$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/1FCD9DE2926611EDA99A9419C4F9AE02.roa File: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (raw, json) Hash identifier: AGwMWWX4NXZWZYXJ1FNIjuVkZbLaD1EeTlU2DIzsVSw= Subject key identifier: CE:EC:D6:FD:2E:3D:CD:3C:8C:84:68:E2:1E:B1:31:CB:1C:10:66:12 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: D0 Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/1FCD9DE2926611EDA99A9419C4F9AE02.roa Signing time: Sat 17 Feb 2024 05:26:41 +0000 ROA not before: Sat 17 Feb 2024 05:26:41 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150707 IP address blocks: 103.65.222.0/23 maxlen: 23 103.65.222.0/24 maxlen: 24 103.65.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:53:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Feb 17 05:26:41 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d04390-b6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6f:b5:df:40:f5:03:d6:43:a4:8f:a2:03:f4: 4c:d0:94:90:29:90:f3:49:6a:01:c1:23:fd:d5:1d: c7:65:6b:26:b4:69:85:d6:8b:5f:36:91:b3:fd:3f: 91:3a:1a:1c:a4:28:bd:b4:8a:e4:19:3b:44:4b:25: 05:59:15:18:2f:df:dd:9c:d0:85:66:b6:dd:8a:67: a0:3e:c3:08:9e:d7:78:9e:8a:66:b9:43:91:d4:55: 5d:e2:a0:3d:bc:69:6a:42:4e:7a:ea:19:2e:32:10: 15:c7:f2:76:b9:30:fe:39:8d:e3:1a:ab:87:91:4c: 42:6e:a0:99:49:a9:a4:5b:8b:e8:55:e7:e2:01:ba: 3e:09:f9:24:41:e5:47:fe:77:80:4b:7c:71:0c:f8: de:fa:d4:80:fd:1b:4d:de:71:f7:e5:c5:dd:55:c0: 99:d5:e1:29:2b:b5:6e:6f:03:f3:48:54:d8:dc:0e: f1:ac:7c:17:b2:ea:60:f1:e4:1e:a1:bd:0a:76:9c: f2:a1:50:c0:94:30:68:7f:13:cc:a7:29:8d:30:7f: c8:47:06:b9:01:c6:eb:2f:da:86:9e:f2:a2:2c:d1: e4:5b:9b:7b:56:1f:56:4c:87:49:7f:8f:2e:1d:f2: 86:ec:27:de:c8:bf:3a:34:3a:bf:bb:a2:25:33:ad: e6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EC:D6:FD:2E:3D:CD:3C:8C:84:68:E2:1E:B1:31:CB:1C:10:66:12 X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/1FCD9DE2926611EDA99A9419C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.222.0/23 Signature Algorithm: sha256WithRSAEncryption 29:ea:90:90:2f:c2:d1:d2:f5:2e:80:9a:fb:25:33:83:bd:b1: 9e:92:eb:08:8f:9d:8d:3a:29:f6:0c:7d:d7:e1:1c:50:97:eb: 14:0a:53:c6:fc:ff:e8:0f:75:21:8a:1c:90:ee:68:15:cd:dd: 5b:43:9e:7f:9a:ce:30:6e:36:7c:59:57:48:e1:54:03:9b:c6: 99:4a:40:bc:85:1d:e0:93:48:b3:3a:25:9a:3b:ec:69:4f:c7: 23:97:8d:67:76:f1:6e:94:cc:6a:df:49:f2:ab:80:01:b3:6b: de:0d:96:26:03:fe:b3:69:fc:91:d3:7d:5d:db:c2:5c:0c:07: 6b:3c:28:fe:ae:06:d9:8a:1f:2b:45:be:87:51:7f:ba:1a:cf: bc:be:c0:91:be:2f:a7:b6:9d:91:21:85:72:bd:5b:52:fe:e4: ab:88:2d:cc:38:d3:7d:bf:f5:24:37:e6:a0:3a:13:0d:a9:5e: 52:c7:61:f3:70:d1:8a:24:96:34:27:b7:bb:6f:6d:5f:75:7c: aa:03:f6:d6:7a:15:bf:44:82:e2:e9:46:45:96:c9:a6:c8:1b: 7b:1d:46:b8:43:da:c9:98:11:13:dd:6d:c4:50:c1:5f:86:d0: 9c:e4:f9:99:56:d0:67:ae:82:17:14:0b:76:b8:b0:e3:90:e0: ec:71:37:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjQwMjE3MDUyNjQxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQwNDM5MC1iNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG+130D1A9ZDpI+iA/RM0JSQKZDzSWoBwSP91R3HZWsmtGmF1otfNpGz/T+R OhocpCi9tIrkGTtESyUFWRUYL9/dnNCFZrbdimegPsMIntd4nopmuUOR1FVd4qA9 vGlqQk566hkuMhAVx/J2uTD+OY3jGquHkUxCbqCZSamkW4voVefiAbo+CfkkQeVH /neAS3xxDPje+tSA/RtN3nH35cXdVcCZ1eEpK7VubwPzSFTY3A7xrHwXsupg8eQe ob0KdpzyoVDAlDBofxPMpymNMH/IRwa5AcbrL9qGnvKiLNHkW5t7Vh9WTIdJf48u HfKG7CfeyL86NDq/u6IlM63mdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM7s1v0u Pc08jIRo4h6xMcscEGYSMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCQzMvNzA4RTZGNjg5MjYxMTFFREE1MjA0RTY0QzRGOUFFMDIvMUZDRDlERTI5 MjY2MTFFREE5OUE5NDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQd4wDQYJKoZIhvcNAQELBQADggEBACnqkJAvwtHS9S6A mvslM4O9sZ6S6wiPnY06KfYMfdfhHFCX6xQKU8b8/+gPdSGKHJDuaBXN3VtDnn+a zjBuNnxZV0jhVAObxplKQLyFHeCTSLM6JZo77GlPxyOXjWd28W6UzGrfSfKrgAGz a94NliYD/rNp/JHTfV3bwlwMB2s8KP6uBtmKHytFvodRf7oaz7y+wJG+L6e2nZEh hXK9W1L+5KuILcw4032/9SQ35qA6Ew2pXlLHYfNw0YokljQnt7tvbV91fKoD9tZ6 Fb9EguLpRkWWyabIG3sdRrhD2smYERPdbcRQwV+G0Jzk+ZlW0GeughcUC3a4sOOQ 4OxxN1c= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:32 2024 by rpki-client on console-fra.rpki-client.org