$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/5D1B0906890E11EE90BBB457C4F9AE02.roa File: 5D1B0906890E11EE90BBB457C4F9AE02.roa (raw, json) Hash identifier: g4r6ivEyHj0KIxqTYJYUXvZRBiJtq89JACEKVxzuegY= Subject key identifier: 4D:12:11:94:F4:5B:8C:3B:2D:24:92:88:48:5E:E8:71:09:3E:25:65 Certificate issuer: /CN=A9127C10/serialNumber=7998F5E70816B68D7DF5ECF6772E7B5CA23ADF83 Certificate serial: 13 Authority key identifier: 79:98:F5:E7:08:16:B6:8D:7D:F5:EC:F6:77:2E:7B:5C:A2:3A:DF:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eZj15wgWto199ez2dy57XKI634M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/5D1B0906890E11EE90BBB457C4F9AE02.roa Signing time: Thu 21 Dec 2023 07:13:45 +0000 ROA not before: Thu 21 Dec 2023 07:13:45 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 141994 IP address blocks: 103.226.24.0/23 maxlen: 24 2401:ca0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/eZj15wgWto199ez2dy57XKI634M.crl rsync://rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/eZj15wgWto199ez2dy57XKI634M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eZj15wgWto199ez2dy57XKI634M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C10/serialNumber=7998F5E70816B68D7DF5ECF6772E7B5CA23ADF83 Validity Not Before: Dec 21 07:13:45 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6583e5a9-dff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:66:fd:50:cd:1e:18:45:90:3c:af:d0:ef: e7:f1:c2:db:9c:2f:6c:0c:c0:e1:69:70:e2:b5:8f: 8a:6f:08:d4:30:32:89:0f:9b:71:20:ce:37:42:fc: 19:d1:1d:a5:bc:77:e0:fa:b8:ad:f8:f6:5c:44:db: 2e:4d:aa:3f:dc:ad:d3:79:ee:ed:82:a7:e5:d0:66: cf:21:af:95:36:32:02:87:61:60:20:16:fa:bf:55: 57:85:88:b4:02:68:d1:92:90:cd:84:aa:a4:29:b6: 60:c8:ab:29:e4:58:be:48:57:7a:94:67:35:50:e8: 24:b2:a6:7a:ee:d9:a1:7f:d6:d7:24:3b:dd:c6:fa: 36:12:96:11:6e:63:96:2f:67:4f:4a:72:b7:90:a3: 34:19:2c:fa:62:ef:9e:3e:f2:db:9e:57:1e:4c:65: 35:b9:be:29:4a:0f:5c:68:fb:f3:ef:62:d8:1c:74: 76:9b:32:0d:4f:61:86:5c:86:12:c9:7e:83:3c:36: d1:3d:f2:8c:3d:d5:98:a6:e9:42:10:9d:ec:60:04: 62:d2:ec:59:fb:34:4a:4a:2d:8a:6b:ef:52:cd:96: 5d:26:11:22:f6:3e:1e:56:c1:24:0b:4a:c4:27:fc: e3:80:c2:57:f1:48:e4:b5:9d:76:1c:3e:b6:3f:07: 55:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:12:11:94:F4:5B:8C:3B:2D:24:92:88:48:5E:E8:71:09:3E:25:65 X509v3 Authority Key Identifier: keyid:79:98:F5:E7:08:16:B6:8D:7D:F5:EC:F6:77:2E:7B:5C:A2:3A:DF:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/eZj15wgWto199ez2dy57XKI634M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eZj15wgWto199ez2dy57XKI634M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C10/D9A9F9B0890D11EEB06A0C56C4F9AE02/5D1B0906890E11EE90BBB457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.24.0/23 IPv6: 2401:ca0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:cf:8c:61:f0:ee:57:1d:b7:84:f9:5c:ad:f3:8c:70:02:16: fa:4f:88:c3:7e:0c:bd:80:41:bb:4a:90:c9:3c:26:d3:8b:29: b2:6d:7f:1e:b9:03:fc:af:eb:62:fd:4e:9e:a9:8a:88:dd:06: 54:c0:13:0e:16:49:e2:aa:bc:58:00:9a:1b:09:7f:03:03:13: 30:96:7e:4e:93:e5:68:64:88:1f:45:b6:8a:8c:51:55:5d:7e: 92:77:74:c4:2a:ce:91:ae:3d:9a:86:cb:ff:21:27:0f:0f:0d: cf:75:72:bd:5d:88:24:10:6e:a6:93:48:e0:77:bf:c3:16:cd: 90:3c:c5:89:59:59:ae:3f:07:c9:55:3f:14:04:86:35:67:36: 61:82:5e:e9:bc:8b:8e:49:02:b3:d4:d6:0f:fb:fb:32:4f:97: cf:cc:97:62:de:15:4d:cc:38:cb:63:c0:79:d6:3d:85:b5:68: d3:06:05:11:bb:78:62:be:06:b8:2e:59:42:1a:21:f0:41:43: 11:b1:f0:ed:eb:4a:04:06:a0:9c:1a:a2:8d:86:f4:74:b5:c8: f8:4e:86:13:00:4b:54:c8:be:e6:11:98:37:02:50:8d:41:3f: a6:85:c9:f6:b5:f6:2a:e7:07:87:94:20:39:54:16:e0:d1:d1: a7:94:87:98 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0MxMDExMC8GA1UEBRMoNzk5OEY1RTcwODE2QjY4RDdERjVFQ0Y2NzcyRTdCNUNB MjNBREY4MzAeFw0yMzEyMjEwNzEzNDVaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODNlNWE5LWRmZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyJGb9UM0eGEWQPK/Q7+fxwtucL2wMwOFpcOK1j4pvCNQwMokPm3EgzjdC/BnR HaW8d+D6uK349lxE2y5Nqj/crdN57u2Cp+XQZs8hr5U2MgKHYWAgFvq/VVeFiLQC aNGSkM2EqqQptmDIqynkWL5IV3qUZzVQ6CSypnru2aF/1tckO93G+jYSlhFuY5Yv Z09KcreQozQZLPpi754+8tueVx5MZTW5vilKD1xo+/PvYtgcdHabMg1PYYZchhLJ foM8NtE98ow91Zim6UIQnexgBGLS7Fn7NEpKLYpr71LNll0mESL2Ph5WwSQLSsQn /OOAwlfxSOS1nXYcPrY/B1WHAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUTRIRlPRb jDstJJKISF7ocQk+JWUwHwYDVR0jBBgwFoAUeZj15wgWto199ez2dy57XKI634Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3QzEwL0Q5QTlGOUIwODkw RDExRUVCMDZBMEM1NkM0RjlBRTAyL2VaajE1d2dXdG8xOTllejJkeTU3WEtJNjM0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZVpqMTV3Z1d0bzE5OWV6MmR5NTdYS0k2MzRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0MxMC9EOUE5RjlCMDg5MEQxMUVFQjA2QTBDNTZDNEY5QUUwMi81RDFCMDkwNjg5 MEUxMUVFOTBCQkI0NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfiGDANBAIAAjAHAwUAJAEMoDANBgkqhkiG9w0BAQsFAAOC AQEAas+MYfDuVx23hPlcrfOMcAIW+k+Iw34MvYBBu0qQyTwm04spsm1/HrkD/K/r Yv1OnqmKiN0GVMATDhZJ4qq8WACaGwl/AwMTMJZ+TpPlaGSIH0W2ioxRVV1+knd0 xCrOka49mobL/yEnDw8Nz3VyvV2IJBBuppNI4He/wxbNkDzFiVlZrj8HyVU/FASG NWc2YYJe6byLjkkCs9TWD/v7Mk+Xz8yXYt4VTcw4y2PAedY9hbVo0wYFEbt4Yr4G uC5ZQhoh8EFDEbHw7etKBAagnBqijYb0dLXI+E6GEwBLVMi+5hGYNwJQjUE/poXJ 9rX2KucHh5QgOVQW4NHRp5SHmA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org