$ rpki-client -vvf rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa File: A23207FEB14111E5A3B46B15C4F9AE02.roa (raw, json) Hash identifier: 1wZ4BUMqSGIpPQInAvFZ5C1MTpzSxqt8OmY62bfaN3Q= Subject key identifier: 63:D4:77:AC:5D:0C:F3:C6:DA:B1:E3:00:69:19:5C:38:9F:02:F9:6A Certificate issuer: /CN=A9151C9D/serialNumber=FC655A21543ECF57BFA3EBDF7946A99561EC52F5 Certificate serial: 2602 Authority key identifier: FC:65:5A:21:54:3E:CF:57:BF:A3:EB:DF:79:46:A9:95:61:EC:52:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa Signing time: Fri 08 Mar 2024 16:22:33 +0000 ROA not before: Fri 08 Mar 2024 16:22:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 133498 IP address blocks: 103.231.240.0/22 maxlen: 22 103.231.240.0/24 maxlen: 24 103.231.241.0/24 maxlen: 24 103.231.242.0/24 maxlen: 24 103.231.243.0/24 maxlen: 24 2001:df5:e800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.crl rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9730 (0x2602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151C9D/serialNumber=FC655A21543ECF57BFA3EBDF7946A99561EC52F5 Validity Not Before: Mar 8 16:22:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65eb3b49-0c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:b8:b9:5f:70:4f:ce:a3:c7:0b:37:a8:6b: fc:eb:20:76:fb:20:7c:bd:3c:7f:4a:0b:67:56:a6: bc:18:91:44:46:66:fa:64:3e:53:96:fd:44:8e:7e: 27:ed:80:f3:5d:18:a5:66:a0:4b:58:4a:c4:80:db: 70:4f:af:7c:7a:ec:c1:f6:a8:95:9c:98:cc:90:a2: b9:1c:0f:62:79:16:a6:2e:1f:b9:4c:6e:fa:6a:26: e7:c2:f9:a7:7f:60:b4:2c:84:2c:7a:57:4d:f4:70: ae:9a:1f:cb:ea:ac:23:51:10:be:6c:ff:12:b2:0a: 18:40:d8:39:2f:8c:0a:ac:10:f1:75:9e:14:03:91: 69:74:e3:42:09:a9:f9:0d:06:7f:24:36:26:4c:00: 2f:fe:d5:c7:ff:a6:a4:0f:66:12:84:09:8b:7e:10: 15:8e:64:60:2a:0e:00:eb:d2:f8:cf:05:3c:51:ec: 30:ed:61:bd:67:a9:64:88:50:cc:f2:3b:89:e1:69: fc:d2:eb:28:07:b1:06:d9:74:9b:e5:df:71:36:8f: 49:88:09:ed:dc:9f:22:da:11:ff:bb:09:cd:6d:57: 1b:a1:d1:5e:85:a7:0e:4c:ea:d5:6e:12:f2:e6:77: 5d:42:ae:54:c1:88:f4:3c:a2:d6:37:1d:e7:e7:ec: 00:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D4:77:AC:5D:0C:F3:C6:DA:B1:E3:00:69:19:5C:38:9F:02:F9:6A X509v3 Authority Key Identifier: keyid:FC:65:5A:21:54:3E:CF:57:BF:A3:EB:DF:79:46:A9:95:61:EC:52:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.240.0/22 IPv6: 2001:df5:e800::/48 Signature Algorithm: sha256WithRSAEncryption 2a:60:25:f8:ac:20:85:19:31:91:41:2e:20:7b:5b:e8:26:61: 39:75:e8:6c:32:a6:ee:0a:08:34:32:88:59:55:17:53:d1:0f: a3:e0:a2:f7:b1:3b:9c:93:18:a7:d6:6a:67:db:1b:77:b0:ba: 63:06:e2:e4:46:dc:81:6f:3f:e5:93:14:73:31:11:a1:93:8a: b7:d7:87:12:74:35:43:60:3f:5e:e0:d0:d8:47:98:9f:8a:07: b7:f2:f9:b0:76:7d:a6:f4:e0:04:c8:7d:5c:6e:8c:4c:8b:85: 25:b8:89:cd:63:a4:94:66:a3:fe:f8:95:27:6d:35:ff:0b:57: 42:e6:2a:9d:ca:e2:b6:a6:35:d7:05:26:5e:c8:ff:5e:5a:f1: 08:5a:b8:4a:f1:53:77:4b:4b:0d:af:33:b4:76:77:82:3c:86: 32:c3:ba:bf:b9:9d:70:21:4b:7c:e4:f1:35:42:fb:58:82:92: c1:0b:1f:7a:51:be:3a:0e:c8:07:bd:89:98:4d:b4:fe:37:8d: 94:7d:2a:47:e6:8b:3c:d0:57:9c:f3:50:57:44:cb:9d:a4:51: e0:e3:ef:e6:e8:dc:b0:4f:b3:00:09:73:ce:6c:b3:b2:88:4b: bd:b7:5d:07:bf:36:17:3f:54:8c:52:fa:f1:08:44:de:c9:34: 72:59:e9:96 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFDOUQxMTAvBgNVBAUTKEZDNjU1QTIxNTQzRUNGNTdCRkEzRUJERjc5NDZBOTk1 NjFFQzUyRjUwHhcNMjQwMzA4MTYyMjMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWViM2I0OS0wYzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosC4uV9wT86jxws3qGv86yB2+yB8vTx/SgtnVqa8GJFERmb6ZD5Tlv1Ejn4n 7YDzXRilZqBLWErEgNtwT698euzB9qiVnJjMkKK5HA9ieRamLh+5TG76aibnwvmn f2C0LIQseldN9HCumh/L6qwjURC+bP8SsgoYQNg5L4wKrBDxdZ4UA5FpdONCCan5 DQZ/JDYmTAAv/tXH/6akD2YShAmLfhAVjmRgKg4A69L4zwU8Ueww7WG9Z6lkiFDM 8juJ4Wn80usoB7EG2XSb5d9xNo9JiAnt3J8i2hH/uwnNbVcbodFehacOTOrVbhLy 5nddQq5UwYj0PKLWNx3n5+wA3wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGPUd6xd DPPG2rHjAGkZXDifAvlqMB8GA1UdIwQYMBaAFPxlWiFUPs9Xv6Pr33lGqZVh7FL1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUM5RC83M0FDQTVFNENG NDUxMUU0QjZCN0EyMTFDNEY5QUUwMi9fR1ZhSVZRLXoxZV9vLXZmZVVhcGxXSHNV dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVmFJVlEtejFlX28tdmZlVWFwbFdIc1V2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFDOUQvNzNBQ0E1RTRDRjQ1MTFFNEI2QjdBMjExQzRGOUFFMDIvQTIzMjA3RkVC MTQxMTFFNUEzQjQ2QjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJn5/AwDwQCAAIwCQMHACABDfXoADANBgkqhkiG9w0BAQsF AAOCAQEAKmAl+KwghRkxkUEuIHtb6CZhOXXobDKm7goINDKIWVUXU9EPo+Ci97E7 nJMYp9ZqZ9sbd7C6Ywbi5EbcgW8/5ZMUczERoZOKt9eHEnQ1Q2A/XuDQ2EeYn4oH t/L5sHZ9pvTgBMh9XG6MTIuFJbiJzWOklGaj/viVJ201/wtXQuYqncritqY11wUm Xsj/XlrxCFq4SvFTd0tLDa8ztHZ3gjyGMsO6v7mdcCFLfOTxNUL7WIKSwQsfelG+ Og7IB72JmE20/jeNlH0qR+aLPNBXnPNQV0TLnaRR4OPv5ujcsE+zAAlzzmyzsohL vbddB782Fz9UjFL68QhE3sk0clnplg== -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org