId4aOJ0cT+X4q8K+7f/gufRnWsI dzz/6dIkwcVFQQS1Ac0hXeEYRm2ZNhNrBSblnu2IidtW0Bbs63LualT/Ma01NJT2 ZqUe55oodxX6Mh6TRHw5TRoYrPYljaxN5KWzuTTBNzBPBIKNBgDefJI7BKr1l8gQ cRUiJG0X38ZNdc/i/hDOvR7EBAlTtLyTx+21YaVBtKwfs7SHrMNGOffXBRGiWWm/ 3wyG1Xq/abk0oZ5bsI8SQMydAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUcf/ZOzkd aoDB31otb24IaUY8s7cwHwYDVR0jBBgwFoAU1IztGPaMoiaYP5+ZmhQGNidbalUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNTM1LzY5QTU4MDc4QkE2 NjExRUVCQzM5NjI2RUM0RjlBRTAyLzFJenRHUGFNb2lhWVA1LVptaFFHTmlkYmFs VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUl6dEdQYU1vaWFZUDUtWm1oUUdOaWRiYWxVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjUzNS82OUE1ODA3OEJBNjYxMUVFQkMzOTYyNkVDNEY5QUUwMi8xMzI4QjdEQ0JB NjcxMUVFOUE2Mzk5NkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAg7ABAMEAGfXTjANBgkqhkiG9w0BAQsFAAOCAQEAtigi87OR xQm9DtYz1vgLic4U4havWrsFumfDvFk6Ycqgle/PYSDfgv6iddy3UoZnXrGNlRyM TCJGAV61OCN5uTVHzuTWbT61QJklbJSKhgGqLqiCcuzh+/ALqu3hpbz0CHM082wE lIGpEQj/XONeDrzo4AW2nW/vB4j1HTy6I6eTNWuzSKqpMiwtvCOosriqTxeuwauL lZUyWJA8l3qj1etmaanIPzRP1CYvgGR9PwLWRjEGoKKt3T3JPE50Qa4Tw+Piry8N SdRniNbX7lgPkonUm+lUxUYEAZdQGhc6z26HwuDpqvfllR+2KpTs7EFdvI71EQvA UDwZ56EPWGGO0g== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:03 2024 by rpki-client on console-ams.rpki-client.org