$ rpki-client -vvf rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/E199AC0C34F211EEB22E7C6FC4F9AE02.roa File: E199AC0C34F211EEB22E7C6FC4F9AE02.roa (raw, json) Hash identifier: bpZ6TrvHmWk1Z5e90iDIkECXOJCmqPQsoPLq8mFn9rM= Subject key identifier: 4A:88:39:87:4D:90:F8:4D:F2:56:E0:A4:E8:DA:2B:AE:AD:A9:36:98 Certificate issuer: /CN=A911015D/serialNumber=2CB8C1F9EA0C7B5A803689388400CC6FD8B049D2 Certificate serial: 02 Authority key identifier: 2C:B8:C1:F9:EA:0C:7B:5A:80:36:89:38:84:00:CC:6F:D8:B0:49:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLjB-eoMe1qANok4hADMb9iwSdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/E199AC0C34F211EEB22E7C6FC4F9AE02.roa Signing time: Mon 07 Aug 2023 07:20:27 +0000 ROA not before: Mon 07 Aug 2023 07:20:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 141766 IP address blocks: 103.152.24.0/24 maxlen: 24 103.152.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/LLjB-eoMe1qANok4hADMb9iwSdI.crl rsync://rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/LLjB-eoMe1qANok4hADMb9iwSdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLjB-eoMe1qANok4hADMb9iwSdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911015D/serialNumber=2CB8C1F9EA0C7B5A803689388400CC6FD8B049D2 Validity Not Before: Aug 7 07:20:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d09b3a-b0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:b8:ec:6e:68:c6:44:3a:c4:11:04:bc:39: c6:76:68:cf:18:69:3d:55:ee:67:99:32:13:55:d8: a4:50:10:8d:c4:75:9a:03:12:52:c4:85:28:42:04: 7f:82:2f:eb:d1:54:ca:c0:69:65:c0:90:fb:e3:ba: 7c:9b:87:72:d3:8b:4b:c3:ee:b9:42:9e:1e:53:33: 70:34:28:5d:c7:9d:81:69:2f:83:cd:d7:74:ad:aa: d4:6e:da:f4:07:54:3e:a9:a9:ad:33:01:71:f4:ed: 72:6f:e3:1c:5d:a7:96:81:c9:4e:fd:06:b3:3b:ec: cb:ba:0b:fc:14:83:21:21:00:39:89:6b:af:75:56: 9d:52:a6:a1:60:b4:de:de:d7:d0:ee:4f:7b:13:d4: ff:d2:a3:be:93:7d:51:2f:20:88:d5:ab:b6:4a:e7: d5:2e:63:31:f5:56:25:98:ce:85:5c:e7:59:a0:3b: 59:a6:f6:f2:ca:a4:58:1f:53:34:2a:41:52:aa:0f: b9:f4:0f:9e:52:08:84:2f:3f:8d:4b:ac:77:a6:c3: b1:ab:48:e8:b4:82:57:93:54:0e:cc:46:6b:b5:f7: e6:96:80:fe:22:84:e5:1d:ef:f5:42:06:29:bc:ca: a2:28:a8:ac:a1:9b:a3:4b:d1:38:21:ed:82:27:9e: a3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:88:39:87:4D:90:F8:4D:F2:56:E0:A4:E8:DA:2B:AE:AD:A9:36:98 X509v3 Authority Key Identifier: keyid:2C:B8:C1:F9:EA:0C:7B:5A:80:36:89:38:84:00:CC:6F:D8:B0:49:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/LLjB-eoMe1qANok4hADMb9iwSdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLjB-eoMe1qANok4hADMb9iwSdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911015D/414AED6A34F211EE953A6D6EC4F9AE02/E199AC0C34F211EEB22E7C6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.24.0/23 Signature Algorithm: sha256WithRSAEncryption 69:f3:3e:a4:2b:e0:70:5d:29:29:d7:25:dc:8d:2e:1c:21:41: b2:26:b5:d0:76:de:be:79:f4:48:ba:cf:bd:3a:24:f7:4a:3b: c0:a5:8a:ed:1c:a6:c5:85:ff:f2:e8:a4:f5:02:2d:64:2b:4d: 9c:c4:d0:e5:f5:5d:72:79:20:3a:16:e6:ba:1d:92:88:2d:d5: bb:3d:1c:19:f2:31:91:1a:54:13:6e:c6:16:f5:f7:eb:1b:a1: 7a:18:9a:b8:f3:a1:52:6c:bc:59:6c:30:a6:39:4e:ad:17:91: b3:a9:60:54:3a:2e:25:e5:60:67:a1:15:b7:e9:11:f2:74:cd: 89:71:b7:f1:fa:c0:ca:11:b1:53:bc:2c:99:ee:42:6e:69:56: bd:31:bb:06:73:46:48:05:0a:00:35:13:a3:38:ac:5f:9b:6a: e0:ca:28:b0:23:55:8e:c3:d9:1b:bb:8d:95:54:36:7e:fc:31: d0:d5:25:cf:f8:b4:fb:a1:ff:87:d8:66:ce:69:0e:94:12:2f: a6:7c:c3:f7:52:6b:64:06:b7:52:5e:e0:41:18:97:d5:aa:99: 3c:33:76:4f:e1:7d:98:c0:a6:dc:e0:6a:ec:27:37:60:29:69: 17:4c:e0:6e:66:6e:9d:a4:65:6c:d9:99:4f:f2:d1:56:2c:1b: 45:d7:ed:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDE1RDExMC8GA1UEBRMoMkNCOEMxRjlFQTBDN0I1QTgwMzY4OTM4ODQwMENDNkZE OEIwNDlEMjAeFw0yMzA4MDcwNzIwMjdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDA5YjNhLWIwYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDALbjsbmjGRDrEEQS8OcZ2aM8YaT1V7meZMhNV2KRQEI3EdZoDElLEhShCBH+C L+vRVMrAaWXAkPvjunybh3LTi0vD7rlCnh5TM3A0KF3HnYFpL4PN13StqtRu2vQH VD6pqa0zAXH07XJv4xxdp5aByU79BrM77Mu6C/wUgyEhADmJa691Vp1SpqFgtN7e 19DuT3sT1P/So76TfVEvIIjVq7ZK59UuYzH1ViWYzoVc51mgO1mm9vLKpFgfUzQq QVKqD7n0D55SCIQvP41LrHemw7GrSOi0gleTVA7MRmu19+aWgP4ihOUd7/VCBim8 yqIoqKyhm6NL0Tgh7YInnqP7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSog5h02Q +E3yVuCk6Norrq2pNpgwHwYDVR0jBBgwFoAULLjB+eoMe1qANok4hADMb9iwSdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwMTVELzQxNEFFRDZBMzRG MjExRUU5NTNBNkQ2RUM0RjlBRTAyL0xMakItZW9NZTFxQU5vazRoQURNYjlpd1Nk SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTExqQi1lb01lMXFBTm9rNGhBRE1iOWl3U2RJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDE1RC80MTRBRUQ2QTM0RjIxMUVFOTUzQTZENkVDNEY5QUUwMi9FMTk5QUMwQzM0 RjIxMUVFQjIyRTdDNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeYGDANBgkqhkiG9w0BAQsFAAOCAQEAafM+pCvgcF0pKdcl 3I0uHCFBsia10Hbevnn0SLrPvTok90o7wKWK7RymxYX/8uik9QItZCtNnMTQ5fVd cnkgOhbmuh2SiC3Vuz0cGfIxkRpUE27GFvX36xuhehiauPOhUmy8WWwwpjlOrReR s6lgVDouJeVgZ6EVt+kR8nTNiXG38frAyhGxU7wsme5CbmlWvTG7BnNGSAUKADUT ozisX5tq4MoosCNVjsPZG7uNlVQ2fvwx0NUlz/i0+6H/h9hmzmkOlBIvpnzD91Jr ZAa3Ul7gQRiX1aqZPDN2T+F9mMCm3OBq7Cc3YClpF0zgbmZunaRlbNmZT/LRViwb RdftVA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org