$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa File: 38E02CDC04EE11EE89900876C4F9AE02.roa (raw, json) Hash identifier: TI9mHaq+nSiF95UKzqARFSVJjwuPveXnpdDY0+JZwvM= Subject key identifier: F0:7E:22:35:5B:7E:26:6B:68:1F:E9:08:80:F5:FD:F0:42:FB:43:80 Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: D8 Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa Signing time: Tue 21 Nov 2023 02:23:41 +0000 ROA not before: Tue 21 Nov 2023 02:23:41 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55850 IP address blocks: 103.172.232.0/24 maxlen: 24 103.172.233.0/24 maxlen: 24 223.165.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Nov 21 02:23:41 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655c14ac-5433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:21:02:80:17:fb:4a:8a:15:a7:ae:2e:6c:4e: 40:1c:58:9e:0d:ca:f4:e0:b5:50:94:cc:94:02:44: 7c:1f:44:65:b2:1c:96:a5:1c:0e:6d:81:db:aa:87: cb:1f:6d:7d:b2:f5:bf:32:71:19:29:d8:b5:83:c0: d3:7b:bf:de:94:7d:b3:bc:c9:82:b2:e1:64:45:b5: ae:c1:81:0b:47:d9:a3:4f:ff:79:31:b8:94:fc:7f: ac:0c:89:1a:50:d2:b8:65:f6:c8:a1:5a:3e:d8:43: 64:28:58:52:23:b3:8b:00:9b:c5:9f:b1:5b:1f:b6: 30:9f:28:24:59:d3:b0:b5:03:d2:c6:09:33:7f:8e: 7b:f8:fc:67:35:84:d5:e7:58:25:9a:4d:b2:af:7b: 78:7a:65:bb:ae:86:ae:1f:4e:1a:80:71:c0:dd:8d: a1:9f:cb:3e:73:6f:e6:34:8c:6e:34:5e:20:34:d7: 23:2f:d9:a7:b0:30:a7:03:98:d4:c2:5d:ab:74:38: b9:bf:e7:7c:bf:6d:78:d5:3c:cd:f4:47:8a:25:5b: c6:97:48:d7:a8:78:af:ee:80:13:bb:be:b5:6d:dc: e1:f2:e7:98:3b:82:41:e2:67:d9:9f:f9:c5:a2:3d: fb:19:f7:7a:5a:73:ef:3d:3b:09:92:fc:fb:b6:90: f9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7E:22:35:5B:7E:26:6B:68:1F:E9:08:80:F5:FD:F0:42:FB:43:80 X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.232.0/23 223.165.16.0/24 Signature Algorithm: sha256WithRSAEncryption 28:9d:35:42:5e:d0:30:be:d0:ed:4e:d5:bb:4e:b0:3d:91:3d: 33:8f:bf:79:d6:d6:0d:98:1c:b4:2f:cd:db:14:f1:22:32:38: c5:dc:e3:d1:71:fb:e7:17:78:59:28:f1:48:74:6c:76:25:b4: da:5c:69:eb:d4:8d:bc:89:c5:29:82:4c:e7:7c:c3:73:d6:58: ea:48:39:a9:d3:f8:20:ba:ca:47:e4:b0:5f:70:cd:40:4d:e7: 84:55:5a:47:00:32:50:5a:1e:14:7b:db:b5:a7:93:b7:d9:da: 1b:45:1b:e1:48:29:56:97:dd:e9:3d:c4:6e:16:10:70:8b:38: 1c:12:b7:f3:79:b1:fd:7b:16:45:db:c8:fc:59:d0:62:56:2a: 9b:db:bc:5b:f3:ba:2e:c4:e8:e7:f1:8c:6a:94:c9:d4:54:ae: f1:3f:ee:3e:bc:c6:57:1a:25:a7:ab:48:6e:5c:a9:5a:d2:e6: 1b:6c:cf:93:b3:1f:be:0f:a3:86:f1:80:a5:81:56:d5:1a:70: b3:0b:ba:ae:dc:d5:f5:5e:32:3a:ed:e4:9e:fd:ff:c5:4a:eb: cf:86:4a:d1:ae:64:64:7b:51:98:57:f8:59:67:ed:c5:ac:d6: 7b:c4:74:11:ed:21:e7:d8:e0:19:1f:30:33:26:e9:65:2c:a6: 0e:f7:24:54 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjMxMTIxMDIyMzQxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMTRhYy01NDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiECgBf7SooVp64ubE5AHFieDcr04LVQlMyUAkR8H0RlshyWpRwObYHbqofL H219svW/MnEZKdi1g8DTe7/elH2zvMmCsuFkRbWuwYELR9mjT/95MbiU/H+sDIka UNK4ZfbIoVo+2ENkKFhSI7OLAJvFn7FbH7YwnygkWdOwtQPSxgkzf457+PxnNYTV 51glmk2yr3t4emW7roauH04agHHA3Y2hn8s+c2/mNIxuNF4gNNcjL9mnsDCnA5jU wl2rdDi5v+d8v2141TzN9EeKJVvGl0jXqHiv7oATu761bdzh8ueYO4JB4mfZn/nF oj37Gfd6WnPvPTsJkvz7tpD5OwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPB+IjVb fiZraB/pCID1/fBC+0OAMB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvMzhFMDJDREMw NEVFMTFFRTg5OTAwODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnrOgDBADfpRAwDQYJKoZIhvcNAQELBQADggEBACidNUJe 0DC+0O1O1btOsD2RPTOPv3nW1g2YHLQvzdsU8SIyOMXc49Fx++cXeFko8Uh0bHYl tNpcaevUjbyJxSmCTOd8w3PWWOpIOanT+CC6ykfksF9wzUBN54RVWkcAMlBaHhR7 27Wnk7fZ2htFG+FIKVaX3ek9xG4WEHCLOBwSt/N5sf17FkXbyPxZ0GJWKpvbvFvz ui7E6OfxjGqUydRUrvE/7j68xlcaJaerSG5cqVrS5htsz5OzH74Po4bxgKWBVtUa cLMLuq7c1fVeMjrt5J79/8VK68+GStGuZGR7UZhX+Fln7cWs1nvEdBHtIefY4Bkf MDMm6WUspg73JFQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:10 2024 by rpki-client on console-ams.rpki-client.org