$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa File: B32668C4D98C11EB905D7281C4F9AE02.roa (raw, json) Hash identifier: CNGsqoztjTbrkhU2KUlENyCvY9hpR0eOtsVpUByDXno= Subject key identifier: 6E:68:1B:C5:53:3D:3E:6D:19:74:05:27:9F:AF:74:82:94:C3:5A:8E Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0B2C Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa Signing time: Wed 10 Jan 2024 19:37:48 +0000 ROA not before: Wed 10 Jan 2024 19:37:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63969 IP address blocks: 103.126.20.0/22 maxlen: 23 103.126.20.0/24 maxlen: 24 103.126.21.0/24 maxlen: 24 103.126.22.0/24 maxlen: 24 103.126.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Jan 10 19:37:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659ef20b-390e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3f:92:be:90:34:70:7d:e7:5d:02:75:3a:9b: b8:3b:ab:39:ac:87:2b:0b:b6:ed:09:d5:0b:69:a6: 30:98:a0:d6:17:77:95:02:e1:81:ed:50:16:bc:f9: 46:34:eb:99:4c:2e:63:53:14:94:0b:03:61:a6:26: 95:c2:52:85:f6:cd:ef:08:f1:0e:d8:8b:14:55:6b: e6:e2:53:4b:93:bf:eb:f7:05:f6:b3:1d:0c:ea:22: fc:12:81:a1:c9:d9:02:c3:ba:fe:59:39:81:14:ad: 43:e2:99:81:59:a5:e6:b0:ee:3c:08:bc:12:52:6a: 87:06:70:09:38:61:1b:75:1c:7b:65:7e:23:1d:bb: 0c:6a:dc:c1:14:0c:ae:17:12:6f:b6:17:df:bc:71: 7a:d2:e6:ad:27:43:e5:f0:94:31:80:23:69:7b:40: 76:26:88:ce:47:4e:4d:35:ac:64:e7:ba:c6:ac:c9: fb:a0:3b:69:eb:dc:c1:35:0d:db:a8:50:b9:e7:ba: f9:26:ee:66:b9:3c:46:8f:50:f0:54:60:15:93:06: 02:fa:ce:1c:98:3a:f4:40:27:07:99:ee:b8:2c:40: ab:3d:e7:6d:1f:f8:b3:2c:0d:a2:db:f2:cb:bd:0a: b1:70:31:51:21:a8:f2:0c:0e:96:ac:c2:a9:11:8c: 39:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:68:1B:C5:53:3D:3E:6D:19:74:05:27:9F:AF:74:82:94:C3:5A:8E X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.20.0/22 Signature Algorithm: sha256WithRSAEncryption 35:73:d8:13:e9:e1:2e:06:a6:44:c1:da:35:94:2c:2b:dd:41: b8:21:ae:5a:45:da:cb:ed:43:cc:8f:3e:43:ba:4f:14:d8:5d: 2e:33:1d:34:08:a3:4c:a8:65:e6:f9:52:9b:10:b2:95:f8:e7: 4a:38:cd:43:d0:47:b8:d0:e0:54:fe:0d:6d:e9:c2:be:a6:cb: 86:fd:82:b8:f4:d6:49:18:d2:dc:0c:04:0c:b2:12:a1:93:2e: c6:09:ff:90:62:d6:a8:92:49:ae:00:77:65:c5:37:ca:46:09: 6a:a6:b4:83:a6:3b:3b:4a:56:c5:69:3b:92:58:1b:8a:34:02: 7a:fd:c1:89:9c:da:ca:e7:54:a4:c3:fc:df:54:17:0f:13:88: ad:74:69:1b:30:ec:6b:71:3d:44:98:2f:97:bb:8e:a7:79:9d: 6c:df:73:cb:75:0f:07:2d:7e:9d:28:3b:3f:7d:3a:16:e8:a2: 30:13:8a:a3:af:6b:ba:a7:30:9e:e2:0d:3a:9f:78:29:fb:ef: 42:ab:66:5a:25:b9:58:a3:5d:b3:b5:76:b0:68:b3:d6:df:e7: ec:98:9e:b3:f9:8c:19:7b:57:62:8c:4c:c2:b3:f7:3a:4f:72: e7:bb:83:f8:ed:64:ee:16:09:4d:de:47:14:c3:b0:f7:85:26: b0:7d:50:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjQwMTEwMTkzNzQ4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllZjIwYi0zOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT+SvpA0cH3nXQJ1Opu4O6s5rIcrC7btCdULaaYwmKDWF3eVAuGB7VAWvPlG NOuZTC5jUxSUCwNhpiaVwlKF9s3vCPEO2IsUVWvm4lNLk7/r9wX2sx0M6iL8EoGh ydkCw7r+WTmBFK1D4pmBWaXmsO48CLwSUmqHBnAJOGEbdRx7ZX4jHbsMatzBFAyu FxJvthffvHF60uatJ0Pl8JQxgCNpe0B2JojOR05NNaxk57rGrMn7oDtp69zBNQ3b qFC557r5Ju5muTxGj1DwVGAVkwYC+s4cmDr0QCcHme64LECrPedtH/izLA2i2/LL vQqxcDFRIajyDA6WrMKpEYw5VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5oG8VT PT5tGXQFJ5+vdIKUw1qOMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCRjMvMUJDNkVCMjAxMUU3MTFFQUI5MDNBQTc5QzRGOUFFMDIvQjMyNjY4QzRE OThDMTFFQjkwNUQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfhQwDQYJKoZIhvcNAQELBQADggEBADVz2BPp4S4GpkTB 2jWULCvdQbghrlpF2svtQ8yPPkO6TxTYXS4zHTQIo0yoZeb5UpsQspX450o4zUPQ R7jQ4FT+DW3pwr6my4b9grj01kkY0twMBAyyEqGTLsYJ/5Bi1qiSSa4Ad2XFN8pG CWqmtIOmOztKVsVpO5JYG4o0Anr9wYmc2srnVKTD/N9UFw8TiK10aRsw7GtxPUSY L5e7jqd5nWzfc8t1Dwctfp0oOz99OhboojATiqOva7qnMJ7iDTqfeCn770KrZlol uVijXbO1drBos9bf5+yYnrP5jBl7V2KMTMKz9zpPcue7g/jtZO4WCU3eRxTDsPeF JrB9UK0= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:48 2024 by rpki-client on console-ams.rpki-client.org