$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa File: C2ED1EEE617111EBBC678459C4F9AE02.roa (raw, json) Hash identifier: CQft3yyWlVqgdkhk6LgKtfX2CG+KNS0t1dkDLmcZkgI= Subject key identifier: A2:34:82:26:4C:04:9B:C7:90:97:E3:9C:5A:40:33:C2:67:E9:DE:80 Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0C75 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa Signing time: Wed 26 Jul 2023 18:35:41 +0000 ROA not before: Wed 26 Jul 2023 18:35:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138172 IP address blocks: 103.116.248.0/24 maxlen: 24 103.116.249.0/24 maxlen: 24 103.116.250.0/24 maxlen: 24 103.116.251.0/24 maxlen: 24 2403:dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 18:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Jul 26 18:35:41 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1677c-345a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:fa:0b:62:d3:88:5d:e0:3f:fd:49:0c:ca:8e: 26:3e:04:df:48:1f:bc:44:ed:2b:30:cf:9b:2d:5d: be:90:9c:48:8c:a3:42:aa:3d:ac:ee:31:e4:4b:b7: f2:52:80:88:53:91:fe:b5:b7:df:9b:0f:e7:cf:25: 47:10:d4:83:10:1f:70:da:78:6c:2b:05:19:c4:64: dc:05:97:6a:b0:b5:b3:50:bf:da:3b:d5:6c:37:99: eb:0f:02:8c:68:f4:76:b9:c8:13:ab:53:02:d2:c1: f4:8e:cf:b2:d1:e5:e7:42:e9:c9:63:5b:ec:db:53: eb:57:a2:ff:c8:72:fa:a6:59:50:80:35:67:14:26: 0c:b8:2a:f6:d6:75:85:86:a4:19:d2:69:27:75:48: 82:77:45:49:c1:9a:48:89:72:ea:91:67:57:c0:a0: f8:21:36:46:6d:97:a2:8c:a5:40:69:eb:5b:3a:db: 17:b8:70:f9:be:b2:8c:1c:2f:98:3c:c1:4d:1d:66: 15:5c:3f:9e:37:1f:7e:3f:3a:e8:ab:84:db:99:8d: b7:5b:ae:4c:dc:38:c1:4f:45:ee:cd:d6:dd:73:b9: 39:2d:38:a7:2e:92:bb:27:3a:0d:b8:32:35:f0:5e: 97:0e:54:8f:ff:80:31:e8:49:9f:6d:d1:4f:8d:3e: d2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:34:82:26:4C:04:9B:C7:90:97:E3:9C:5A:40:33:C2:67:E9:DE:80 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.248.0/22 IPv6: 2403:dc0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:8a:b8:fe:a9:ed:20:e2:d4:ff:08:b3:7c:25:75:70:68:cb: 2f:85:c1:a5:f3:1b:d1:25:57:27:88:13:1c:cd:7c:7f:8e:0e: 09:50:31:0d:41:a3:95:96:bc:f8:34:26:bf:14:23:5d:87:98: 45:58:c7:ba:2a:b1:33:a7:37:8b:91:ab:17:51:3c:27:56:fe: 56:ca:5b:b2:b3:8e:ef:63:51:ac:49:61:6b:a9:85:bc:47:d6: fd:a8:b5:6c:04:2d:e0:04:c0:4a:ea:f0:49:5f:f7:c5:e0:22: c0:bd:e1:b0:4f:55:c5:e9:7e:39:3f:0f:78:f4:3e:16:ee:94: 9c:35:f5:ad:b8:4b:dd:af:c6:ad:80:6a:76:5c:5d:3d:76:0e: 92:56:a5:5e:15:83:73:0c:ec:60:49:4d:87:de:0c:c2:62:83: d2:ba:89:26:36:34:2f:b0:a1:6e:5a:bb:64:2f:cc:4a:06:2a: 96:b2:3d:46:8a:93:da:e8:1d:97:5c:d4:0a:4d:9d:6c:21:37: 49:55:5d:15:e6:2c:6c:0c:50:14:ff:10:56:fc:38:7f:a6:3e: 3f:18:24:3f:a1:8f:1c:88:ed:83:36:df:fd:61:b9:4e:34:87: 30:12:35:64:ee:b3:43:6a:7c:89:32:72:70:27:49:5e:eb:06: 38:d2:d8:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjMwNzI2MTgzNTQxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxNjc3Yy0zNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PoLYtOIXeA//UkMyo4mPgTfSB+8RO0rMM+bLV2+kJxIjKNCqj2s7jHkS7fy UoCIU5H+tbffmw/nzyVHENSDEB9w2nhsKwUZxGTcBZdqsLWzUL/aO9VsN5nrDwKM aPR2ucgTq1MC0sH0js+y0eXnQunJY1vs21PrV6L/yHL6pllQgDVnFCYMuCr21nWF hqQZ0mkndUiCd0VJwZpIiXLqkWdXwKD4ITZGbZeijKVAaetbOtsXuHD5vrKMHC+Y PMFNHWYVXD+eNx9+Pzroq4TbmY23W65M3DjBT0Xuzdbdc7k5LTinLpK7JzoNuDI1 8F6XDlSP/4Ax6EmfbdFPjT7SkwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKI0giZM BJvHkJfjnFpAM8Jn6d6AMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQxRDkvNkEzOUEwREVDMzM4MTFFOTgwNDhGQjdEQzRGOUFFMDIvQzJFRDFFRUU2 MTcxMTFFQkJDNjc4NDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndPgwDQQCAAIwBwMFACQDDcAwDQYJKoZIhvcNAQELBQAD ggEBAHuKuP6p7SDi1P8Is3wldXBoyy+FwaXzG9ElVyeIExzNfH+ODglQMQ1Bo5WW vPg0Jr8UI12HmEVYx7oqsTOnN4uRqxdRPCdW/lbKW7Kzju9jUaxJYWuphbxH1v2o tWwELeAEwErq8Elf98XgIsC94bBPVcXpfjk/D3j0PhbulJw19a24S92vxq2AanZc XT12DpJWpV4Vg3MM7GBJTYfeDMJig9K6iSY2NC+woW5au2QvzEoGKpayPUaKk9ro HZdc1ApNnWwhN0lVXRXmLGwMUBT/EFb8OH+mPj8YJD+hjxyI7YM23/1huU40hzAS NWTus0NqfIkycnAnSV7rBjjS2AQ= -----END CERTIFICATE-----Generated at Mon Jun 24 19:37:15 2024 by rpki-client on console-fra.rpki-client.org