$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/D8D63660B9A811ECB7EE5A71C4F9AE02.roa File: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (raw, json) Hash identifier: SXDuy3cjJrsJ5Wcyy+xzu8jBQxpXFkylGcCMPDh81cQ= Subject key identifier: 6E:81:06:88:7E:8C:98:4B:CF:27:64:96:65:67:45:AD:A7:1B:81:FC Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 107D Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/D8D63660B9A811ECB7EE5A71C4F9AE02.roa Signing time: Thu 30 Nov 2023 18:25:38 +0000 ROA not before: Thu 30 Nov 2023 18:25:38 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4837 IP address blocks: 103.123.4.0/23 maxlen: 23 103.123.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4221 (0x107d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Nov 30 18:25:38 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6568d3a2-0838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:39:7f:93:09:be:ba:01:d4:c1:f9:8e:2c:38: f8:06:18:e1:c4:39:13:6b:27:ae:30:33:86:db:1e: 3a:5b:7f:b5:4c:8e:f9:60:2f:4c:28:3e:5b:62:20: ec:6c:53:72:f7:6e:f0:ce:a5:81:c0:34:4a:7a:d7: 57:2d:dd:01:34:d2:c8:d8:6a:a1:8d:75:95:e1:15: 91:04:61:77:88:9b:03:05:7a:3a:41:3f:5d:ba:79: 13:51:ea:33:21:1d:6a:80:24:b7:8b:3f:ad:ac:8c: 06:fc:c8:be:b5:ef:a2:00:f2:74:60:3e:62:54:87: 3a:87:4a:6b:63:5e:db:d6:4c:3e:fc:a0:6c:1e:82: b6:6a:d5:41:35:8e:41:67:0b:5b:4d:fd:c0:0e:83: bc:fb:22:6c:45:25:a3:e0:f7:d3:8f:c5:e8:2b:5c: 49:93:fe:92:50:88:5c:aa:c9:bf:16:58:42:65:20: 74:43:74:a5:73:ba:84:90:3c:a8:74:ba:d3:99:27: 4d:3e:26:e7:f6:2d:c8:a4:57:48:f2:12:5e:be:bc: 0f:1f:7d:2f:fe:d6:0d:f1:d5:ca:23:74:e1:47:71: 0f:4e:47:d8:ea:5c:93:d5:1b:de:1d:a0:5e:c8:c6: cd:c1:3b:1b:d1:b2:4b:99:07:e7:f0:f0:cc:ed:ee: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:81:06:88:7E:8C:98:4B:CF:27:64:96:65:67:45:AD:A7:1B:81:FC X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/D8D63660B9A811ECB7EE5A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.4.0/22 Signature Algorithm: sha256WithRSAEncryption ae:04:81:58:10:45:19:e9:8f:4f:29:51:46:e5:f8:65:80:2d: b2:18:6f:e0:2b:e1:56:7e:b5:20:f3:2f:c9:72:ca:a0:cd:16: 30:dc:3c:dd:ba:e5:d3:b9:f8:dc:24:0c:d8:f1:fb:7f:06:51: 4e:79:72:1f:ea:5a:14:d3:54:a4:9f:bd:80:24:cf:59:94:c8: f1:89:56:44:45:e7:1b:15:8c:3d:c7:dc:3a:58:20:00:13:7f: 6b:da:41:cc:e8:5c:74:98:f0:5a:7f:61:25:10:40:c0:d8:37: fe:21:f8:41:a9:7e:0a:96:56:a2:f3:a6:24:43:ea:09:a7:1d: 74:8d:ad:bb:20:d8:f6:d5:8f:8c:bb:1e:6e:69:47:11:1a:2d: de:63:db:b8:a9:fa:fe:aa:7d:39:c5:7a:e6:f0:ee:89:14:0e: 09:ed:5e:02:92:29:70:f2:01:1f:4e:b4:6e:7d:61:85:9e:9d: e2:36:cb:9a:17:b6:cd:d8:51:6f:8e:dd:c8:77:c4:82:53:d5: 68:3d:16:97:35:41:72:3e:68:db:b3:27:9a:2c:11:f5:32:42: f1:16:ab:56:71:dc:93:77:df:cc:df:64:f5:27:6a:8d:0b:af: 73:b1:83:8b:9f:3f:b2:33:56:06:25:bf:eb:16:9c:51:fe:c1: 5a:63:1d:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjMxMTMwMTgyNTM4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4ZDNhMi0wODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTl/kwm+ugHUwfmOLDj4BhjhxDkTayeuMDOG2x46W3+1TI75YC9MKD5bYiDs bFNy927wzqWBwDRKetdXLd0BNNLI2GqhjXWV4RWRBGF3iJsDBXo6QT9dunkTUeoz IR1qgCS3iz+trIwG/Mi+te+iAPJ0YD5iVIc6h0prY17b1kw+/KBsHoK2atVBNY5B ZwtbTf3ADoO8+yJsRSWj4PfTj8XoK1xJk/6SUIhcqsm/FlhCZSB0Q3Slc7qEkDyo dLrTmSdNPibn9i3IpFdI8hJevrwPH30v/tYN8dXKI3ThR3EPTkfY6lyT1RveHaBe yMbNwTsb0bJLmQfn8PDM7e5u6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFG6BBoh+ jJhLzydklmVnRa2nG4H8MB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBDREUvMjNEODU2NkVGQkRCMTFFODkyMENCMDQ0QzRGOUFFMDIvRDhENjM2NjBC OUE4MTFFQ0I3RUU1QTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnewQwDQYJKoZIhvcNAQELBQADggEBAK4EgVgQRRnpj08p UUbl+GWALbIYb+Ar4VZ+tSDzL8lyyqDNFjDcPN265dO5+NwkDNjx+38GUU55ch/q WhTTVKSfvYAkz1mUyPGJVkRF5xsVjD3H3DpYIAATf2vaQczoXHSY8Fp/YSUQQMDY N/4h+EGpfgqWVqLzpiRD6gmnHXSNrbsg2PbVj4y7Hm5pRxEaLd5j27ip+v6qfTnF eubw7okUDgntXgKSKXDyAR9OtG59YYWeneI2y5oXts3YUW+O3ch3xIJT1Wg9Fpc1 QXI+aNuzJ5osEfUyQvEWq1Zx3JN338zfZPUnao0Lr3Oxg4ufP7IzVgYlv+sWnFH+ wVpjHTM= -----END CERTIFICATE-----Generated at Fri May 31 19:47:46 2024 by rpki-client on console-fra.rpki-client.org