$ rpki-client -vvf rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/26E684D6644311EE8DC3FD0AC4F9AE02.roa File: 26E684D6644311EE8DC3FD0AC4F9AE02.roa (raw, json) Hash identifier: Ui/76eP9TjOscZwKgBuknnJ2KME9BIDZtyZqsBCk3Hw= Subject key identifier: 48:BE:0C:A4:7F:A2:B9:34:A8:D0:15:84:FD:B7:71:67:58:AB:77:CC Certificate issuer: /CN=A9189066/serialNumber=56C8F660B1E77ACED8B9E8570FF413E15D748F02 Certificate serial: 10 Authority key identifier: 56:C8:F6:60:B1:E7:7A:CE:D8:B9:E8:57:0F:F4:13:E1:5D:74:8F:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/26E684D6644311EE8DC3FD0AC4F9AE02.roa Signing time: Wed 18 Oct 2023 13:09:32 +0000 ROA not before: Wed 18 Oct 2023 13:09:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.195.128.0/24 maxlen: 24 103.195.129.0/24 maxlen: 24 103.195.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.crl rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189066/serialNumber=56C8F660B1E77ACED8B9E8570FF413E15D748F02 Validity Not Before: Oct 18 13:09:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652fd90b-c8b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:9a:4f:0b:7d:2c:56:23:bf:3a:4e:57:31: 41:a0:ba:ee:59:46:42:23:5d:8e:fe:4c:52:a3:fd: 3a:f0:fa:d8:b8:a8:e8:2e:45:70:01:50:98:79:89: f3:df:c1:b6:11:63:a7:2d:fc:0a:c4:4f:1b:e0:a4: 05:97:db:0c:d1:f9:0d:a1:19:68:20:be:9a:50:12: fb:97:66:89:fc:c6:f3:64:2f:5b:cd:4e:78:3e:f5: 23:5a:a4:83:a1:ba:5c:84:a4:24:9c:ae:45:36:72: 67:1b:5b:a7:fb:57:4e:03:be:69:47:27:47:ae:49: 95:dd:8b:83:c9:6a:29:8d:81:97:ab:f4:56:55:b2: 58:5c:f6:12:31:f2:e9:13:be:7f:f6:b5:03:d1:ee: a1:40:a4:d4:a7:04:7e:46:8e:aa:da:d8:30:71:3b: bd:76:0b:be:e4:a6:f6:7f:22:2e:a1:9c:f8:25:6a: 57:88:0c:04:9b:77:f7:c8:61:09:f5:51:24:28:7e: aa:86:7c:05:62:30:e6:5a:c1:26:e5:4c:c0:b7:43: f4:f5:48:b3:da:c4:e7:0a:d2:56:f2:35:24:37:94: f3:e3:d3:7f:ee:aa:c3:0a:af:57:63:13:19:04:01: b0:bd:ea:fb:bb:e7:57:18:ed:24:a2:4c:dd:25:91: 32:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BE:0C:A4:7F:A2:B9:34:A8:D0:15:84:FD:B7:71:67:58:AB:77:CC X509v3 Authority Key Identifier: keyid:56:C8:F6:60:B1:E7:7A:CE:D8:B9:E8:57:0F:F4:13:E1:5D:74:8F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/Vsj2YLHnes7YuehXD_QT4V10jwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vsj2YLHnes7YuehXD_QT4V10jwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189066/B1E1AEBA637D11EEB244D35CC4F9AE02/26E684D6644311EE8DC3FD0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.128.0-103.195.130.255 Signature Algorithm: sha256WithRSAEncryption 1c:9d:44:01:7e:d0:01:58:ac:8c:99:c6:13:7a:fb:0a:3c:c8: 6c:51:fe:1a:5e:8f:23:f5:68:0b:08:99:96:46:72:d6:10:fe: 0a:d1:d8:66:26:91:6d:53:9e:11:4f:3e:33:77:b5:0f:13:fc: 7c:e7:78:4a:cd:97:1c:72:5d:f3:6d:e6:82:4c:cb:63:87:75: 0c:24:81:9b:9b:28:d4:5c:db:9c:f2:26:b6:dd:49:79:12:b5: 65:4b:ec:15:08:fb:55:68:76:d8:b3:ef:1f:c6:40:86:a5:3e: 19:45:b1:84:f7:71:74:cd:53:f8:56:1d:16:df:36:6d:5b:55: aa:8b:8a:00:1e:84:98:a6:78:5f:02:53:c5:f9:3c:2e:f0:1c: 72:15:c0:18:ac:84:09:04:6b:39:0d:81:d5:ef:fe:d3:e6:1e: 78:c9:18:4a:c6:2e:95:6e:47:42:2b:7b:ec:78:e8:e6:b3:3f: 3f:6f:76:81:10:95:73:85:9d:4a:5f:53:3b:c0:f3:b6:b3:98: 18:31:b4:e1:17:a7:8e:4a:27:3d:0b:22:75:0a:32:19:e5:01: 72:50:e5:d0:8d:c4:c1:d0:85:8f:07:1b:42:92:25:40:45:6f: 5c:43:a0:4a:3f:e7:78:86:fc:7d:03:8f:a5:96:64:89:86:84: b6:d6:3a:a7 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTA2NjExMC8GA1UEBRMoNTZDOEY2NjBCMUU3N0FDRUQ4QjlFODU3MEZGNDEzRTE1 RDc0OEYwMjAeFw0yMzEwMTgxMzA5MzJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmZkOTBiLWM4YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHTJpPC30sViO/Ok5XMUGguu5ZRkIjXY7+TFKj/Trw+ti4qOguRXABUJh5ifPf wbYRY6ct/ArETxvgpAWX2wzR+Q2hGWggvppQEvuXZon8xvNkL1vNTng+9SNapIOh ulyEpCScrkU2cmcbW6f7V04DvmlHJ0euSZXdi4PJaimNgZer9FZVslhc9hIx8ukT vn/2tQPR7qFApNSnBH5Gjqra2DBxO712C77kpvZ/Ii6hnPglaleIDASbd/fIYQn1 USQofqqGfAViMOZawSblTMC3Q/T1SLPaxOcK0lbyNSQ3lPPj03/uqsMKr1djExkE AbC96vu751cY7SSiTN0lkTJhAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUSL4MpH+i uTSo0BWE/bdxZ1ird8wwHwYDVR0jBBgwFoAUVsj2YLHnes7YuehXD/QT4V10jwIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5MDY2L0IxRTFBRUJBNjM3 RDExRUVCMjQ0RDM1Q0M0RjlBRTAyL1ZzajJZTEhuZXM3WXVlaFhEX1FUNFYxMGp3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnNqMllMSG5lczdZdWVoWERfUVQ0VjEwandJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTA2Ni9CMUUxQUVCQTYzN0QxMUVFQjI0NEQzNUNDNEY5QUUwMi8yNkU2ODRENjY0 NDMxMUVFOERDM0ZEMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQHZ8OAAwQAZ8OCMA0GCSqGSIb3DQEBCwUAA4IBAQAcnUQB ftABWKyMmcYTevsKPMhsUf4aXo8j9WgLCJmWRnLWEP4K0dhmJpFtU54RTz4zd7UP E/x853hKzZcccl3zbeaCTMtjh3UMJIGbmyjUXNuc8ia23Ul5ErVlS+wVCPtVaHbY s+8fxkCGpT4ZRbGE93F0zVP4Vh0W3zZtW1Wqi4oAHoSYpnhfAlPF+Twu8BxyFcAY rIQJBGs5DYHV7/7T5h54yRhKxi6VbkdCK3vseOjmsz8/b3aBEJVzhZ1KX1M7wPO2 s5gYMbThF6eOSic9CyJ1CjIZ5QFyUOXQjcTB0IWPBxtCkiVARW9cQ6BKP+d4hvx9 A4+llmSJhoS21jqn -----END CERTIFICATE-----Generated at Wed May 1 10:10:30 2024 by rpki-client on console-ams.rpki-client.org