$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa File: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (raw, json) Hash identifier: UGHSRikhzP49zQi9N4IrGOVK6HkSjO8xJzRd8NXO9jk= Subject key identifier: C4:36:C7:6F:56:CF:BD:1F:73:D5:EC:8E:AC:D7:8E:2E:E7:75:38:99 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 01EE Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa Signing time: Thu 21 Sep 2023 02:44:10 +0000 ROA not before: Thu 21 Sep 2023 02:44:10 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134415 IP address blocks: 103.42.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Sep 21 02:44:10 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=650badfa-2503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f3:19:87:ee:1f:0d:be:ac:b2:48:f5:2c:32: d3:45:fe:98:1c:aa:29:6b:4e:14:83:db:cd:31:9c: 8e:cf:2e:41:12:da:57:7f:3b:b3:c0:62:26:9f:cc: 34:9e:4c:ff:03:4d:35:f6:0c:01:90:e4:65:bb:1a: f2:fb:5e:55:2b:f7:a1:31:3f:5e:be:35:36:df:59: 17:e1:99:08:1f:dc:56:fd:33:62:c9:c7:cd:16:c8: eb:b7:93:5d:4f:af:d0:c2:4c:bc:d0:97:de:b8:51: 11:74:fc:51:b2:f7:7b:fb:98:07:27:23:f4:34:32: e5:e3:3f:72:dd:f0:77:c1:58:ab:4e:60:12:11:b1: 01:7d:18:54:e4:ad:1d:91:17:57:98:4b:fc:5e:75: 1d:f2:c4:ef:31:41:d3:6d:84:1e:9e:8a:8e:a5:10: 9a:52:e3:e0:23:eb:51:7d:c1:df:10:ce:56:6b:70: 57:4f:db:b4:33:25:0d:b2:77:3d:31:b0:c4:22:ff: d5:96:29:f3:f3:4b:5c:f5:ca:ea:cc:85:93:a0:71: 8c:68:04:96:8d:95:2b:ef:1a:ce:3c:59:da:bc:8b: 29:8b:8f:59:fc:de:c3:f4:04:35:f8:6f:f8:4a:93: c5:56:c8:ee:92:75:af:24:21:0f:38:55:db:ae:15: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:36:C7:6F:56:CF:BD:1F:73:D5:EC:8E:AC:D7:8E:2E:E7:75:38:99 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.96.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:fb:79:db:a4:05:50:39:b8:99:2e:68:84:c6:f0:7c:c1:26: 9a:3c:67:cc:ed:b8:49:28:c2:8a:b6:75:e1:5e:8a:b9:47:c8: a1:89:2c:c4:93:8a:8b:35:c0:7a:d1:59:34:b6:2a:21:96:cf: 44:d6:8b:9a:b2:2a:ef:c5:15:96:2a:90:91:7c:42:30:3b:fb: da:bd:2f:f5:f1:9d:b0:16:e4:30:47:43:87:8b:c7:77:cd:b3: dd:55:4f:7e:5f:fe:6a:d2:50:1f:82:17:d2:e3:ea:46:e5:9e: 69:ba:53:c8:32:94:d2:91:6d:52:93:b2:c5:6e:bf:6d:f1:b8: e6:b6:e0:eb:70:81:12:aa:75:b7:f5:a0:02:31:c6:eb:4e:17: df:83:2a:6a:10:0c:13:7a:2d:bf:a0:3d:53:3b:e2:d1:a4:51: 78:cf:54:02:27:d0:65:2c:5f:77:8a:b4:51:48:f0:dd:fe:e7: 95:bf:fc:34:aa:c6:a7:df:85:6b:fd:cc:71:55:31:5b:64:cc: 96:44:08:4d:ca:26:8e:01:09:0a:02:8d:9f:de:4a:9d:e3:6b: c3:d5:06:e4:08:75:50:32:6d:12:47:5c:65:33:7c:a7:a3:e3: 3e:9b:23:77:6f:e1:59:99:d8:73:be:da:b9:2b:a5:14:ec:8c: d5:27:23:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjMwOTIxMDI0NDEwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiYWRmYS0yNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fMZh+4fDb6sskj1LDLTRf6YHKopa04Ug9vNMZyOzy5BEtpXfzuzwGImn8w0 nkz/A0019gwBkORluxry+15VK/ehMT9evjU231kX4ZkIH9xW/TNiycfNFsjrt5Nd T6/Qwky80JfeuFERdPxRsvd7+5gHJyP0NDLl4z9y3fB3wVirTmASEbEBfRhU5K0d kRdXmEv8XnUd8sTvMUHTbYQenoqOpRCaUuPgI+tRfcHfEM5Wa3BXT9u0MyUNsnc9 MbDEIv/Vlinz80tc9crqzIWToHGMaASWjZUr7xrOPFnavIspi49Z/N7D9AQ1+G/4 SpPFVsjuknWvJCEPOFXbrhUUqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMQ2x29W z70fc9XsjqzXji7ndTiZMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvMUJDM0U5RjhE MEY3MTFFQzg2NzMwNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKmAwDQYJKoZIhvcNAQELBQADggEBACr7edukBVA5uJku aITG8HzBJpo8Z8ztuEkowoq2deFeirlHyKGJLMSTios1wHrRWTS2KiGWz0TWi5qy Ku/FFZYqkJF8QjA7+9q9L/XxnbAW5DBHQ4eLx3fNs91VT35f/mrSUB+CF9Lj6kbl nmm6U8gylNKRbVKTssVuv23xuOa24OtwgRKqdbf1oAIxxutOF9+DKmoQDBN6Lb+g PVM74tGkUXjPVAIn0GUsX3eKtFFI8N3+55W//DSqxqffhWv9zHFVMVtkzJZECE3K Jo4BCQoCjZ/eSp3ja8PVBuQIdVAybRJHXGUzfKej4z6bI3dv4VmZ2HO+2rkrpRTs jNUnIxo= -----END CERTIFICATE-----Generated at Fri Jun 7 05:32:03 2024 by rpki-client on console-fra.rpki-client.org