$ rpki-client -vvf rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/A49557ACC92711EDAE3AB84EC4F9AE02.roa File: A49557ACC92711EDAE3AB84EC4F9AE02.roa (raw, json) Hash identifier: K0TrDvlQBbeXKzQ9vaUe+7lmLC+hvFIU95lEo1YqUYo= Subject key identifier: 67:80:85:82:6E:19:EA:B3:2C:53:02:D3:4A:B2:0A:E7:71:26:DF:6C Certificate issuer: /CN=A919B300/serialNumber=1A198F9A17F0B35EDB849560FB5F98501C3C9CAF Certificate serial: 0F33 Authority key identifier: 1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhmPmhfws17bhJVg-1-YUBw8nK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/A49557ACC92711EDAE3AB84EC4F9AE02.roa Signing time: Thu 06 Jun 2024 18:41:28 +0000 ROA not before: Thu 06 Jun 2024 18:41:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45121 IP address blocks: 103.221.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.crl rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhmPmhfws17bhJVg-1-YUBw8nK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B300/serialNumber=1A198F9A17F0B35EDB849560FB5F98501C3C9CAF Validity Not Before: Jun 6 18:41:28 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666202d8-3af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:48:4c:5b:3a:fd:d3:ee:b0:8b:fe:cf:0c: fc:c4:3c:38:f6:ea:8c:a9:d1:b3:8a:77:6c:92:09: 28:a3:72:94:82:be:1b:f6:af:bf:a1:89:05:c2:18: e6:84:92:3a:ff:e4:1e:d8:ae:c8:cd:b2:db:34:68: 79:ac:69:03:41:71:73:07:25:96:a9:71:8f:9d:05: e4:fc:7b:9d:ff:2b:d3:74:a2:62:61:93:d9:e0:b8: d0:02:01:cf:40:f1:0f:e0:dd:5d:2d:70:fa:bd:be: d0:12:7d:b2:65:8c:2b:83:e9:39:9b:64:29:ab:f8: 9e:14:f0:2e:d4:60:1d:5a:47:c1:df:91:f6:29:56: 59:7c:af:75:9a:ad:48:fd:5c:4b:fa:b5:e9:37:bf: 29:33:8c:89:fe:3c:90:62:af:f0:90:95:5e:03:83: 4f:d9:64:92:e7:af:69:37:6d:7c:a0:70:7a:34:03: 69:40:1d:62:05:c0:d8:48:44:f6:57:97:66:3d:e3: 50:6b:9e:78:b6:35:e4:d5:a4:53:1a:64:5c:d6:c4: 94:8c:c6:2f:cf:99:b9:de:97:f8:fd:2b:c8:d0:af: ca:ea:30:a8:f0:3a:15:a6:cd:90:77:1a:4b:a4:ed: 23:25:ce:45:3f:29:2f:70:06:c4:76:82:36:cd:4d: 99:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:80:85:82:6E:19:EA:B3:2C:53:02:D3:4A:B2:0A:E7:71:26:DF:6C X509v3 Authority Key Identifier: keyid:1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhmPmhfws17bhJVg-1-YUBw8nK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/A49557ACC92711EDAE3AB84EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.63.0/24 Signature Algorithm: sha256WithRSAEncryption 10:07:af:75:af:f9:f0:18:77:d8:56:b8:73:9b:f9:7a:e3:a3: d4:fd:be:b6:ab:e8:20:0a:d0:e1:66:7c:f1:0d:40:ef:18:56: 83:9a:bc:9b:07:99:ec:44:9e:0f:46:33:28:39:25:c0:e0:cc: 75:97:e4:98:1f:0c:bf:fd:a5:4a:d1:dc:89:e1:8c:67:6e:9f: 16:fd:b8:82:93:6d:48:77:ff:2c:ea:cf:96:d2:3a:81:da:9f: 79:a3:4e:9d:b8:37:ae:98:ca:ef:d1:37:12:59:3e:fe:1d:9d: 66:38:39:f1:ed:94:4e:1b:10:57:af:3f:ee:2b:47:9c:26:aa: 61:68:8a:5f:3b:99:4b:d2:a8:d6:7b:79:33:c0:c7:4d:a7:41: 1a:e4:4a:25:4a:ee:84:44:55:a7:dc:72:0c:84:e8:f0:b1:bb: 72:57:b8:7a:69:8a:3f:b1:04:95:9a:b7:e4:09:ef:04:f8:f9: c7:86:9b:8a:eb:e3:d2:01:04:aa:18:3c:1a:2e:c4:33:e0:b7: b8:5c:87:43:ea:73:87:53:11:e2:8f:27:1b:20:78:b8:64:50: 60:c1:dc:eb:14:8a:47:1a:9c:91:7f:d9:79:38:2f:c6:12:24: d9:e8:ec:d4:d4:a3:dc:a6:18:70:43:45:a3:92:15:79:85:ea: 5c:59:63:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzMDAxMTAvBgNVBAUTKDFBMTk4RjlBMTdGMEIzNUVEQjg0OTU2MEZCNUY5ODUw MUMzQzlDQUYwHhcNMjQwNjA2MTg0MTI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyMDJkOC0zYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzpITFs6/dPusIv+zwz8xDw49uqMqdGzindskgkoo3KUgr4b9q+/oYkFwhjm hJI6/+Qe2K7IzbLbNGh5rGkDQXFzByWWqXGPnQXk/Hud/yvTdKJiYZPZ4LjQAgHP QPEP4N1dLXD6vb7QEn2yZYwrg+k5m2Qpq/ieFPAu1GAdWkfB35H2KVZZfK91mq1I /VxL+rXpN78pM4yJ/jyQYq/wkJVeA4NP2WSS569pN218oHB6NANpQB1iBcDYSET2 V5dmPeNQa554tjXk1aRTGmRc1sSUjMYvz5m53pf4/SvI0K/K6jCo8DoVps2QdxpL pO0jJc5FPykvcAbEdoI2zU2ZYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeAhYJu GeqzLFMC00qyCudxJt9sMB8GA1UdIwQYMBaAFBoZj5oX8LNe24SVYPtfmFAcPJyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjMwMC9FMUE2Q0IxNDUw NjExMUU5QURCNkZBODVDNEY5QUUwMi9HaG1QbWhmd3MxN2JoSlZnLTEtWVVCdzhu SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dobVBtaGZ3czE3YmhKVmctMS1ZVUJ3OG5LOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIzMDAvRTFBNkNCMTQ1MDYxMTFFOUFEQjZGQTg1QzRGOUFFMDIvQTQ5NTU3QUND OTI3MTFFREFFM0FCODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn3T8wDQYJKoZIhvcNAQELBQADggEBABAHr3Wv+fAYd9hW uHOb+Xrjo9T9vrar6CAK0OFmfPENQO8YVoOavJsHmexEng9GMyg5JcDgzHWX5Jgf DL/9pUrR3InhjGdunxb9uIKTbUh3/yzqz5bSOoHan3mjTp24N66Yyu/RNxJZPv4d nWY4OfHtlE4bEFevP+4rR5wmqmFoil87mUvSqNZ7eTPAx02nQRrkSiVK7oREVafc cgyE6PCxu3JXuHppij+xBJWat+QJ7wT4+ceGm4rr49IBBKoYPBouxDPgt7hch0Pq c4dTEeKPJxsgeLhkUGDB3OsUikcanJF/2Xk4L8YSJNno7NTUo9ymGHBDRaOSFXmF 6lxZY5M= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:13 2024 by rpki-client on console-ams.rpki-client.org