$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa File: CED6A59A032B11EFAC30281BC4F9AE02.roa (raw, json) Hash identifier: 641I3YPZ2Yj12x78zgLfAH8qcmqEl7NSZmFWbiy964Q= Subject key identifier: 7A:C6:00:1B:9C:59:19:87:25:9E:28:D2:F0:32:AD:40:1D:E9:6D:2A Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 05D2 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa Signing time: Thu 25 Apr 2024 17:46:56 +0000 ROA not before: Thu 25 Apr 2024 17:46:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 51847 IP address blocks: 103.240.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Apr 25 17:46:56 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=662a9710-c5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:af:b6:13:b8:d0:8a:aa:1b:d7:15:d6:d5: 68:fe:66:0c:f8:29:81:81:be:3b:5b:77:c7:f0:da: 35:cd:91:1a:b1:b3:05:aa:ec:46:92:45:fe:f8:8e: 6d:10:a7:b0:56:d6:cc:b5:ba:7e:7c:08:df:14:04: dc:81:3c:12:96:99:45:3b:6e:63:7e:7d:17:69:c3: 4c:b0:f5:4e:ad:f9:68:9a:47:fd:e6:0a:e7:ce:be: 8f:5d:ed:24:4e:5e:18:30:f7:f6:60:e6:ab:4f:ea: 03:d0:5f:4a:d2:00:ae:0d:32:43:ea:38:84:90:24: d9:2f:42:81:1d:fe:62:80:17:6c:e1:53:43:43:da: 72:71:2a:74:7c:ff:00:d7:f5:93:f2:92:60:dc:be: 00:c9:06:bc:02:bf:2a:60:d7:53:17:9c:d3:3f:08: 3e:f5:d9:b2:ae:c5:73:b8:46:74:95:c3:20:f5:1c: 0d:16:ec:28:5e:da:49:1b:5c:53:c2:80:98:0a:c3: 27:ef:61:17:f4:fb:05:e3:2f:e9:30:e6:27:bc:66: d2:bc:47:31:9d:2a:01:9a:84:9b:82:d3:12:20:13: bf:92:6c:90:8b:e6:af:b6:39:34:73:55:80:fe:e6: 51:f1:e5:b6:1b:21:70:c5:a9:89:aa:9f:07:a4:e6: e8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C6:00:1B:9C:59:19:87:25:9E:28:D2:F0:32:AD:40:1D:E9:6D:2A X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.199.0/24 Signature Algorithm: sha256WithRSAEncryption 63:0c:31:b8:9e:8e:7b:da:7c:3b:1d:96:1a:a3:a2:b7:da:dc: ee:42:52:d4:aa:5d:47:49:79:ac:aa:cb:42:1c:e1:0d:37:4a: 39:37:49:35:78:95:8d:02:73:84:07:bf:1b:b3:35:24:88:27: 5b:cf:45:fe:74:45:9c:28:e8:59:84:13:27:3a:9f:c3:0c:96: 83:91:a0:d4:cb:a5:97:9f:70:4b:fb:00:ee:f6:d9:ef:2a:09: 8e:be:1d:04:4f:3e:e9:b4:d9:4b:50:3d:2c:8b:ea:d9:e0:25: fd:c0:8e:2a:19:ba:b3:4b:ff:3b:ff:ee:ae:d7:06:ac:d1:bc: 1f:44:f9:06:f0:e7:17:e1:de:e7:a9:26:d3:d9:d6:4b:70:82: bf:2c:ce:5c:ce:db:d5:cb:c9:25:21:a3:18:05:a7:bc:68:00: 38:9b:c7:b2:80:33:c5:46:8b:d0:73:73:7b:1c:36:c9:56:39: 3c:61:78:1d:5c:24:39:7d:72:dc:9b:44:67:34:49:29:29:32: ad:8e:b6:77:79:e9:62:fd:cc:32:a7:94:9d:bc:60:1d:03:b4: c5:f8:41:d8:7c:41:56:b6:0c:4d:72:15:7e:2b:11:6c:01:a5: 4d:91:a7:a1:53:76:a1:ad:a9:4a:14:27:e1:9f:22:e5:cd:92: c7:1d:44:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwNDI1MTc0NjU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJhOTcxMC1jNWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/yvthO40IqqG9cV1tVo/mYM+CmBgb47W3fH8No1zZEasbMFquxGkkX++I5t EKewVtbMtbp+fAjfFATcgTwSlplFO25jfn0XacNMsPVOrflomkf95grnzr6PXe0k Tl4YMPf2YOarT+oD0F9K0gCuDTJD6jiEkCTZL0KBHf5igBds4VNDQ9pycSp0fP8A 1/WT8pJg3L4AyQa8Ar8qYNdTF5zTPwg+9dmyrsVzuEZ0lcMg9RwNFuwoXtpJG1xT woCYCsMn72EX9PsF4y/pMOYnvGbSvEcxnSoBmoSbgtMSIBO/kmyQi+avtjk0c1WA /uZR8eW2GyFwxamJqp8HpOboXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHrGABuc WRmHJZ4o0vAyrUAd6W0qMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvQ0VENkE1OUEw MzJCMTFFRkFDMzAyODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8McwDQYJKoZIhvcNAQELBQADggEBAGMMMbiejnvafDsd lhqjorfa3O5CUtSqXUdJeayqy0Ic4Q03Sjk3STV4lY0Cc4QHvxuzNSSIJ1vPRf50 RZwo6FmEEyc6n8MMloORoNTLpZefcEv7AO722e8qCY6+HQRPPum02UtQPSyL6tng Jf3AjioZurNL/zv/7q7XBqzRvB9E+Qbw5xfh3uepJtPZ1ktwgr8szlzO29XLySUh oxgFp7xoADibx7KAM8VGi9Bzc3scNslWOTxheB1cJDl9ctybRGc0SSkpMq2Otnd5 6WL9zDKnlJ28YB0DtMX4Qdh8QVa2DE1yFX4rEWwBpU2Rp6FTdqGtqUoUJ+GfIuXN kscdRD8= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org