$ rpki-client -vvf rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa File: 4CC86698C4FA11EE86A51C0EC4F9AE02.roa (raw, json) Hash identifier: /afmQB3zM94nTq3/2oDWU9CHh0hD2dVbGgL+IHZt9os= Subject key identifier: 83:BC:9F:32:92:14:1C:96:B8:7F:A9:00:B1:DA:95:5A:41:3F:35:88 Certificate issuer: /CN=A919C19A/serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Certificate serial: 0374 Authority key identifier: D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa Signing time: Tue 06 Feb 2024 14:16:20 +0000 ROA not before: Tue 06 Feb 2024 14:16:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141731 IP address blocks: 103.159.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C19A/serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Validity Not Before: Feb 6 14:16:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c23f34-e0b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:65:b3:f5:bf:f7:d7:60:51:ac:97:c3:bc:b6: 68:a9:a2:33:81:ce:f9:54:37:32:b7:8d:54:fc:d4: 95:39:64:35:20:8a:b3:aa:14:28:69:1c:22:d2:04: 06:6f:a9:0d:16:ad:0b:a0:c9:65:4f:60:7d:86:49: d8:ee:80:8f:15:c9:04:cb:32:e4:ef:f6:e6:a2:ea: fe:b3:17:9a:99:49:55:b6:09:51:43:6c:e4:ed:7d: dd:93:72:d8:b8:1c:d0:8b:6d:9f:b7:54:f7:01:69: 2e:df:44:db:52:c6:29:56:0c:83:08:04:fd:fd:34: 20:6a:19:8e:e0:58:67:3a:f3:35:76:0f:7d:9b:97: 9c:37:18:99:9d:36:4d:34:31:eb:10:2a:82:5d:f2: fe:a4:3a:82:ec:d3:97:a7:a2:3b:94:31:2e:7b:5c: 05:91:38:42:9d:01:ca:bd:b4:94:01:73:38:ba:13: cc:07:d0:92:f3:4a:31:db:bd:bc:d9:a4:25:99:44: 19:ed:ac:b5:78:70:82:13:14:c3:c8:9f:a5:31:e7: c2:f8:25:d5:84:ee:87:b7:71:ca:aa:04:2a:ad:6b: e8:f7:cf:12:77:a5:79:63:3c:a8:0f:8a:03:72:2b: 95:16:07:6f:06:2c:5c:40:94:17:9e:b8:7c:02:76: 77:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BC:9F:32:92:14:1C:96:B8:7F:A9:00:B1:DA:95:5A:41:3F:35:88 X509v3 Authority Key Identifier: keyid:D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.126.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:34:83:ad:69:e2:75:9a:21:da:d6:ad:2b:b7:d6:79:06:18: e9:00:13:83:f7:3d:f0:53:9b:58:03:98:c9:b5:0a:67:c2:90: e7:1d:04:50:1f:d0:75:e5:c2:6d:aa:7e:f2:af:dd:9b:7e:ef: d8:5b:65:03:c7:04:d9:f4:8b:27:4b:43:7a:05:48:8d:6f:8b: c4:62:9b:24:7d:f3:1c:ed:22:94:6f:0c:9a:e1:1a:be:34:63: 7d:b0:e9:b3:8d:58:69:98:0c:ea:33:89:f2:a6:75:c8:d6:7a: 9c:48:83:db:15:52:7a:a5:7e:4e:66:15:ec:6e:72:67:80:3d: 76:8e:89:c0:e7:cf:db:2b:78:a8:7a:e8:22:6d:d3:f7:e1:29: d5:bf:8f:29:0d:61:8f:09:4f:fb:0d:b7:a8:74:51:c1:7d:a0: d4:dc:2f:70:0a:86:dc:3f:cb:a0:df:eb:37:e5:9d:af:03:16: 11:53:92:4e:62:23:00:f3:d6:e0:b2:8b:b2:69:9f:e9:8e:c3: e9:00:8c:07:72:82:c3:12:46:38:55:11:1e:09:8f:a6:65:bb: e6:05:7b:ad:16:a4:73:fe:94:0a:e3:f4:c0:dc:00:3d:49:26: 10:ad:b7:17:c5:dd:55:bb:3b:94:07:11:ac:65:00:b3:2f:85: e3:50:af:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMxOUExMTAvBgNVBAUTKEQ4OUNGRjZEN0Q5NTUxQUU3MDREOTNFOTc1NTM2MTZD OERCMTNGNUUwHhcNMjQwMjA2MTQxNjIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyM2YzNC1lMGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGWz9b/312BRrJfDvLZoqaIzgc75VDcyt41U/NSVOWQ1IIqzqhQoaRwi0gQG b6kNFq0LoMllT2B9hknY7oCPFckEyzLk7/bmour+sxeamUlVtglRQ2zk7X3dk3LY uBzQi22ft1T3AWku30TbUsYpVgyDCAT9/TQgahmO4FhnOvM1dg99m5ecNxiZnTZN NDHrECqCXfL+pDqC7NOXp6I7lDEue1wFkThCnQHKvbSUAXM4uhPMB9CS80ox2728 2aQlmUQZ7ay1eHCCExTDyJ+lMefC+CXVhO6Ht3HKqgQqrWvo988Sd6V5YzyoD4oD ciuVFgdvBixcQJQXnrh8AnZ3HQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIO8nzKS FByWuH+pALHalVpBPzWIMB8GA1UdIwQYMBaAFNic/219lVGucE2T6XVTYWyNsT9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzE5QS8yNEFCMkMzRTRG OEQxMUVDODE1NzEyNUZDNEY5QUUwMi8ySnpfYlgyVlVhNXdUWlBwZFZOaGJJMnhQ MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJKel9iWDJWVWE1d1RaUHBkVk5oYkkyeFAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMxOUEvMjRBQjJDM0U0RjhEMTFFQzgxNTcxMjVGQzRGOUFFMDIvNENDODY2OThD NEZBMTFFRTg2QTUxQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn34wDQYJKoZIhvcNAQELBQADggEBAGo0g61p4nWaIdrW rSu31nkGGOkAE4P3PfBTm1gDmMm1CmfCkOcdBFAf0HXlwm2qfvKv3Zt+79hbZQPH BNn0iydLQ3oFSI1vi8RimyR98xztIpRvDJrhGr40Y32w6bONWGmYDOozifKmdcjW epxIg9sVUnqlfk5mFexucmeAPXaOicDnz9sreKh66CJt0/fhKdW/jykNYY8JT/sN t6h0UcF9oNTcL3AKhtw/y6Df6zflna8DFhFTkk5iIwDz1uCyi7Jpn+mOw+kAjAdy gsMSRjhVER4Jj6Zlu+YFe60WpHP+lArj9MDcAD1JJhCttxfF3VW7O5QHEaxlALMv heNQr0A= -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org