$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa File: D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa (raw, json) Hash identifier: 9WRq22az0Z8RvcUQryVIS6iUqfIQaGp2znosV95epgg= Subject key identifier: CA:A7:88:44:D5:96:35:4B:01:5C:08:41:C5:68:75:11:F4:BC:D9:2B Certificate issuer: /CN=A9173CF2/serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Certificate serial: 050D Authority key identifier: 14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa Signing time: Tue 01 Aug 2023 00:21:11 +0000 ROA not before: Tue 01 Aug 2023 00:21:11 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58580 IP address blocks: 103.152.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CF2/serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Validity Not Before: Aug 1 00:21:11 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c84ff6-b81d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:56:37:19:f6:d1:9d:d9:c1:2a:71:de:71: 51:aa:0f:e2:5f:01:fa:e2:db:e3:a4:57:a0:b6:46: 3a:23:14:1f:3a:14:6b:7f:9a:5a:ee:e9:bf:ad:1c: d5:db:0a:e9:da:5b:87:13:6a:2e:a5:ff:f3:24:60: b8:cf:67:2b:0a:41:fb:6e:7a:f2:91:62:1a:c7:73: 3c:e9:35:8d:99:e5:59:53:8e:04:48:32:86:c4:56: 1a:41:f0:a5:99:8a:03:3f:dd:3b:91:3a:08:4d:77: be:93:8f:ea:2c:83:f2:64:83:6d:a4:69:4b:3d:cf: f8:4f:99:cd:ab:4c:93:46:a4:1e:fa:f1:02:4c:1d: fa:38:78:a4:31:db:ea:cf:d3:b1:9e:d4:ac:0e:9c: a1:91:65:56:c6:3d:06:10:17:1e:c1:b1:0d:90:a1: ab:a5:4a:46:4a:85:4e:03:ec:d4:8b:f5:57:05:85: f3:9b:31:fd:83:7d:08:f7:fa:d1:a6:17:a9:e8:4e: 28:dd:a2:65:4b:01:cf:07:b6:bf:7d:ed:e6:7f:f1: 85:90:70:1e:2a:6d:74:a8:5c:49:7f:c9:ba:93:a9: 02:b1:19:13:4d:bb:bd:a6:df:ee:7e:60:cd:ba:75: 94:93:51:ff:43:05:f7:30:75:33:f9:a9:7f:07:89: 29:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A7:88:44:D5:96:35:4B:01:5C:08:41:C5:68:75:11:F4:BC:D9:2B X509v3 Authority Key Identifier: keyid:14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.2.0/23 Signature Algorithm: sha256WithRSAEncryption a5:65:ca:17:5b:6e:5c:9f:e1:d6:f9:96:0b:b1:fc:32:58:01: 17:83:6e:20:1c:4c:b0:e5:06:bb:ec:f2:22:be:99:ab:92:45: 7b:1c:10:b7:dc:30:46:5b:53:b1:48:b4:10:33:2d:5c:0f:8d: e7:e1:ac:ea:fb:a5:9c:60:62:45:da:b9:83:60:4a:f9:52:25: 51:b8:42:1e:85:cc:5e:50:27:90:af:85:62:3f:8c:12:f6:96: b0:26:33:7e:85:79:38:27:d3:9f:e9:22:9f:a5:32:e7:c7:24: 4f:14:cf:10:e8:8c:6c:f2:f1:6d:e3:68:e1:09:8c:9d:3c:76: ac:6e:50:de:0f:02:7c:71:15:0d:63:c1:61:6d:70:38:8a:8e: ce:8e:7a:65:1c:a5:12:e6:2a:7b:c1:0b:45:64:c2:61:36:a9: 22:6c:a6:0a:af:00:02:87:fd:5f:f3:22:65:25:70:76:39:f8: e1:25:ee:41:af:a4:a8:01:5e:27:d4:f6:f0:74:62:08:44:ae: 20:b1:3e:00:48:24:20:0b:fc:21:04:f9:3e:cc:71:5c:b5:0b: 57:42:3f:c2:25:d5:a7:98:e6:75:3d:2f:2c:0b:5b:3f:d4:ba: 8a:d9:42:3d:bb:0a:0c:e8:c3:fa:bc:cc:04:4b:e2:a0:dd:05: 2a:f4:ee:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRjIxMTAvBgNVBAUTKDE0NDdENDRCNDlGNzkwNkRDNjM3MzFBNUQ5OEQ4NTJF QzEwQjc3NDUwHhcNMjMwODAxMDAyMTExWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4NGZmNi1iODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNJWNxn20Z3ZwSpx3nFRqg/iXwH64tvjpFegtkY6IxQfOhRrf5pa7um/rRzV 2wrp2luHE2oupf/zJGC4z2crCkH7bnrykWIax3M86TWNmeVZU44ESDKGxFYaQfCl mYoDP907kToITXe+k4/qLIPyZINtpGlLPc/4T5nNq0yTRqQe+vECTB36OHikMdvq z9OxntSsDpyhkWVWxj0GEBcewbENkKGrpUpGSoVOA+zUi/VXBYXzmzH9g30I9/rR phep6E4o3aJlSwHPB7a/fe3mf/GFkHAeKm10qFxJf8m6k6kCsRkTTbu9pt/ufmDN unWUk1H/QwX3MHUz+al/B4kpSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMqniETV ljVLAVwIQcVodRH0vNkrMB8GA1UdIwQYMBaAFBRH1EtJ95BtxjcxpdmNhS7BC3dF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NGMi8xQUU5MDM0Njgx RUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tHM0dOekdsMlkyRkxzRUxk MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFZlVTMG4za0czR056R2wyWTJGTHNFTGQwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDRjIvMUFFOTAzNDY4MUVFMTFFQkJFMzU0OTVGQzRGOUFFMDIvRDlFN0NGRjY4 MUVGMTFFQkFFRTlEMTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmAIwDQYJKoZIhvcNAQELBQADggEBAKVlyhdbblyf4db5 lgux/DJYAReDbiAcTLDlBrvs8iK+mauSRXscELfcMEZbU7FItBAzLVwPjefhrOr7 pZxgYkXauYNgSvlSJVG4Qh6FzF5QJ5CvhWI/jBL2lrAmM36FeTgn05/pIp+lMufH JE8UzxDojGzy8W3jaOEJjJ08dqxuUN4PAnxxFQ1jwWFtcDiKjs6OemUcpRLmKnvB C0VkwmE2qSJspgqvAAKH/V/zImUlcHY5+OEl7kGvpKgBXifU9vB0YghEriCxPgBI JCAL/CEE+T7McVy1C1dCP8Il1aeY5nU9LywLWz/UuorZQj27Cgzow/q8zARL4qDd BSr07s8= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:16 2024 by rpki-client on console-fra.rpki-client.org