$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa File: 2FCAEB4AE15311EEBE7C925BC4F9AE02.roa (raw, json) Hash identifier: oonbgnvfkVkeqibnsyxIomhk0eg6PxDF7gRSYo+9lcY= Subject key identifier: 1C:D5:DC:97:A9:5D:A0:D1:6B:C1:DC:8F:53:A2:C6:62:6C:5C:BF:9C Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 05B1 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa Signing time: Wed 13 Mar 2024 16:03:10 +0000 ROA not before: Wed 13 Mar 2024 16:03:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 5068 IP address blocks: 103.231.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1457 (0x5b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Mar 13 16:03:10 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65f1ce3d-c3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:20:5a:6c:b4:c2:bc:39:ef:56:93:ee:d0: 90:cc:d2:14:23:fe:20:cf:27:76:37:36:c1:ad:44: 50:52:b4:2e:d7:83:67:e5:45:62:83:df:64:f8:38: c4:6c:ac:fa:21:8d:3e:6f:d1:85:5d:16:a9:82:e1: 68:28:3c:1f:ec:3a:b2:72:23:82:70:de:ca:06:e8: 3a:7d:5f:b7:a4:75:bb:89:11:76:12:06:5a:c8:63: eb:a9:24:27:7f:2a:6f:41:17:ca:c6:ef:2b:4d:c0: 07:22:33:6f:d3:fd:60:74:73:7f:2b:0a:cd:8b:42: 01:d0:71:10:8a:05:4e:28:69:f4:13:1e:77:1c:ad: 90:22:9e:3f:c5:68:c8:9a:59:ff:23:68:61:46:7d: ed:f0:60:ed:27:d0:e8:6d:0b:a1:1d:75:b5:aa:9c: 2d:ae:42:e4:b3:82:2a:57:47:9f:6e:d9:65:05:47: bf:92:93:ea:83:e0:23:4e:e1:1f:da:62:20:82:32: 6c:d8:ea:4b:8a:36:b2:e4:67:2f:81:b0:74:14:ff: 4f:bc:fd:3f:da:0b:2f:fa:a0:f4:fb:94:68:92:e6: 0f:cf:01:5c:f0:2d:90:4d:8b:60:2e:ec:9a:ea:8c: be:10:4e:e5:8b:08:2f:43:cc:c5:5a:41:57:a5:82: 3f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D5:DC:97:A9:5D:A0:D1:6B:C1:DC:8F:53:A2:C6:62:6C:5C:BF:9C X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.56.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:8f:12:32:f1:9b:26:c5:35:5d:47:e2:b7:5f:26:a2:9c:30: 0e:0d:45:16:54:aa:f1:5f:bc:c7:25:07:2f:03:98:b5:4c:be: 2f:48:5c:a4:5b:51:44:3f:8a:5a:ca:6a:6e:64:eb:3a:6b:c4: 86:93:66:51:3a:4e:0a:91:26:ea:ad:4c:07:95:a1:a5:5f:da: 5a:31:2e:3f:04:34:3e:a4:96:89:6f:cb:c4:39:7b:8a:3a:f3: 14:ec:22:da:d3:c5:bd:e0:e7:15:bb:b0:a5:7e:df:f7:93:67: 4d:48:0f:e5:10:a2:93:cd:3b:7d:b7:b5:c2:52:a3:78:44:73: cc:77:41:36:83:69:26:3f:32:b3:de:3b:9e:1b:92:4d:9b:3d: 6b:9e:ed:a4:6f:79:48:3b:54:9c:88:9c:aa:62:68:60:16:60: 51:ac:fd:9a:50:a7:32:d9:7b:f9:49:29:0d:77:d2:7e:64:b1: 25:54:6b:1c:f5:a6:6c:fd:7e:1c:a8:95:8e:93:92:75:71:96: 3a:15:8b:de:26:4f:f5:24:97:0b:59:bf:34:3d:be:a9:9e:5c: 84:2b:be:81:c9:a3:a0:7c:cb:39:03:95:f2:ac:ec:bb:5b:76: 3c:4e:7c:82:2b:40:7e:c1:76:da:7f:f9:ff:f1:6a:5b:51:fe: 4a:42:4d:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwMzEzMTYwMzEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYxY2UzZC1jM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkggWmy0wrw571aT7tCQzNIUI/4gzyd2NzbBrURQUrQu14Nn5UVig99k+DjE bKz6IY0+b9GFXRapguFoKDwf7DqyciOCcN7KBug6fV+3pHW7iRF2EgZayGPrqSQn fypvQRfKxu8rTcAHIjNv0/1gdHN/KwrNi0IB0HEQigVOKGn0Ex53HK2QIp4/xWjI mln/I2hhRn3t8GDtJ9DobQuhHXW1qpwtrkLks4IqV0efbtllBUe/kpPqg+AjTuEf 2mIggjJs2OpLijay5GcvgbB0FP9PvP0/2gsv+qD0+5RokuYPzwFc8C2QTYtgLuya 6oy+EE7liwgvQ8zFWkFXpYI/2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBzV3Jep XaDRa8Hcj1OixmJsXL+cMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMkZDQUVCNEFF MTUzMTFFRUJFN0M5MjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zgwDQYJKoZIhvcNAQELBQADggEBAC2PEjLxmybFNV1H 4rdfJqKcMA4NRRZUqvFfvMclBy8DmLVMvi9IXKRbUUQ/ilrKam5k6zprxIaTZlE6 TgqRJuqtTAeVoaVf2loxLj8END6klolvy8Q5e4o68xTsItrTxb3g5xW7sKV+3/eT Z01ID+UQopPNO323tcJSo3hEc8x3QTaDaSY/MrPeO54bkk2bPWue7aRveUg7VJyI nKpiaGAWYFGs/ZpQpzLZe/lJKQ130n5ksSVUaxz1pmz9fhyolY6TknVxljoVi94m T/UklwtZvzQ9vqmeXIQrvoHJo6B8yzkDlfKs7LtbdjxOfIIrQH7Bdtp/+f/xaltR /kpCTfM= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:22 2024 by rpki-client on console-ams.rpki-client.org