$ rpki-client -vvf rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa File: 56D1860A97D411ED801D7E41C4F9AE02.roa (raw, json) Hash identifier: B+nRA4oNLYdf5T3kRsHfC+azCAOQomq4IrVonR/ko4Q= Subject key identifier: 4D:EB:79:BB:C4:65:05:88:C4:0E:0C:7F:45:DF:55:94:A1:BD:5B:31 Certificate issuer: /CN=A913FA48/serialNumber=F5FD274AF27CE95F692DB80BE8EF67C324602B48 Certificate serial: 0102 Authority key identifier: F5:FD:27:4A:F2:7C:E9:5F:69:2D:B8:0B:E8:EF:67:C3:24:60:2B:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa Signing time: Thu 23 May 2024 09:56:26 +0000 ROA not before: Thu 23 May 2024 09:56:26 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 56231 IP address blocks: 103.179.70.0/24 maxlen: 24 103.232.219.0/24 maxlen: 24 117.18.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.crl rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 05:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FA48/serialNumber=F5FD274AF27CE95F692DB80BE8EF67C324602B48 Validity Not Before: May 23 09:56:26 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=664f12c9-fc60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:93:5d:23:14:b7:e8:23:02:33:a7:fe:0a:c2: 45:b7:e0:0d:47:cb:7b:79:59:fa:55:71:6d:48:1c: e1:2d:13:7a:d2:9b:2c:6f:37:b6:d8:f9:81:fb:b4: d0:ed:ac:57:6d:8a:3a:da:b6:f2:53:86:38:77:af: 75:97:47:d5:03:41:67:67:e7:e7:28:79:ce:37:56: 11:9f:61:42:38:74:65:f6:9e:c6:2a:37:96:7b:e1: 7b:8d:19:ad:4b:d3:f9:b4:44:bb:c2:e0:23:28:4d: 38:cf:cc:85:1f:e3:b4:ac:21:a6:f2:bf:68:0f:40: d3:e1:da:3f:b0:11:34:15:bf:1c:76:59:9e:95:d1: 3a:0e:22:09:1c:60:9c:6f:72:d1:0a:05:64:0e:3a: 61:e4:3b:29:de:9a:98:73:9a:09:90:2e:53:96:fc: 95:55:55:65:81:7f:a0:c5:53:ae:e8:62:5b:7d:28: 11:bf:01:5f:7f:f6:2a:fd:70:05:7e:20:7b:75:d7: ac:56:80:44:ff:56:c5:51:c5:2a:a7:24:57:eb:ba: 1d:5d:f2:8a:3a:30:cd:46:da:96:e7:40:cf:05:99: a3:bb:cb:1a:f8:f9:fe:92:c3:aa:58:bb:91:39:35: 2c:ca:68:9b:56:08:3f:d8:da:5f:52:1d:0a:05:57: d2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EB:79:BB:C4:65:05:88:C4:0E:0C:7F:45:DF:55:94:A1:BD:5B:31 X509v3 Authority Key Identifier: keyid:F5:FD:27:4A:F2:7C:E9:5F:69:2D:B8:0B:E8:EF:67:C3:24:60:2B:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.70.0/24 103.232.219.0/24 117.18.99.0/24 Signature Algorithm: sha256WithRSAEncryption 74:6d:e1:b3:3c:cb:f3:f0:61:eb:31:54:b5:dd:0e:14:d2:9b: 0b:33:14:7c:8f:8b:b2:cc:cb:1f:7f:08:c8:e9:ac:e8:17:43: 6e:26:3b:51:34:50:73:10:80:dc:b7:36:3f:e5:6b:0d:9c:77: 9f:20:64:08:79:98:8c:1b:ee:ae:e1:7f:fe:7f:4a:ef:83:5d: e3:f4:61:e0:70:1b:57:c0:47:88:b6:4e:0b:f3:4b:b0:7b:5f: 0b:c9:04:d2:de:9a:8f:73:20:76:62:8b:25:30:81:29:ed:12: 22:d6:b7:c9:f5:7e:d3:f3:f5:63:f6:ae:6b:03:7c:21:3b:11: c1:a5:fe:71:9b:c7:cc:76:c9:ec:46:58:4d:84:0f:bb:a3:43: 1f:80:4a:94:07:57:9c:c9:9a:ed:3f:c2:39:79:a2:23:35:b4: c9:80:93:fb:35:9f:f8:64:24:bd:a4:64:24:51:f0:0c:86:4b: 43:24:54:0e:1f:ca:b4:c8:d9:25:84:52:7a:0d:4a:77:79:51: 76:8c:25:36:6b:e8:c0:52:4d:02:32:ce:26:bf:00:b1:30:94: e3:82:1d:4c:84:ab:4e:c8:11:9e:e7:7c:da:ca:f4:8e:fe:f4: 2e:00:c6:f3:36:06:64:9e:18:d2:f8:7c:c3:89:3a:73:b4:2e: 5b:76:85:95 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZBNDgxMTAvBgNVBAUTKEY1RkQyNzRBRjI3Q0U5NUY2OTJEQjgwQkU4RUY2N0Mz MjQ2MDJCNDgwHhcNMjQwNTIzMDk1NjI2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRmMTJjOS1mYzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJNdIxS36CMCM6f+CsJFt+ANR8t7eVn6VXFtSBzhLRN60pssbze22PmB+7TQ 7axXbYo62rbyU4Y4d691l0fVA0FnZ+fnKHnON1YRn2FCOHRl9p7GKjeWe+F7jRmt S9P5tES7wuAjKE04z8yFH+O0rCGm8r9oD0DT4do/sBE0Fb8cdlmeldE6DiIJHGCc b3LRCgVkDjph5Dsp3pqYc5oJkC5TlvyVVVVlgX+gxVOu6GJbfSgRvwFff/Yq/XAF fiB7ddesVoBE/1bFUcUqpyRX67odXfKKOjDNRtqW50DPBZmju8sa+Pn+ksOqWLuR OTUsymibVgg/2NpfUh0KBVfSTQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE3rebvE ZQWIxA4Mf0XfVZShvVsxMB8GA1UdIwQYMBaAFPX9J0ryfOlfaS24C+jvZ8MkYCtI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkE0OC9GNzM3MTNGNjk3 RDExMUVEQjFBMjU0NDFDNEY5QUUwMi85ZjBuU3ZKODZWOXBMYmdMNk85bnd5UmdL MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmMG5Tdko4NlY5cExiZ0w2Tzlud3lSZ0swZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZBNDgvRjczNzEzRjY5N0QxMTFFREIxQTI1NDQxQzRGOUFFMDIvNTZEMTg2MEE5 N0Q0MTFFRDgwMUQ3RTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABns0YDBABn6NsDBAB1EmMwDQYJKoZIhvcNAQELBQADggEB AHRt4bM8y/PwYesxVLXdDhTSmwszFHyPi7LMyx9/CMjprOgXQ24mO1E0UHMQgNy3 Nj/law2cd58gZAh5mIwb7q7hf/5/Su+DXeP0YeBwG1fAR4i2TgvzS7B7XwvJBNLe mo9zIHZiiyUwgSntEiLWt8n1ftPz9WP2rmsDfCE7EcGl/nGbx8x2yexGWE2ED7uj Qx+ASpQHV5zJmu0/wjl5oiM1tMmAk/s1n/hkJL2kZCRR8AyGS0MkVA4fyrTI2SWE UnoNSnd5UXaMJTZr6MBSTQIyzia/ALEwlOOCHUyEq07IEZ7nfNrK9I7+9C4AxvM2 BmSeGNL4fMOJOnO0Llt2hZU= -----END CERTIFICATE-----Generated at Thu Jun 13 08:01:38 2024 by rpki-client on console-ams.rpki-client.org