$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa File: 66914122CEAB11E796AC671AC4F9AE02.roa (raw, json) Hash identifier: vBN8V5Bwq0M/bzvGvLx2+C7e6WLDDWqvE5nUmzulSrY= Subject key identifier: 3C:0F:E9:4B:F5:44:21:B9:A3:D4:46:E0:1F:4C:7D:EB:46:D2:52:78 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1A4A Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:53:58 +0000 ROA not before: Tue 02 Jan 2024 16:53:58 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 3549 IP address blocks: 103.82.128.0/22 maxlen: 22 103.82.128.0/24 maxlen: 24 103.82.129.0/24 maxlen: 24 103.82.130.0/24 maxlen: 24 103.82.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6730 (0x1a4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: Jan 2 16:53:58 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65943fa6-fbe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:ef:54:a0:02:18:ec:99:bc:6f:8e:f6:63: 63:75:a6:4e:83:6d:7a:f0:43:5f:a0:8b:06:4e:ff: c5:e1:92:d2:91:d1:43:02:c8:4e:6a:85:04:15:85: 53:eb:c6:e8:8c:72:f5:79:18:f2:de:15:3b:22:b1: 77:79:f9:c3:9c:9a:36:2f:c0:b7:69:1d:58:91:3b: a4:32:0f:00:2a:a1:82:c4:02:bd:da:b8:10:e2:c8: 36:55:05:36:4d:33:22:8b:6c:f2:c2:64:3c:bb:d2: 13:35:42:a5:8b:0b:58:62:eb:db:bd:17:a1:c5:3f: 65:70:ba:05:8e:9e:43:e5:34:9d:85:90:c5:28:72: da:1c:5b:16:a8:8d:87:2a:eb:75:c6:d2:29:54:4d: 06:04:af:57:46:4b:61:7e:93:1e:a5:ea:90:0d:3d: 8d:7e:95:fa:87:16:6c:2b:7f:fc:98:b2:4b:47:15: a9:b4:5d:f2:70:99:16:06:67:7a:c5:2e:e0:ed:08: dd:5f:59:5f:42:23:60:55:48:96:05:74:b7:44:d5: 63:2b:0a:3b:a4:81:16:3a:35:92:e1:a6:d0:04:ba: 87:12:d4:c2:74:a1:a8:7d:6b:65:88:9b:fd:5d:38: ea:1f:6e:1b:58:1a:48:97:36:24:1f:7e:e4:4f:33: 04:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0F:E9:4B:F5:44:21:B9:A3:D4:46:E0:1F:4C:7D:EB:46:D2:52:78 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:23:8c:d0:b7:2b:fa:24:10:a5:89:36:74:ec:6b:84:d5:99: 7d:ed:88:55:28:30:a8:93:7f:db:89:4d:06:0c:13:f5:2c:ac: f4:76:aa:1e:ea:ba:ed:5e:d9:66:dd:66:50:c7:5c:7b:c0:e6: 88:25:60:2b:1a:e2:c5:ca:34:e9:99:13:a0:dd:24:80:de:50: 98:c6:5a:66:6d:c7:59:0f:12:9c:8d:e7:96:a0:cf:a2:02:85: e2:3f:7c:8b:d8:12:7e:d5:8b:76:a3:08:25:8b:a2:81:44:43: 37:8f:31:12:66:86:e8:b4:f9:04:f5:0e:66:f1:94:dd:cf:ba: 8e:ac:db:f2:45:4c:7b:db:60:be:07:92:03:cb:22:64:b1:7c: 37:71:94:eb:94:e3:35:ea:c2:73:ea:7b:35:2b:0d:a3:4a:79: 40:23:c2:66:9e:95:97:0c:b2:56:4b:81:d6:3e:a7:5a:f4:0b: cb:61:f1:de:28:94:92:65:a6:b2:a6:bb:9d:1c:2e:9a:2b:c8: 6c:d4:4b:fc:32:36:38:f8:21:51:34:52:ae:f9:f9:96:38:28: 7a:1c:51:46:9f:c0:f6:07:95:eb:a2:71:bc:e0:2c:36:6f:1f: aa:ca:7d:17:d1:fa:49:ce:af:61:cc:17:1c:37:52:bf:44:dc: 95:2b:3e:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjQwMTAyMTY1MzU4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZhNi1mYmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpLvVKACGOyZvG+O9mNjdaZOg2168ENfoIsGTv/F4ZLSkdFDAshOaoUEFYVT 68bojHL1eRjy3hU7IrF3efnDnJo2L8C3aR1YkTukMg8AKqGCxAK92rgQ4sg2VQU2 TTMii2zywmQ8u9ITNUKliwtYYuvbvRehxT9lcLoFjp5D5TSdhZDFKHLaHFsWqI2H Kut1xtIpVE0GBK9XRkthfpMepeqQDT2NfpX6hxZsK3/8mLJLRxWptF3ycJkWBmd6 xS7g7QjdX1lfQiNgVUiWBXS3RNVjKwo7pIEWOjWS4abQBLqHEtTCdKGofWtliJv9 XTjqH24bWBpIlzYkH37kTzMECwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwP6Uv1 RCG5o9RG4B9MfetG0lJ4MB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvNjY5MTQxMjJD RUFCMTFFNzk2QUM2NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUoAwDQYJKoZIhvcNAQELBQADggEBABsjjNC3K/okEKWJ NnTsa4TVmX3tiFUoMKiTf9uJTQYME/UsrPR2qh7quu1e2WbdZlDHXHvA5oglYCsa 4sXKNOmZE6DdJIDeUJjGWmZtx1kPEpyN55agz6ICheI/fIvYEn7Vi3ajCCWLooFE QzePMRJmhui0+QT1DmbxlN3Puo6s2/JFTHvbYL4HkgPLImSxfDdxlOuU4zXqwnPq ezUrDaNKeUAjwmaelZcMslZLgdY+p1r0C8th8d4olJJlprKmu50cLporyGzUS/wy Njj4IVE0Uq75+ZY4KHocUUafwPYHleuicbzgLDZvH6rKfRfR+knOr2HMFxw3Ur9E 3JUrPqo= -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:15 2024 by rpki-client on console-ams.rpki-client.org