$ rpki-client -vvf rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa File: C001E5861FCC11EEB409C35EC4F9AE02.roa (raw, json) Hash identifier: 35Fu5kbfFZ/W8ChJYNEjKYFETgUE1SYcZrzysaLOzTk= Subject key identifier: 9E:1E:89:6B:D0:6B:0D:6D:C5:81:63:11:06:78:93:14:D6:9E:8E:18 Certificate issuer: /CN=A911F627/serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6 Certificate serial: 02 Authority key identifier: 71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa Signing time: Tue 11 Jul 2023 09:24:35 +0000 ROA not before: Tue 11 Jul 2023 09:24:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151466 IP address blocks: 103.230.42.0/23 maxlen: 24 2001:df2:a140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.crl rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F627/serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6 Validity Not Before: Jul 11 09:24:35 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ad1fd3-6d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:52:7c:86:1a:35:07:d1:1f:5c:a3:8b:83:a1: 75:59:d1:8a:d3:cc:d6:41:39:98:29:22:c3:2d:c7: 3a:42:bb:d3:37:90:c4:5e:cb:2c:61:a4:d6:1c:05: fb:05:7d:31:73:1b:ce:5d:6b:a9:1f:94:39:ee:de: c0:6d:0d:ef:0e:f0:1d:e4:4f:85:8e:e0:66:9f:9c: 82:61:19:94:31:0b:3b:02:d1:31:4e:09:92:3c:be: 28:e2:51:aa:1c:80:e1:e6:4f:a4:73:d0:82:04:64: 84:c1:de:c1:c7:64:e4:f3:f9:54:60:d1:f1:49:a9: bc:21:ad:ed:82:06:32:a0:8f:c6:8c:02:a1:a5:f2: 9d:99:6c:9d:e6:c5:c5:01:a9:b6:09:59:d9:d9:fa: 6c:91:7c:07:e1:bc:d7:ae:f3:eb:ba:6a:ac:9e:bb: aa:94:36:54:d6:9d:cd:e5:cd:59:52:e5:55:fd:18: f0:c8:6e:be:de:93:da:49:36:f3:1e:b8:61:e2:be: 75:0a:ac:3e:57:ca:b1:7a:59:8f:4c:4b:b6:94:f3: a7:f9:d6:62:d3:13:7c:a2:e2:c7:b4:49:78:47:2a: 4e:37:27:17:af:ae:c6:c9:d4:a7:6e:ae:3f:d0:89: 7c:85:b3:30:05:98:56:8b:ca:83:16:cc:27:03:56: 27:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1E:89:6B:D0:6B:0D:6D:C5:81:63:11:06:78:93:14:D6:9E:8E:18 X509v3 Authority Key Identifier: keyid:71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.42.0/23 IPv6: 2001:df2:a140::/48 Signature Algorithm: sha256WithRSAEncryption b1:20:87:ab:83:8d:3d:41:a2:56:b9:de:08:27:a3:a8:32:20: a3:82:44:83:c0:c8:41:ed:ec:69:d4:ed:9c:bd:46:51:48:d2: 24:5d:33:a8:9c:c6:39:54:24:4b:cb:1d:44:50:f4:b8:89:f8: 05:79:e8:fb:6d:0d:a1:8c:c3:a7:29:b1:6e:33:f4:c6:8d:2b: 0e:6e:cb:83:f5:7a:17:ff:7e:a8:13:02:6f:56:ea:f3:4f:80: 51:9b:80:94:56:55:25:bc:a0:73:20:77:c0:2a:f0:5f:b7:3b: c1:58:da:68:e2:93:58:1a:37:3b:80:1e:f6:9d:d4:b0:a8:2a: 3d:09:c1:19:08:0d:d8:ef:6a:03:f8:62:28:90:32:73:7f:14: 90:d2:2d:9c:45:06:c9:6b:a9:d9:ee:de:ac:dc:db:19:e6:66: 0c:2b:1c:4a:0c:3e:21:7c:c4:1e:ae:17:17:be:c1:ec:dc:66: 62:6b:91:58:23:b9:ea:cd:5a:5c:2e:f8:fc:1d:83:7b:66:b4: 83:74:5f:00:e4:a7:4a:cb:32:8b:b1:3c:1b:7f:a6:c8:e9:7d: 12:f8:ca:86:fd:d9:fc:5a:83:16:66:31:f9:0c:be:8d:ee:2c: ce:9b:74:5e:7a:58:1d:6f:04:eb:d2:9d:6b:9b:ea:c4:f4:9e: 67:2e:d9:df -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjYyNzExMC8GA1UEBRMoNzExNzNFREE3MzA1Q0NGRDEwQkQ3OEQ4M0E5MzMwRThD NzY0MERGNjAeFw0yMzA3MTEwOTI0MzVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YWQxZmQzLTZkNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzUnyGGjUH0R9co4uDoXVZ0YrTzNZBOZgpIsMtxzpCu9M3kMReyyxhpNYcBfsF fTFzG85da6kflDnu3sBtDe8O8B3kT4WO4GafnIJhGZQxCzsC0TFOCZI8vijiUaoc gOHmT6Rz0IIEZITB3sHHZOTz+VRg0fFJqbwhre2CBjKgj8aMAqGl8p2ZbJ3mxcUB qbYJWdnZ+myRfAfhvNeu8+u6aqyeu6qUNlTWnc3lzVlS5VX9GPDIbr7ek9pJNvMe uGHivnUKrD5XyrF6WY9MS7aU86f51mLTE3yi4se0SXhHKk43JxevrsbJ1Kdurj/Q iXyFszAFmFaLyoMWzCcDVicFAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUnh6Ja9Br DW3FgWMRBniTFNaejhgwHwYDVR0jBBgwFoAUcRc+2nMFzP0QvXjYOpMw6MdkDfYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNjI3LzQ5M0RBMzY2MUZD OTExRUU5OTlGNTk2MEM0RjlBRTAyL2NSYy0ybk1GelAwUXZYallPcE13Nk1ka0Rm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1JjLTJuTUZ6UDBRdlhqWU9wTXc2TWRrRGZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjYyNy80OTNEQTM2NjFGQzkxMUVFOTk5RjU5NjBDNEY5QUUwMi9DMDAxRTU4NjFG Q0MxMUVFQjQwOUMzNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfmKjAPBAIAAjAJAwcAIAEN8qFAMA0GCSqGSIb3DQEBCwUA A4IBAQCxIIerg409QaJWud4IJ6OoMiCjgkSDwMhB7exp1O2cvUZRSNIkXTOonMY5 VCRLyx1EUPS4ifgFeej7bQ2hjMOnKbFuM/TGjSsObsuD9XoX/36oEwJvVurzT4BR m4CUVlUlvKBzIHfAKvBftzvBWNpo4pNYGjc7gB72ndSwqCo9CcEZCA3Y72oD+GIo kDJzfxSQ0i2cRQbJa6nZ7t6s3NsZ5mYMKxxKDD4hfMQerhcXvsHs3GZia5FYI7nq zVpcLvj8HYN7ZrSDdF8A5KdKyzKLsTwbf6bI6X0S+MqG/dn8WoMWZjH5DL6N7izO m3ReelgdbwTr0p1rm+rE9J5nLtnf -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org