$ rpki-client -vvf rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa File: 24C647DC3DFE11EAA52A0572C4F9AE02.roa (raw, json) Hash identifier: 429hNCs7Rx5qOjdDJ8DPnMtdvOAqa/GbqBN8WiZFMg8= Subject key identifier: F7:97:A2:E6:5B:C7:C5:50:2F:19:F8:0A:4D:D8:B5:7B:52:AA:C4:F0 Certificate issuer: /CN=A9163415/serialNumber=F0CB35F145E61B1C2043AFD1BA4E354147C4B55E Certificate serial: 0A36 Authority key identifier: F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa Signing time: Sat 10 Feb 2024 20:08:15 +0000 ROA not before: Sat 10 Feb 2024 20:08:15 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140054 IP address blocks: 103.147.230.0/24 maxlen: 24 103.178.82.0/24 maxlen: 24 2001:df2:a780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.crl rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2614 (0xa36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163415/serialNumber=F0CB35F145E61B1C2043AFD1BA4E354147C4B55E Validity Not Before: Feb 10 20:08:15 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c7d7af-66f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:25:37:a0:81:83:d9:d2:8d:df:86:52:40:5c: f5:78:72:62:6b:bb:1d:5d:26:5a:9a:c4:8f:a3:3b: 30:59:f4:51:05:87:a0:78:28:3b:c2:e5:55:2c:4b: 09:4e:af:b5:9a:51:1f:5a:c1:68:3d:bb:8a:7c:e0: ed:47:53:00:fd:5e:e8:e3:f6:39:fc:cd:91:85:53: df:8b:3c:0e:13:ad:12:a9:84:3e:48:7b:8d:cf:82: 06:d6:40:c6:c5:97:e8:15:15:c0:45:c7:96:77:3a: 28:72:e2:8e:05:16:39:84:57:ad:61:43:6a:19:c7: 59:8b:8b:d5:32:65:07:c0:07:57:d3:cb:33:74:7a: 55:46:ec:99:b6:04:1b:b8:33:2e:91:a1:3a:b1:25: 55:a3:a0:40:94:10:f6:0d:c5:96:90:85:6b:6e:87: ec:cc:cc:d5:59:01:14:74:c4:f0:47:af:d0:5c:de: 13:9e:1b:4a:f6:e4:89:c8:05:22:ff:f5:ef:92:13: b6:11:09:58:e4:52:be:cb:f1:d8:84:fd:d6:2f:8b: de:7e:f7:35:f1:1b:6d:e1:bc:9e:34:9d:db:88:16: 25:8e:ba:b1:b5:63:2e:00:33:b0:92:72:d4:b5:07: 09:85:59:c3:cb:c9:4b:9e:78:4e:33:34:83:aa:e0: 9a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:97:A2:E6:5B:C7:C5:50:2F:19:F8:0A:4D:D8:B5:7B:52:AA:C4:F0 X509v3 Authority Key Identifier: keyid:F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.230.0/24 103.178.82.0/24 IPv6: 2001:df2:a780::/48 Signature Algorithm: sha256WithRSAEncryption 71:9a:4e:36:34:fa:11:0c:ba:e6:1f:72:6f:4e:f5:62:d4:8d: 7c:b1:e8:ea:2d:85:33:fb:e2:71:71:85:f8:1f:40:92:c9:28: fd:98:76:ca:53:00:bc:7a:e5:98:56:0f:94:f3:97:0b:d3:00: b2:be:ee:8a:d7:17:1a:88:61:75:f2:ae:31:ad:11:c6:a0:d2: c4:f5:9a:0e:e3:e4:6e:14:b1:c2:50:92:3f:ef:45:8a:67:b0: ff:a5:a1:c1:f0:57:44:c6:5f:d2:26:ec:90:d7:6c:e7:60:78: 63:0a:b4:14:f0:92:71:5e:4b:58:93:dd:16:d4:ab:5b:1b:5b: 91:53:c5:44:68:4d:67:70:f5:20:38:1b:e6:56:9c:d3:cc:db: 6f:16:bb:96:63:14:55:3c:a2:a1:a6:90:d3:37:b3:c2:c3:65: a8:bf:45:ac:a2:f7:6c:46:c9:d8:f7:70:f3:2b:1e:15:59:f9: e7:fd:66:b5:35:6d:a7:ae:bf:41:6b:50:1b:eb:6a:31:84:9c: c6:3f:f6:2d:30:81:e2:1c:c5:fa:fc:4c:5a:ef:d2:f7:26:f2: c7:d3:b9:1e:24:2e:42:f2:4d:58:a5:d5:88:cf:e4:1a:95:6f: 27:90:1f:cc:06:af:00:c6:e3:1d:b5:ea:e4:cf:b6:2c:b9:50: bb:7f:d8:d5 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM0MTUxMTAvBgNVBAUTKEYwQ0IzNUYxNDVFNjFCMUMyMDQzQUZEMUJBNEUzNTQx NDdDNEI1NUUwHhcNMjQwMjEwMjAwODE1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3ZDdhZi02NmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiU3oIGD2dKN34ZSQFz1eHJia7sdXSZamsSPozswWfRRBYegeCg7wuVVLEsJ Tq+1mlEfWsFoPbuKfODtR1MA/V7o4/Y5/M2RhVPfizwOE60SqYQ+SHuNz4IG1kDG xZfoFRXARceWdzoocuKOBRY5hFetYUNqGcdZi4vVMmUHwAdX08szdHpVRuyZtgQb uDMukaE6sSVVo6BAlBD2DcWWkIVrbofszMzVWQEUdMTwR6/QXN4TnhtK9uSJyAUi //XvkhO2EQlY5FK+y/HYhP3WL4vefvc18Rtt4byeNJ3biBYljrqxtWMuADOwknLU tQcJhVnDy8lLnnhOMzSDquCaZQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPeXouZb x8VQLxn4Ck3YtXtSqsTwMB8GA1UdIwQYMBaAFPDLNfFF5hscIEOv0bpONUFHxLVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzQxNS8xMDcyMDk0ODNE RkQxMUVBOUYzREI0NzBDNEY5QUUwMi84TXMxOFVYbUd4d2dRNl9SdWs0MVFVZkV0 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhNczE4VVhtR3h3Z1E2X1J1azQxUVVmRXRWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM0MTUvMTA3MjA5NDgzREZEMTFFQTlGM0RCNDcwQzRGOUFFMDIvMjRDNjQ3REMz REZFMTFFQUE1MkEwNTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnk+YDBABnslIwDwQCAAIwCQMHACABDfKngDANBgkqhkiG 9w0BAQsFAAOCAQEAcZpONjT6EQy65h9yb071YtSNfLHo6i2FM/vicXGF+B9Aksko /Zh2ylMAvHrlmFYPlPOXC9MAsr7uitcXGohhdfKuMa0RxqDSxPWaDuPkbhSxwlCS P+9Fimew/6WhwfBXRMZf0ibskNds52B4Ywq0FPCScV5LWJPdFtSrWxtbkVPFRGhN Z3D1IDgb5lac08zbbxa7lmMUVTyioaaQ0zezwsNlqL9FrKL3bEbJ2Pdw8yseFVn5 5/1mtTVtp66/QWtQG+tqMYScxj/2LTCB4hzF+vxMWu/S9ybyx9O5HiQuQvJNWKXV iM/kGpVvJ5AfzAavAMbjHbXq5M+2LLlQu3/Y1Q== -----END CERTIFICATE-----Generated at Fri May 31 22:13:05 2024 by rpki-client on console-fra.rpki-client.org