$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/AFF53F96556211EE9C34E435C4F9AE02.roa File: AFF53F96556211EE9C34E435C4F9AE02.roa (raw, json) Hash identifier: SlNtETM6I07+t2EpX9CpttYdcrRd0J5JXw68zWhg508= Subject key identifier: 1C:BE:C8:20:72:88:CF:9C:B9:38:45:C3:A4:AC:B9:DF:E6:98:09:82 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 2F Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/AFF53F96556211EE9C34E435C4F9AE02.roa Signing time: Sun 17 Sep 2023 14:01:24 +0000 ROA not before: Sun 17 Sep 2023 14:01:24 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 150683 IP address blocks: 103.229.252.0/24 maxlen: 24 103.229.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Sep 17 14:01:24 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650706b4-37ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fc:e8:e5:63:d4:4c:b1:7a:3b:e7:70:ff:0a: 15:e7:47:4b:c2:db:a2:7e:cd:94:1c:d2:3d:50:22: b9:30:57:b3:8a:40:ae:0d:49:61:90:92:26:2a:94: 94:89:cf:e8:d0:5a:ae:3b:94:b1:62:1c:f8:1e:2e: e4:f5:09:ad:a7:a1:7e:7c:a7:f4:4c:be:5b:2a:b9: 57:33:1b:a6:c4:d0:32:10:7e:69:f3:78:7d:e0:3b: 25:77:1f:be:7a:24:5a:82:4d:e7:a0:f1:6b:28:91: 3b:45:88:31:f3:cb:31:14:85:4d:ba:42:44:dd:fe: b5:aa:e4:a1:03:12:37:e2:f3:a6:5c:e5:37:2b:cc: 8c:f5:74:7f:cb:5c:7c:9c:a2:53:3e:48:db:e8:1a: b3:8b:03:e1:22:4e:8e:be:f6:f9:5c:57:ef:55:65: 14:8b:a4:b5:bc:c6:12:1f:6c:24:df:83:d2:f8:a1: 39:71:d8:01:cb:68:54:41:6d:b3:6d:47:9f:7f:c2: 70:6a:08:68:21:14:25:6e:fe:ed:84:a8:fb:51:3a: de:8e:68:c4:8c:26:cc:92:ce:43:c4:d4:20:7c:b3: 64:ea:51:d8:28:a9:14:7c:56:a9:b1:c5:78:34:e3: bf:12:23:60:1f:85:ad:8d:c6:81:3c:4b:53:3c:57: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:C8:20:72:88:CF:9C:B9:38:45:C3:A4:AC:B9:DF:E6:98:09:82 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/AFF53F96556211EE9C34E435C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.252.0/23 Signature Algorithm: sha256WithRSAEncryption 97:cc:31:4b:27:47:78:a9:4e:6b:26:6c:3b:95:9a:a3:69:05: aa:a9:55:ec:3b:85:59:c0:c3:4b:68:29:ed:6c:f6:33:7b:dc: 7e:d5:f0:7c:a0:4a:6d:a4:0f:4d:37:aa:1b:c1:ff:a3:8b:73: 87:62:05:b9:f4:1a:dd:30:a9:b0:41:29:9e:51:e4:47:3f:d0: 59:74:a8:c5:a2:9f:25:e5:5c:d7:e3:3d:38:29:5c:8f:70:4a: 1c:ba:40:e5:c8:5a:d6:82:fc:d8:29:1c:d6:09:f4:0d:61:9a: 99:02:d0:92:8e:ea:9c:3e:14:8f:30:65:b8:32:26:fc:23:77: 0a:cb:46:3b:8c:6b:22:c9:7d:6d:fa:ba:e9:e8:12:69:e5:9c: 36:42:c7:73:fd:28:f2:ce:1e:98:d3:63:41:be:21:30:60:1e: 4c:e1:bd:b7:20:c6:f8:6a:3d:7e:69:c4:63:38:fd:59:79:b2: e6:e3:99:33:45:4c:0f:25:1a:35:27:68:55:0c:f2:84:9a:dc: 21:d5:71:8a:ca:a3:93:72:fc:fb:85:b1:55:51:8b:14:47:2a: 81:f8:3c:f0:cf:07:e6:2a:9f:bb:c3:44:3a:d9:c1:c4:55:ca: 8b:03:02:1f:45:6f:fd:2e:b3:49:fe:0a:a5:df:0d:dd:25:a7: 01:44:41:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Q0I3RDExMC8GA1UEBRMoOTQwNENFREY3NEI5NDk3NDUxRUYzMkJCN0ExMkJFRDcx RDJDMjNFNTAeFw0yMzA5MTcxNDAxMjRaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MDcwNmI0LTM3YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt/OjlY9RMsXo753D/ChXnR0vC26J+zZQc0j1QIrkwV7OKQK4NSWGQkiYqlJSJ z+jQWq47lLFiHPgeLuT1Ca2noX58p/RMvlsquVczG6bE0DIQfmnzeH3gOyV3H756 JFqCTeeg8WsokTtFiDHzyzEUhU26QkTd/rWq5KEDEjfi86Zc5TcrzIz1dH/LXHyc olM+SNvoGrOLA+EiTo6+9vlcV+9VZRSLpLW8xhIfbCTfg9L4oTlx2AHLaFRBbbNt R59/wnBqCGghFCVu/u2EqPtROt6OaMSMJsySzkPE1CB8s2TqUdgoqRR8VqmxxXg0 478SI2Afha2NxoE8S1M8Vx5lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHL7IIHKI z5y5OEXDpKy53+aYCYIwHwYDVR0jBBgwFoAUlATO33S5SXRR7zK7ehK+1x0sI+Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDQjdEL0IyQjNENzdDMUI0 NDExRUVBMzU3OEUyOUM0RjlBRTAyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0kt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEFUTzMzUzVTWFJSN3pLN2VoSy0xeDBzSS1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9BRkY1M0Y5NjU1 NjIxMUVFOUMzNEU0MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfl/DANBgkqhkiG9w0BAQsFAAOCAQEAl8wxSydHeKlOayZs O5Wao2kFqqlV7DuFWcDDS2gp7Wz2M3vcftXwfKBKbaQPTTeqG8H/o4tzh2IFufQa 3TCpsEEpnlHkRz/QWXSoxaKfJeVc1+M9OClcj3BKHLpA5cha1oL82Ckc1gn0DWGa mQLQko7qnD4UjzBluDIm/CN3CstGO4xrIsl9bfq66egSaeWcNkLHc/0o8s4emNNj Qb4hMGAeTOG9tyDG+Go9fmnEYzj9WXmy5uOZM0VMDyUaNSdoVQzyhJrcIdVxisqj k3L8+4WxVVGLFEcqgfg88M8H5iqfu8NEOtnBxFXKiwMCH0Vv/S6zSf4Kpd8N3SWn AURBVA== -----END CERTIFICATE-----Generated at Fri Jun 7 09:40:14 2024 by rpki-client on console-ams.rpki-client.org