$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/72D237AEEBA011EC87608210C4F9AE02.roa File: 72D237AEEBA011EC87608210C4F9AE02.roa (raw, json) Hash identifier: +a0U6w1CjuusxBG03ixVQAqkLcwL21Ku4OSmZ/v9k2w= Subject key identifier: 84:0D:B9:7E:35:D3:C6:3E:CB:5F:53:71:B6:90:72:51:62:F4:BD:EA Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 01BF Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/72D237AEEBA011EC87608210C4F9AE02.roa Signing time: Wed 15 Nov 2023 03:36:06 +0000 ROA not before: Wed 15 Nov 2023 03:36:06 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38794 IP address blocks: 103.28.240.0/23 maxlen: 24 119.13.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Nov 15 03:36:06 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65543ca5-0723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4d:43:e6:d6:95:87:a6:86:45:4c:d5:7c:35: 4f:82:1f:37:d8:09:87:7b:ed:b1:f0:0b:59:90:95: 51:86:91:14:a1:98:d3:ca:5d:0f:52:7a:72:e7:2a: 9a:b9:20:c5:4e:cc:2b:e2:fe:94:b2:8b:17:76:67: a7:31:00:36:ef:c7:6e:a2:57:fc:5c:ef:e0:f4:cf: 73:40:e9:fc:08:fc:0f:63:3d:d7:02:a3:c1:77:72: c8:6b:13:9f:c3:b7:de:33:d1:ff:c7:b0:47:6c:ce: 3a:10:9c:f5:e7:d9:53:01:ff:e1:23:3d:4f:0f:13: 46:94:54:a9:c8:e8:e7:c9:50:8e:bc:8b:4e:3e:05: 0d:fa:8c:a5:62:3b:12:61:c8:3f:fb:cb:12:de:2b: 21:46:22:5d:f9:83:fa:38:d9:13:61:1b:05:66:49: 1c:ae:23:a5:c0:58:c4:a3:10:24:20:b2:79:a4:dc: 26:74:db:24:80:05:bd:3c:c7:4c:02:2f:56:d0:3e: 1f:bd:b5:73:09:d0:8b:c1:1a:91:18:0c:d3:5a:44: fe:ff:9d:35:cb:96:13:63:65:ac:1a:bd:df:53:d8: 78:e3:45:15:20:05:99:fb:2e:f1:d3:14:e6:23:c7: 94:54:76:2f:6d:22:e5:ed:30:90:4c:bf:af:b7:90: 9c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0D:B9:7E:35:D3:C6:3E:CB:5F:53:71:B6:90:72:51:62:F4:BD:EA X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/72D237AEEBA011EC87608210C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.240.0/23 119.13.24.0/21 Signature Algorithm: sha256WithRSAEncryption 08:77:14:ba:7f:ff:46:1f:49:e9:d2:3b:20:ef:40:4c:6f:f0: da:b5:70:33:26:a8:b1:e9:75:48:ed:da:44:95:0c:82:fd:ac: 56:3e:3c:8d:b0:10:0d:aa:69:01:f9:09:cc:40:70:d0:fa:45: 03:ce:53:f2:30:03:d5:00:a9:d1:d6:ee:04:3e:c6:4d:9e:0a: ea:19:e6:cf:30:fc:40:28:38:4b:0b:7e:71:fd:d7:12:fc:87: 5e:a6:4c:d1:3c:69:ff:85:92:4c:cf:20:a9:23:ea:7e:49:59: a7:54:cf:1a:9c:c9:a8:a9:61:24:2d:d2:3c:bf:b0:97:c1:2f: 21:0b:45:43:e8:81:3d:b7:5f:b7:93:a5:14:3c:8f:94:b5:f5: c2:45:ca:b2:9b:84:92:25:ec:78:ef:a2:d7:82:c7:9d:46:7b: e0:2f:62:97:ae:02:26:f4:87:94:9c:f0:06:52:ad:82:ec:30: ca:0c:d9:86:69:04:e5:84:1c:4f:c5:9b:24:e8:54:ba:8f:d3: 13:ff:ca:26:55:88:5f:b8:92:1b:a0:17:6d:fd:84:b0:4c:3e: f1:a5:11:59:3e:66:fc:4d:bf:82:ca:d2:1f:f3:57:d8:40:7e: 51:49:d5:ea:0e:cf:36:ab:1b:26:c7:ad:64:69:1a:ec:7b:a4: 1e:68:df:98 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjMxMTE1MDMzNjA2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0M2NhNS0wNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U1D5taVh6aGRUzVfDVPgh832AmHe+2x8AtZkJVRhpEUoZjTyl0PUnpy5yqa uSDFTswr4v6UsosXdmenMQA278duolf8XO/g9M9zQOn8CPwPYz3XAqPBd3LIaxOf w7feM9H/x7BHbM46EJz159lTAf/hIz1PDxNGlFSpyOjnyVCOvItOPgUN+oylYjsS Ycg/+8sS3ishRiJd+YP6ONkTYRsFZkkcriOlwFjEoxAkILJ5pNwmdNskgAW9PMdM Ai9W0D4fvbVzCdCLwRqRGAzTWkT+/501y5YTY2WsGr3fU9h440UVIAWZ+y7x0xTm I8eUVHYvbSLl7TCQTL+vt5CcdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIQNuX41 08Y+y19TcbaQclFi9L3qMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvNzJEMjM3QUVF QkEwMTFFQzg3NjA4MjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnHPADBAN3DRgwDQYJKoZIhvcNAQELBQADggEBAAh3FLp/ /0YfSenSOyDvQExv8Nq1cDMmqLHpdUjt2kSVDIL9rFY+PI2wEA2qaQH5CcxAcND6 RQPOU/IwA9UAqdHW7gQ+xk2eCuoZ5s8w/EAoOEsLfnH91xL8h16mTNE8af+FkkzP IKkj6n5JWadUzxqcyaipYSQt0jy/sJfBLyELRUPogT23X7eTpRQ8j5S19cJFyrKb hJIl7HjvoteCx51Ge+AvYpeuAib0h5Sc8AZSrYLsMMoM2YZpBOWEHE/FmyToVLqP 0xP/yiZViF+4khugF239hLBMPvGlEVk+ZvxNv4LK0h/zV9hAflFJ1eoOzzarGybH rWRpGux7pB5o35g= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:11 2024 by rpki-client on console-ams.rpki-client.org