$ rpki-client -vvf rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/504E3B04911911E9BEF5F94EC4F9AE02.roa File: 504E3B04911911E9BEF5F94EC4F9AE02.roa (raw, json) Hash identifier: 0u1dJobnJ/avjaB8aQiB0Aurn4kGslxSC8uogMxylsE= Subject key identifier: 93:18:73:40:17:D5:84:34:CD:E2:EB:45:77:39:94:6D:10:75:41:A5 Certificate issuer: /CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Certificate serial: 0DB6 Authority key identifier: 62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/504E3B04911911E9BEF5F94EC4F9AE02.roa Signing time: Sat 24 Feb 2024 18:36:51 +0000 ROA not before: Sat 24 Feb 2024 18:36:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 131447 IP address blocks: 103.208.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3510 (0xdb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Validity Not Before: Feb 24 18:36:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65da3742-588b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:34:93:0c:22:1c:0f:19:34:35:eb:ab:e5:16: cd:07:32:7a:d1:87:7a:d9:aa:40:92:49:42:10:39: 43:db:84:7a:87:fb:f4:03:77:00:e5:fa:81:d3:56: 43:58:40:a2:50:35:4a:0b:e6:08:4e:47:b1:1e:03: b2:fd:a3:1f:a8:51:d6:b4:5f:1d:1a:e3:08:01:5d: 83:d7:2d:85:b1:52:1f:fe:54:2d:43:1d:f4:ff:6d: 29:1b:cb:d8:7d:ec:d0:26:16:79:c5:27:d9:5c:a8: 55:76:dc:3e:e0:d2:51:56:72:56:4e:a2:74:4c:2d: 22:34:53:72:40:f3:e0:6c:90:43:ac:1d:05:05:53: df:69:4e:42:0f:0b:29:13:8c:45:be:06:96:73:f1: 25:5a:8d:1a:4c:8e:77:f8:5e:be:57:0c:40:a4:4a: 2f:5d:c9:cb:7c:b0:d6:09:d8:a2:bd:85:91:fb:d8: 7c:24:66:44:a2:a0:b4:ee:95:c7:5f:79:6c:4d:c9: cd:f4:65:ef:f1:8c:8d:77:87:f2:23:58:bf:fc:31: 32:c9:c2:62:e1:31:c4:d6:6e:f5:c9:be:fa:4c:68: d0:a5:1b:f1:27:c7:78:40:35:93:82:d1:6c:67:9d: c9:55:a6:11:4e:78:9c:de:cc:93:d0:59:34:3d:6d: a7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:18:73:40:17:D5:84:34:CD:E2:EB:45:77:39:94:6D:10:75:41:A5 X509v3 Authority Key Identifier: keyid:62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/504E3B04911911E9BEF5F94EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.24.0/22 Signature Algorithm: sha256WithRSAEncryption a9:6f:ec:6b:0a:79:8b:46:b7:ee:0c:b4:49:43:1f:c2:cf:a1: d7:94:a9:e9:87:f8:4f:af:12:20:d5:b2:50:f5:3b:1e:16:a3: bb:ba:b2:c4:33:0a:6d:1f:04:18:85:2b:2d:c3:f9:c0:a9:12: 69:b3:ba:84:3e:97:94:fb:bc:aa:26:be:06:28:70:9e:de:b9: 22:2a:2c:af:d4:53:8d:6c:e1:2b:fe:6d:24:a4:35:b4:d3:45: 86:b7:02:87:ee:f2:e9:aa:a9:bf:94:9f:a1:97:f7:15:87:f9: b6:67:aa:c1:00:80:15:dc:13:ea:6c:cf:59:1c:f0:15:81:c0: c6:93:6f:b5:5a:b0:ec:46:f5:83:b0:fb:d2:4a:ee:52:70:fb: 46:36:61:ca:f7:80:8a:f3:a7:03:0f:0d:2e:13:1a:0c:39:51: b2:b3:1d:95:98:f2:c2:e6:ad:0a:ba:e1:d7:54:79:ad:ff:9d: 01:23:ae:9d:39:9d:84:21:b9:dc:19:0f:32:93:2c:6a:1c:3f: 46:45:78:df:98:23:31:24:4b:fc:8e:98:0f:71:55:f0:89:3a: e3:0e:88:72:c3:fa:8b:1d:c7:29:70:d9:5c:bc:6d:ce:0c:56: 75:ff:c9:1e:f8:e6:90:55:dc:5f:bc:f7:c2:17:43:e3:cc:75: 22:cc:f5:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3NUUxMTAvBgNVBAUTKDYyODQyMDdEMEQyN0EyRThCRjREMkVCMTRGQjEyOUNB RDRGNkNDM0YwHhcNMjQwMjI0MTgzNjUxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhMzc0Mi01ODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DSTDCIcDxk0Neur5RbNBzJ60Yd62apAkklCEDlD24R6h/v0A3cA5fqB01ZD WECiUDVKC+YITkexHgOy/aMfqFHWtF8dGuMIAV2D1y2FsVIf/lQtQx30/20pG8vY fezQJhZ5xSfZXKhVdtw+4NJRVnJWTqJ0TC0iNFNyQPPgbJBDrB0FBVPfaU5CDwsp E4xFvgaWc/ElWo0aTI53+F6+VwxApEovXcnLfLDWCdiivYWR+9h8JGZEoqC07pXH X3lsTcnN9GXv8YyNd4fyI1i//DEyycJi4THE1m71yb76TGjQpRvxJ8d4QDWTgtFs Z53JVaYRTnic3syT0Fk0PW2nNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJMYc0AX 1YQ0zeLrRXc5lG0QdUGlMB8GA1UdIwQYMBaAFGKEIH0NJ6Lov00usU+xKcrU9sw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjc1RS80REY3REIwNDkx MTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91aV9UUzZ4VDdFcHl0VDJ6 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvUWdmUTBub3VpX1RTNnhUN0VweXRUMnpEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI3NUUvNERGN0RCMDQ5MTE4MTFFOTk0NzkzQzREQzRGOUFFMDIvNTA0RTNCMDQ5 MTE5MTFFOUJFRjVGOTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn0BgwDQYJKoZIhvcNAQELBQADggEBAKlv7GsKeYtGt+4M tElDH8LPodeUqemH+E+vEiDVslD1Ox4Wo7u6ssQzCm0fBBiFKy3D+cCpEmmzuoQ+ l5T7vKomvgYocJ7euSIqLK/UU41s4Sv+bSSkNbTTRYa3Aofu8umqqb+Un6GX9xWH +bZnqsEAgBXcE+psz1kc8BWBwMaTb7VasOxG9YOw+9JK7lJw+0Y2Ycr3gIrzpwMP DS4TGgw5UbKzHZWY8sLmrQq64ddUea3/nQEjrp05nYQhudwZDzKTLGocP0ZFeN+Y IzEkS/yOmA9xVfCJOuMOiHLD+osdxylw2Vy8bc4MVnX/yR745pBV3F+898IXQ+PM dSLM9QA= -----END CERTIFICATE-----Generated at Fri May 31 20:34:01 2024 by rpki-client on console-ams.rpki-client.org