$ rpki-client -vvf rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/311647C0896C11EBA85B0747C4F9AE02.roa File: 311647C0896C11EBA85B0747C4F9AE02.roa (raw, json) Hash identifier: PNSS4qHOV6MWCSZPIT8uJB3LDv9E0VejUgWz3gabi4Y= Subject key identifier: AE:87:7E:0D:95:BD:65:78:6A:92:8E:65:56:B9:50:A1:57:9B:31:5E Certificate issuer: /CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Certificate serial: 07EC Authority key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/311647C0896C11EBA85B0747C4F9AE02.roa Signing time: Fri 14 Jul 2023 20:57:24 +0000 ROA not before: Fri 14 Jul 2023 20:57:24 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132290 IP address blocks: 103.140.82.0/23 maxlen: 24 2001:df0:b380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Validity Not Before: Jul 14 20:57:24 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b1b6b4-d908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:6e:bd:c1:e6:b9:9d:6b:8c:3c:55:cf:97: 0c:a6:f5:85:1d:28:26:01:e8:78:fe:d1:19:19:c7: 71:48:a6:14:3c:d2:51:06:74:10:a3:4b:74:3c:37: d3:c7:92:03:af:c2:45:62:12:3d:0a:3d:b0:4e:93: 3a:55:02:d6:50:6a:fc:e1:45:c1:17:41:d2:93:78: 0d:7e:ac:fa:bd:a4:c9:fb:f7:ab:28:14:6e:4d:a9: 7d:19:01:bf:5a:b8:8d:b0:d3:92:a6:1a:c1:71:9f: 53:ee:1e:37:cd:ab:0c:26:ce:d3:4f:48:24:3b:fb: 09:60:0b:2e:09:a1:a1:91:7d:aa:dc:0c:99:79:ce: 0e:9c:6d:fe:29:c2:ce:2c:2c:6d:0b:b4:f2:40:23: 55:cb:bf:64:34:6d:53:25:7e:32:89:4e:77:5c:77: ab:65:ae:4a:30:b9:ed:47:57:11:cf:5f:93:9e:b7: cd:ff:50:77:de:76:16:6c:e5:54:fd:f5:78:ff:71: 10:94:f9:07:0e:d6:3f:41:1b:f8:2e:90:32:af:e2: fb:79:d0:65:2a:82:73:e0:c0:ee:80:11:e2:a7:26: 1e:0e:0f:39:77:30:86:dd:ac:af:a3:28:a9:9f:69: 01:be:c2:f9:0b:b7:d2:b3:07:15:14:7e:88:c2:b4: a0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:87:7E:0D:95:BD:65:78:6A:92:8E:65:56:B9:50:A1:57:9B:31:5E X509v3 Authority Key Identifier: keyid:A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/311647C0896C11EBA85B0747C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.82.0/23 IPv6: 2001:df0:b380::/48 Signature Algorithm: sha256WithRSAEncryption a3:17:58:f1:79:b2:67:55:aa:03:24:3e:59:c7:90:81:26:ee: 34:39:a1:04:ac:16:57:c6:05:6e:3f:0f:3a:64:35:26:18:04: e7:01:3f:01:1f:32:f1:ac:66:96:b5:f5:e7:e4:74:7e:48:1c: 44:ab:ad:d8:21:18:de:d6:f2:68:1a:05:75:17:2a:52:02:2f: 41:77:3b:95:07:b7:9c:d8:62:cd:52:5e:69:82:4a:52:a7:05: fc:49:cd:ff:33:0c:e7:42:4d:7f:28:86:2f:c8:18:d7:fb:ff: e8:fe:17:dc:4c:e1:5e:ed:d9:14:39:4c:e5:f6:20:2a:ba:7d: b2:35:28:b8:9e:2e:2b:00:a3:1d:44:01:fb:3d:ee:fa:24:3c: c3:cb:ff:e8:73:5a:f2:be:d6:e5:a5:2e:75:cf:81:66:5c:61: 0f:f4:40:51:bc:8a:cb:cb:55:35:63:63:a9:db:b2:16:ca:64: 6c:02:10:be:35:0d:48:05:c8:46:47:0c:ee:96:95:f9:6d:db: 45:ed:3c:a9:63:2c:ae:1d:47:d1:ca:fa:2b:89:53:66:be:d3: 96:21:e3:ad:1e:45:31:17:b8:0f:ea:03:d3:0e:6b:ad:bd:bb: 46:ef:c3:42:d9:25:32:09:c9:3e:12:f3:2e:1b:22:04:68:68: 13:2f:a1:2f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhCNzIxMTAvBgNVBAUTKEEwQ0JCMkNGN0FFRDgzQzIxOTczQzcwQjY0QzBBNDE1 NkM1QkY1RDIwHhcNMjMwNzE0MjA1NzI0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxYjZiNC1kOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6xuvcHmuZ1rjDxVz5cMpvWFHSgmAeh4/tEZGcdxSKYUPNJRBnQQo0t0PDfT x5IDr8JFYhI9Cj2wTpM6VQLWUGr84UXBF0HSk3gNfqz6vaTJ+/erKBRuTal9GQG/ WriNsNOSphrBcZ9T7h43zasMJs7TT0gkO/sJYAsuCaGhkX2q3AyZec4OnG3+KcLO LCxtC7TyQCNVy79kNG1TJX4yiU53XHerZa5KMLntR1cRz1+TnrfN/1B33nYWbOVU /fV4/3EQlPkHDtY/QRv4LpAyr+L7edBlKoJz4MDugBHipyYeDg85dzCG3ayvoyip n2kBvsL5C7fSswcVFH6IwrSgmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK6Hfg2V vWV4apKOZVa5UKFXmzFeMB8GA1UdIwQYMBaAFKDLss967YPCGXPHC2TApBVsW/XS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEI3Mi8xRTQwMEE5QTlB QjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4SVpjOGNMWk1Da0ZXeGI5 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NdXl6M3J0ZzhJWmM4Y0xaTUNrRld4YjlkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhCNzIvMUU0MDBBOUE5QUI3MTFFQUFCMjJBMzdEQzRGOUFFMDIvMzExNjQ3QzA4 OTZDMTFFQkE4NUIwNzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjFIwDwQCAAIwCQMHACABDfCzgDANBgkqhkiG9w0BAQsF AAOCAQEAoxdY8XmyZ1WqAyQ+WceQgSbuNDmhBKwWV8YFbj8POmQ1JhgE5wE/AR8y 8axmlrX15+R0fkgcRKut2CEY3tbyaBoFdRcqUgIvQXc7lQe3nNhizVJeaYJKUqcF /EnN/zMM50JNfyiGL8gY1/v/6P4X3EzhXu3ZFDlM5fYgKrp9sjUouJ4uKwCjHUQB +z3u+iQ8w8v/6HNa8r7W5aUudc+BZlxhD/RAUbyKy8tVNWNjqduyFspkbAIQvjUN SAXIRkcM7paV+W3bRe08qWMsrh1H0cr6K4lTZr7TliHjrR5FMRe4D+oD0w5rrb27 Ru/DQtklMgnJPhLzLhsiBGhoEy+hLw== -----END CERTIFICATE-----Generated at Fri May 31 22:56:56 2024 by rpki-client on console-fra.rpki-client.org