$ rpki-client -vvf rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/0EE3438A07FC11EABAD90A47C4F9AE02.roa File: 0EE3438A07FC11EABAD90A47C4F9AE02.roa (raw, json) Hash identifier: CQr3GJqcTZiiFM7/eSUYGrEr18nzm/M4tEQIQmwunfU= Subject key identifier: 2F:95:09:72:F5:C9:D6:07:3E:94:53:08:79:E7:8D:0D:F1:CC:E8:CB Certificate issuer: /CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Certificate serial: 0B27 Authority key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/0EE3438A07FC11EABAD90A47C4F9AE02.roa Signing time: Fri 08 Dec 2023 19:26:38 +0000 ROA not before: Fri 08 Dec 2023 19:26:38 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139718 IP address blocks: 103.144.10.0/24 maxlen: 24 103.144.11.0/24 maxlen: 24 2001:df1:a880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Validity Not Before: Dec 8 19:26:38 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65736dee-0d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:6e:f0:68:47:aa:5a:cf:09:14:bd:1d:21: 78:be:de:09:c0:54:96:f7:4f:82:63:37:b5:5f:c0: 60:40:41:e9:88:df:d2:f2:aa:a4:90:bb:fb:1a:a2: 45:81:8b:48:44:21:6c:35:ab:46:08:49:4e:66:d8: 8a:28:d5:7e:67:c3:2f:5d:74:5a:64:67:b4:eb:8e: 0a:11:93:5c:85:aa:95:df:4e:a4:f2:ed:43:3b:c3: 8c:a7:db:b5:77:27:d2:fa:ae:d3:1a:20:8c:e8:54: c4:a1:fe:f6:6c:82:97:35:0c:d4:0d:4d:a4:8c:93: c6:f4:97:67:94:d8:2d:ea:32:ab:52:ed:05:c0:63: 17:0b:5d:e0:fc:b1:68:61:1f:4f:ea:fe:8f:a4:9c: 7f:5e:02:ba:21:1b:de:75:57:8c:44:51:4e:09:e6: f4:7e:c5:e0:3d:a3:b0:f7:07:65:0c:65:05:59:62: 11:b4:9e:f6:8c:bb:a5:33:8e:e8:8f:4a:29:ad:53: f1:d3:47:64:29:ae:53:97:2d:b7:85:23:95:c3:15: 9e:01:8e:23:2c:d3:29:54:4c:17:4c:32:a2:35:16: bf:15:f5:66:a2:53:83:39:c3:3e:bf:d5:ee:cc:b4: 68:b1:fc:32:f9:0b:aa:40:83:16:2a:68:6e:53:34: a8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:95:09:72:F5:C9:D6:07:3E:94:53:08:79:E7:8D:0D:F1:CC:E8:CB X509v3 Authority Key Identifier: keyid:D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/0EE3438A07FC11EABAD90A47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.10.0/23 IPv6: 2001:df1:a880::/48 Signature Algorithm: sha256WithRSAEncryption 4d:43:f4:b7:da:c4:c9:15:1b:84:b8:d8:34:89:b7:84:a3:3d: c3:e6:1f:16:ae:f6:00:f7:81:7b:99:f1:56:54:70:9c:0e:11: a3:e6:e5:25:83:22:a3:6c:91:de:29:66:e6:27:3e:44:e2:99: 81:4d:be:0f:f8:08:2d:de:28:e1:db:30:96:a3:bd:96:75:24: 81:df:1f:35:51:33:34:a4:f4:1d:7f:dc:1e:97:a1:3f:73:4f: 6d:9d:9b:41:f5:75:8e:12:eb:45:df:b8:ae:9c:d4:83:08:b7: 18:13:ea:af:f8:5f:b3:63:9d:70:07:57:8e:47:54:6b:3b:8f: 13:77:52:d2:be:c1:f2:43:6a:6b:f4:48:d6:cf:b4:96:2a:76: 11:66:1f:61:3d:ce:01:ac:5d:33:78:44:f4:bb:da:f3:2a:89: 8b:32:71:e2:7e:bd:14:98:d0:4e:05:91:57:48:39:26:1d:c5: 7d:b6:15:ba:67:a2:9f:2e:34:ef:98:1b:06:57:af:6b:a2:93: 89:75:3c:b3:47:21:da:7b:5a:71:10:cb:d2:30:b6:e8:4c:0f: 81:a8:ef:00:54:01:f8:a3:86:06:54:8d:69:05:7b:f4:18:a7: 72:0e:77:68:e7:04:d2:81:6b:1b:74:69:dd:d5:a2:4f:6f:6d: 3a:9c:bd:65 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxODAxMTAvBgNVBAUTKEQ2NkUwMjgyMjc3NkZCNTUxNDNEMEM5RTU0OTAzMjg2 NTZBNUUwOEQwHhcNMjMxMjA4MTkyNjM4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNmRlZS0wZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJVu8GhHqlrPCRS9HSF4vt4JwFSW90+CYze1X8BgQEHpiN/S8qqkkLv7GqJF gYtIRCFsNatGCElOZtiKKNV+Z8MvXXRaZGe0644KEZNchaqV306k8u1DO8OMp9u1 dyfS+q7TGiCM6FTEof72bIKXNQzUDU2kjJPG9JdnlNgt6jKrUu0FwGMXC13g/LFo YR9P6v6PpJx/XgK6IRvedVeMRFFOCeb0fsXgPaOw9wdlDGUFWWIRtJ72jLulM47o j0oprVPx00dkKa5Tly23hSOVwxWeAY4jLNMpVEwXTDKiNRa/FfVmolODOcM+v9Xu zLRosfwy+QuqQIMWKmhuUzSojwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC+VCXL1 ydYHPpRTCHnnjQ3xzOjLMB8GA1UdIwQYMBaAFNZuAoIndvtVFD0MnlSQMoZWpeCN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE4MC8zMDU2OURCMDA3 RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0xVVVQUXllVkpBeWhsYWw0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtNENnaWQyLTFVVVBReWVWSkF5aGxhbDRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMxODAvMzA1NjlEQjAwN0ZCMTFFQTlCMzRDQzQ1QzRGOUFFMDIvMEVFMzQzOEEw N0ZDMTFFQUJBRDkwQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkAowDwQCAAIwCQMHACABDfGogDANBgkqhkiG9w0BAQsF AAOCAQEATUP0t9rEyRUbhLjYNIm3hKM9w+YfFq72APeBe5nxVlRwnA4Ro+blJYMi o2yR3ilm5ic+ROKZgU2+D/gILd4o4dswlqO9lnUkgd8fNVEzNKT0HX/cHpehP3NP bZ2bQfV1jhLrRd+4rpzUgwi3GBPqr/hfs2OdcAdXjkdUazuPE3dS0r7B8kNqa/RI 1s+0lip2EWYfYT3OAaxdM3hE9Lva8yqJizJx4n69FJjQTgWRV0g5Jh3FfbYVumei ny4075gbBleva6KTiXU8s0ch2ntacRDL0jC26EwPgajvAFQB+KOGBlSNaQV79Bin cg53aOcE0oFrG3Rp3dWiT29tOpy9ZQ== -----END CERTIFICATE-----Generated at Sun Jun 2 20:59:14 2024 by rpki-client on console-fra.rpki-client.org