$ rpki-client -vvf rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E56CD3E8FF8311E9B1B99628C4F9AE02.roa File: E56CD3E8FF8311E9B1B99628C4F9AE02.roa (raw, json) Hash identifier: v5WnYGiqJFnOk64Cg+XJ95Fr8ijqDqDsbZRgPYZFORE= Subject key identifier: 8D:37:5A:50:46:D2:64:53:15:0C:C0:4F:D4:39:B1:D5:B1:D5:B1:2E Certificate issuer: /CN=A919BCD9/serialNumber=4099B0084376A9E04CED7C678ABC6858DD9F851A Certificate serial: 0B6E Authority key identifier: 40:99:B0:08:43:76:A9:E0:4C:ED:7C:67:8A:BC:68:58:DD:9F:85:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E56CD3E8FF8311E9B1B99628C4F9AE02.roa Signing time: Fri 26 Jan 2024 19:07:22 +0000 ROA not before: Fri 26 Jan 2024 19:07:22 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133043 IP address blocks: 103.126.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.crl rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:17:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BCD9/serialNumber=4099B0084376A9E04CED7C678ABC6858DD9F851A Validity Not Before: Jan 26 19:07:22 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b402ea-69e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:03:af:0d:75:03:5f:9a:6c:fa:a0:d7:4d:53: be:6c:bf:69:03:c3:a7:5f:45:4a:78:d1:cb:73:6f: 8d:c1:74:e5:a6:a5:d0:28:d6:65:c7:e1:06:35:5e: c1:68:0b:b0:84:8d:ac:66:87:67:00:93:5a:20:a1: 54:40:46:2e:89:46:d7:3e:89:e7:fa:49:77:70:50: c8:52:83:db:87:88:38:22:04:53:97:d4:7e:b0:6d: 0d:97:2e:83:a2:07:25:32:1b:0a:fe:a6:78:52:0e: 9e:b7:59:7a:9d:12:15:cb:0e:89:99:3d:25:2d:d7: 94:5b:d0:b6:ef:f5:41:67:cf:a3:80:da:bb:49:80: ba:3d:9f:1a:63:dd:88:28:ce:bb:41:97:74:90:2c: a0:d2:42:0d:21:8e:ec:b4:e4:ed:ed:bc:cc:15:bd: ce:e8:0e:62:a6:31:aa:f8:79:12:5e:c2:35:b5:b1: a7:ac:a2:33:af:a5:c1:8b:04:5e:be:ce:71:c4:64: 2a:4a:4c:b3:de:7d:54:8f:64:2a:4c:ee:c0:02:d9: c6:38:44:ba:45:d1:2b:a6:fa:c7:76:e8:dd:40:89: b9:47:05:9b:3f:aa:4b:60:14:61:d8:ad:86:ae:82: 7c:05:52:40:db:23:77:66:bc:f6:f1:c3:54:ec:9a: 8f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:37:5A:50:46:D2:64:53:15:0C:C0:4F:D4:39:B1:D5:B1:D5:B1:2E X509v3 Authority Key Identifier: keyid:40:99:B0:08:43:76:A9:E0:4C:ED:7C:67:8A:BC:68:58:DD:9F:85:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E56CD3E8FF8311E9B1B99628C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.220.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:b7:1e:f5:ce:7f:4b:cc:8a:cb:b5:c0:16:68:a7:dc:2c:8f: 09:4c:93:6d:b3:91:df:0a:8d:7b:5f:b0:79:63:56:e8:07:5c: e0:25:f4:3c:88:7f:11:09:44:96:a0:48:9f:16:34:88:a1:06: d3:1e:31:0b:15:74:31:60:8c:7a:44:21:76:72:28:2d:48:62: 37:6f:ae:8b:bf:38:f6:b5:c2:1b:4d:b7:ff:d7:9e:21:35:e7: 4f:1d:38:54:fa:ad:4e:aa:ab:57:ff:e1:b4:51:83:b7:21:ce: 58:18:75:72:88:6a:5f:47:54:c8:6f:56:11:3b:05:04:44:a5: 5c:69:93:e6:4f:d5:52:75:44:4b:4d:27:41:55:fc:06:5a:f6: e4:35:ea:41:b2:9d:e8:1a:b5:02:f6:7d:2c:b7:15:59:ca:1c: 02:50:8d:7e:ff:33:b5:f7:59:b5:bf:f8:54:fc:68:1f:84:74: e1:4a:79:e1:41:0b:b6:ae:2e:eb:d9:cb:d3:84:e5:79:7e:08: f2:ed:0e:32:2b:f8:73:9c:28:c6:cf:a0:02:5b:ca:b9:41:6e: 1f:ca:4a:94:23:6f:ea:92:ab:46:e3:d5:74:39:ad:db:52:05: 78:2d:ac:b2:f7:54:16:5e:75:90:4c:8f:50:2f:b9:ea:62:9a: 00:2c:b1:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJDRDkxMTAvBgNVBAUTKDQwOTlCMDA4NDM3NkE5RTA0Q0VEN0M2NzhBQkM2ODU4 REQ5Rjg1MUEwHhcNMjQwMTI2MTkwNzIyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0MDJlYS02OWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAOvDXUDX5ps+qDXTVO+bL9pA8OnX0VKeNHLc2+NwXTlpqXQKNZlx+EGNV7B aAuwhI2sZodnAJNaIKFUQEYuiUbXPonn+kl3cFDIUoPbh4g4IgRTl9R+sG0Nly6D ogclMhsK/qZ4Ug6et1l6nRIVyw6JmT0lLdeUW9C27/VBZ8+jgNq7SYC6PZ8aY92I KM67QZd0kCyg0kINIY7stOTt7bzMFb3O6A5ipjGq+HkSXsI1tbGnrKIzr6XBiwRe vs5xxGQqSkyz3n1Uj2QqTO7AAtnGOES6RdErpvrHdujdQIm5RwWbP6pLYBRh2K2G roJ8BVJA2yN3Zrz28cNU7JqPWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI03WlBG 0mRTFQzAT9Q5sdWx1bEuMB8GA1UdIwQYMBaAFECZsAhDdqngTO18Z4q8aFjdn4Ua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkNEOS8xN0I3OEYxNkZG ODIxMUU5QjQwMkZDMjRDNEY5QUUwMi9RSm13Q0VOMnFlQk03WHhuaXJ4b1dOMmZo Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKbXdDRU4ycWVCTTdYeG5pcnhvV04yZmhSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJDRDkvMTdCNzhGMTZGRjgyMTFFOUI0MDJGQzI0QzRGOUFFMDIvRTU2Q0QzRThG RjgzMTFFOUIxQjk5NjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnftwwDQYJKoZIhvcNAQELBQADggEBAAq3HvXOf0vMisu1 wBZop9wsjwlMk22zkd8KjXtfsHljVugHXOAl9DyIfxEJRJagSJ8WNIihBtMeMQsV dDFgjHpEIXZyKC1IYjdvrou/OPa1whtNt//XniE1508dOFT6rU6qq1f/4bRRg7ch zlgYdXKIal9HVMhvVhE7BQREpVxpk+ZP1VJ1REtNJ0FV/AZa9uQ16kGynegatQL2 fSy3FVnKHAJQjX7/M7X3WbW/+FT8aB+EdOFKeeFBC7auLuvZy9OE5Xl+CPLtDjIr +HOcKMbPoAJbyrlBbh/KSpQjb+qSq0bj1XQ5rdtSBXgtrLL3VBZedZBMj1Avuepi mgAssVk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:13 2024 by rpki-client on console-ams.rpki-client.org