$ rpki-client -vvf rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/4A7E507AC98F11EEB5F1645FC4F9AE02.roa File: 4A7E507AC98F11EEB5F1645FC4F9AE02.roa (raw, json) Hash identifier: 101Ub2UYlIGao1SGoVWwa+ZQdjC/nRpCQGv37d0yEIU= Subject key identifier: D1:85:BA:0B:5E:8F:D2:5A:82:AF:26:0B:D0:3B:F7:67:0B:41:10:42 Certificate issuer: /CN=A911D1A9/serialNumber=742174F32E6CC6E8D1F965BFA1D40A10D6E3E7C9 Certificate serial: 69 Authority key identifier: 74:21:74:F3:2E:6C:C6:E8:D1:F9:65:BF:A1:D4:0A:10:D6:E3:E7:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dCF08y5sxujR-WW_odQKENbj58k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/4A7E507AC98F11EEB5F1645FC4F9AE02.roa Signing time: Mon 12 Feb 2024 10:12:57 +0000 ROA not before: Mon 12 Feb 2024 10:12:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 36113 IP address blocks: 103.248.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/dCF08y5sxujR-WW_odQKENbj58k.crl rsync://rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/dCF08y5sxujR-WW_odQKENbj58k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dCF08y5sxujR-WW_odQKENbj58k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D1A9/serialNumber=742174F32E6CC6E8D1F965BFA1D40A10D6E3E7C9 Validity Not Before: Feb 12 10:12:57 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65c9ef28-cdab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ec:5e:42:df:d3:d8:a7:58:81:e8:f0:cc:e6: 39:f3:bc:54:38:fe:78:cd:e8:7a:66:4d:c4:71:94: a9:9e:54:89:3b:8e:e5:9f:ef:1b:29:1a:73:33:05: bb:a4:9d:45:6b:7a:aa:3a:a4:c4:a9:be:15:cc:6e: 66:17:1c:0e:e0:ba:35:2e:a1:94:7f:f7:d2:44:e8: a5:c9:51:0f:0e:ff:37:2e:34:0f:4d:44:f1:2b:74: da:da:4c:2e:8a:60:ae:78:54:d8:9d:57:08:a8:8f: ad:a8:2a:a8:75:2c:9a:3c:b3:2a:66:3d:30:37:ed: 9a:26:02:1d:8a:da:6f:c4:6c:13:7c:23:12:39:b0: 45:22:62:aa:0a:f3:85:a7:da:3f:b5:71:01:b4:2e: ed:7c:ed:2c:82:ac:0a:43:de:c6:a2:b2:0a:41:31: 28:ba:a9:51:46:52:4c:f8:e0:5b:ec:ef:d0:b0:d5: f0:64:03:bc:c8:e0:a4:67:a7:85:26:e2:10:48:39: d3:6a:94:0b:88:3a:11:e1:f3:88:b4:79:8d:94:47: 4f:90:81:58:25:2a:56:e5:fc:63:06:68:e1:9d:8a: 08:f2:01:9b:c7:5f:30:93:44:f1:2c:e8:e4:a7:f4: 7b:65:0b:79:88:ec:7a:fb:f3:d2:60:be:6d:ce:ed: de:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:85:BA:0B:5E:8F:D2:5A:82:AF:26:0B:D0:3B:F7:67:0B:41:10:42 X509v3 Authority Key Identifier: keyid:74:21:74:F3:2E:6C:C6:E8:D1:F9:65:BF:A1:D4:0A:10:D6:E3:E7:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/dCF08y5sxujR-WW_odQKENbj58k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dCF08y5sxujR-WW_odQKENbj58k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D1A9/8F916948328811EEB29D3042C4F9AE02/4A7E507AC98F11EEB5F1645FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.49.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:9e:cc:3c:c9:ed:4c:be:36:4c:0a:de:7e:2a:ce:91:81:22: 67:e6:dd:1c:d7:7b:08:87:e3:77:20:88:4e:f3:53:dc:52:6d: 37:55:ff:bb:87:37:a6:3f:f7:e5:8c:7e:26:52:45:bd:bf:09: 6c:b3:5a:62:51:2a:0c:e2:34:3d:51:e5:d5:9e:7c:7a:5e:04: 8a:7c:45:83:30:ea:12:eb:52:1b:cc:53:57:42:62:f7:7d:9f: dc:ae:96:a4:8d:d7:d6:f5:0a:d3:04:19:17:3e:dc:a1:95:f5: 99:44:62:fe:4c:75:92:53:33:2d:41:b1:b0:cc:aa:af:f1:49: 54:f2:cd:dc:91:9b:41:40:f1:19:7e:4d:58:6a:90:20:84:4d: 3c:6a:1c:2f:99:2c:ef:74:35:e8:9d:1c:0d:9a:4e:20:47:20: 21:32:f1:5a:5d:9b:20:b3:d0:6d:f0:32:33:14:e5:80:77:cb: 2d:f8:cb:a0:09:2b:77:f0:8d:55:97:a0:da:48:4f:df:21:b6: 47:98:32:27:5a:3a:c1:23:9c:3d:26:29:8d:91:6b:7e:ca:82: 83:8d:e7:cc:47:13:b3:d5:40:9f:c8:b0:a6:b4:8a:f7:29:79: 23:7e:9c:31:19:8b:2d:e1:91:9e:5e:8e:08:2e:5d:a1:55:82: c9:46:23:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDFBOTExMC8GA1UEBRMoNzQyMTc0RjMyRTZDQzZFOEQxRjk2NUJGQTFENDBBMTBE NkUzRTdDOTAeFw0yNDAyMTIxMDEyNTdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzllZjI4LWNkYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb7F5C39PYp1iB6PDM5jnzvFQ4/njN6HpmTcRxlKmeVIk7juWf7xspGnMzBbuk nUVreqo6pMSpvhXMbmYXHA7gujUuoZR/99JE6KXJUQ8O/zcuNA9NRPErdNraTC6K YK54VNidVwioj62oKqh1LJo8sypmPTA37ZomAh2K2m/EbBN8IxI5sEUiYqoK84Wn 2j+1cQG0Lu187SyCrApD3saisgpBMSi6qVFGUkz44Fvs79Cw1fBkA7zI4KRnp4Um 4hBIOdNqlAuIOhHh84i0eY2UR0+QgVglKlbl/GMGaOGdigjyAZvHXzCTRPEs6OSn 9HtlC3mI7Hr789Jgvm3O7d6BAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0YW6C16P 0lqCryYL0Dv3ZwtBEEIwHwYDVR0jBBgwFoAUdCF08y5sxujR+WW/odQKENbj58kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEMUE5LzhGOTE2OTQ4MzI4 ODExRUVCMjlEMzA0MkM0RjlBRTAyL2RDRjA4eTVzeHVqUi1XV19vZFFLRU5iajU4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZENGMDh5NXN4dWpSLVdXX29kUUtFTmJqNThrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDFBOS84RjkxNjk0ODMyODgxMUVFQjI5RDMwNDJDNEY5QUUwMi80QTdFNTA3QUM5 OEYxMUVFQjVGMTY0NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf4MTANBgkqhkiG9w0BAQsFAAOCAQEADp7MPMntTL42TAre firOkYEiZ+bdHNd7CIfjdyCITvNT3FJtN1X/u4c3pj/35Yx+JlJFvb8JbLNaYlEq DOI0PVHl1Z58el4EinxFgzDqEutSG8xTV0Ji932f3K6WpI3X1vUK0wQZFz7coZX1 mURi/kx1klMzLUGxsMyqr/FJVPLN3JGbQUDxGX5NWGqQIIRNPGocL5ks73Q16J0c DZpOIEcgITLxWl2bILPQbfAyMxTlgHfLLfjLoAkrd/CNVZeg2khP3yG2R5gyJ1o6 wSOcPSYpjZFrfsqCg43nzEcTs9VAn8iwprSK9yl5I36cMRmLLeGRnl6OCC5doVWC yUYjmQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org