$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/1E1A1DB28C6A11EB91832D52C4F9AE02.roa File: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (raw, json) Hash identifier: lKsHHS8TjrQNIN7lS2Dpo9BxEEOXfDZGMEdCobSpLMk= Subject key identifier: BA:2F:D9:2F:35:0C:06:E8:BD:FA:68:8C:EB:CB:1A:0F:01:0E:EC:2D Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 04E8 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/1E1A1DB28C6A11EB91832D52C4F9AE02.roa Signing time: Sun 25 Jun 2023 00:56:55 +0000 ROA not before: Sun 25 Jun 2023 00:56:55 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139213 IP address blocks: 103.139.248.0/24 maxlen: 24 103.186.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:38:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Jun 25 00:56:55 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=649790d7-7b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4f:46:3b:dd:e0:cb:73:ec:44:fc:14:86:83: b8:ae:75:8e:52:ea:61:d0:34:09:94:87:d2:b0:a1: 98:54:7b:ab:78:04:eb:d0:b1:69:18:61:41:c7:ca: 1f:1a:c8:6b:45:29:2b:ba:42:59:c9:49:e5:b5:a6: 9e:ce:ec:d3:07:a7:5b:01:cc:51:97:1f:20:37:6a: 2a:f3:89:2b:67:27:6d:ce:4f:c9:72:32:c0:fd:1f: d5:f9:df:4d:29:28:bb:82:a9:a4:5c:21:7b:56:e1: 47:2d:f4:5d:5f:0e:26:88:b9:98:20:72:91:34:18: 1b:ab:0f:d6:d2:9f:42:0b:db:01:15:28:75:27:55: 83:9e:e0:94:6b:f7:e5:d7:1d:2b:ed:5b:59:34:88: c6:b8:e3:76:2b:76:52:71:51:3a:0e:fd:e4:67:46: 18:a7:0b:53:89:49:db:24:44:81:e9:38:7c:c4:f8: 04:3d:f2:30:e5:18:8a:3f:a9:b4:67:49:d2:73:f0: d7:69:f1:38:b2:5c:11:42:cb:4a:29:cb:75:74:4b: 5f:3b:cc:82:fa:a7:b8:56:e5:ed:18:66:db:63:83: 7e:3a:fd:bc:d3:da:3c:86:34:27:c4:a0:6f:1f:ea: c5:0a:d4:d8:e4:75:78:fe:7c:be:95:07:fc:d7:ce: 2f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2F:D9:2F:35:0C:06:E8:BD:FA:68:8C:EB:CB:1A:0F:01:0E:EC:2D X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/1E1A1DB28C6A11EB91832D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.248.0/24 103.186.235.0/24 Signature Algorithm: sha256WithRSAEncryption 96:85:9d:51:dd:e9:7d:78:72:06:e5:16:1f:d2:2b:64:7b:04: e3:04:0b:a6:ba:e4:db:f4:0e:7d:01:fb:06:95:0a:1d:30:47: 09:61:12:d1:e9:93:d2:5d:83:75:37:c0:ef:42:a5:d1:86:fe: 36:4f:3c:1c:e3:57:aa:b8:b4:96:30:52:6a:e1:1f:c2:47:6d: ba:b0:5c:95:ae:be:ff:78:ce:66:59:bc:ae:12:e5:74:0a:65: ad:69:ab:30:dc:ed:57:be:63:cb:70:36:a4:86:cf:ac:ca:90: b7:3c:08:3f:e7:b9:11:ee:23:f6:04:cc:90:ce:4a:18:28:4f: 72:ce:1b:7a:15:62:c2:22:2b:35:c8:39:62:06:8c:7d:c1:d1: 27:3b:df:99:08:2d:48:1d:b7:eb:84:85:19:e9:52:92:53:40: 06:11:78:fd:f1:6d:7a:b9:45:dc:db:c6:c5:9f:ff:3f:23:aa: bc:08:bc:64:2d:2a:b4:ff:df:0f:bd:5e:75:bc:19:0a:9e:bd: 6d:e1:9e:3a:d4:f6:34:30:04:fc:61:d6:54:22:3a:0e:01:17: 5a:bc:1a:6d:b0:c4:e0:6b:50:8b:2f:fa:cf:2b:10:4a:dc:29: c2:e1:4b:21:19:43:c2:ae:23:55:a9:65:8b:dd:0d:da:cc:cd: 61:3f:dd:37 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjMwNjI1MDA1NjU1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk3OTBkNy03YjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU9GO93gy3PsRPwUhoO4rnWOUuph0DQJlIfSsKGYVHureATr0LFpGGFBx8of GshrRSkrukJZyUnltaaezuzTB6dbAcxRlx8gN2oq84krZydtzk/JcjLA/R/V+d9N KSi7gqmkXCF7VuFHLfRdXw4miLmYIHKRNBgbqw/W0p9CC9sBFSh1J1WDnuCUa/fl 1x0r7VtZNIjGuON2K3ZScVE6Dv3kZ0YYpwtTiUnbJESB6Th8xPgEPfIw5RiKP6m0 Z0nSc/DXafE4slwRQstKKct1dEtfO8yC+qe4VuXtGGbbY4N+Ov2809o8hjQnxKBv H+rFCtTY5HV4/ny+lQf8184vYwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLov2S81 DAbovfpojOvLGg8BDuwtMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE1RTcvRTk1OURDNzY4QzY4MTFFQjg3MDQyRDUxQzRGOUFFMDIvMUUxQTFEQjI4 QzZBMTFFQjkxODMyRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABni/gDBABnuuswDQYJKoZIhvcNAQELBQADggEBAJaFnVHd 6X14cgblFh/SK2R7BOMEC6a65Nv0Dn0B+waVCh0wRwlhEtHpk9Jdg3U3wO9CpdGG /jZPPBzjV6q4tJYwUmrhH8JHbbqwXJWuvv94zmZZvK4S5XQKZa1pqzDc7Ve+Y8tw NqSGz6zKkLc8CD/nuRHuI/YEzJDOShgoT3LOG3oVYsIiKzXIOWIGjH3B0Sc735kI LUgdt+uEhRnpUpJTQAYReP3xbXq5RdzbxsWf/z8jqrwIvGQtKrT/3w+9XnW8GQqe vW3hnjrU9jQwBPxh1lQiOg4BF1q8Gm2wxOBrUIsv+s8rEErcKcLhSyEZQ8KuI1Wp ZYvdDdrMzWE/3Tc= -----END CERTIFICATE-----Generated at Fri May 17 02:01:41 2024 by rpki-client on console-ams.rpki-client.org