$ rpki-client -vvf rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa File: 2907520205DA11EF974A6A0BC4F9AE02.roa (raw, json) Hash identifier: 1gtkL+UA2oj2CtkbitkzKA9U2kMx9KNP4ClU7cUaHIE= Subject key identifier: 6E:5B:D2:8F:3E:03:52:70:78:C4:2A:95:F0:B7:53:96:44:77:F8:6E Certificate issuer: /CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Certificate serial: 08 Authority key identifier: D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa Signing time: Mon 29 Apr 2024 03:40:02 +0000 ROA not before: Mon 29 Apr 2024 03:40:02 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 152477 IP address blocks: 103.213.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Validity Not Before: Apr 29 03:40:02 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=662f1692-964c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:21:c0:74:30:99:91:bd:ba:8c:5c:3d:36:cf: 4a:8e:31:5b:a6:2b:98:4f:d5:26:08:16:35:7e:d3: 44:a5:2b:b9:02:a6:0e:53:0b:3a:6e:eb:2c:31:51: 2e:75:aa:8e:8a:6e:11:11:9b:18:05:db:14:16:b1: 17:b8:b5:54:61:74:a0:1d:70:bc:97:1d:ae:c9:e5: a5:46:53:fb:56:10:3e:03:a7:20:68:4a:cf:6a:43: 8f:04:58:a2:ea:91:54:8a:30:84:86:e1:f8:d5:bd: 6a:4e:69:41:01:44:4c:47:51:21:44:36:7b:89:6c: 2c:4d:9b:a1:6c:0e:33:24:d9:85:92:14:e1:9d:55: 56:b9:ed:9c:61:d1:09:7b:06:bc:de:0f:d0:85:b7: df:90:d2:02:b3:92:83:20:94:1a:8f:06:ba:91:b9: c1:d7:c6:65:17:27:da:8c:2b:db:f6:35:98:42:d9: 2f:6f:a6:c5:41:79:0c:06:1a:f4:c7:cc:1a:aa:4f: 2b:66:8e:a5:9e:3a:65:94:85:bc:63:35:35:4a:37: 4c:15:c0:e0:94:fc:e0:48:11:b1:fd:e1:f5:68:5c: d1:35:29:cd:bb:a5:69:b5:f3:01:30:f7:9f:42:7a: d5:4c:49:50:c8:d8:6e:f6:d9:80:0d:33:12:15:ef: 27:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:5B:D2:8F:3E:03:52:70:78:C4:2A:95:F0:B7:53:96:44:77:F8:6E X509v3 Authority Key Identifier: keyid:D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.10.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:fa:85:90:b8:b3:24:16:8a:27:7d:30:29:99:23:2d:78:d4: a3:c1:a3:2e:64:cb:7a:63:87:8c:59:d6:fa:10:5a:25:6a:25: 8e:af:b7:a9:23:7d:d2:a9:4c:87:b1:b2:29:09:af:d8:12:e9: 20:85:30:5e:f7:82:65:19:0e:ff:a7:5e:32:48:4d:c8:ca:8b: 9b:f6:e0:77:82:86:e4:25:1a:85:d0:3c:9c:56:56:5d:5f:51: a6:73:c3:e2:21:42:77:c0:7a:cc:69:d7:c6:47:3b:0c:9a:5e: 41:13:2e:ce:07:5a:89:47:ee:8d:71:71:c9:8f:91:4c:a3:88: 2c:6a:3e:d3:4b:af:31:74:1a:a8:de:8e:34:c3:79:22:07:8c: fd:b5:16:6c:37:39:40:e5:c7:a8:3d:ff:b4:36:c5:12:0a:57: 35:90:bd:88:f8:b5:c4:40:01:b9:61:18:00:ef:b8:13:8a:12: b3:bc:e5:f9:9f:a6:1c:81:c1:eb:31:2f:f8:44:55:5b:fa:50: a7:1b:73:0e:ef:20:13:ba:ee:4c:c7:7f:b6:c7:29:0c:2e:66: fe:e7:d0:dc:7f:2c:75:5a:33:39:2e:25:b0:eb:82:5e:2d:c3: 12:4b:be:dd:a4:2c:76:f3:2c:15:34:6c:38:ab:66:25:9e:32: 5e:4f:a6:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTQ5QjExMC8GA1UEBRMoRDUwMzdBRjk2OUM4QUNFQTAxQjU3MEZDNjRBREQ0ODI4 QUMwNjQxNDAeFw0yNDA0MjkwMzQwMDJaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmYxNjkyLTk2NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8IcB0MJmRvbqMXD02z0qOMVumK5hP1SYIFjV+00SlK7kCpg5TCzpu6ywxUS51 qo6KbhERmxgF2xQWsRe4tVRhdKAdcLyXHa7J5aVGU/tWED4DpyBoSs9qQ48EWKLq kVSKMISG4fjVvWpOaUEBRExHUSFENnuJbCxNm6FsDjMk2YWSFOGdVVa57Zxh0Ql7 BrzeD9CFt9+Q0gKzkoMglBqPBrqRucHXxmUXJ9qMK9v2NZhC2S9vpsVBeQwGGvTH zBqqTytmjqWeOmWUhbxjNTVKN0wVwOCU/OBIEbH94fVoXNE1Kc27pWm18wEw959C etVMSVDI2G722YANMxIV7yedAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUblvSjz4D UnB4xCqV8LdTlkR3+G4wHwYDVR0jBBgwFoAU1QN6+WnIrOoBtXD8ZK3UgorAZBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNDlCL0I5NEY2OTM2MDE1 MTExRUY5ODU3QzAxRUM0RjlBRTAyLzFRTjYtV25Jck9vQnRYRDhaSzNVZ29yQVpC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVFONi1XbklyT29CdFhEOFpLM1Vnb3JBWkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ5Qi9COTRGNjkzNjAxNTExMUVGOTg1N0MwMUVDNEY5QUUwMi8yOTA3NTIwMjA1 REExMUVGOTc0QTZBMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfVCjANBgkqhkiG9w0BAQsFAAOCAQEAbvqFkLizJBaKJ30w KZkjLXjUo8GjLmTLemOHjFnW+hBaJWoljq+3qSN90qlMh7GyKQmv2BLpIIUwXveC ZRkO/6deMkhNyMqLm/bgd4KG5CUahdA8nFZWXV9RpnPD4iFCd8B6zGnXxkc7DJpe QRMuzgdaiUfujXFxyY+RTKOILGo+00uvMXQaqN6ONMN5IgeM/bUWbDc5QOXHqD3/ tDbFEgpXNZC9iPi1xEABuWEYAO+4E4oSs7zl+Z+mHIHB6zEv+ERVW/pQpxtzDu8g E7ruTMd/tscpDC5m/ufQ3H8sdVozOS4lsOuCXi3DEku+3aQsdvMsFTRsOKtmJZ4y Xk+mrg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org