$ rpki-client -vvf rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa File: 9F9CEB425CB911ECAEF7AE14C4F9AE02.roa (raw, json) Hash identifier: mte1jFfJrUTHDpP2PQv3wWfd0pQMAP5qd0OL6SPaYT0= Subject key identifier: BF:8F:CA:66:93:81:FF:B3:5A:9C:76:6A:46:8C:44:6E:B7:9D:07:A8 Certificate issuer: /CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Certificate serial: 0333 Authority key identifier: EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa Signing time: Mon 11 Dec 2023 02:14:25 +0000 ROA not before: Mon 11 Dec 2023 02:14:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 147033 IP address blocks: 103.173.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Validity Not Before: Dec 11 02:14:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65767081-3b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:31:33:e5:92:e1:8a:c3:8b:b3:07:f8:ea: ac:61:b5:28:b4:f7:22:3f:a6:ac:09:be:1a:23:c1: 58:e2:ce:f6:17:eb:85:c0:05:04:86:62:db:8a:77: 82:35:8f:0a:3c:96:91:49:67:59:d6:f1:a9:2e:1f: 1e:4b:2d:b2:cf:e4:fe:40:09:88:8b:a8:e3:0b:6e: 05:5c:d9:b1:0b:0b:fc:a3:f7:0e:0b:53:99:08:cc: 9d:18:8e:14:94:00:83:05:d6:bc:a1:93:1c:9d:77: 82:33:5a:9c:a4:2f:a0:f0:c7:69:d8:1a:24:f9:30: 5e:14:6d:fa:15:f1:ff:d2:c4:64:f1:79:6d:53:d9: 48:7a:f7:d8:20:47:b7:3f:95:b7:3b:d8:48:08:24: e1:5c:a6:3e:ae:a7:8c:c6:94:46:f3:ae:18:6b:5b: 57:99:f0:09:a2:72:d1:59:37:d6:59:4e:84:2b:bd: bd:b9:80:e6:58:07:53:6c:b1:79:be:9f:d5:64:a9: 14:54:db:89:e4:e6:d7:a6:00:f4:1f:21:6c:f7:4f: 72:1c:db:be:14:34:fb:73:05:78:58:67:5c:1f:e5: 7d:bd:47:cf:9d:2b:2e:52:56:ac:49:a6:e6:19:84: 76:d6:d7:32:95:50:cd:1c:a1:21:0d:53:e9:cc:45: c5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8F:CA:66:93:81:FF:B3:5A:9C:76:6A:46:8C:44:6E:B7:9D:07:A8 X509v3 Authority Key Identifier: keyid:EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.106.0/23 Signature Algorithm: sha256WithRSAEncryption 85:7d:5b:40:2f:6e:18:83:b9:09:6b:8c:51:2d:9c:58:b2:05: f9:eb:8a:58:13:a6:db:25:44:b0:cf:fa:fd:a1:0e:b9:68:78: 17:89:c0:5f:87:3e:7b:6a:0a:84:2c:ab:c2:47:f5:74:50:70: fe:ae:89:25:b0:65:db:c2:e7:02:f4:63:80:cb:3c:ef:98:a4: 21:23:01:78:53:15:19:da:eb:ef:73:de:35:13:01:a4:fe:cc: 02:ed:bf:ba:78:f4:e1:cb:9d:b7:82:32:7a:aa:8a:56:5f:61: 5e:d6:9c:e5:10:b8:8c:c0:2f:d0:e5:c9:1e:c3:a4:27:f1:eb: 93:36:32:20:8a:0c:90:36:f0:42:f3:34:82:8f:ac:8d:21:13: ee:58:8d:fd:bf:9b:cd:49:a5:e2:0d:7a:2b:42:20:ea:4a:8c: fe:cd:a3:6e:f3:8d:ed:02:b6:33:35:da:0e:12:72:d4:1c:98: 10:e7:63:da:23:b2:49:33:b9:7b:67:7b:f7:2c:96:eb:df:04: 7e:dd:2c:87:a2:94:74:1c:ff:a6:7c:05:77:9c:bd:5e:fa:11: bd:4d:50:00:45:7e:90:b2:30:c7:d5:d7:56:64:c8:d6:1f:9f: 92:d3:50:b5:d5:4c:d6:f6:7b:67:34:54:b8:e5:7b:0e:03:c1: 1e:09:7c:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFODcxMTAvBgNVBAUTKEVCQkI3NTYyQzZBNDlGQjdFREU1NzQxMkJDMUZGQUQ0 OEUxQUZCNDkwHhcNMjMxMjExMDIxNDI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc2NzA4MS0zYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKExM+WS4YrDi7MH+OqsYbUotPciP6asCb4aI8FY4s72F+uFwAUEhmLbineC NY8KPJaRSWdZ1vGpLh8eSy2yz+T+QAmIi6jjC24FXNmxCwv8o/cOC1OZCMydGI4U lACDBda8oZMcnXeCM1qcpC+g8Mdp2Bok+TBeFG36FfH/0sRk8XltU9lIevfYIEe3 P5W3O9hICCThXKY+rqeMxpRG864Ya1tXmfAJonLRWTfWWU6EK729uYDmWAdTbLF5 vp/VZKkUVNuJ5ObXpgD0HyFs909yHNu+FDT7cwV4WGdcH+V9vUfPnSsuUlasSabm GYR21tcylVDNHKEhDVPpzEXFIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL+PymaT gf+zWpx2akaMRG63nQeoMB8GA1UdIwQYMBaAFOu7dWLGpJ+37eV0Erwf+tSOGvtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkU4Ny80RTE0MDFFNjVD QjYxMUVDQTc3MTE4MEVDNEY5QUUwMi82N3QxWXNha243ZnQ1WFFTdkJfNjFJNGEt MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dDFZc2FrbjdmdDVYUVN2Ql82MUk0YS0way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZFODcvNEUxNDAxRTY1Q0I2MTFFQ0E3NzExODBFQzRGOUFFMDIvOUY5Q0VCNDI1 Q0I5MTFFQ0FFRjdBRTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrWowDQYJKoZIhvcNAQELBQADggEBAIV9W0AvbhiDuQlr jFEtnFiyBfnrilgTptslRLDP+v2hDrloeBeJwF+HPntqCoQsq8JH9XRQcP6uiSWw ZdvC5wL0Y4DLPO+YpCEjAXhTFRna6+9z3jUTAaT+zALtv7p49OHLnbeCMnqqilZf YV7WnOUQuIzAL9DlyR7DpCfx65M2MiCKDJA28ELzNIKPrI0hE+5Yjf2/m81JpeIN eitCIOpKjP7No27zje0CtjM12g4SctQcmBDnY9ojskkzuXtne/csluvfBH7dLIei lHQc/6Z8BXecvV76Eb1NUABFfpCyMMfV11ZkyNYfn5LTULXVTNb2e2c0VLjlew4D wR4JfAw= -----END CERTIFICATE-----Generated at Thu Jun 13 03:35:02 2024 by rpki-client on console-fra.rpki-client.org