$ rpki-client -vvf rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/B0EBC1C862D111EEB797E270C4F9AE02.roa File: B0EBC1C862D111EEB797E270C4F9AE02.roa (raw, json) Hash identifier: PdRWkiCr30aIGYAqGrvOZmOQw/vBKYcVPivksU8cuZ0= Subject key identifier: CD:D8:6B:9E:42:DB:64:14:59:46:C7:C3:76:5E:B0:5C:AA:48:88:B7 Certificate issuer: /CN=A913C68B/serialNumber=F98DDC342F7E27B68CA08D3D47C7A69B26955EA1 Certificate serial: 03 Authority key identifier: F9:8D:DC:34:2F:7E:27:B6:8C:A0:8D:3D:47:C7:A6:9B:26:95:5E:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/B0EBC1C862D111EEB797E270C4F9AE02.roa Signing time: Wed 04 Oct 2023 16:18:45 +0000 ROA not before: Wed 04 Oct 2023 16:18:45 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151840 IP address blocks: 103.241.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.crl rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C68B/serialNumber=F98DDC342F7E27B68CA08D3D47C7A69B26955EA1 Validity Not Before: Oct 4 16:18:45 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651d9065-d910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d8:52:5d:e5:31:08:17:50:13:30:31:bd:2c: aa:92:81:86:2e:cf:b0:94:ad:d0:01:11:e1:f7:61: eb:45:d4:38:cb:3c:8c:93:a8:72:da:cb:35:31:0e: 07:20:8d:33:b6:d9:e9:c5:c1:90:4c:90:53:7a:74: 8a:4b:76:2e:99:1f:5a:af:4d:19:3c:89:75:75:63: 05:c1:49:6e:c0:ef:30:40:32:f7:29:b8:d9:7e:7c: 9d:96:5c:cf:fa:bb:24:e0:62:e9:71:62:29:f9:79: aa:39:aa:4f:d7:27:e9:e1:a5:03:9c:a4:a0:00:c1: 10:69:85:04:d4:b5:82:40:a6:a8:ea:ad:5b:0a:51: cf:80:3e:f0:98:9b:6a:91:22:1f:37:73:fc:6d:0a: 08:a8:1b:dd:57:38:74:78:5c:3f:3a:39:ae:01:55: a9:1c:3a:cd:e9:29:90:31:5a:67:14:da:77:07:c1: 3b:10:3d:5b:cf:ad:7f:0f:66:bb:74:b1:44:00:ed: 57:09:ce:eb:48:06:4f:32:c5:b6:76:c2:f5:d9:d8: e5:ea:66:c5:3e:f0:f9:76:1a:96:b0:67:4f:4e:7a: 7d:e3:bb:74:42:a5:e5:93:0f:cc:7f:18:4a:be:15: e1:d4:da:22:d0:ef:62:b4:9d:fb:25:83:5b:60:b6: 95:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D8:6B:9E:42:DB:64:14:59:46:C7:C3:76:5E:B0:5C:AA:48:88:B7 X509v3 Authority Key Identifier: keyid:F9:8D:DC:34:2F:7E:27:B6:8C:A0:8D:3D:47:C7:A6:9B:26:95:5E:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/B0EBC1C862D111EEB797E270C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.194.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:6f:1f:bd:79:70:e3:fb:fa:f8:7e:49:6a:f6:5f:d6:b6:6d: 2f:25:97:33:42:a4:92:33:0b:7e:ee:90:6c:51:9a:19:f5:80: 5f:b5:d5:98:ea:5c:46:dc:cd:79:ba:24:6b:9d:ba:eb:fa:f3: 77:d3:d2:75:0a:a0:61:c3:18:0b:50:cb:9c:bc:a6:0c:56:c9: 34:0e:59:cc:8c:8a:f1:be:42:d6:15:39:21:b5:26:84:cb:64: 4f:dd:24:ba:1f:58:c4:a3:78:0b:6e:57:b3:58:1d:84:fd:63: c1:15:d6:9f:a8:c6:97:f9:84:bf:e3:d2:cb:21:42:41:32:7a: f6:aa:04:a6:61:30:4d:29:79:9b:66:5e:10:b4:75:af:0d:38: e4:44:00:20:75:13:af:30:97:4e:76:19:7b:1c:72:7f:2c:db: 45:62:14:d3:7d:0e:ba:ec:c1:54:a7:08:01:ed:2b:1a:f2:53: 08:40:eb:a1:63:26:23:30:cb:b5:d5:aa:2b:a5:bb:5c:73:62: 05:e7:d4:13:fa:9a:0c:cc:a5:d7:18:69:5d:91:cf:37:20:c3: 5d:e6:6a:bd:48:7d:3d:ee:34:c0:fd:8d:de:fd:54:98:de:c4: f1:53:3c:c5:a1:12:b2:d4:0e:b2:cd:7c:c4:93:eb:79:d8:49: fc:fd:d7:29 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QzY4QjExMC8GA1UEBRMoRjk4RERDMzQyRjdFMjdCNjhDQTA4RDNENDdDN0E2OUIy Njk1NUVBMTAeFw0yMzEwMDQxNjE4NDVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MWQ5MDY1LWQ5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL2FJd5TEIF1ATMDG9LKqSgYYuz7CUrdABEeH3YetF1DjLPIyTqHLayzUxDgcg jTO22enFwZBMkFN6dIpLdi6ZH1qvTRk8iXV1YwXBSW7A7zBAMvcpuNl+fJ2WXM/6 uyTgYulxYin5eao5qk/XJ+nhpQOcpKAAwRBphQTUtYJApqjqrVsKUc+APvCYm2qR Ih83c/xtCgioG91XOHR4XD86Oa4BVakcOs3pKZAxWmcU2ncHwTsQPVvPrX8PZrt0 sUQA7VcJzutIBk8yxbZ2wvXZ2OXqZsU+8Pl2GpawZ09Oen3ju3RCpeWTD8x/GEq+ FeHU2iLQ72K0nfslg1tgtpWfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzdhrnkLb ZBRZRsfDdl6wXKpIiLcwHwYDVR0jBBgwFoAU+Y3cNC9+J7aMoI09R8emmyaVXqEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDNjhCLzRFOUMxRjkwNjJE MTExRUVBQTFDODY0REM0RjlBRTAyLy1ZM2NOQzktSjdhTW9JMDlSOGVtbXlhVlhx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLVkzY05DOS1KN2FNb0kwOVI4ZW1teWFWWHFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzY4Qi80RTlDMUY5MDYyRDExMUVFQUExQzg2NERDNEY5QUUwMi9CMEVCQzFDODYy RDExMUVFQjc5N0UyNzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfxwjANBgkqhkiG9w0BAQsFAAOCAQEAb28fvXlw4/v6+H5J avZf1rZtLyWXM0KkkjMLfu6QbFGaGfWAX7XVmOpcRtzNeboka5266/rzd9PSdQqg YcMYC1DLnLymDFbJNA5ZzIyK8b5C1hU5IbUmhMtkT90kuh9YxKN4C25Xs1gdhP1j wRXWn6jGl/mEv+PSyyFCQTJ69qoEpmEwTSl5m2ZeELR1rw045EQAIHUTrzCXTnYZ exxyfyzbRWIU030OuuzBVKcIAe0rGvJTCEDroWMmIzDLtdWqK6W7XHNiBefUE/qa DMyl1xhpXZHPNyDDXeZqvUh9Pe40wP2N3v1UmN7E8VM8xaESstQOss18xJPredhJ /P3XKQ== -----END CERTIFICATE-----Generated at Thu Jun 13 07:42:37 2024 by rpki-client on console-fra.rpki-client.org