$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/26F87D4A272711EC88E40644C4F9AE02.roa File: 26F87D4A272711EC88E40644C4F9AE02.roa (raw, json) Hash identifier: CzGBbedhAgecHCRQV9ey7WEveHSbAxu1vPyi9BgUKR0= Subject key identifier: 53:A9:4A:E4:54:4B:3C:F5:7F:B7:19:83:47:34:0E:E7:FC:5C:2B:BD Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 05BC Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/26F87D4A272711EC88E40644C4F9AE02.roa Signing time: Mon 15 Apr 2024 00:32:32 +0000 ROA not before: Mon 15 Apr 2024 00:32:32 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17477 IP address blocks: 103.7.164.0/22 maxlen: 24 103.232.116.0/22 maxlen: 24 124.47.128.0/18 maxlen: 24 125.7.0.0/17 maxlen: 24 163.47.60.0/22 maxlen: 24 202.2.92.0/22 maxlen: 24 203.110.128.0/19 maxlen: 24 210.193.128.0/17 maxlen: 24 2400:cc00::/32 maxlen: 35 2400:cc00::/35 maxlen: 36 2400:cc00:2000::/36 maxlen: 36 2400:cc00:4000::/34 maxlen: 36 2400:cc00:8000::/33 maxlen: 36 2400:cc00:8000::/37 maxlen: 40 2400:cc00:8800::/37 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 00:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 15 00:32:32 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661c75a0-270d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3b:2f:f6:67:9b:c4:8d:53:f8:61:01:f6:db: 53:63:92:e2:15:2f:75:74:3e:75:34:4e:af:1b:2d: 53:47:80:98:41:64:8d:33:d7:d5:e4:c7:91:88:7a: cd:81:9d:35:ef:61:ae:1a:d4:5c:66:5b:0b:f6:91: 08:f9:07:d1:d0:65:47:a4:c8:57:32:82:f5:5a:4a: 63:b4:a0:8d:e1:9e:23:82:71:5c:2d:8a:14:2d:9e: 72:cc:03:1c:12:67:fd:ae:ba:7e:7f:54:38:6b:84: dd:55:5d:8e:b9:ea:ac:00:72:2b:d4:19:ce:48:41: b2:da:80:17:d1:0f:78:ea:cf:93:cc:0e:48:63:c0: 5d:68:d8:ef:f3:96:58:e8:a5:ad:e5:29:f9:c2:b4: 4b:0e:50:bd:8c:68:76:b6:72:ea:03:7a:bb:29:0d: 4e:7c:32:4c:ab:50:9f:97:8d:f6:85:6c:6a:7d:67: 44:e4:11:ff:5c:ba:ae:ab:45:8b:65:8e:3d:e4:4f: df:1e:89:8f:2c:f9:3e:18:d2:0e:0a:5f:2d:6e:25: 03:d5:44:df:10:21:c9:ac:37:ef:41:b5:b9:ea:03: e1:85:80:bd:bc:9d:c2:b9:c4:18:38:d0:10:49:85: 6d:2f:7a:37:8e:9a:ea:41:96:27:74:d9:fa:a7:e3: 36:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A9:4A:E4:54:4B:3C:F5:7F:B7:19:83:47:34:0E:E7:FC:5C:2B:BD X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/26F87D4A272711EC88E40644C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.164.0/22 103.232.116.0/22 124.47.128.0/18 125.7.0.0/17 163.47.60.0/22 202.2.92.0/22 203.110.128.0/19 210.193.128.0/17 IPv6: 2400:cc00::/32 Signature Algorithm: sha256WithRSAEncryption 0f:e7:a3:c1:eb:16:13:c7:06:a4:5a:b2:04:4c:d8:a2:71:19: 95:bd:4e:6c:75:63:ec:95:61:98:34:3c:d4:11:06:f7:fc:a6: 71:d0:ce:97:33:09:fc:06:e9:79:ef:62:0f:ce:f2:35:cc:c2: 9f:70:a0:cf:c9:44:15:27:87:06:2d:cc:0d:72:1a:c8:a2:8f: 7b:f3:05:42:55:e4:eb:9d:9b:f4:64:77:39:07:0c:a4:d3:62: 1f:29:3c:e6:91:54:97:b5:a1:19:b3:44:3b:74:ba:2c:4e:1f: 2d:ff:68:c2:b9:c2:10:bb:40:28:ac:d9:6a:ee:60:d7:40:34: c0:30:69:69:19:e6:f2:bb:4a:b2:b1:cd:d4:70:73:9a:82:da: a0:99:79:8b:95:82:00:ba:8b:82:ea:72:d4:f4:ea:34:25:fd: bb:3d:93:42:33:9a:15:4f:be:70:03:bd:47:28:50:bf:7f:d8: 47:7b:a5:d9:72:34:22:b3:9a:67:0f:a2:88:89:99:6d:00:d5: 60:ef:9a:fd:6d:1b:4d:04:e3:ac:3a:da:42:5a:22:99:85:38: 67:fd:5c:35:64:1a:98:28:47:a9:01:71:82:54:2a:b2:ab:19: 1a:91:c4:4c:3c:e7:7f:29:f9:0f:b4:09:a1:b6:39:cb:88:36: a4:f6:69:dd -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjQwNDE1MDAzMjMyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFjNzVhMC0yNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zsv9mebxI1T+GEB9ttTY5LiFS91dD51NE6vGy1TR4CYQWSNM9fV5MeRiHrN gZ0172GuGtRcZlsL9pEI+QfR0GVHpMhXMoL1WkpjtKCN4Z4jgnFcLYoULZ5yzAMc Emf9rrp+f1Q4a4TdVV2OueqsAHIr1BnOSEGy2oAX0Q946s+TzA5IY8BdaNjv85ZY 6KWt5Sn5wrRLDlC9jGh2tnLqA3q7KQ1OfDJMq1Cfl432hWxqfWdE5BH/XLquq0WL ZY495E/fHomPLPk+GNIOCl8tbiUD1UTfECHJrDfvQbW56gPhhYC9vJ3CucQYONAQ SYVtL3o3jprqQZYndNn6p+M2CQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFFOpSuRU Szz1f7cZg0c0Duf8XCu9MB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNzY5MjI3OEE3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvMjZGODdENEEy NzI3MTFFQzg4RTQwNjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAJnB6QDBAJn6HQDBAZ8L4ADBAd9BwADBAKjLzwDBALKAlwD BAXLboADBAfSwYAwDQQCAAIwBwMFACQAzAAwDQYJKoZIhvcNAQELBQADggEBAA/n o8HrFhPHBqRasgRM2KJxGZW9Tmx1Y+yVYZg0PNQRBvf8pnHQzpczCfwG6XnvYg/O 8jXMwp9woM/JRBUnhwYtzA1yGsiij3vzBUJV5Oudm/RkdzkHDKTTYh8pPOaRVJe1 oRmzRDt0uixOHy3/aMK5whC7QCis2WruYNdANMAwaWkZ5vK7SrKxzdRwc5qC2qCZ eYuVggC6i4LqctT06jQl/bs9k0IzmhVPvnADvUcoUL9/2Ed7pdlyNCKzmmcPooiJ mW0A1WDvmv1tG00E46w62kJaIpmFOGf9XDVkGpgoR6kBcYJUKrKrGRqRxEw8538p +Q+0CaG2OcuINqT2ad0= -----END CERTIFICATE-----Generated at Wed May 15 01:43:52 2024 by rpki-client on console-ams.rpki-client.org