$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/5AC80410239811ED9B68AC57C4F9AE02.roa File: 5AC80410239811ED9B68AC57C4F9AE02.roa (raw, json) Hash identifier: RXwe0BQki/AVlstsZqOsFp+Gsdfp+aVHzSNAAW4JxLw= Subject key identifier: 74:33:33:AA:0B:0D:21:90:04:54:D9:40:7A:CE:A0:2C:30:D4:DD:7D Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 2582 Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/5AC80410239811ED9B68AC57C4F9AE02.roa Signing time: Tue 30 Apr 2024 16:23:09 +0000 ROA not before: Tue 30 Apr 2024 16:23:09 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 64005 IP address blocks: 103.228.200.0/24 maxlen: 24 2001:df4:3800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9602 (0x2582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Apr 30 16:23:09 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66311aed-902b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4f:6d:c5:7e:88:dd:db:c4:b5:39:68:3d:de: 51:63:75:27:f9:61:72:d6:e3:bf:8c:a8:27:ad:e0: 9a:06:1e:c6:f4:d1:5a:f3:29:64:9c:5e:76:e4:55: 30:ea:25:66:26:95:43:58:9a:eb:d5:e7:00:38:3e: 84:56:46:93:58:ac:1e:2b:cf:3b:fb:ef:ff:b7:c9: 24:3c:30:b4:c0:66:cc:33:73:d9:2d:b3:72:01:fa: cd:45:2f:24:54:27:89:3f:aa:d0:0e:81:e7:ac:c0: 65:47:4e:81:9c:3e:67:18:88:f4:02:8d:aa:99:61: 94:c2:ea:24:a3:9f:6f:c4:c3:2f:29:d6:6f:12:d2: 77:fc:03:08:cb:0b:d2:52:0a:0a:28:9f:0c:c4:3b: d0:ab:c4:19:ae:e1:1d:2c:51:ef:7b:8b:dd:4f:1a: 29:ce:e6:9c:83:df:54:27:d6:95:11:da:1c:ca:de: f9:7c:9f:10:b4:19:70:33:6f:db:c0:0b:d9:3a:3b: a7:8a:4c:d8:4a:b1:ad:f9:c7:7b:b7:00:5b:cb:73: b3:0f:7c:ef:2f:04:2b:90:11:62:70:55:94:16:a3: b9:06:f6:a4:5d:d5:f8:0d:81:ec:df:8d:bd:6c:86: f8:6e:a4:cf:20:b3:e4:40:6f:f5:d2:d9:e5:9e:55: b4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:33:33:AA:0B:0D:21:90:04:54:D9:40:7A:CE:A0:2C:30:D4:DD:7D X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/5AC80410239811ED9B68AC57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.200.0/24 IPv6: 2001:df4:3800::/48 Signature Algorithm: sha256WithRSAEncryption a7:a6:24:fb:cb:f7:05:3c:a5:bb:62:ba:35:a6:5d:a1:30:99: 4c:91:da:c9:36:75:0b:92:34:82:73:71:15:e5:ba:ca:ce:1e: 3a:e8:d3:2a:7c:47:b3:b0:ed:e1:0f:46:44:2d:0f:7d:56:c9: a0:80:3d:1f:61:9d:f5:a7:e8:a3:4d:e5:e5:d4:bf:c9:f8:ef: 2d:ce:4c:51:0e:17:a9:4d:95:40:80:af:0a:fd:5d:c2:55:cf: cc:3a:5d:be:31:b3:27:f7:e0:0b:18:9e:56:6d:8a:bb:4b:97: d0:84:a9:78:f5:46:5f:f1:a5:85:d5:4a:8b:32:cf:f6:28:c9: 2e:46:ee:d1:93:ff:81:15:5e:8d:f4:92:7f:91:0a:19:00:9a: 67:1e:76:7c:f7:b5:e1:ba:a1:b1:4e:8c:e8:d6:11:88:48:ea: e3:29:6d:3c:9c:f7:58:37:a0:22:0c:76:74:a6:08:bd:71:97: 17:43:b6:dc:f2:b4:aa:67:ab:33:d2:d7:5e:31:5d:ba:b0:6b: a3:3b:1a:33:53:50:2e:f7:91:0e:e3:31:3a:5c:75:5e:5b:d1: 3b:f1:09:9d:77:60:34:d4:d7:60:db:b5:7a:6c:39:6c:e7:29: 27:93:11:3f:62:c1:f6:2e:37:be:13:5e:d7:48:fd:b7:3f:06: 13:d9:44:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjQwNDMwMTYyMzA5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMWFlZC05MDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA509txX6I3dvEtTloPd5RY3Un+WFy1uO/jKgnreCaBh7G9NFa8ylknF525FUw 6iVmJpVDWJrr1ecAOD6EVkaTWKweK887++//t8kkPDC0wGbMM3PZLbNyAfrNRS8k VCeJP6rQDoHnrMBlR06BnD5nGIj0Ao2qmWGUwuoko59vxMMvKdZvEtJ3/AMIywvS UgoKKJ8MxDvQq8QZruEdLFHve4vdTxopzuacg99UJ9aVEdocyt75fJ8QtBlwM2/b wAvZOjunikzYSrGt+cd7twBby3OzD3zvLwQrkBFicFWUFqO5BvakXdX4DYHs3429 bIb4bqTPILPkQG/10tnlnlW09QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHQzM6oL DSGQBFTZQHrOoCww1N19MB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvNUFDODA0MTAy Mzk4MTFFRDlCNjhBQzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn5MgwDwQCAAIwCQMHACABDfQ4ADANBgkqhkiG9w0BAQsF AAOCAQEAp6Yk+8v3BTylu2K6NaZdoTCZTJHayTZ1C5I0gnNxFeW6ys4eOujTKnxH s7Dt4Q9GRC0PfVbJoIA9H2Gd9afoo03l5dS/yfjvLc5MUQ4XqU2VQICvCv1dwlXP zDpdvjGzJ/fgCxieVm2Ku0uX0ISpePVGX/GlhdVKizLP9ijJLkbu0ZP/gRVejfSS f5EKGQCaZx52fPe14bqhsU6M6NYRiEjq4yltPJz3WDegIgx2dKYIvXGXF0O23PK0 qmerM9LXXjFdurBrozsaM1NQLveRDuMxOlx1XlvRO/EJnXdgNNTXYNu1emw5bOcp J5MRP2LB9i43vhNe10j9tz8GE9lExQ== -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org