$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa File: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (raw, json) Hash identifier: 3NvJFO+he2ACqNiLgD+llzSbjPgJVQ7hiMX5hEMIbGg= Subject key identifier: D2:99:45:F6:38:F4:9D:4F:39:AE:A6:C2:A8:9D:02:E1:3C:85:DB:8C Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0C79 Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa Signing time: Fri 12 Apr 2024 18:57:19 +0000 ROA not before: Fri 12 Apr 2024 18:57:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137566 IP address blocks: 103.113.176.0/22 maxlen: 24 2402:cec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 18:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: Apr 12 18:57:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6619840f-aea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:fd:f8:f1:c7:67:0f:32:0a:50:b9:49:25: d3:4b:51:62:ae:49:d1:3a:26:ad:a2:84:0d:1b:2b: b7:42:fd:81:18:ce:ed:ae:eb:14:42:c7:6b:63:7c: db:ee:b4:8b:59:01:49:da:0a:99:78:e4:6b:da:f0: 7b:ca:0e:e8:3c:19:4d:30:01:05:6d:98:8d:8c:0c: 05:db:0a:53:92:3a:05:31:d3:c1:9f:a3:90:bf:b6: ba:09:bb:b5:73:e6:f8:6d:49:a6:3e:93:05:86:74: d9:53:47:7d:85:cf:6d:8e:dc:63:93:7b:58:1a:25: 60:23:0a:95:f4:30:28:b9:64:08:14:4d:93:46:d7: 9b:53:e4:35:b6:50:ac:4d:8b:13:e2:89:20:c1:59: 10:43:39:f5:24:f1:0f:b0:ae:b2:44:fa:a4:98:8e: 7f:3b:b6:b6:e4:64:07:a6:61:80:ed:cf:7b:a3:5e: 58:ab:d3:1f:6f:0d:9d:45:ac:db:09:40:5c:0c:c4: 53:6b:87:1c:c2:b0:ce:b4:60:fd:89:67:f1:8c:bf: c5:7c:15:5c:df:95:b3:05:d2:75:34:a4:97:55:6e: 1b:0b:ec:7c:5d:e2:ed:39:bc:4d:a7:33:02:f0:17: e7:2a:27:ac:4b:9d:15:33:26:96:17:c3:9e:73:98: 44:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:99:45:F6:38:F4:9D:4F:39:AE:A6:C2:A8:9D:02:E1:3C:85:DB:8C X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.176.0/22 IPv6: 2402:cec0::/32 Signature Algorithm: sha256WithRSAEncryption 91:83:f0:93:78:a7:3a:3e:54:84:42:2c:ca:1a:1c:fd:84:18: 58:e3:c5:60:76:41:d6:e1:93:a7:2d:85:f0:63:14:b9:b7:e6: 7a:53:41:1f:55:4e:e2:95:37:9e:8e:06:49:fa:d3:75:ef:0f: 5e:58:39:3c:5d:8c:6b:3b:db:9f:41:6a:d3:c7:d6:ce:28:75: 2b:37:88:e7:a3:eb:a0:aa:c3:02:b7:38:5c:59:40:ae:50:9d: 1f:e8:35:bd:c2:ef:07:a9:5b:13:be:a8:50:c1:aa:0f:df:e7: 97:88:4d:e9:2c:38:aa:60:fc:4a:a5:58:12:ad:95:d7:e5:78: 98:39:be:92:01:dc:e5:e0:7c:ec:1c:62:f0:e2:98:57:47:a7: 4d:10:9d:a8:f3:bd:fb:c1:86:26:2e:86:be:8f:a2:6f:70:15: 33:d5:86:a0:b7:7b:40:a1:8b:10:be:4f:0e:52:80:4a:58:bf: ef:6c:cb:e5:25:6e:63:b4:1f:44:66:87:56:b7:1d:34:3c:b3: b5:a9:93:e9:60:b5:c3:6f:f5:77:c0:7d:00:d6:4f:2c:cc:ad: 3c:2b:bd:a8:5e:77:d7:88:ae:ac:17:55:d3:a9:09:5e:0f:c4: c9:76:09:4e:37:51:a6:58:33:d1:81:d5:b7:86:6e:a2:33:32: d5:e7:a0:91 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjQwNDEyMTg1NzE5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE5ODQwZi1hZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUr9+PHHZw8yClC5SSXTS1FirknROiatooQNGyu3Qv2BGM7trusUQsdrY3zb 7rSLWQFJ2gqZeORr2vB7yg7oPBlNMAEFbZiNjAwF2wpTkjoFMdPBn6OQv7a6Cbu1 c+b4bUmmPpMFhnTZU0d9hc9tjtxjk3tYGiVgIwqV9DAouWQIFE2TRtebU+Q1tlCs TYsT4okgwVkQQzn1JPEPsK6yRPqkmI5/O7a25GQHpmGA7c97o15Yq9Mfbw2dRazb CUBcDMRTa4ccwrDOtGD9iWfxjL/FfBVc35WzBdJ1NKSXVW4bC+x8XeLtObxNpzMC 8BfnKiesS50VMyaWF8Oec5hEawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNKZRfY4 9J1POa6mwqidAuE8hduMMB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFRjIvQjY0NDFFQjZEMkJEMTFFOTlBMUQ0QjFEQzRGOUFFMDIvMTIxNEVFNDBE MkJGMTFFOUE3RjRFRjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncbAwDQQCAAIwBwMFACQCzsAwDQYJKoZIhvcNAQELBQAD ggEBAJGD8JN4pzo+VIRCLMoaHP2EGFjjxWB2Qdbhk6cthfBjFLm35npTQR9VTuKV N56OBkn603XvD15YOTxdjGs7259BatPH1s4odSs3iOej66CqwwK3OFxZQK5QnR/o Nb3C7wepWxO+qFDBqg/f55eITeksOKpg/EqlWBKtldfleJg5vpIB3OXgfOwcYvDi mFdHp00QnajzvfvBhiYuhr6Pom9wFTPVhqC3e0ChixC+Tw5SgEpYv+9sy+UlbmO0 H0Rmh1a3HTQ8s7Wpk+lgtcNv9XfAfQDWTyzMrTwrvahed9eIrqwXVdOpCV4PxMl2 CU43UaZYM9GB1beGbqIzMtXnoJE= -----END CERTIFICATE-----Generated at Tue May 14 21:48:42 2024 by rpki-client on console-ams.rpki-client.org