$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa File: 1190361AAF1B11E7B89F3883C4F9AE02.roa (raw, json) Hash identifier: 2r/WkcrEUZXWVN/lqD4AS0KrozHazrd6MKeH3nsay0U= Subject key identifier: FB:2A:1E:7B:F7:6F:27:37:18:7E:FE:D8:FA:E5:C1:65:80:F5:2C:21 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 33C4 Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa Signing time: Tue 02 Apr 2024 15:51:05 +0000 ROA not before: Tue 02 Apr 2024 15:51:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56172 IP address blocks: 103.1.5.0/24 maxlen: 24 103.98.134.0/24 maxlen: 24 103.136.52.0/23 maxlen: 23 103.136.52.0/24 maxlen: 24 103.136.53.0/24 maxlen: 24 2001:df0:400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13252 (0x33c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: Apr 2 15:51:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c2969-5ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:12:3f:c6:28:24:80:4a:f5:9a:1d:d5:67:76: 57:ad:93:bb:a6:8a:07:5d:89:85:83:36:f2:a1:36: af:77:71:f7:7f:bb:e7:4a:ab:56:f3:37:ea:40:05: 26:2a:8d:1b:d8:56:85:f7:39:c4:53:8a:08:ca:95: 37:81:87:d1:d2:da:07:0e:fa:26:2c:2a:5c:3d:fd: 14:f1:23:e1:bc:f5:af:1e:8c:d0:35:44:70:76:e4: 62:d2:97:06:08:e2:a8:15:f9:52:34:99:ee:8c:f6: c0:6f:41:d9:78:2b:5c:74:5e:01:64:27:64:1d:bf: 6f:95:93:c9:c4:00:3d:0f:de:50:58:75:3f:16:3f: 82:22:bb:b5:78:70:de:ca:1c:85:21:2e:82:1d:a5: 24:e3:53:61:24:eb:76:d5:98:2b:8d:3a:4f:da:53: 14:f8:fe:ae:dd:4e:33:49:8c:e9:fa:30:d8:d4:48: ea:49:d2:4d:34:b7:8e:30:0c:bb:f6:fe:a4:29:8e: 52:17:0d:88:78:0c:58:64:87:09:ca:a0:b6:24:87: 65:49:18:f9:8b:76:83:22:40:c0:ca:c4:66:e9:63: 34:55:ce:8f:5f:cd:1d:2d:b8:18:21:2c:e9:55:48: 0e:dd:18:d8:6c:8e:c5:1e:ed:e2:20:b2:5f:ec:3d: a8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:2A:1E:7B:F7:6F:27:37:18:7E:FE:D8:FA:E5:C1:65:80:F5:2C:21 X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.5.0/24 103.98.134.0/24 103.136.52.0/23 IPv6: 2001:df0:400::/48 Signature Algorithm: sha256WithRSAEncryption be:73:9d:04:ca:20:04:7b:d6:a3:c7:9c:e1:4d:34:1c:a9:f1: 5f:83:83:3a:79:43:d6:4c:bf:bf:7d:a2:e3:ef:82:fe:e9:4b: 75:b7:68:8c:4f:86:a9:93:ba:cc:08:d9:73:aa:e2:13:82:aa: 09:7b:97:04:25:d3:f0:63:25:24:f8:4a:5e:21:b2:16:8c:01: e6:4c:df:ce:af:fe:b2:13:45:07:e5:17:6f:a1:bd:7d:da:98: d0:a0:33:9a:4e:52:3e:ed:44:86:f2:ba:a4:40:d9:f8:1e:83: 40:6b:06:c5:40:3e:a6:79:4e:63:22:43:b8:bb:8e:94:dc:4f: 7e:35:8a:75:33:5f:b6:f3:d5:c4:a4:52:36:e3:55:cc:ad:a3: a0:5f:ee:04:5c:32:14:2a:5f:1d:36:5e:90:92:f4:91:c4:f7: 0d:ba:6a:26:3b:9e:d7:8b:c5:50:7c:79:9e:2a:f6:41:24:92: 7c:09:28:ff:c5:a3:0d:90:16:6d:83:b2:00:28:19:1a:db:5c: 34:00:de:55:ee:3f:cf:24:5d:3d:ef:61:1d:59:96:94:2d:8b: e0:65:3d:0d:77:c3:dc:3a:b6:48:52:2f:d2:b5:a7:b5:18:ff: c4:05:19:cc:db:67:3a:d1:bc:57:d5:00:3a:f1:e6:a1:a4:5a: 3f:b3:95:ca -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICM8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjQwNDAyMTU1MTA1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjMjk2OS01YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBI/xigkgEr1mh3VZ3ZXrZO7pooHXYmFgzbyoTavd3H3f7vnSqtW8zfqQAUm Ko0b2FaF9znEU4oIypU3gYfR0toHDvomLCpcPf0U8SPhvPWvHozQNURwduRi0pcG COKoFflSNJnujPbAb0HZeCtcdF4BZCdkHb9vlZPJxAA9D95QWHU/Fj+CIru1eHDe yhyFIS6CHaUk41NhJOt21ZgrjTpP2lMU+P6u3U4zSYzp+jDY1EjqSdJNNLeOMAy7 9v6kKY5SFw2IeAxYZIcJyqC2JIdlSRj5i3aDIkDAysRm6WM0Vc6PX80dLbgYISzp VUgO3RjYbI7FHu3iILJf7D2oIQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFPsqHnv3 byc3GH7+2PrlwWWA9SwhMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NCNjMvRTFCMDU0RkMxREE3MTFFMkI2ODhFQkExMDhCMDJDRDIvMTE5MDM2MUFB RjFCMTFFN0I4OUYzODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnAQUDBABnYoYDBAFniDQwDwQCAAIwCQMHACABDfAEADAN BgkqhkiG9w0BAQsFAAOCAQEAvnOdBMogBHvWo8ec4U00HKnxX4ODOnlD1ky/v32i 4++C/ulLdbdojE+GqZO6zAjZc6riE4KqCXuXBCXT8GMlJPhKXiGyFowB5kzfzq/+ shNFB+UXb6G9fdqY0KAzmk5SPu1EhvK6pEDZ+B6DQGsGxUA+pnlOYyJDuLuOlNxP fjWKdTNftvPVxKRSNuNVzK2joF/uBFwyFCpfHTZekJL0kcT3DbpqJjue14vFUHx5 nir2QSSSfAko/8WjDZAWbYOyACgZGttcNADeVe4/zyRdPe9hHVmWlC2L4GU9DXfD 3Dq2SFIv0rWntRj/xAUZzNtnOtG8V9UAOvHmoaRaP7OVyg== -----END CERTIFICATE-----Generated at Mon May 20 17:23:16 2024 by rpki-client on console-ams.rpki-client.org