$ rpki-client -vvf rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa File: 595EF8C63DC711EBA35AB51DC4F9AE02.roa (raw, json) Hash identifier: T0m7wQsjhVoItv5NXXHrNsnbftqyMv7V512H7GnmrBc= Subject key identifier: D2:54:F5:28:FC:33:C6:ED:D9:44:8A:07:94:AE:DE:7F:AE:78:51:C9 Certificate issuer: /CN=A914F0E7/serialNumber=AFAC57751C5E769875ED26F5BCDF17F53DFF9C99 Certificate serial: 05ED Authority key identifier: AF:AC:57:75:1C:5E:76:98:75:ED:26:F5:BC:DF:17:F5:3D:FF:9C:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa Signing time: Sat 04 Nov 2023 23:31:11 +0000 ROA not before: Sat 04 Nov 2023 23:31:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141229 IP address blocks: 103.156.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.crl rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F0E7/serialNumber=AFAC57751C5E769875ED26F5BCDF17F53DFF9C99 Validity Not Before: Nov 4 23:31:11 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6546d43f-de6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:69:0c:8e:07:96:53:25:b2:98:8e:56:6d:d7: 88:38:b3:da:2c:d5:80:1a:02:e8:17:a8:e6:cd:cd: 4c:67:8f:d7:d1:0e:82:dd:c5:13:f6:46:5c:4f:55: 34:a9:e8:5e:69:0e:46:6f:c2:b4:5f:05:57:4c:78: 34:e0:90:e9:17:7d:04:33:6a:ec:c7:d0:0a:7b:d6: 6f:df:48:7f:c1:6b:22:f2:00:e2:c3:86:24:d6:15: 6d:53:c0:e1:e0:f0:1c:97:91:c7:a8:2e:e3:a8:94: 34:00:16:15:1c:0e:a1:43:38:a3:ba:2e:cf:e4:8b: 92:1d:0a:ce:f0:63:19:ac:57:80:77:6a:b8:f7:47: 40:ac:30:c2:96:e1:81:e9:57:54:fe:b1:45:1e:be: 29:84:0c:d1:1a:48:21:54:36:96:d1:20:53:6f:c9: d3:49:05:8e:86:82:c2:59:fc:46:f7:34:f9:8a:80: ed:0a:0b:4d:80:91:ff:66:55:f9:33:7a:9d:91:03: 10:12:85:d0:04:e6:38:1b:1c:03:c8:f3:d3:7d:99: 8a:07:67:39:aa:19:30:38:f8:41:08:81:37:15:30: dc:9f:d6:c0:be:f6:8b:15:2e:a6:48:37:cc:a0:08: f3:fe:45:d5:d0:0b:bf:cf:53:16:dd:a3:af:88:af: 1b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:54:F5:28:FC:33:C6:ED:D9:44:8A:07:94:AE:DE:7F:AE:78:51:C9 X509v3 Authority Key Identifier: keyid:AF:AC:57:75:1C:5E:76:98:75:ED:26:F5:BC:DF:17:F5:3D:FF:9C:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.198.0/24 Signature Algorithm: sha256WithRSAEncryption b7:8b:1d:ff:d6:a1:f3:19:1a:3e:ae:9b:23:63:38:66:8e:ef: a9:95:76:4b:20:66:19:76:87:40:83:04:03:09:63:69:74:0b: da:32:3a:21:99:02:71:4e:2c:64:db:fb:47:f0:dc:0c:4a:9a: a3:a5:48:93:d7:70:71:c3:21:be:6e:02:d3:54:c7:83:e3:3b: 83:db:94:d1:2c:05:10:b6:62:45:d9:3e:9a:c7:c4:cf:3a:6e: 04:a1:39:cc:95:78:a5:09:88:3f:80:6d:40:8d:a7:52:fa:e3: fb:4c:c0:e0:e9:d2:50:23:4f:56:5a:6c:bc:29:9d:89:21:bd: 0e:67:8c:9d:2b:2d:f7:f7:36:2a:56:c3:f6:0d:8b:16:e2:fd: 8e:35:42:d0:e7:4c:87:35:76:5f:92:6d:75:2b:06:22:f9:cb: 0b:d5:70:95:0b:9c:68:12:87:e2:79:d0:3d:c7:b1:26:14:a1: ab:d7:3e:a6:5d:ca:21:35:13:90:a4:48:7e:26:3a:14:0e:96: 3f:97:22:9a:ad:1e:3e:81:be:b4:02:c8:94:c3:cc:34:96:26: 38:0c:da:90:4c:fd:d8:7d:9e:72:c9:09:f6:67:c0:04:b8:e3: 64:b0:e2:60:49:6d:31:c9:51:62:8f:0d:63:32:10:87:90:9b: 7e:2e:a6:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYwRTcxMTAvBgNVBAUTKEFGQUM1Nzc1MUM1RTc2OTg3NUVEMjZGNUJDREYxN0Y1 M0RGRjlDOTkwHhcNMjMxMTA0MjMzMTExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2ZDQzZi1kZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mkMjgeWUyWymI5WbdeIOLPaLNWAGgLoF6jmzc1MZ4/X0Q6C3cUT9kZcT1U0 qeheaQ5Gb8K0XwVXTHg04JDpF30EM2rsx9AKe9Zv30h/wWsi8gDiw4Yk1hVtU8Dh 4PAcl5HHqC7jqJQ0ABYVHA6hQzijui7P5IuSHQrO8GMZrFeAd2q490dArDDCluGB 6VdU/rFFHr4phAzRGkghVDaW0SBTb8nTSQWOhoLCWfxG9zT5ioDtCgtNgJH/ZlX5 M3qdkQMQEoXQBOY4GxwDyPPTfZmKB2c5qhkwOPhBCIE3FTDcn9bAvvaLFS6mSDfM oAjz/kXV0Au/z1MW3aOviK8baQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJU9Sj8 M8bt2USKB5Su3n+ueFHJMB8GA1UdIwQYMBaAFK+sV3UcXnaYde0m9bzfF/U9/5yZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjBFNy8wM0ExMkM1QzNE QzYxMUVCODJBNzY4MUNDNEY5QUUwMi9yNnhYZFJ4ZWRwaDE3U2Ixdk44WDlUM19u SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2eFhkUnhlZHBoMTdTYjF2TjhYOVQzX25Kay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYwRTcvMDNBMTJDNUMzREM2MTFFQjgyQTc2ODFDQzRGOUFFMDIvNTk1RUY4QzYz REM3MTFFQkEzNUFCNTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnMYwDQYJKoZIhvcNAQELBQADggEBALeLHf/WofMZGj6u myNjOGaO76mVdksgZhl2h0CDBAMJY2l0C9oyOiGZAnFOLGTb+0fw3AxKmqOlSJPX cHHDIb5uAtNUx4PjO4PblNEsBRC2YkXZPprHxM86bgShOcyVeKUJiD+AbUCNp1L6 4/tMwODp0lAjT1ZabLwpnYkhvQ5njJ0rLff3NipWw/YNixbi/Y41QtDnTIc1dl+S bXUrBiL5ywvVcJULnGgSh+J50D3HsSYUoavXPqZdyiE1E5CkSH4mOhQOlj+XIpqt Hj6BvrQCyJTDzDSWJjgM2pBM/dh9nnLJCfZnwAS442Sw4mBJbTHJUWKPDWMyEIeQ m34upqk= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:44 2024 by rpki-client on console-fra.rpki-client.org