$ rpki-client -vvf rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/6881BE7EEFF411EDB617DD7DC4F9AE02.roa File: 6881BE7EEFF411EDB617DD7DC4F9AE02.roa (raw, json) Hash identifier: TN1mL+bmYnXtbKJTvUvjcUGn6fI2atat4P6SVByVo4Q= Subject key identifier: 63:1F:06:9A:61:28:AA:1F:A3:DE:22:EB:C0:B0:BC:87:E7:99:E4:09 Certificate issuer: /CN=A916E323/serialNumber=C161E985961FD957E667EF2E8CAA7737FA9285D1 Certificate serial: 03 Authority key identifier: C1:61:E9:85:96:1F:D9:57:E6:67:EF:2E:8C:AA:77:37:FA:92:85:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/6881BE7EEFF411EDB617DD7DC4F9AE02.roa Signing time: Thu 11 May 2023 12:07:32 +0000 ROA not before: Thu 11 May 2023 12:07:32 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 23470 IP address blocks: 103.193.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.crl rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E323/serialNumber=C161E985961FD957E667EF2E8CAA7737FA9285D1 Validity Not Before: May 11 12:07:32 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=645cda84-e9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:43:80:d6:f3:52:97:ea:67:9e:1f:dd:93: fc:da:9e:8a:b2:14:a0:f7:b1:b5:d9:b8:a7:a5:a7: 5e:d4:21:bb:1c:3e:c7:c1:48:a9:12:f8:6c:7c:28: a1:96:e6:41:31:f8:0b:c2:23:2f:79:39:bd:1d:74: 35:08:29:45:ce:63:48:28:7e:19:13:e7:a8:49:48: fd:0b:22:d8:cd:78:45:98:22:27:d3:8f:e4:aa:d6: ab:36:2e:52:df:51:84:6d:05:20:97:10:ae:34:59: 5f:39:be:1c:23:73:10:4e:ed:8d:48:6f:dc:c5:f5: b7:bf:d0:ff:96:25:9d:32:7d:29:78:bf:68:1a:ac: fc:cb:c6:d3:93:26:8c:95:86:3e:d1:f2:71:5c:69: aa:23:64:68:ba:de:a7:ec:73:a5:d4:c8:93:ab:eb: cc:48:f5:c0:1e:bb:4a:a8:72:54:60:83:bb:ff:70: 4f:3a:94:e8:ee:06:1f:63:c9:7f:87:60:23:f8:8d: 64:84:d2:7e:c4:f1:d2:06:a3:8d:b2:36:5b:71:ac: 31:a4:91:38:70:28:b1:01:9d:d3:20:65:74:2d:da: d8:97:8f:53:fd:2a:6d:4f:7f:81:53:db:6e:b5:f4: ad:3e:58:96:35:ff:00:40:8f:29:1d:37:c2:d4:b9: aa:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1F:06:9A:61:28:AA:1F:A3:DE:22:EB:C0:B0:BC:87:E7:99:E4:09 X509v3 Authority Key Identifier: keyid:C1:61:E9:85:96:1F:D9:57:E6:67:EF:2E:8C:AA:77:37:FA:92:85:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/6881BE7EEFF411EDB617DD7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.72.0/24 Signature Algorithm: sha256WithRSAEncryption 78:34:a2:01:3e:29:16:8b:d1:cf:80:b4:54:69:67:10:e7:fb: f9:64:9f:db:20:ea:df:c2:05:9a:39:6b:11:09:82:5f:8f:cb: d7:1e:f9:bf:f7:e8:d0:16:05:6c:55:34:e7:39:9d:2a:11:97: 35:d8:80:fc:ee:0a:01:7b:f9:39:5d:ae:c0:fb:95:82:a2:99: c2:d0:86:a8:e4:82:e5:79:f2:a7:6f:fd:28:be:e4:47:47:69: cc:7d:f1:6c:f7:c7:c1:6d:08:20:6c:3e:80:96:09:bc:16:2a: 8f:f3:e9:0b:7a:91:7e:f1:62:58:ba:b4:9e:3d:5b:c6:c6:68: f9:c6:b8:14:cc:4c:33:b7:c5:1e:6a:c7:16:2b:03:47:7d:dd: 07:28:15:f4:cf:78:3a:65:1d:07:5d:b1:ad:80:27:77:27:55: 10:34:57:11:f4:84:a1:19:f6:f8:15:97:3c:3e:a1:ba:0d:f7: aa:10:22:56:b4:a2:d2:a6:79:20:8f:21:fa:72:8c:12:a6:e2: c3:65:78:ea:36:df:91:3a:c7:60:10:4b:d3:e0:b7:c8:bb:75: 01:5d:3d:26:72:45:5f:f9:6d:00:98:f2:00:6d:bb:83:ff:eb: a7:ab:28:e3:93:57:a2:59:e5:a5:c8:33:c5:e1:10:ce:92:cf: 59:6a:76:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTMyMzExMC8GA1UEBRMoQzE2MUU5ODU5NjFGRDk1N0U2NjdFRjJFOENBQTc3MzdG QTkyODVEMTAeFw0yMzA1MTExMjA3MzJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NWNkYTg0LWU5ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKk0OA1vNSl+pnnh/dk/zanoqyFKD3sbXZuKelp17UIbscPsfBSKkS+Gx8KKGW 5kEx+AvCIy95Ob0ddDUIKUXOY0gofhkT56hJSP0LItjNeEWYIifTj+Sq1qs2LlLf UYRtBSCXEK40WV85vhwjcxBO7Y1Ib9zF9be/0P+WJZ0yfSl4v2garPzLxtOTJoyV hj7R8nFcaaojZGi63qfsc6XUyJOr68xI9cAeu0qoclRgg7v/cE86lOjuBh9jyX+H YCP4jWSE0n7E8dIGo42yNltxrDGkkThwKLEBndMgZXQt2tiXj1P9Km1Pf4FT2261 9K0+WJY1/wBAjykdN8LUuaoVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYx8GmmEo qh+j3iLrwLC8h+eZ5AkwHwYDVR0jBBgwFoAUwWHphZYf2VfmZ+8ujKp3N/qShdEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFMzIzL0U3RkMyRjFFRUZF RTExRUQ5NzdCMUE2NEM0RjlBRTAyL3dXSHBoWllmMlZmbVotOHVqS3AzTl9xU2hk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1dIcGhaWWYyVmZtWi04dWpLcDNOX3FTaGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTMyMy9FN0ZDMkYxRUVGRUUxMUVEOTc3QjFBNjRDNEY5QUUwMi82ODgxQkU3RUVG RjQxMUVEQjYxN0REN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfBSDANBgkqhkiG9w0BAQsFAAOCAQEAeDSiAT4pFovRz4C0 VGlnEOf7+WSf2yDq38IFmjlrEQmCX4/L1x75v/fo0BYFbFU05zmdKhGXNdiA/O4K AXv5OV2uwPuVgqKZwtCGqOSC5Xnyp2/9KL7kR0dpzH3xbPfHwW0IIGw+gJYJvBYq j/PpC3qRfvFiWLq0nj1bxsZo+ca4FMxMM7fFHmrHFisDR33dBygV9M94OmUdB12x rYAndydVEDRXEfSEoRn2+BWXPD6hug33qhAiVrSi0qZ5II8h+nKMEqbiw2V46jbf kTrHYBBL0+C3yLt1AV09JnJFX/ltAJjyAG27g//rp6so45NXolnlpcgzxeEQzpLP WWp22A== -----END CERTIFICATE-----Generated at Wed May 1 07:55:39 2024 by rpki-client on console-fra.rpki-client.org