$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/59212E58955D11EC97EC0461C4F9AE02.roa File: 59212E58955D11EC97EC0461C4F9AE02.roa (raw, json) Hash identifier: J2y++DTpQjM62pEpWjR1Gs3cyedpaujU22KIGL2GSqQ= Subject key identifier: 4A:57:25:F0:79:D9:BE:83:F1:35:7E:DE:8A:14:20:F2:C1:F4:28:9C Certificate issuer: /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Certificate serial: 0286 Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/59212E58955D11EC97EC0461C4F9AE02.roa Signing time: Wed 01 Nov 2023 03:34:05 +0000 ROA not before: Wed 01 Nov 2023 03:34:04 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135334 IP address blocks: 103.172.214.0/23 maxlen: 23 103.172.214.0/24 maxlen: 24 103.172.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Validity Not Before: Nov 1 03:34:04 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541c72c-5740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:22:18:cb:e8:d2:3c:4e:35:3a:88:b3:82:76: e9:3d:6d:a2:64:95:82:75:dd:d6:9e:8e:9a:35:21: d9:7b:ca:4a:1d:19:41:53:f5:16:1e:6f:c0:56:d3: 31:94:f5:fd:72:07:22:55:37:0b:38:93:b8:6c:9a: c1:0f:47:43:cd:01:be:56:4e:40:48:2e:b0:6a:e4: 4b:83:bc:08:42:f7:dd:c8:55:53:a9:70:15:4a:4b: ba:16:5b:30:7c:32:6d:8f:fd:67:9a:e7:d2:88:63: 3d:05:ac:b8:f9:41:20:64:d2:76:57:40:c4:06:e0: 50:d6:a5:fd:33:4a:a7:72:23:32:69:7e:29:11:df: 1f:2f:7c:64:7e:b0:df:91:ff:ef:a9:0d:e1:15:fc: 89:2d:62:76:39:cd:24:30:34:80:c4:c4:21:e7:e9: 96:28:b2:6c:50:23:ed:6c:6e:81:6b:65:6f:46:9c: a9:35:e3:ad:8b:f0:2b:a5:f2:d9:2a:08:06:d7:2d: 56:ec:e6:1a:68:b7:6e:2f:8e:42:b4:50:97:dc:da: b3:5c:24:91:3d:b9:c9:6f:e5:c6:be:6c:0e:e2:2e: 9e:78:7a:0b:ac:37:a6:6f:80:bf:52:87:72:d5:55: ee:8a:c7:9a:0c:1e:21:01:c6:03:cb:1b:32:f5:f1: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:57:25:F0:79:D9:BE:83:F1:35:7E:DE:8A:14:20:F2:C1:F4:28:9C X509v3 Authority Key Identifier: keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/59212E58955D11EC97EC0461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.214.0/23 Signature Algorithm: sha256WithRSAEncryption 95:52:79:c5:23:ad:e0:3b:fd:b9:77:cf:7f:d3:95:70:58:fd: 57:6f:52:cf:46:d2:76:84:c9:1d:51:28:f4:6c:a5:d9:45:23: dc:43:97:d3:29:fa:58:c8:3a:d9:bc:e4:af:22:be:11:1c:80: db:5f:15:eb:1d:b5:a9:18:06:af:0b:3d:c8:e5:89:c0:61:94: 81:db:6f:fc:6d:76:5e:ad:91:d7:7e:d9:f3:7b:83:46:dd:3e: 3f:c3:b8:39:e6:ac:66:44:0d:62:77:d3:b3:9b:67:e0:0d:c6: bc:11:0a:2d:f0:2b:89:cf:80:7d:2e:bf:97:eb:28:ac:ce:29: ca:f9:15:a8:8d:df:4c:8b:d9:cc:b6:0f:cd:00:a0:1f:ff:34: d6:73:bd:18:77:c5:de:b0:b0:ad:4d:e6:cd:e2:d5:da:35:45: de:5f:ad:a3:f4:bf:8b:37:1c:0d:a1:07:ec:e8:ca:1b:aa:c1: 52:92:6c:11:c0:37:d5:b4:66:16:c9:11:2e:d8:9d:9a:4b:c5: 21:41:0e:50:af:60:00:74:2b:e7:c3:4e:2a:38:e8:c3:e8:d6: 17:b8:59:55:c0:a3:46:38:42:43:e5:a2:97:0a:aa:e1:33:88: 5a:35:f8:66:f7:96:b2:fe:cc:2b:52:ef:60:64:95:6e:71:df: 76:af:b9:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1RUQxMDg2OEFG NkQzMzVCRjQwHhcNMjMxMTAxMDMzNDA0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxYzcyYy01NzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CIYy+jSPE41OoizgnbpPW2iZJWCdd3Wno6aNSHZe8pKHRlBU/UWHm/AVtMx lPX9cgciVTcLOJO4bJrBD0dDzQG+Vk5ASC6wauRLg7wIQvfdyFVTqXAVSku6Flsw fDJtj/1nmufSiGM9Bay4+UEgZNJ2V0DEBuBQ1qX9M0qnciMyaX4pEd8fL3xkfrDf kf/vqQ3hFfyJLWJ2Oc0kMDSAxMQh5+mWKLJsUCPtbG6Ba2VvRpypNeOti/ArpfLZ KggG1y1W7OYaaLduL45CtFCX3NqzXCSRPbnJb+XGvmwO4i6eeHoLrDemb4C/Uody 1VXuiseaDB4hAcYDyxsy9fFZHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEpXJfB5 2b6D8TV+3ooUIPLB9CicMB8GA1UdIwQYMBaAFKPXOk6fEEPeOr9PXtEIaK9tM1v0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRBMS82OENFQzA5NDk1 NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5NDZ2MDllMFFob3IyMHpX X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285YzZUcDhRUTk0NnYwOWUwUWhvcjIweldfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE0QTEvNjhDRUMwOTQ5NTU5MTFFQzg0NzI4NzM2QzRGOUFFMDIvNTkyMTJFNTg5 NTVEMTFFQzk3RUMwNDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrNYwDQYJKoZIhvcNAQELBQADggEBAJVSecUjreA7/bl3 z3/TlXBY/VdvUs9G0naEyR1RKPRspdlFI9xDl9Mp+ljIOtm85K8ivhEcgNtfFesd takYBq8LPcjlicBhlIHbb/xtdl6tkdd+2fN7g0bdPj/DuDnmrGZEDWJ307ObZ+AN xrwRCi3wK4nPgH0uv5frKKzOKcr5FaiN30yL2cy2D80AoB//NNZzvRh3xd6wsK1N 5s3i1do1Rd5fraP0v4s3HA2hB+zoyhuqwVKSbBHAN9W0ZhbJES7YnZpLxSFBDlCv YAB0K+fDTio46MPo1he4WVXAo0Y4QkPlopcKquEziFo1+Gb3lrL+zCtS72BklW5x 33avuUQ= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org