$ rpki-client -vvf rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa File: A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa (raw, json) Hash identifier: lGsavR1EnBglQKKAoo94+4KPAgY4RSgCKd/AgbKS4i0= Subject key identifier: 9A:3E:C7:86:18:E0:1A:A1:03:CD:B1:61:B4:93:97:03:91:A2:10:AC Certificate issuer: /CN=A911C564/serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Certificate serial: 03D9 Authority key identifier: 14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa Signing time: Tue 23 May 2023 03:30:42 +0000 ROA not before: Tue 23 May 2023 03:30:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136602 IP address blocks: 103.93.208.0/24 maxlen: 24 103.174.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C564/serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Validity Not Before: May 23 03:30:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=646c3361-1544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:5f:54:62:4f:9e:c2:16:86:08:e7:1b:94: 4d:9d:bb:0b:68:ac:8b:71:52:e2:81:04:66:58:76: 5f:bd:d8:ff:c5:dc:88:3e:ad:40:6d:81:b9:b5:ee: 04:d0:f8:d6:98:83:48:01:09:e8:85:cc:53:d4:6b: 1c:59:63:1c:ec:e3:e9:54:38:49:b7:e3:c7:81:b3: ad:ef:e8:32:c9:37:d9:6d:7b:1b:e3:1a:77:43:79: 2a:07:d3:0b:66:c9:92:1e:d9:dc:53:61:ca:f7:03: 0a:c2:b4:54:33:91:c7:0d:bc:f6:a4:e5:aa:49:33: b2:0b:ce:b4:ae:20:53:a3:2e:90:41:e2:be:97:a4: 01:27:af:a9:fd:86:ad:84:cf:d2:5d:01:98:72:0f: cf:b6:ba:70:15:a5:de:5a:49:2c:a6:c5:c3:e5:f9: 30:88:d4:48:97:51:4e:ba:e2:8c:c1:75:e9:9f:c6: 12:75:04:b2:81:73:57:89:44:c0:44:4a:28:e7:31: 79:89:de:16:56:f3:1a:e9:10:25:d5:1a:15:4a:a5: 26:b1:7b:09:62:c2:56:21:4c:1f:6e:1f:36:c9:4c: 4f:d8:d7:bc:7b:75:db:9b:3d:ae:69:f3:0d:ad:b8: 49:15:44:b6:8d:d2:08:80:67:65:ce:a3:57:b3:b2: 2c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3E:C7:86:18:E0:1A:A1:03:CD:B1:61:B4:93:97:03:91:A2:10:AC X509v3 Authority Key Identifier: keyid:14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.208.0/24 103.174.239.0/24 Signature Algorithm: sha256WithRSAEncryption b3:92:50:c7:87:57:66:e5:de:ef:ae:5f:3f:08:40:26:3c:5e: 3f:7e:40:d4:05:28:47:58:3f:3e:c6:0b:88:9e:3e:85:97:e0: c6:d9:df:71:66:89:85:79:00:c2:fc:7b:fc:b4:74:35:de:40: 52:07:5c:af:41:d0:55:d5:73:b8:3d:b1:3f:94:fe:36:cc:2f: b1:7f:ea:6f:78:2b:c5:fe:8c:e9:a7:06:f9:75:7c:be:bf:83: 0b:13:a1:c3:a2:ba:2d:31:80:f3:77:17:15:47:2d:3b:97:95: 86:7b:ae:dc:6a:6d:b4:cc:f3:1a:8a:35:5f:22:40:3c:ab:39: 5b:2b:3c:8c:67:46:a4:db:83:bf:5f:7c:16:e4:3b:4a:e1:92: c2:b6:69:bc:ec:90:2b:4b:c4:4a:ef:7e:23:c3:2e:ce:af:54: 00:0d:f1:d6:2e:35:6f:59:a3:c8:8f:51:3d:af:ba:ec:9a:b6: 76:a8:5e:59:99:e2:31:61:11:d7:fe:fb:93:44:8a:87:cb:f4: 89:d6:68:e7:ce:40:6a:80:63:8c:e8:d8:3d:73:e3:d9:86:78: 6d:6e:2a:bc:d8:fc:04:08:69:f4:65:68:58:10:8f:ec:ae:b8: 96:4e:58:fb:2f:0e:96:44:10:c6:c9:37:fe:5d:40:a3:1a:cd: 74:42:0f:b7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1NjQxMTAvBgNVBAUTKDE0MDJCNjRGOUFFNzgxNjFEMEQ2NURBNzI1RkREMEJC QzhFMTUyRDgwHhcNMjMwNTIzMDMzMDQyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjMzM2MS0xNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfVfVGJPnsIWhgjnG5RNnbsLaKyLcVLigQRmWHZfvdj/xdyIPq1AbYG5te4E 0PjWmINIAQnohcxT1GscWWMc7OPpVDhJt+PHgbOt7+gyyTfZbXsb4xp3Q3kqB9ML ZsmSHtncU2HK9wMKwrRUM5HHDbz2pOWqSTOyC860riBToy6QQeK+l6QBJ6+p/Yat hM/SXQGYcg/PtrpwFaXeWkkspsXD5fkwiNRIl1FOuuKMwXXpn8YSdQSygXNXiUTA REoo5zF5id4WVvMa6RAl1RoVSqUmsXsJYsJWIUwfbh82yUxP2Ne8e3Xbmz2uafMN rbhJFUS2jdIIgGdlzqNXs7IsPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJo+x4YY 4BqhA82xYbSTlwORohCsMB8GA1UdIwQYMBaAFBQCtk+a54Fh0NZdpyX90LvI4VLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzU2NC9FODA4QUVENkVF OTQxMUVCQjNEODVBODZDNEY5QUUwMi9GQUsyVDVybmdXSFExbDJuSmYzUXU4amhV dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBSzJUNXJuZ1dIUTFsMm5KZjNRdThqaFV0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1NjQvRTgwOEFFRDZFRTk0MTFFQkIzRDg1QTg2QzRGOUFFMDIvQTNCMkIwQThF RTk3MTFFQjhFRjFBNTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnXdADBABnru8wDQYJKoZIhvcNAQELBQADggEBALOSUMeH V2bl3u+uXz8IQCY8Xj9+QNQFKEdYPz7GC4iePoWX4MbZ33FmiYV5AML8e/y0dDXe QFIHXK9B0FXVc7g9sT+U/jbML7F/6m94K8X+jOmnBvl1fL6/gwsTocOiui0xgPN3 FxVHLTuXlYZ7rtxqbbTM8xqKNV8iQDyrOVsrPIxnRqTbg79ffBbkO0rhksK2abzs kCtLxErvfiPDLs6vVAAN8dYuNW9Zo8iPUT2vuuyatnaoXlmZ4jFhEdf++5NEiofL 9InWaOfOQGqAY4zo2D1z49mGeG1uKrzY/AQIafRlaFgQj+yuuJZOWPsvDpZEEMbJ N/5dQKMazXRCD7c= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:21 2024 by rpki-client on console-ams.rpki-client.org