$ rpki-client -vvf rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa File: 8B2E3BA270BD11ED970C535FC4F9AE02.roa (raw, json) Hash identifier: b9DIzkKW2WLSIAExdEKuDKS/iyGmueWk0jLgxyfQChI= Subject key identifier: 88:81:91:D3:E4:67:47:12:90:21:C2:B3:30:D6:45:B5:A2:0A:17:25 Certificate issuer: /CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Certificate serial: 1216 Authority key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa Signing time: Wed 26 Jul 2023 17:34:43 +0000 ROA not before: Wed 26 Jul 2023 17:34:43 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135604 IP address blocks: 103.68.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4630 (0x1216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Validity Not Before: Jul 26 17:34:43 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c15932-3e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:91:6f:ee:80:a2:c4:54:3c:e8:66:39:4d:65: b4:c1:2e:8e:9d:93:df:3c:03:d4:3a:aa:d6:53:e2: ed:0e:29:20:4c:f1:f8:95:49:27:64:45:20:f8:da: 7e:e0:1b:8a:9b:de:a8:6a:73:4e:6a:89:9b:75:a8: 83:f0:5f:d7:53:b7:cb:c3:52:2e:42:72:67:55:7b: b4:1b:22:f2:e9:47:98:f7:63:54:66:64:e0:33:5e: 82:27:a7:24:66:38:22:09:3c:be:ff:86:8f:63:57: ab:f8:34:0b:75:86:8f:8b:11:ad:b3:b6:a6:e9:85: e5:f2:ea:e0:c0:7b:10:dd:58:0e:8b:cd:0e:d5:39: f7:0a:e7:1d:a5:53:da:b8:73:41:a8:c1:78:5a:56: 80:3d:61:71:1a:c9:0b:1b:01:82:97:30:6b:42:16: 0e:ff:db:3f:4b:f3:66:e2:66:7e:3f:71:33:25:b4: 53:f6:99:73:22:7d:6c:5e:7d:26:4b:d6:6f:32:e0: f1:88:26:0f:8c:3e:6a:9b:e0:77:06:26:a3:1d:77: 46:16:37:54:47:63:8c:5a:be:6b:5c:ad:bb:70:fd: 9e:ce:1e:48:5f:5e:37:11:cf:d4:87:0c:21:26:4b: bc:92:8b:ad:92:bb:e9:3e:03:06:36:6d:28:21:5b: 1a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:81:91:D3:E4:67:47:12:90:21:C2:B3:30:D6:45:B5:A2:0A:17:25 X509v3 Authority Key Identifier: keyid:56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.4.0/22 Signature Algorithm: sha256WithRSAEncryption 91:bb:ec:89:5b:16:20:62:54:05:5b:6f:80:70:28:2c:54:04: 0d:2b:f0:1a:f9:1f:71:33:d1:be:b0:2a:57:7b:f9:03:93:0e: 84:f9:47:79:5a:fb:21:b4:26:70:97:72:a8:4b:14:c2:f0:1c: be:74:15:00:2d:ec:95:ca:5f:8b:9c:1d:74:8a:3e:82:b5:2f: 0b:00:1e:f4:4d:79:10:f1:6a:c6:21:4d:9b:aa:5c:6d:2b:11: 3a:d9:97:28:53:68:a6:df:4d:cb:4a:30:c8:c2:44:ba:e5:6d: 48:dc:ae:76:f3:79:b4:bf:54:13:92:37:36:27:86:ba:13:00: 3a:6d:cd:bb:75:d9:8a:8b:00:43:dd:d1:b1:68:ed:a4:e0:13: 90:20:ff:9e:22:ea:f7:7f:b2:78:0c:90:18:ba:52:e9:9a:9a: 63:b6:6f:2d:cd:a5:2b:71:05:34:4f:ac:5f:b2:8d:82:1d:ab: 62:8c:fc:fc:2b:a7:92:4b:63:4f:d2:b4:ed:86:3a:42:29:ed: 80:2a:75:88:ed:36:22:7a:b0:eb:5c:6b:53:e3:99:3d:75:c3: 1c:c0:c6:2c:b2:38:b7:83:d0:f2:8d:b7:00:ec:c3:6f:21:68: 0b:dd:ef:08:d8:6d:f7:9e:1c:b3:e4:21:ca:a5:56:fa:20:f2: e8:7b:d7:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyMkExMTAvBgNVBAUTKDU2QUYxQ0QwQjRFMDdEMDAwQzY0QUIwMTZDMzNGNzg2 QTBERDkwRkEwHhcNMjMwNzI2MTczNDQzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxNTkzMi0zZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85Fv7oCixFQ86GY5TWW0wS6OnZPfPAPUOqrWU+LtDikgTPH4lUknZEUg+Np+ 4BuKm96oanNOaombdaiD8F/XU7fLw1IuQnJnVXu0GyLy6UeY92NUZmTgM16CJ6ck ZjgiCTy+/4aPY1er+DQLdYaPixGts7am6YXl8urgwHsQ3VgOi80O1Tn3CucdpVPa uHNBqMF4WlaAPWFxGskLGwGClzBrQhYO/9s/S/Nm4mZ+P3EzJbRT9plzIn1sXn0m S9ZvMuDxiCYPjD5qm+B3BiajHXdGFjdUR2OMWr5rXK27cP2ezh5IX143Ec/Uhwwh Jku8koutkrvpPgMGNm0oIVsawwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIiBkdPk Z0cSkCHCszDWRbWiChclMB8GA1UdIwQYMBaAFFavHNC04H0ADGSrAWwz94ag3ZD6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjIyQS83RUVDMUU0QzlD RDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZRQU1aS3NCYkRQM2hxRGRr UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxOGMwTFRnZlFBTVpLc0JiRFAzaHFEZGtQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYyMkEvN0VFQzFFNEM5Q0QwMTFFOEIxNjEyQjdEQzRGOUFFMDIvOEIyRTNCQTI3 MEJEMTFFRDk3MEM1MzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnRAQwDQYJKoZIhvcNAQELBQADggEBAJG77IlbFiBiVAVb b4BwKCxUBA0r8Br5H3Ez0b6wKld7+QOTDoT5R3la+yG0JnCXcqhLFMLwHL50FQAt 7JXKX4ucHXSKPoK1LwsAHvRNeRDxasYhTZuqXG0rETrZlyhTaKbfTctKMMjCRLrl bUjcrnbzebS/VBOSNzYnhroTADptzbt12YqLAEPd0bFo7aTgE5Ag/54i6vd/sngM kBi6UumammO2by3NpStxBTRPrF+yjYIdq2KM/Pwrp5JLY0/StO2GOkIp7YAqdYjt NiJ6sOtca1PjmT11wxzAxiyyOLeD0PKNtwDsw28haAvd7wjYbfeeHLPkIcqlVvog 8uh717M= -----END CERTIFICATE-----Generated at Sun May 26 19:10:29 2024 by rpki-client on console-ams.rpki-client.org