$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa File: B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa (raw, json) Hash identifier: dJLvj8H+OzZAi8s6DdJIU3wM9EnuCPBO5qhQ8TBHFMc= Subject key identifier: 00:34:7F:10:FD:44:1D:50:7C:AA:C5:C3:98:BF:75:FC:CA:96:D4:80 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 0923 Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa Signing time: Thu 04 Jul 2024 20:58:12 +0000 ROA not before: Thu 04 Jul 2024 20:58:12 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17941 IP address blocks: 103.26.32.0/22 maxlen: 22 103.26.33.0/24 maxlen: 24 103.26.34.0/24 maxlen: 24 103.26.35.0/24 maxlen: 24 2404:5480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Jul 4 20:58:12 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66870ce3-1813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:15:c0:fa:7c:1c:94:14:01:a1:44:13:e9:da: 7f:d9:b3:10:3a:da:3e:5a:64:fb:af:c1:2e:20:29: d3:d0:07:7a:1f:ee:55:ab:3b:79:5f:85:08:c8:48: b4:51:d7:cc:2e:51:94:86:d8:db:2d:4b:d2:35:1a: bc:7a:ad:85:40:09:40:13:1f:b2:06:11:25:fd:69: ee:0f:6f:96:fc:d2:9a:49:b5:f8:6d:a1:48:e3:04: c9:bc:47:08:82:53:0e:3a:83:f5:b6:ef:c5:dc:1d: b1:6a:e6:3a:24:15:50:0d:c1:d5:c4:ba:a3:90:89: 15:3b:7a:e5:41:fc:f0:42:89:ed:c9:0b:34:da:65: ce:1a:b6:af:78:56:8b:5e:26:d4:a0:c9:5f:e5:8c: ed:c6:f6:d6:bb:22:49:2c:5d:65:c0:06:d4:13:c9: 6c:59:0e:0b:ac:cb:bf:70:36:55:e1:77:eb:0f:6d: 4f:af:ad:ab:bf:28:5c:ad:a7:6a:d8:fd:e3:b6:d5: d9:f1:a3:9f:57:9e:11:3e:d2:34:8c:b7:dc:6e:b9: 63:8c:a5:12:60:82:da:61:62:8d:8e:4b:f0:cb:7b: fa:91:7a:b2:53:0d:05:71:a5:08:83:75:54:2e:bb: f0:2a:54:d1:7c:a6:56:89:a0:1c:23:2a:6f:67:3e: 2f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:34:7F:10:FD:44:1D:50:7C:AA:C5:C3:98:BF:75:FC:CA:96:D4:80 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/22 IPv6: 2404:5480::/32 Signature Algorithm: sha256WithRSAEncryption 6d:99:ae:4b:b9:3f:f2:aa:dd:ec:46:2f:d3:e6:e6:aa:c7:95: 64:a2:1f:6c:6f:4f:fd:3c:60:b4:c0:01:97:36:04:df:1d:b4: 14:7d:2e:15:c1:15:e1:30:e7:a4:f4:7a:22:44:ef:3c:2d:e4: 85:6f:02:94:da:3f:de:38:41:38:d9:6c:91:11:37:91:8e:08: 6b:0d:97:68:0c:6e:3a:a0:37:b5:b8:8d:86:1c:e8:11:31:2e: cf:05:a2:87:51:52:93:6e:4c:ea:02:91:e6:5c:a4:0d:a7:9f: e9:47:fa:f9:cd:e7:09:95:f7:fa:cb:08:b1:9e:bd:97:4a:49: 03:5b:05:be:82:e3:2c:47:d8:b9:21:fe:04:f3:b8:0e:a2:df: 0f:99:59:86:87:03:ae:16:64:2f:d5:1b:9c:b7:0f:88:74:a2: be:29:34:d9:6f:29:01:f3:92:52:ad:65:08:bc:da:f7:1f:72: 03:a1:63:4c:f8:ea:3f:3a:5a:a7:d8:11:cd:49:5b:2d:70:d8: 5d:ff:54:10:40:51:0d:66:5f:0e:a7:34:2f:66:2e:fd:2a:cb: 52:bf:09:86:05:c8:ec:01:f8:dc:8e:f4:ea:8a:20:ac:64:46: 8e:73:4b:2c:c4:7c:4a:04:58:f4:46:00:c7:d9:6c:0e:03:91: 1a:8d:4c:e6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjQwNzA0MjA1ODEyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3MGNlMy0xODEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xXA+nwclBQBoUQT6dp/2bMQOto+WmT7r8EuICnT0Ad6H+5Vqzt5X4UIyEi0 UdfMLlGUhtjbLUvSNRq8eq2FQAlAEx+yBhEl/WnuD2+W/NKaSbX4baFI4wTJvEcI glMOOoP1tu/F3B2xauY6JBVQDcHVxLqjkIkVO3rlQfzwQontyQs02mXOGraveFaL XibUoMlf5YztxvbWuyJJLF1lwAbUE8lsWQ4LrMu/cDZV4XfrD21Pr62rvyhcradq 2P3jttXZ8aOfV54RPtI0jLfcbrljjKUSYILaYWKNjkvwy3v6kXqyUw0FcaUIg3VU LrvwKlTRfKZWiaAcIypvZz4vswIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAA0fxD9 RB1QfKrFw5i/dfzKltSAMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQjEzQjJFNUE1 QjVEMTFFRUFERjVDNjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnGiAwDQQCAAIwBwMFACQEVIAwDQYJKoZIhvcNAQELBQAD ggEBAG2Zrku5P/Kq3exGL9Pm5qrHlWSiH2xvT/08YLTAAZc2BN8dtBR9LhXBFeEw 56T0eiJE7zwt5IVvApTaP944QTjZbJERN5GOCGsNl2gMbjqgN7W4jYYc6BExLs8F oodRUpNuTOoCkeZcpA2nn+lH+vnN5wmV9/rLCLGevZdKSQNbBb6C4yxH2Lkh/gTz uA6i3w+ZWYaHA64WZC/VG5y3D4h0or4pNNlvKQHzklKtZQi82vcfcgOhY0z46j86 WqfYEc1JWy1w2F3/VBBAUQ1mXw6nNC9mLv0qy1K/CYYFyOwB+NyO9OqKIKxkRo5z SyzEfEoEWPRGAMfZbA4DkRqNTOY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org