$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa File: 2996029C591611EA86D2A42DC4F9AE02.roa (raw, json) Hash identifier: WzZq3RkznJMH5nxTQuLLQSDrsNKq3jGJzyKHb8w1naI= Subject key identifier: B1:7D:63:6A:10:28:D8:F7:44:79:C7:D2:B1:34:66:30:8E:E3:DA:AF Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 09D0 Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa Signing time: Tue 02 Apr 2024 20:59:58 +0000 ROA not before: Tue 02 Apr 2024 20:59:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132454 IP address blocks: 103.21.168.0/22 maxlen: 24 2400:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Apr 2 20:59:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c71cd-d476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:c6:20:8d:ac:26:7d:17:9f:49:0d:0f:c1: 5a:50:db:65:99:df:c9:ab:7d:ab:9a:f8:c8:8b:f5: 1b:25:27:c7:69:cd:0a:99:e8:60:dd:2c:5d:6c:45: 0b:fe:c3:a9:11:75:0c:99:03:73:13:29:2f:da:ff: e8:72:9c:7d:e6:27:d5:07:09:60:1c:39:56:73:5c: 46:3e:3e:59:b8:1d:d5:be:1a:1f:82:c1:f3:fd:31: bf:70:0b:5b:42:c3:a2:3e:21:f3:7a:16:04:c7:63: 4c:b5:f3:09:46:89:1c:d6:89:62:84:04:ef:55:ea: 68:d7:a6:ba:d4:e1:18:68:f4:4e:20:cb:eb:17:58: 16:c2:40:bc:f4:32:bb:4f:dd:d3:73:2f:af:ae:d1: 43:13:a1:09:19:69:87:87:c2:a1:a8:ba:0e:1f:04: 12:7c:af:96:31:4a:99:9d:a4:d8:60:ab:98:6a:26: e1:b1:48:da:1f:1b:30:86:a3:93:9a:08:18:a4:f1: fd:b9:98:e7:f3:a7:2e:07:e5:28:d5:02:50:9f:98: da:d6:6d:52:f9:11:a2:d9:34:69:07:1d:af:23:83: 0f:2f:82:57:f7:16:fa:fb:32:af:28:c1:c2:3d:5e: 26:de:5c:23:37:0e:c6:e5:25:64:82:58:c6:60:96: cf:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7D:63:6A:10:28:D8:F7:44:79:C7:D2:B1:34:66:30:8E:E3:DA:AF X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.168.0/22 IPv6: 2400:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 84:01:34:04:b8:b2:01:d8:06:66:7a:c5:80:43:3a:01:53:96: ba:ff:62:77:8a:66:ec:3f:74:1d:57:b2:4f:fc:fd:4f:63:d8: fc:bd:0c:1b:b2:8a:e5:1f:f8:ac:3f:a7:25:1c:6d:ba:5d:83: 05:d4:d8:8f:17:a4:10:6f:88:d9:3e:02:6f:39:36:09:4a:c3: 11:80:c5:61:56:60:88:c5:9c:57:9d:3e:85:13:ee:41:1e:bf: 83:a2:08:c8:a7:93:b1:a4:1a:b5:db:78:f0:c9:d0:9b:06:46: b8:ee:ee:19:2d:60:5c:6b:ba:cb:5b:3a:82:3a:ca:01:65:cf: 38:a9:1b:a6:0f:87:0c:42:53:99:ad:78:56:99:5d:ee:8f:4b: 85:0d:2c:6a:3c:72:05:cd:95:7b:4a:a4:85:cb:9f:19:20:77: c4:9d:c8:5d:51:9d:51:92:59:cb:63:f0:6d:0e:f0:06:f6:2b: ff:9c:e0:84:2f:44:44:85:0b:9c:71:22:1a:bd:53:7b:31:57: 62:9d:ab:99:02:92:19:bc:e9:a6:20:d4:2f:c1:75:e3:d1:3d: d3:80:a7:54:f8:d8:58:5f:75:3b:df:02:45:9d:d5:8f:4b:87: fa:2b:e6:ac:08:8f:33:34:83:5c:36:b3:f0:57:c7:4f:90:56: d2:3a:ee:ad -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjQwNDAyMjA1OTU4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNzFjZC1kNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CHGII2sJn0Xn0kND8FaUNtlmd/Jq32rmvjIi/UbJSfHac0Kmehg3SxdbEUL /sOpEXUMmQNzEykv2v/ocpx95ifVBwlgHDlWc1xGPj5ZuB3VvhofgsHz/TG/cAtb QsOiPiHzehYEx2NMtfMJRokc1olihATvVepo16a61OEYaPROIMvrF1gWwkC89DK7 T93Tcy+vrtFDE6EJGWmHh8KhqLoOHwQSfK+WMUqZnaTYYKuYaibhsUjaHxswhqOT mggYpPH9uZjn86cuB+Uo1QJQn5ja1m1S+RGi2TRpBx2vI4MPL4JX9xb6+zKvKMHC PV4m3lwjNw7G5SVkgljGYJbPHwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLF9Y2oQ KNj3RHnH0rE0ZjCO49qvMB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvMjk5NjAyOUM1 OTE2MTFFQTg2RDJBNDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFagwDQQCAAIwBwMFACQAioAwDQYJKoZIhvcNAQELBQAD ggEBAIQBNAS4sgHYBmZ6xYBDOgFTlrr/YneKZuw/dB1Xsk/8/U9j2Py9DBuyiuUf +Kw/pyUcbbpdgwXU2I8XpBBviNk+Am85NglKwxGAxWFWYIjFnFedPoUT7kEev4Oi CMink7GkGrXbePDJ0JsGRrju7hktYFxrustbOoI6ygFlzzipG6YPhwxCU5mteFaZ Xe6PS4UNLGo8cgXNlXtKpIXLnxkgd8SdyF1RnVGSWctj8G0O8Ab2K/+c4IQvRESF C5xxIhq9U3sxV2Kdq5kCkhm86aYg1C/BdePRPdOAp1T42FhfdTvfAkWd1Y9Lh/or 5qwIjzM0g1w2s/BXx0+QVtI67q0= -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org