$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/3F3E4D0426F711EE81AD9A45C4F9AE02.roa File: 3F3E4D0426F711EE81AD9A45C4F9AE02.roa (raw, json) Hash identifier: d5dxqaixjHrn08sCLAD6mKlY9yowFCEcreFBLCEFcuA= Subject key identifier: 96:28:6A:7F:B1:60:F5:CB:83:63:61:AD:A7:B6:52:BA:E7:DD:B1:D5 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04C3 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/3F3E4D0426F711EE81AD9A45C4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:45 +0000 ROA not before: Tue 05 Sep 2023 00:51:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63902 IP address blocks: 103.231.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:45 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67ba1-9b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5c:e4:e7:4e:c3:54:0c:c0:2e:b9:fb:50:fe: a7:89:0f:34:57:32:3f:eb:73:df:f2:3d:f4:3e:09: 05:fd:db:27:fb:3d:72:39:39:26:82:64:f8:d9:eb: 39:4d:38:f0:7a:bf:71:02:2f:d4:4a:36:73:82:c4: 50:1c:c6:ad:80:0b:b0:cb:1b:65:45:28:d2:6b:95: 8a:69:de:de:a2:d2:2f:14:45:b1:92:ff:e2:49:fe: b5:f8:62:10:7d:2b:33:76:d4:a6:2f:05:2f:1f:c6: d5:2b:71:d8:5a:2a:f5:68:4f:6d:dc:ba:57:f6:1b: d0:0c:72:c2:a2:a9:b3:0d:62:e2:80:a0:76:f8:71: b5:98:d4:1f:5f:21:1e:3f:67:88:f4:46:b7:0e:0a: 04:34:54:8c:37:11:1d:1d:42:15:12:5c:00:06:d4: c4:a7:2b:cb:88:d1:49:d7:8c:92:d8:99:be:ab:df: 0a:f5:dc:15:db:88:cb:6d:87:74:f6:d0:1c:e3:d9: 7d:e4:de:c1:83:5c:f7:80:99:a4:35:69:a4:07:95: aa:ac:ac:f5:82:a5:4b:4d:c9:37:ee:48:6f:95:95: ef:43:e9:17:73:d7:cf:0e:d6:ba:ec:32:da:04:5a: 75:2a:0c:fe:32:38:a3:fa:44:a1:4a:90:f1:aa:6d: 9a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:28:6A:7F:B1:60:F5:CB:83:63:61:AD:A7:B6:52:BA:E7:DD:B1:D5 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/3F3E4D0426F711EE81AD9A45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.57.0/24 Signature Algorithm: sha256WithRSAEncryption 03:58:cf:2e:3e:a0:16:d5:87:77:45:94:c7:a7:3a:e3:56:5d: 2b:e8:cc:63:31:84:73:bb:7f:13:74:ba:3d:ac:b5:96:6f:b2: 1f:de:6f:ca:3c:98:ff:4e:b9:44:1f:03:67:32:06:c3:a6:e4: 01:0a:53:0d:67:42:ad:e2:15:e5:7e:25:f9:ef:53:c2:6f:aa: b3:f9:65:f3:02:f2:98:9a:92:ff:3b:04:03:8b:ef:5a:d6:b7: 81:9a:57:a9:06:86:a6:78:37:84:c2:07:2e:b6:d0:8b:84:bc: 0b:80:da:d3:54:33:e7:36:5a:8d:b1:b5:56:4c:e2:10:5e:51: 3d:c4:46:13:e6:01:2d:da:07:6b:75:88:f0:2b:65:be:e6:51: 1c:52:96:7f:a9:05:19:d0:3c:8e:a7:b3:22:d1:5b:a6:2c:63: e4:86:ba:f0:64:1d:5b:b3:aa:a4:a4:3e:ab:70:58:1c:d7:5c: 54:6d:22:a1:56:22:f6:c0:3e:db:84:e9:44:6a:60:ff:49:c4: b2:a0:20:15:43:71:c6:e1:02:01:c1:51:4b:45:13:43:3b:97: 3f:d5:75:e5:15:78:4b:61:3a:1d:6b:9f:0d:c8:a7:0b:ec:3a: 7e:2c:ce:70:cc:ca:0b:cf:46:05:99:e4:28:8e:6b:34:46:b6: 1c:0b:bc:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2JhMS05YjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1zk507DVAzALrn7UP6niQ80VzI/63Pf8j30PgkF/dsn+z1yOTkmgmT42es5 TTjwer9xAi/USjZzgsRQHMatgAuwyxtlRSjSa5WKad7eotIvFEWxkv/iSf61+GIQ fSszdtSmLwUvH8bVK3HYWir1aE9t3LpX9hvQDHLCoqmzDWLigKB2+HG1mNQfXyEe P2eI9Ea3DgoENFSMNxEdHUIVElwABtTEpyvLiNFJ14yS2Jm+q98K9dwV24jLbYd0 9tAc49l95N7Bg1z3gJmkNWmkB5WqrKz1gqVLTck37khvlZXvQ+kXc9fPDta67DLa BFp1Kgz+Mjij+kShSpDxqm2aHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJYoan+x YPXLg2Nhrae2Urrn3bHVMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvM0YzRTREMDQy NkY3MTFFRTgxQUQ5QTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zkwDQYJKoZIhvcNAQELBQADggEBAANYzy4+oBbVh3dF lMenOuNWXSvozGMxhHO7fxN0uj2stZZvsh/eb8o8mP9OuUQfA2cyBsOm5AEKUw1n Qq3iFeV+JfnvU8JvqrP5ZfMC8piakv87BAOL71rWt4GaV6kGhqZ4N4TCBy620IuE vAuA2tNUM+c2Wo2xtVZM4hBeUT3ERhPmAS3aB2t1iPArZb7mURxSln+pBRnQPI6n syLRW6YsY+SGuvBkHVuzqqSkPqtwWBzXXFRtIqFWIvbAPtuE6URqYP9JxLKgIBVD ccbhAgHBUUtFE0M7lz/VdeUVeEthOh1rnw3IpwvsOn4sznDMygvPRgWZ5CiOazRG thwLvE4= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:00 2024 by rpki-client on console-fra.rpki-client.org