$ rpki-client -vvf rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/230A1090248C11EEA9EE1935C4F9AE02.roa File: 230A1090248C11EEA9EE1935C4F9AE02.roa (raw, json) Hash identifier: aBmoWKGppXEU63yXzytp/GyBi1n8E7XPP315PGkuQmo= Subject key identifier: F7:8E:36:9C:F7:F7:26:31:63:BC:DA:56:07:69:D9:8D:46:02:E1:05 Certificate issuer: /CN=A9176DFC/serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Certificate serial: 0C Authority key identifier: B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/230A1090248C11EEA9EE1935C4F9AE02.roa Signing time: Tue 01 Aug 2023 15:50:04 +0000 ROA not before: Tue 01 Aug 2023 15:50:04 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138640 IP address blocks: 103.238.216.0/23 maxlen: 24 2001:df2:b240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 05:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176DFC/serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Validity Not Before: Aug 1 15:50:04 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64c929ac-27ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:71:5c:eb:92:05:a0:a8:78:80:a2:52:17:36: 09:be:aa:74:ce:83:1f:25:aa:88:11:31:d1:6b:a8: d7:37:8f:15:9b:5e:28:f1:21:12:7e:cf:56:ff:bc: c3:58:75:81:53:5f:24:d1:77:be:e0:44:23:8d:e6: 19:e8:65:51:92:9f:e1:ae:1f:f5:47:c6:6c:20:cf: 62:fa:36:26:cb:8e:d8:f9:fd:ba:45:33:79:5a:db: 20:1f:45:7e:19:32:07:ea:b6:3b:17:8e:f2:c2:36: 0b:4b:ba:7b:70:c6:2d:95:f8:de:cc:ef:ae:70:3e: 0b:3b:c9:06:39:43:f0:6c:6f:ea:db:e9:34:5c:be: 61:96:66:c5:6a:e4:9d:ce:58:82:9b:60:cb:95:ce: 47:8d:e5:91:74:f7:07:7b:ba:59:77:81:60:5c:53: ad:89:1b:18:ce:df:82:90:38:4b:a6:4c:b9:6a:74: 1a:ce:c7:88:cb:38:47:72:5a:e3:3b:05:1e:ce:31: 10:c7:a4:cf:e5:e2:b9:e3:29:1c:f9:e5:25:4f:77: e0:59:1e:6f:e7:c5:6b:f5:4f:9a:43:69:8e:de:4f: 42:f1:30:41:e3:d7:8e:85:e0:b0:de:fc:40:37:ff: de:ba:ec:91:24:4d:e9:75:88:09:37:3a:68:0e:e5: 90:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8E:36:9C:F7:F7:26:31:63:BC:DA:56:07:69:D9:8D:46:02:E1:05 X509v3 Authority Key Identifier: keyid:B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/230A1090248C11EEA9EE1935C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.216.0/23 IPv6: 2001:df2:b240::/48 Signature Algorithm: sha256WithRSAEncryption 9d:9d:19:99:b3:bb:24:3f:a7:a5:6c:fe:b0:91:dd:7b:98:00: 88:93:c1:f2:40:ae:c0:a0:d5:6c:fa:6b:0b:ad:c9:cd:db:c3: 67:b8:71:21:4b:50:e5:f3:e0:c7:df:a7:c4:72:f4:a9:b3:d2: 3f:88:70:07:89:99:71:85:45:fb:6c:36:85:d3:70:43:b5:a4: 88:86:aa:13:4e:99:50:c9:c2:09:4d:2e:98:b7:e3:97:fd:31: e8:35:d1:c0:75:07:b7:da:b9:ea:2b:ad:18:db:7f:69:0c:5b: 05:74:42:05:a9:6b:06:2e:3f:3b:d9:7b:ac:73:c8:cc:5d:ae: 8e:cd:8e:f1:cc:e7:39:09:22:d2:61:5e:ce:d6:8d:53:7c:34: 69:bc:93:fe:03:54:e0:6d:cc:9c:7f:b3:31:32:ce:e7:cb:c6: a1:00:41:e6:b5:e9:73:62:73:e6:b4:07:90:90:5e:17:59:cc: bd:fe:21:0f:73:27:34:26:d1:0a:0d:59:db:98:49:66:8c:e5: 65:05:3f:68:00:37:6f:d0:c6:5c:5f:b6:4f:2f:2b:e1:ab:73: 4a:bd:c2:75:b7:b0:f2:2b:cd:ed:80:93:bf:89:d0:c2:2d:d2: 4e:ef:92:13:05:e9:7b:2d:2b:b0:0b:c6:2f:58:e9:96:c3:ce: 4c:7a:ee:0d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkRGQzExMC8GA1UEBRMoQjAzNTJBQkI0M0YwQTg1NTY0OUI5RDc2MUE2NTVDM0ZD NjBGNkU2MzAeFw0yMzA4MDExNTUwMDRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YzkyOWFjLTI3ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqcVzrkgWgqHiAolIXNgm+qnTOgx8lqogRMdFrqNc3jxWbXijxIRJ+z1b/vMNY dYFTXyTRd77gRCON5hnoZVGSn+GuH/VHxmwgz2L6NibLjtj5/bpFM3la2yAfRX4Z MgfqtjsXjvLCNgtLuntwxi2V+N7M765wPgs7yQY5Q/Bsb+rb6TRcvmGWZsVq5J3O WIKbYMuVzkeN5ZF09wd7ull3gWBcU62JGxjO34KQOEumTLlqdBrOx4jLOEdyWuM7 BR7OMRDHpM/l4rnjKRz55SVPd+BZHm/nxWv1T5pDaY7eT0LxMEHj146F4LDe/EA3 /9667JEkTel1iAk3OmgO5ZCzAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU9442nPf3 JjFjvNpWB2nZjUYC4QUwHwYDVR0jBBgwFoAUsDUqu0PwqFVkm512GmVcP8YPbmMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2REZDL0JFNDBDMTM2MjQ4 QjExRUVBMzRGNkYzNEM0RjlBRTAyL3NEVXF1MFB3cUZWa201MTJHbVZjUDhZUGJt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0RVcXUwUHdxRlZrbTUxMkdtVmNQOFlQYm1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkRGQy9CRTQwQzEzNjI0OEIxMUVFQTM0RjZGMzRDNEY5QUUwMi8yMzBBMTA5MDI0 OEMxMUVFQTlFRTE5MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfu2DAPBAIAAjAJAwcAIAEN8rJAMA0GCSqGSIb3DQEBCwUA A4IBAQCdnRmZs7skP6elbP6wkd17mACIk8HyQK7AoNVs+msLrcnN28NnuHEhS1Dl 8+DH36fEcvSps9I/iHAHiZlxhUX7bDaF03BDtaSIhqoTTplQycIJTS6Yt+OX/THo NdHAdQe32rnqK60Y239pDFsFdEIFqWsGLj872Xusc8jMXa6OzY7xzOc5CSLSYV7O 1o1TfDRpvJP+A1Tgbcycf7MxMs7ny8ahAEHmtelzYnPmtAeQkF4XWcy9/iEPcyc0 JtEKDVnbmElmjOVlBT9oADdv0MZcX7ZPLyvhq3NKvcJ1t7DyK83tgJO/idDCLdJO 75ITBel7LSuwC8YvWOmWw85Meu4N -----END CERTIFICATE-----Generated at Tue Jun 25 07:05:47 2024 by rpki-client on console-fra.rpki-client.org