$ rpki-client -vvf rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa File: 13F37A72C14C11E888561034C4F9AE02.roa (raw, json) Hash identifier: k8xb8lrujgkG8RL08aJsFU4NdjV1eIzGYv9lZHgCcyU= Subject key identifier: 67:91:93:ED:71:DC:D3:30:CE:53:E9:03:45:97:82:E1:8C:FB:3B:AD Certificate issuer: /CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Certificate serial: 1211 Authority key identifier: 19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa Signing time: Wed 12 Jun 2024 18:39:51 +0000 ROA not before: Wed 12 Jun 2024 18:39:51 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133383 IP address blocks: 103.226.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4625 (0x1211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Validity Not Before: Jun 12 18:39:51 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6669eb77-8672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9f:c6:38:3a:87:68:f8:42:70:1d:50:cc:e3: 93:33:8e:5f:36:bf:a1:de:a4:4a:42:01:e2:65:64: e9:fe:a5:cb:45:08:a1:e9:95:e2:17:f5:cd:c5:64: a3:c1:b6:9c:da:45:5c:b7:82:f5:b9:49:44:80:8c: 37:eb:80:be:9b:75:0f:e2:c7:63:76:bd:48:e1:63: 2e:8b:33:65:38:a1:a8:3d:f6:c4:e7:5a:11:22:b6: 29:2f:57:cc:c7:62:fc:92:13:2f:78:a2:f0:1e:95: 71:dc:ef:35:c0:0e:9a:2b:03:46:de:c4:4d:eb:82: 81:c8:a7:5d:dc:86:22:0a:59:c4:dd:e3:31:61:34: 6b:64:5a:9c:6c:ee:91:83:6e:1a:f3:94:c0:59:0a: 9b:ee:d0:fa:f9:d7:05:21:11:2e:80:85:49:7e:2d: df:a4:0c:8f:cc:13:b2:6b:47:e8:a8:94:41:f2:bf: 36:e8:5b:8c:0f:d7:10:6c:0d:14:6f:be:ab:a6:0b: c1:1e:37:36:4a:25:22:b5:c2:6a:25:63:76:3a:0f: 4e:ab:4f:27:4f:00:2e:da:bc:65:20:d0:cd:2b:43: 31:e9:13:1a:9c:2b:00:c8:6b:ca:15:e2:cb:eb:27: 9d:8e:38:4e:0a:0f:94:86:11:ed:2d:97:c6:70:ae: 5f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:91:93:ED:71:DC:D3:30:CE:53:E9:03:45:97:82:E1:8C:FB:3B:AD X509v3 Authority Key Identifier: keyid:19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.22.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:f0:69:97:43:fe:c3:65:70:ab:56:6e:c2:91:a0:21:c4:ee: ff:c6:80:90:ab:10:79:8e:f3:72:29:d0:db:d5:61:2e:28:a3: 0f:05:9f:5e:49:6b:c2:08:e2:32:02:7c:c0:09:85:f1:8c:22: 3b:26:25:56:6f:ab:05:58:e1:0f:49:e4:93:59:fd:55:48:94: 47:9d:5d:73:c6:84:c1:2e:91:4c:56:10:f1:9f:49:20:84:fd: 4d:9e:ee:d7:16:21:94:68:f3:dd:d1:d2:17:b7:7f:4c:7d:cd: 3a:49:81:84:13:97:f6:80:9e:6d:cf:75:4d:4f:89:4f:76:5f: d8:6d:d5:8b:d4:e3:23:29:22:b6:51:f6:df:04:6d:8a:28:7b: d8:a8:c4:78:7a:10:0b:09:81:03:54:08:63:3d:49:86:74:5e: fe:33:8a:f1:60:6f:6b:56:6b:03:f4:46:4f:4d:54:6a:13:74: 07:d5:bf:7b:1b:b3:b0:d9:f5:0e:f6:c7:b1:ef:57:57:1d:36: e0:08:8c:65:6d:8f:ab:7b:5f:af:61:b4:a3:b1:f7:ea:40:6b: 86:a9:b5:25:04:54:af:57:f4:da:9f:90:f8:5f:6f:b9:44:d4: 18:6f:ac:48:f8:15:6e:2c:19:2e:34:b1:e6:42:69:67:a7:e4: f9:69:32:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QzAxMTAvBgNVBAUTKDE5Q0E5N0Y5RUNCNTBDNTg0RDFCRkJENkI3NDUwMjQx MzlBMDE1MjIwHhcNMjQwNjEyMTgzOTUxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY5ZWI3Ny04NjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnp/GODqHaPhCcB1QzOOTM45fNr+h3qRKQgHiZWTp/qXLRQih6ZXiF/XNxWSj wbac2kVct4L1uUlEgIw364C+m3UP4sdjdr1I4WMuizNlOKGoPfbE51oRIrYpL1fM x2L8khMveKLwHpVx3O81wA6aKwNG3sRN64KByKdd3IYiClnE3eMxYTRrZFqcbO6R g24a85TAWQqb7tD6+dcFIREugIVJfi3fpAyPzBOya0foqJRB8r826FuMD9cQbA0U b76rpgvBHjc2SiUitcJqJWN2Og9Oq08nTwAu2rxlINDNK0Mx6RManCsAyGvKFeLL 6yedjjhOCg+UhhHtLZfGcK5fiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeRk+1x 3NMwzlPpA0WXguGM+zutMB8GA1UdIwQYMBaAFBnKl/nstQxYTRv71rdFAkE5oBUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVDMC81QTJDMTJBQ0Mx NEIxMUU4QjA5MkU3MzJDNEY5QUUwMi9HY3FYLWV5MURGaE5HX3ZXdDBVQ1FUbWdG U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0djcVgtZXkxREZoTkdfdld0MFVDUVRtZ0ZTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc1QzAvNUEyQzEyQUNDMTRCMTFFOEIwOTJFNzMyQzRGOUFFMDIvMTNGMzdBNzJD MTRDMTFFODg4NTYxMDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4hYwDQYJKoZIhvcNAQELBQADggEBAC/waZdD/sNlcKtW bsKRoCHE7v/GgJCrEHmO83Ip0NvVYS4oow8Fn15Ja8II4jICfMAJhfGMIjsmJVZv qwVY4Q9J5JNZ/VVIlEedXXPGhMEukUxWEPGfSSCE/U2e7tcWIZRo893R0he3f0x9 zTpJgYQTl/aAnm3PdU1PiU92X9ht1YvU4yMpIrZR9t8EbYooe9ioxHh6EAsJgQNU CGM9SYZ0Xv4zivFgb2tWawP0Rk9NVGoTdAfVv3sbs7DZ9Q72x7HvV1cdNuAIjGVt j6t7X69htKOx9+pAa4aptSUEVK9X9NqfkPhfb7lE1BhvrEj4FW4sGS40seZCaWen 5PlpMpU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org