$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/949FF22A0F8211EE9C28226AC4F9AE02.roa File: 949FF22A0F8211EE9C28226AC4F9AE02.roa (raw, json) Hash identifier: B3hRYF0bO26k9gxz4EV9GoirQCVy5mfb+aHOF6vK71Q= Subject key identifier: 1D:ED:B2:84:4C:33:34:BB:48:CC:64:5C:5E:C5:44:20:8B:47:CC:27 Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 2580 Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/949FF22A0F8211EE9C28226AC4F9AE02.roa Signing time: Tue 30 Apr 2024 16:23:08 +0000 ROA not before: Tue 30 Apr 2024 16:23:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137812 IP address blocks: 103.228.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9600 (0x2580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Apr 30 16:23:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66311aeb-0ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bc:d2:24:9f:08:53:d1:0a:6e:d6:ad:ba:63: b6:ff:20:cf:43:1e:ab:7d:61:f6:38:43:93:f1:55: 22:8a:4e:2e:80:3e:04:38:3e:af:2a:8f:7c:55:f9: a8:32:b4:67:be:ff:38:d7:b6:ac:b4:e6:b4:6c:ee: aa:e9:6c:cf:68:4e:14:f4:5c:f2:9b:72:e3:4d:7a: 89:95:13:da:0d:08:61:4d:d1:99:66:cd:dd:de:32: 7c:e5:d8:0e:72:3c:6d:9f:43:cc:de:83:6c:59:02: dd:4a:21:0d:b3:9b:a7:01:ed:b8:cf:49:c3:41:7b: 02:b7:32:8c:6e:88:8a:48:cd:28:2c:b3:d2:3b:21: 8f:0d:c2:c2:81:13:37:19:dd:3c:12:a4:0a:a1:f1: b6:6d:a3:a3:c8:87:83:0f:3c:f1:d0:af:7f:98:96: c8:db:30:0b:f7:f2:ed:94:9c:91:26:f2:65:3a:69: d2:93:87:70:fc:52:44:ed:f1:2f:02:91:e2:eb:94: 6a:e7:5e:b0:4c:de:08:56:f3:5e:c9:64:77:a9:f9: d7:27:75:dc:84:e4:ae:c6:25:82:5e:bb:54:4a:00: 5c:47:ef:7a:76:74:be:99:a0:89:77:d3:94:e8:0d: 5d:df:5f:e3:6a:f2:0a:51:75:75:fc:92:ff:f9:16: 4b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:ED:B2:84:4C:33:34:BB:48:CC:64:5C:5E:C5:44:20:8B:47:CC:27 X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/949FF22A0F8211EE9C28226AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.201.0/24 Signature Algorithm: sha256WithRSAEncryption 07:f7:b0:d1:52:65:f3:92:9b:88:20:f2:da:ee:e8:34:d3:39: 05:08:7e:3c:1a:1c:18:99:bb:48:48:72:22:c8:05:20:96:c4: c3:02:ad:7c:ea:ef:62:04:ab:a1:a3:ab:d1:db:51:85:90:1c: 27:78:84:0f:0d:63:7e:dc:41:4d:f2:40:3d:8c:6e:9a:c3:34: 35:74:1b:3a:a8:1c:f8:1c:08:3c:6e:1e:ba:61:be:25:0a:71: c1:b1:b8:1f:b8:42:8e:1f:a7:2a:15:36:8c:dd:4f:1d:9c:84: 01:e0:68:a8:3e:21:54:2c:79:11:7a:7e:cc:60:fc:b1:14:44: 33:04:c3:4f:42:e6:ef:ab:fa:89:5f:18:d0:28:44:ae:af:36: 5b:3d:a7:84:f8:ae:59:5b:13:49:75:b8:96:58:c7:87:9d:f7: 6f:67:3e:ff:01:ed:7a:5d:02:92:2f:6d:8a:32:a7:c8:19:4d: ee:e6:38:ee:cf:2c:25:22:f3:b1:52:76:3b:7c:23:ca:cd:dc: d6:8b:3b:33:a8:19:c9:0d:a1:ab:f3:5c:da:c4:23:ab:d7:4c: d2:9f:e2:d0:70:8a:99:c3:69:3f:bc:97:3a:b9:eb:6c:d2:28: 26:04:97:b0:f1:01:31:6d:c0:d0:31:0b:b2:53:e2:a1:39:a1: c1:08:6f:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjQwNDMwMTYyMzA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMWFlYi0wZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLzSJJ8IU9EKbtatumO2/yDPQx6rfWH2OEOT8VUiik4ugD4EOD6vKo98Vfmo MrRnvv8417astOa0bO6q6WzPaE4U9Fzym3LjTXqJlRPaDQhhTdGZZs3d3jJ85dgO cjxtn0PM3oNsWQLdSiENs5unAe24z0nDQXsCtzKMboiKSM0oLLPSOyGPDcLCgRM3 Gd08EqQKofG2baOjyIeDDzzx0K9/mJbI2zAL9/LtlJyRJvJlOmnSk4dw/FJE7fEv ApHi65Rq516wTN4IVvNeyWR3qfnXJ3XchOSuxiWCXrtUSgBcR+96dnS+maCJd9OU 6A1d31/javIKUXV1/JL/+RZLlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB3tsoRM MzS7SMxkXF7FRCCLR8wnMB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvOTQ5RkYyMkEw RjgyMTFFRTlDMjgyMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5MkwDQYJKoZIhvcNAQELBQADggEBAAf3sNFSZfOSm4gg 8tru6DTTOQUIfjwaHBiZu0hIciLIBSCWxMMCrXzq72IEq6Gjq9HbUYWQHCd4hA8N Y37cQU3yQD2MbprDNDV0GzqoHPgcCDxuHrphviUKccGxuB+4Qo4fpyoVNozdTx2c hAHgaKg+IVQseRF6fsxg/LEURDMEw09C5u+r+olfGNAoRK6vNls9p4T4rllbE0l1 uJZYx4ed929nPv8B7XpdApIvbYoyp8gZTe7mOO7PLCUi87FSdjt8I8rN3NaLOzOo GckNoavzXNrEI6vXTNKf4tBwipnDaT+8lzq562zSKCYEl7DxATFtwNAxC7JT4qE5 ocEIb5w= -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org