$ rpki-client -vvf rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa File: 1ECF63EE674511EEBD995841C4F9AE02.roa (raw, json) Hash identifier: p/1R6L71E7MMliC2/KdL4WY7SjgtWVvDAV3+jSxKkRI= Subject key identifier: 15:CE:FC:76:31:C0:AF:BF:AB:52:3F:DB:0A:F8:5B:19:A8:98:5F:79 Certificate issuer: /CN=A9162744/serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Certificate serial: 04 Authority key identifier: BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa Signing time: Tue 10 Oct 2023 08:36:38 +0000 ROA not before: Tue 10 Oct 2023 08:36:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151834 IP address blocks: 103.217.70.0/23 maxlen: 23 103.217.70.0/24 maxlen: 24 103.217.71.0/24 maxlen: 24 2401:40e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162744/serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Validity Not Before: Oct 10 08:36:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65250d15-49eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:bb:3b:e1:23:6c:58:37:3f:ee:62:a2:71: 08:90:cd:7a:da:a4:ac:38:9c:3a:4e:5e:ad:c6:64: b2:eb:63:9a:84:05:d1:04:cb:39:19:75:9a:e4:b1: b9:71:c7:74:89:c5:3a:99:64:17:46:cd:74:96:b8: 18:07:6b:ce:63:22:48:7b:97:36:bf:a3:88:c9:9f: ad:77:34:5a:e3:7a:75:7f:0a:c8:70:b3:fd:90:42: 63:a5:6d:65:59:69:a6:49:07:62:7f:f1:85:76:ad: bc:53:5c:5a:2c:11:a6:70:95:82:fd:f1:80:08:23: 5e:fc:ef:17:0d:8a:6c:49:e6:8c:46:3c:bf:65:0b: d6:3a:fa:bf:0e:4c:b3:4a:47:a3:26:8b:50:55:2e: 01:63:24:8d:40:d6:9f:45:05:f8:44:8d:ea:08:fd: 83:64:d5:41:92:35:2d:5b:8f:b2:d3:7b:ac:c9:9c: 08:64:6b:c0:5d:d0:0b:d2:76:d6:c3:0f:ac:e0:eb: bf:23:91:05:84:6f:03:ce:75:b0:3c:d3:ed:51:1a: 76:18:ff:b3:77:2f:29:16:fe:33:90:aa:c7:8c:4c: 1f:83:e6:32:45:c1:f3:84:85:26:d0:e6:46:16:4a: a7:8e:c4:13:19:20:e0:49:5e:3a:5d:fb:28:71:77: 9f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CE:FC:76:31:C0:AF:BF:AB:52:3F:DB:0A:F8:5B:19:A8:98:5F:79 X509v3 Authority Key Identifier: keyid:BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.70.0/23 IPv6: 2401:40e0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:4c:ca:7f:f6:67:6d:19:5e:9f:67:c9:fd:31:fa:ad:bc:02: a9:85:6c:4c:11:d4:b4:0b:b3:ad:85:39:49:14:8c:96:6e:04: 50:a2:3d:7c:86:5a:8f:0a:7c:2d:5e:94:e4:ff:73:3d:f2:8e: ac:5b:df:18:01:93:fb:d9:48:ff:fe:02:08:de:3b:c7:2a:76: dc:03:e5:51:ff:04:ef:c0:9f:fa:35:15:2c:a4:59:f6:79:18: 75:c2:ef:17:f2:24:56:9f:4a:f6:f4:a7:6b:20:18:fd:b4:a5: 7f:8a:98:2a:e2:58:2f:8b:90:52:f9:aa:9d:ca:34:cc:75:76: f3:d5:05:5d:c6:fe:03:6a:e7:ce:dd:f8:5f:73:8e:5f:98:fa: f3:10:96:f1:e7:40:57:55:6b:e4:64:54:95:34:98:56:f1:54: af:67:4e:e4:06:57:9f:7e:99:f2:1e:4f:83:ee:9d:a7:a7:fc: 4b:57:7e:b9:c5:71:70:37:ed:06:84:81:6b:21:5f:b9:ac:52: 61:d3:de:54:c8:a0:9c:46:71:9b:65:94:17:8c:8d:e2:b0:e9: fd:cb:03:fa:c5:e5:6c:6e:c1:f7:b6:04:7f:13:77:13:b2:88: 07:6e:2f:1d:17:a9:90:81:cf:e5:5d:d2:28:64:af:e8:a5:84: 42:6e:2c:61 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Mjc0NDExMC8GA1UEBRMoQkQyMUJFOTgzMDc1NDI5MTZEODFFMEZFRDlGOEY1MzI0 MDQ5NDQ4MDAeFw0yMzEwMTAwODM2MzhaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjUwZDE1LTQ5ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs+bs74SNsWDc/7mKicQiQzXrapKw4nDpOXq3GZLLrY5qEBdEEyzkZdZrksblx x3SJxTqZZBdGzXSWuBgHa85jIkh7lza/o4jJn613NFrjenV/Cshws/2QQmOlbWVZ aaZJB2J/8YV2rbxTXFosEaZwlYL98YAII1787xcNimxJ5oxGPL9lC9Y6+r8OTLNK R6Mmi1BVLgFjJI1A1p9FBfhEjeoI/YNk1UGSNS1bj7LTe6zJnAhka8Bd0AvSdtbD D6zg678jkQWEbwPOdbA80+1RGnYY/7N3LykW/jOQqseMTB+D5jJFwfOEhSbQ5kYW SqeOxBMZIOBJXjpd+yhxd5+3AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUFc78djHA r7+rUj/bCvhbGaiYX3kwHwYDVR0jBBgwFoAUvSG+mDB1QpFtgeD+2fj1MkBJRIAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyNzQ0LzhFOEI5QzlFNjc0 NDExRUU4QTkyRjgzRkM0RjlBRTAyL3ZTRy1tREIxUXBGdGdlRC0yZmoxTWtCSlJJ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlNHLW1EQjFRcEZ0Z2VELTJmajFNa0JKUklBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mjc0NC84RThCOUM5RTY3NDQxMUVFOEE5MkY4M0ZDNEY5QUUwMi8xRUNGNjNFRTY3 NDUxMUVFQkQ5OTU4NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfZRjANBAIAAjAHAwUAJAFA4DANBgkqhkiG9w0BAQsFAAOC AQEAXEzKf/ZnbRlen2fJ/TH6rbwCqYVsTBHUtAuzrYU5SRSMlm4EUKI9fIZajwp8 LV6U5P9zPfKOrFvfGAGT+9lI//4CCN47xyp23APlUf8E78Cf+jUVLKRZ9nkYdcLv F/IkVp9K9vSnayAY/bSlf4qYKuJYL4uQUvmqnco0zHV289UFXcb+A2rnzt34X3OO X5j68xCW8edAV1Vr5GRUlTSYVvFUr2dO5AZXn36Z8h5Pg+6dp6f8S1d+ucVxcDft BoSBayFfuaxSYdPeVMignEZxm2WUF4yN4rDp/csD+sXlbG7B97YEfxN3E7KIB24v HRepkIHP5V3SKGSv6KWEQm4sYQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org