$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa File: 127604E20F8B11EF87FC5918C4F9AE02.roa (raw, json) Hash identifier: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q= Subject key identifier: 04:90:81:0F:D7:A4:B2:27:82:7D:D4:B3:50:C2:F5:4C:D6:2E:89:4F Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 3D Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa Signing time: Thu 15 Aug 2024 07:08:41 +0000 ROA not before: Thu 15 Aug 2024 07:08:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 61112 IP address blocks: 103.255.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:04:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Aug 15 07:08:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66bda979-86c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:af:6e:e7:50:7e:19:cb:5a:65:b7:e8:a7:8d: 3a:0b:87:59:9c:56:8d:cb:82:4e:7f:85:79:a0:7a: cc:e0:3c:6d:5d:c9:d9:6a:da:38:5b:67:b1:c2:b2: b3:5a:11:4a:d4:a0:cf:10:ef:68:9c:a5:fd:ed:68: e1:46:87:c8:be:50:fc:2b:b5:57:f5:0a:50:83:42: 0c:58:e8:b5:97:68:a4:97:c2:ae:6b:31:8a:cd:5b: 92:34:9d:1b:fd:45:e9:38:84:fb:63:f9:f4:f9:78: e6:6a:16:e2:11:95:fb:28:82:80:0c:1e:50:0d:eb: 30:69:06:43:08:08:51:e0:60:e6:f9:ab:c7:c8:47: 5f:ef:bf:e7:83:75:69:c4:0e:e2:4f:56:58:ba:c2: 79:1e:d4:6b:a1:d3:1b:cd:64:20:f1:a9:2a:a0:e9: 0f:70:f4:87:c1:f0:72:1d:35:91:7e:78:86:9a:25: a4:17:5e:e8:50:ed:53:41:ea:95:92:05:ea:67:5e: 68:e2:6a:4a:10:c8:89:b6:74:58:01:1c:27:65:87: 63:e7:41:12:1c:8a:66:b5:6b:10:5c:4f:c8:e3:7e: 77:c3:19:dd:1c:49:85:9d:44:b3:72:f4:3d:cd:2a: 0f:f1:79:56:6c:bf:58:fd:de:58:4f:a2:c2:f7:08: af:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:90:81:0F:D7:A4:B2:27:82:7D:D4:B3:50:C2:F5:4C:D6:2E:89:4F X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.208.0/23 Signature Algorithm: sha256WithRSAEncryption ac:6b:af:be:26:f7:a2:ae:c8:a0:60:19:b7:0b:b6:d1:43:11: 7d:ed:77:a8:e4:e7:c7:09:75:ec:d7:37:80:04:55:93:4b:5d: ae:55:8f:2b:46:68:6b:73:4c:e9:51:67:da:3b:8a:43:ee:20: c6:5e:d2:1b:d1:94:a4:c5:16:bf:14:d2:11:8b:24:f4:48:c7: d0:45:ca:be:1d:be:72:3c:b9:99:9a:be:ba:6d:cb:b8:06:84: 75:4d:8d:0b:02:0f:73:19:ad:e2:3b:7c:25:73:3a:a0:b4:d4: 40:07:ba:71:ae:72:8a:39:88:e1:2b:cb:6a:9c:4d:d4:de:89: 2d:aa:54:4a:67:20:45:19:43:c8:4f:19:0c:be:82:44:df:4d: 2d:20:b5:e0:fe:a8:79:e9:97:56:57:9c:96:c0:3b:70:3f:cf: 86:c8:bf:66:35:df:6a:1b:d7:48:b8:74:bc:1f:93:54:08:18: 13:03:1f:d1:44:95:9f:22:a8:72:b0:e7:94:f4:e1:1c:8c:0e: 8e:77:94:08:00:27:cd:16:60:c4:7b:3a:62:41:eb:ae:fc:25: 3a:ea:97:c5:3f:cc:9f:81:b6:73:8e:68:68:26:f0:dd:bc:fe: b7:4b:7c:a3:ab:a1:92:1d:46:df:62:45:d7:5b:ea:b2:e7:c9: 42:11:6a:16 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjI5QjExMC8GA1UEBRMoQzRGN0YzOUU2MkY0QzlENzhDNUUxMkZEQzE1MUFFNEUz MkJDOUE0MjAeFw0yNDA4MTUwNzA4NDFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmRhOTc5LTg2YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsr27nUH4Zy1plt+injToLh1mcVo3Lgk5/hXmgeszgPG1dydlq2jhbZ7HCsrNa EUrUoM8Q72icpf3taOFGh8i+UPwrtVf1ClCDQgxY6LWXaKSXwq5rMYrNW5I0nRv9 Rek4hPtj+fT5eOZqFuIRlfsogoAMHlAN6zBpBkMICFHgYOb5q8fIR1/vv+eDdWnE DuJPVli6wnke1Guh0xvNZCDxqSqg6Q9w9IfB8HIdNZF+eIaaJaQXXuhQ7VNB6pWS BepnXmjiakoQyIm2dFgBHCdlh2PnQRIcima1axBcT8jjfnfDGd0cSYWdRLNy9D3N Kg/xeVZsv1j93lhPosL3CK9tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBJCBD9ek sieCfdSzUML1TNYuiU8wHwYDVR0jBBgwFoAUxPfznmL0ydeMXhL9wVGuTjK8mkIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCMjlCLzhBM0UxRDFBMEY4 MjExRUY4MjY2RjA1RUM0RjlBRTAyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1r SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveFBmem5tTDB5ZGVNWGhMOXdWR3VUaks4bWtJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi8xMjc2MDRFMjBG OEIxMUVGODdGQzU5MThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf/0DANBgkqhkiG9w0BAQsFAAOCAQEArGuvvib3oq7IoGAZ twu20UMRfe13qOTnxwl17Nc3gARVk0tdrlWPK0Zoa3NM6VFn2juKQ+4gxl7SG9GU pMUWvxTSEYsk9EjH0EXKvh2+cjy5mZq+um3LuAaEdU2NCwIPcxmt4jt8JXM6oLTU QAe6ca5yijmI4SvLapxN1N6JLapUSmcgRRlDyE8ZDL6CRN9NLSC14P6oeemXVlec lsA7cD/Phsi/ZjXfahvXSLh0vB+TVAgYEwMf0USVnyKocrDnlPThHIwOjneUCAAn zRZgxHs6YkHrrvwlOuqXxT/Mn4G2c45oaCbw3bz+t0t8o6uhkh1G32JF11vqsufJ QhFqFg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org