$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/DB4085480A3A11E999FA296FC4F9AE02.roa File: DB4085480A3A11E999FA296FC4F9AE02.roa (raw, json) Hash identifier: s6StiCR5DCzwNmNvLgsiRqyR3A6yRHiF6Y/AMGs7i1s= Subject key identifier: 56:83:77:1E:4E:12:79:37:ED:9D:6F:B1:C8:E6:6F:64:47:ED:D5:70 Certificate issuer: /CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Certificate serial: 1050 Authority key identifier: A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/DB4085480A3A11E999FA296FC4F9AE02.roa Signing time: Tue 16 Jan 2024 17:55:31 +0000 ROA not before: Tue 16 Jan 2024 17:55:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45455 IP address blocks: 103.28.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 18:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4176 (0x1050) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Validity Not Before: Jan 16 17:55:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a6c313-ea2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:f9:64:73:ba:f0:9e:0e:48:f5:c8:db:94: a2:26:33:94:28:4f:5e:5d:fa:0f:6e:60:20:b5:8d: c8:2a:b4:8c:a8:eb:9c:1d:a1:96:40:b0:78:c9:19: 91:07:08:95:ca:94:b3:13:27:4f:a9:da:d5:ad:f9: 1f:67:40:6b:7e:62:81:94:75:a0:e7:4c:ac:25:97: 59:80:78:07:b8:ce:7e:d4:f6:d4:95:33:8d:22:5a: 75:c5:5f:5b:66:ff:e9:0f:cc:8b:6a:26:45:d5:71: c4:98:39:4b:ef:f1:8f:ea:50:b0:81:b3:f7:38:be: 07:96:89:dc:73:de:56:9f:a0:b8:a3:6a:cc:ae:0b: fa:3a:9c:db:0e:87:f6:40:01:70:7c:bd:7c:ab:53: e9:ea:aa:3e:bc:d4:6f:01:12:93:e7:17:48:f2:a2: f0:0b:bf:4e:7e:3a:ca:a8:33:8d:20:8a:c6:3e:6c: 9f:11:75:9b:01:f4:76:82:3a:45:5a:30:e7:70:43: 62:d9:c0:f5:b6:3a:3a:e7:76:1b:54:45:e1:6d:be: 02:54:75:fc:6a:de:3d:63:1b:5b:9e:7b:78:0b:dd: 1a:46:72:ca:f1:33:1c:7d:ee:f9:61:4d:f3:2b:e5: 15:b1:62:4d:8b:29:f3:fe:82:46:bd:b6:05:97:ca: d6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:83:77:1E:4E:12:79:37:ED:9D:6F:B1:C8:E6:6F:64:47:ED:D5:70 X509v3 Authority Key Identifier: keyid:A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/DB4085480A3A11E999FA296FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.124.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:86:1f:52:ad:e2:e5:19:68:ca:6b:98:44:c3:00:2b:84:f0: df:79:c7:d9:3d:2c:fc:9a:12:ba:e5:78:49:06:d8:d8:e9:cd: b3:8a:7f:5f:23:58:1c:0a:5b:ea:ca:8b:8c:0e:2d:34:bd:a2: f3:5e:1c:c6:ea:b0:ec:15:10:59:c4:b0:cd:d5:83:c1:32:57: 09:98:78:ad:76:a1:b7:40:83:d8:04:71:5a:4f:e8:61:cb:7f: ba:4f:a1:65:04:17:8c:b8:de:cd:fa:af:71:0a:6d:2e:19:c5: 42:77:99:2e:91:21:22:88:79:1c:e4:af:dc:42:04:05:e1:c2: 6c:f9:1b:76:c7:51:ef:c1:c5:50:a3:3d:e7:6d:ed:80:74:99: 08:b6:02:af:dc:ed:36:2e:a5:42:dc:87:c5:7d:39:d1:8f:5c: ed:95:58:78:f5:3f:04:17:47:72:11:fd:43:db:66:0c:b7:6e: f8:d1:e6:4d:cb:f2:84:09:89:65:4f:12:20:6f:ed:f4:2c:7f: 85:eb:a0:23:39:14:cf:fc:4c:8c:bc:6e:f1:0e:44:1b:a2:1a: 13:28:d6:97:4c:52:07:5f:6d:0f:d3:49:e3:17:77:77:e6:9a: 48:c9:ac:2a:15:a5:fd:d0:c7:39:e2:c8:cf:7e:37:28:87:72: 10:9a:d5:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwRjExMTAvBgNVBAUTKEE2Nzk0OTExOTdBQzgyMkUwRDE4MTk3MTEzN0E0NjdE MjdDMkIwMkMwHhcNMjQwMTE2MTc1NTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2YzMxMy1lYTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbf5ZHO68J4OSPXI25SiJjOUKE9eXfoPbmAgtY3IKrSMqOucHaGWQLB4yRmR BwiVypSzEydPqdrVrfkfZ0BrfmKBlHWg50ysJZdZgHgHuM5+1PbUlTONIlp1xV9b Zv/pD8yLaiZF1XHEmDlL7/GP6lCwgbP3OL4Hloncc95Wn6C4o2rMrgv6OpzbDof2 QAFwfL18q1Pp6qo+vNRvARKT5xdI8qLwC79OfjrKqDONIIrGPmyfEXWbAfR2gjpF WjDncENi2cD1tjo653YbVEXhbb4CVHX8at49Yxtbnnt4C90aRnLK8TMcfe75YU3z K+UVsWJNiynz/oJGvbYFl8rWVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFaDdx5O Enk37Z1vscjmb2RH7dVwMB8GA1UdIwQYMBaAFKZ5SRGXrIIuDRgZcRN6Rn0nwrAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBGMS80MEIxM0JDMDBB MzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dpNE5HQmx4RTNwR2ZTZkNz Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BubEpFWmVzZ2k0TkdCbHhFM3BHZlNmQ3NDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwRjEvNDBCMTNCQzAwQTM2MTFFOTg3QTlDNDY0QzRGOUFFMDIvREI0MDg1NDgw QTNBMTFFOTk5RkEyOTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHHwwDQYJKoZIhvcNAQELBQADggEBAA6GH1Kt4uUZaMpr mETDACuE8N95x9k9LPyaErrleEkG2NjpzbOKf18jWBwKW+rKi4wOLTS9ovNeHMbq sOwVEFnEsM3Vg8EyVwmYeK12obdAg9gEcVpP6GHLf7pPoWUEF4y43s36r3EKbS4Z xUJ3mS6RISKIeRzkr9xCBAXhwmz5G3bHUe/BxVCjPedt7YB0mQi2Aq/c7TYupULc h8V9OdGPXO2VWHj1PwQXR3IR/UPbZgy3bvjR5k3L8oQJiWVPEiBv7fQsf4XroCM5 FM/8TIy8bvEORBuiGhMo1pdMUgdfbQ/TSeMXd3fmmkjJrCoVpf3QxzniyM9+NyiH chCa1Xs= -----END CERTIFICATE-----Generated at Tue May 14 19:10:20 2024 by rpki-client on console-ams.rpki-client.org