$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/4B696C52F34311EAB4034710C4F9AE02.roa File: 4B696C52F34311EAB4034710C4F9AE02.roa (raw, json) Hash identifier: SPnQClcgfdggbBWm4exY+wvGlzklpCFH5UoP7xK+oy8= Subject key identifier: 77:31:8E:41:D9:A4:C2:10:00:F9:C9:97:C7:41:B7:B8:25:64:25:D3 Certificate issuer: /CN=A915DB03/serialNumber=60F4CFA966F9E5E20374CB2ED4706412DDA21C4F Certificate serial: 0699 Authority key identifier: 60:F4:CF:A9:66:F9:E5:E2:03:74:CB:2E:D4:70:64:12:DD:A2:1C:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YPTPqWb55eIDdMsu1HBkEt2iHE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/4B696C52F34311EAB4034710C4F9AE02.roa Signing time: Thu 28 Sep 2023 21:59:22 +0000 ROA not before: Thu 28 Sep 2023 21:59:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141156 IP address blocks: 103.155.114.0/24 maxlen: 24 103.155.115.0/24 maxlen: 24 2001:df4:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/YPTPqWb55eIDdMsu1HBkEt2iHE8.crl rsync://rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/YPTPqWb55eIDdMsu1HBkEt2iHE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YPTPqWb55eIDdMsu1HBkEt2iHE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB03/serialNumber=60F4CFA966F9E5E20374CB2ED4706412DDA21C4F Validity Not Before: Sep 28 21:59:22 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515f73a-97b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0f:ce:9f:52:c5:84:5c:93:b7:97:1f:9e:99: 12:53:38:0e:da:0d:30:98:a2:00:44:75:d6:72:67: 8d:5b:82:6e:c5:0d:16:13:8f:b2:69:7b:eb:4a:5b: 3a:4d:9b:06:cd:bb:70:b1:7a:73:55:b5:cb:13:d4: 3b:4f:a1:07:4d:f7:e2:54:0c:84:6d:90:e4:7c:dd: 72:27:50:6f:71:2c:b6:3f:cc:18:fe:01:0c:51:c4: 2e:1d:84:30:8e:99:99:da:cc:19:ee:36:a8:c7:fd: ea:bd:f8:6c:b2:d6:fd:e1:95:c2:7c:fc:1b:ca:3e: 4f:70:45:bd:60:14:a6:ed:7d:23:ca:70:3f:29:3d: fa:53:a8:a2:b7:5a:bf:37:df:fe:b3:a1:dc:80:3e: 99:bb:16:21:7f:a9:2c:85:89:5e:e9:fc:c4:3b:7d: ed:37:23:d1:cc:ae:39:49:82:1c:3b:08:ed:ab:aa: f3:3d:da:c5:32:13:1f:28:cc:50:3a:33:c8:0e:f1: 5a:35:77:6d:a3:e7:f6:e8:8e:45:31:94:bb:1d:bd: 4c:22:73:5e:13:96:b0:c7:79:44:11:d5:a7:43:80: 09:0f:38:ef:ff:d7:f7:08:1f:c2:0f:9e:9c:9d:5d: 7d:1a:14:4c:ae:b6:54:cb:07:af:26:c9:56:58:9f: cd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:31:8E:41:D9:A4:C2:10:00:F9:C9:97:C7:41:B7:B8:25:64:25:D3 X509v3 Authority Key Identifier: keyid:60:F4:CF:A9:66:F9:E5:E2:03:74:CB:2E:D4:70:64:12:DD:A2:1C:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/YPTPqWb55eIDdMsu1HBkEt2iHE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YPTPqWb55eIDdMsu1HBkEt2iHE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB03/2B0E2738F34111EAABE5C309C4F9AE02/4B696C52F34311EAB4034710C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.114.0/23 IPv6: 2001:df4:c680::/48 Signature Algorithm: sha256WithRSAEncryption 14:06:b9:83:49:ca:70:dd:b3:8c:f0:9a:5b:d5:77:3c:a3:dd: ea:00:d3:e0:d0:ee:71:1b:92:cd:35:6b:e0:ce:36:a8:5d:4a: e7:bf:aa:bc:91:5d:2a:83:bf:30:db:10:27:4e:cc:a1:2a:ad: 65:de:f3:36:f9:77:38:93:e7:42:f4:d2:8d:82:cb:ec:ed:9d: 7e:9b:cb:dd:f4:54:58:52:5b:a5:6d:d9:30:15:a6:f5:5b:b2: 8c:10:d7:53:c0:65:48:10:95:e8:6b:bc:54:52:cc:e7:d0:8b: ff:b1:ec:ee:d6:1a:f0:4f:a4:55:24:06:cf:47:78:48:6f:1c: 43:7e:25:9d:95:47:6c:1b:56:b4:2a:3d:63:fc:e3:84:39:09: b0:bf:cd:7e:58:68:9b:e4:ec:b3:b7:49:cb:2e:96:eb:fa:81: b3:a9:76:d9:c9:15:f1:f3:8b:13:c1:48:65:2e:7e:7c:be:b4: 3c:8d:c3:c0:52:61:1b:1b:bf:ae:65:e6:85:da:9e:46:fd:34: 37:46:f3:57:6c:31:47:37:24:03:33:c6:7c:e0:a4:c2:bc:7f: be:88:93:85:73:1c:87:00:61:73:62:e0:0e:ab:4b:be:04:dc: 32:b4:4f:db:dc:a3:85:16:57:ec:d2:5c:5b:20:b9:37:11:9b: 89:1f:b5:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCMDMxMTAvBgNVBAUTKDYwRjRDRkE5NjZGOUU1RTIwMzc0Q0IyRUQ0NzA2NDEy RERBMjFDNEYwHhcNMjMwOTI4MjE1OTIyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1ZjczYS05N2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlA/On1LFhFyTt5cfnpkSUzgO2g0wmKIARHXWcmeNW4JuxQ0WE4+yaXvrSls6 TZsGzbtwsXpzVbXLE9Q7T6EHTffiVAyEbZDkfN1yJ1BvcSy2P8wY/gEMUcQuHYQw jpmZ2swZ7jaox/3qvfhsstb94ZXCfPwbyj5PcEW9YBSm7X0jynA/KT36U6iit1q/ N9/+s6HcgD6ZuxYhf6kshYle6fzEO33tNyPRzK45SYIcOwjtq6rzPdrFMhMfKMxQ OjPIDvFaNXdto+f26I5FMZS7Hb1MInNeE5awx3lEEdWnQ4AJDzjv/9f3CB/CD56c nV19GhRMrrZUywevJslWWJ/NkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHcxjkHZ pMIQAPnJl8dBt7glZCXTMB8GA1UdIwQYMBaAFGD0z6lm+eXiA3TLLtRwZBLdohxP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REIwMy8yQjBFMjczOEYz NDExMUVBQUJFNUMzMDlDNEY5QUUwMi9ZUFRQcVdiNTVlSURkTXN1MUhCa0V0MmlI RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lQVFBxV2I1NWVJRGRNc3UxSEJrRXQyaUhFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCMDMvMkIwRTI3MzhGMzQxMTFFQUFCRTVDMzA5QzRGOUFFMDIvNEI2OTZDNTJG MzQzMTFFQUI0MDM0NzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnm3IwDwQCAAIwCQMHACABDfTGgDANBgkqhkiG9w0BAQsF AAOCAQEAFAa5g0nKcN2zjPCaW9V3PKPd6gDT4NDucRuSzTVr4M42qF1K57+qvJFd KoO/MNsQJ07MoSqtZd7zNvl3OJPnQvTSjYLL7O2dfpvL3fRUWFJbpW3ZMBWm9Vuy jBDXU8BlSBCV6Gu8VFLM59CL/7Hs7tYa8E+kVSQGz0d4SG8cQ34lnZVHbBtWtCo9 Y/zjhDkJsL/Nflhom+Tss7dJyy6W6/qBs6l22ckV8fOLE8FIZS5+fL60PI3DwFJh Gxu/rmXmhdqeRv00N0bzV2wxRzckAzPGfOCkwrx/voiThXMchwBhc2LgDqtLvgTc MrRP29yjhRZX7NJcWyC5NxGbiR+1tA== -----END CERTIFICATE-----Generated at Fri May 31 23:53:06 2024 by rpki-client on console-fra.rpki-client.org