$ rpki-client -vvf rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa File: F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa (raw, json) Hash identifier: xbHnwlsEfntbRIZRWTOcVT7U6zL7m6x1cvw0eilA3qU= Subject key identifier: D1:B5:58:24:26:F6:28:FE:84:5B:3C:18:15:C4:62:10:B3:26:41:CB Certificate issuer: /CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Certificate serial: 02 Authority key identifier: 8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa Signing time: Thu 14 Mar 2024 12:39:50 +0000 ROA not before: Thu 14 Mar 2024 12:39:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138152 IP address blocks: 103.147.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Validity Not Before: Mar 14 12:39:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65f2f016-1781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:f6:6f:a7:47:13:86:39:f6:83:17:8f:cd: 71:89:ef:a8:80:b9:40:1e:12:4a:86:5d:69:d6:0a: 82:88:2f:71:06:f8:9a:3a:d1:1d:db:8b:3d:1b:89: 33:26:12:45:79:b0:92:4a:12:a6:60:ce:4a:92:4e: d2:82:05:38:1d:29:42:08:3f:a2:d9:92:42:91:14: 80:60:4c:ae:a6:53:89:44:9b:36:a1:e0:4d:46:32: b6:22:e9:5c:08:29:5a:6b:dc:c6:4f:f6:bd:e9:94: 17:32:68:b9:fd:e9:45:fa:d6:86:4e:be:6e:7c:cc: aa:53:6e:95:df:ed:11:c1:ac:a7:73:6d:81:32:5b: 70:b8:d4:79:74:56:32:30:09:63:28:1e:86:29:4d: c8:d2:36:49:e2:5a:98:6f:40:57:58:04:14:d5:4d: 63:21:51:6f:c9:17:be:b6:9f:0a:84:d6:f1:3a:50: de:60:dd:c7:f2:2b:86:82:99:59:87:6a:84:c4:5b: 03:c6:96:2f:5e:bc:ed:b0:52:b8:26:ba:9d:15:87: df:74:7f:78:a7:aa:a2:57:20:7c:39:67:bf:b5:92: 67:f3:aa:9e:7a:8f:a6:01:ed:5d:32:de:ab:8b:f3: 3c:2b:d1:52:e7:a0:52:04:e8:4e:cf:57:81:6d:ca: 62:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B5:58:24:26:F6:28:FE:84:5B:3C:18:15:C4:62:10:B3:26:41:CB X509v3 Authority Key Identifier: keyid:8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.14.0/24 Signature Algorithm: sha256WithRSAEncryption 61:7c:c4:e9:b0:87:71:22:72:6e:c9:a0:7e:a8:0e:ce:7b:7c: b2:03:06:96:8b:3d:da:b2:cc:70:bd:23:26:ad:a5:2d:11:0b: ec:0d:af:5d:5d:5d:89:e2:4d:63:9f:d5:49:f8:e8:62:8e:c8: 7c:d2:96:e2:be:66:3a:f8:6c:22:34:42:57:26:e5:b3:af:32: 5a:f6:63:bf:cd:c5:96:cb:ba:79:45:4b:a2:93:e0:60:81:02: 4a:e5:a0:f2:96:81:4c:f8:d6:9c:9d:76:76:f9:d8:b7:2c:dd: aa:6e:6d:f7:ed:54:2d:c8:f0:be:2c:12:87:9b:2d:01:9a:a4: 09:a8:99:42:44:8e:5a:6f:20:a9:c3:be:d0:fb:31:06:65:82: 27:d2:72:cd:7a:fe:55:99:a2:5a:6b:72:85:92:75:ce:5f:9d: 60:73:db:31:2b:2f:b4:82:ec:bf:86:70:f8:3f:60:be:47:32: f7:91:f4:16:4b:2b:cd:5e:49:68:20:a9:e7:ed:74:6c:ae:63: df:4b:49:cc:f1:59:7a:83:bc:db:d9:77:9e:47:c3:48:b8:2e: 65:7f:f8:b5:f1:ea:a1:dd:aa:a3:a0:90:01:eb:20:c5:9c:dd: d9:83:20:39:1e:b9:73:7b:67:b4:e9:8c:14:a5:ba:31:11:6d: 4b:4d:9d:cb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTM5QzExMC8GA1UEBRMoOEM2Q0ZCQUJDRTg3QkExOUEyMEE3Qjg3RjI4NjUyREI1 QjRBN0Q1MjAeFw0yNDAzMTQxMjM5NTBaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjJmMDE2LTE3ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1UfZvp0cThjn2gxePzXGJ76iAuUAeEkqGXWnWCoKIL3EG+Jo60R3biz0biTMm EkV5sJJKEqZgzkqSTtKCBTgdKUIIP6LZkkKRFIBgTK6mU4lEmzah4E1GMrYi6VwI KVpr3MZP9r3plBcyaLn96UX61oZOvm58zKpTbpXf7RHBrKdzbYEyW3C41Hl0VjIw CWMoHoYpTcjSNkniWphvQFdYBBTVTWMhUW/JF762nwqE1vE6UN5g3cfyK4aCmVmH aoTEWwPGli9evO2wUrgmup0Vh990f3inqqJXIHw5Z7+1kmfzqp56j6YB7V0y3quL 8zwr0VLnoFIE6E7PV4FtymJBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0bVYJCb2 KP6EWzwYFcRiELMmQcswHwYDVR0jBBgwFoAUjGz7q86HuhmiCnuH8oZS21tKfVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBMzlDLzlENTg0RDY4RTFG RjExRUVCMkExQ0UyNEM0RjlBRTAyL2pHejdxODZIdWhtaUNudUg4b1pTMjF0S2ZW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakd6N3E4Nkh1aG1pQ251SDhvWlMyMXRLZlZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTM5Qy85RDU4NEQ2OEUxRkYxMUVFQjJBMUNFMjRDNEY5QUUwMi9GMkY5OTMzQUUx RkYxMUVFOUE1RDhDMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeTDjANBgkqhkiG9w0BAQsFAAOCAQEAYXzE6bCHcSJybsmg fqgOznt8sgMGlos92rLMcL0jJq2lLREL7A2vXV1dieJNY5/VSfjoYo7IfNKW4r5m OvhsIjRCVybls68yWvZjv83Flsu6eUVLopPgYIECSuWg8paBTPjWnJ12dvnYtyzd qm5t9+1ULcjwviwSh5stAZqkCaiZQkSOWm8gqcO+0PsxBmWCJ9JyzXr+VZmiWmty hZJ1zl+dYHPbMSsvtILsv4Zw+D9gvkcy95H0FksrzV5JaCCp5+10bK5j30tJzPFZ eoO829l3nkfDSLguZX/4tfHqod2qo6CQAesgxZzd2YMgOR65c3tntOmMFKW6MRFt S02dyw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org