$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa File: C7A523E6BF9B11EA9CDFD642C4F9AE02.roa (raw, json) Hash identifier: rTCj5oblv8tzsyGqP41eX+bDzvUma73ofUwYbPMUwGQ= Subject key identifier: C0:E7:52:92:76:5B:2D:C3:9E:EA:66:83:F7:E9:2A:CE:AA:F9:8F:12 Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 07A6 Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:55 +0000 ROA not before: Thu 02 Nov 2023 22:09:55 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 198504 IP address blocks: 103.244.146.0/23 maxlen: 23 117.55.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Nov 2 22:09:55 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65441e32-302a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:62:6f:59:02:8a:9c:9b:a6:a0:08:7a:1b: 8f:d9:0b:6a:cc:77:30:fb:81:1b:49:c3:e0:a0:55: 0c:9a:38:a3:d6:8d:7a:13:5e:0d:a6:0e:6a:72:95: 2f:57:1b:d1:7b:93:b7:a9:5c:08:09:b9:b6:a4:2f: ec:c7:d8:1c:39:34:e1:8b:6d:9d:6d:8f:8e:42:28: e6:f9:f1:84:5d:1b:c5:ca:61:67:49:c2:e4:dc:b2: 1f:00:cd:7e:b2:b1:96:fe:db:61:19:d4:f1:32:ad: 7e:d6:92:45:70:a7:7d:58:b5:16:6b:11:56:b5:88: d6:43:fa:22:d1:17:3c:44:4c:0b:9f:54:2e:8d:ed: fb:28:48:30:b3:28:f8:cf:54:83:5e:c0:8b:ed:f3: 18:b8:d5:9b:d7:b8:dd:5d:e7:82:84:b7:ed:f1:0d: f1:46:87:95:b4:83:c4:c0:60:7e:a2:a1:3d:ff:20: 7f:5b:27:90:85:6f:e5:e1:d8:dc:78:f4:f1:8d:06: 83:2e:b9:43:23:b3:cf:7f:98:d5:46:86:3c:8e:20: 14:c0:43:dd:80:db:7a:0a:60:c0:01:27:7c:bc:5d: 6a:9c:70:6b:26:af:3a:a4:93:72:2e:46:38:e6:c3: d6:ca:e9:11:c7:7c:db:ad:e6:a4:c3:ac:c6:f8:9f: 9d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E7:52:92:76:5B:2D:C3:9E:EA:66:83:F7:E9:2A:CE:AA:F9:8F:12 X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.146.0/23 117.55.197.0/24 Signature Algorithm: sha256WithRSAEncryption 16:f8:ed:e2:05:ff:5c:82:c0:9c:fd:1f:45:ea:39:ef:77:da: d7:ce:0e:bc:6e:6b:15:0f:39:8b:0e:f2:c8:80:b6:93:65:f7: c0:ff:33:07:86:c9:8e:f8:c6:4b:58:dd:f3:68:31:73:c3:33: 3a:d3:3f:37:e5:ae:27:d6:f0:8a:04:e4:20:c5:5f:bd:b7:8d: bc:6d:6a:ce:8e:5f:50:ad:49:32:1c:48:ac:f4:6a:a1:50:87: 2f:0c:2a:77:8e:9b:06:c3:86:3d:02:3a:63:75:de:e9:d2:c7: 07:2d:ed:ce:89:c5:33:37:14:fd:b1:c9:40:7d:06:b1:62:dc: f2:ce:8c:36:d3:5a:22:26:ba:d0:8b:9f:0c:bd:f3:c4:c3:5e: f7:99:e1:ab:20:85:69:96:23:ce:15:00:4d:9b:ec:da:e8:6b: 22:d2:cc:4c:ec:fb:77:00:1b:b5:07:ee:3b:f6:49:3b:0a:af: 88:93:fb:57:d2:0d:55:0d:cd:7e:18:d7:1c:4a:90:cf:6d:2e: ae:49:66:4f:c0:2d:39:7a:f1:11:11:36:7e:a0:b3:27:53:74: 74:cf:33:3a:90:ea:6d:e9:d0:91:d6:fe:42:29:e9:37:f4:cf: 2a:73:6f:43:d9:10:8c:1d:31:30:d1:67:94:b3:40:93:84:99: a6:a3:99:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjMxMTAyMjIwOTU1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUzMi0zMDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSJib1kCipybpqAIehuP2QtqzHcw+4EbScPgoFUMmjij1o16E14Npg5qcpUv VxvRe5O3qVwICbm2pC/sx9gcOTThi22dbY+OQijm+fGEXRvFymFnScLk3LIfAM1+ srGW/tthGdTxMq1+1pJFcKd9WLUWaxFWtYjWQ/oi0Rc8REwLn1Quje37KEgwsyj4 z1SDXsCL7fMYuNWb17jdXeeChLft8Q3xRoeVtIPEwGB+oqE9/yB/WyeQhW/l4djc ePTxjQaDLrlDI7PPf5jVRoY8jiAUwEPdgNt6CmDAASd8vF1qnHBrJq86pJNyLkY4 5sPWyukRx3zbreakw6zG+J+dNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMDnUpJ2 Wy3Dnupmg/fpKs6q+Y8SMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvQzdBNTIzRTZC RjlCMTFFQTlDREZENjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFn9JIDBAB1N8UwDQYJKoZIhvcNAQELBQADggEBABb47eIF /1yCwJz9H0XqOe932tfODrxuaxUPOYsO8siAtpNl98D/MweGyY74xktY3fNoMXPD MzrTPzflrifW8IoE5CDFX723jbxtas6OX1CtSTIcSKz0aqFQhy8MKneOmwbDhj0C OmN13unSxwct7c6JxTM3FP2xyUB9BrFi3PLOjDbTWiImutCLnwy988TDXveZ4asg hWmWI84VAE2b7NroayLSzEzs+3cAG7UH7jv2STsKr4iT+1fSDVUNzX4Y1xxKkM9t Lq5JZk/ALTl68RERNn6gsydTdHTPMzqQ6m3p0JHW/kIp6Tf0zypzb0PZEIwdMTDR Z5SzQJOEmaajma8= -----END CERTIFICATE-----Generated at Fri May 31 23:53:04 2024 by rpki-client on console-fra.rpki-client.org