$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/8D0C1E0E37EF11EE82AF270BC4F9AE02.roa File: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (raw, json) Hash identifier: mDiYM2ChsDmZQrr9m5G9Ky1aoU6nuVepmVmEeSHLbGU= Subject key identifier: 1D:2E:DE:63:F2:41:18:65:A9:2C:05:A8:BC:1C:FA:34:87:50:5A:E0 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 02 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/8D0C1E0E37EF11EE82AF270BC4F9AE02.roa Signing time: Fri 11 Aug 2023 02:34:10 +0000 ROA not before: Fri 11 Aug 2023 02:34:10 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151470 IP address blocks: 103.229.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Aug 11 02:34:10 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d59e22-c8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9b:79:21:2e:52:b5:fa:6a:1d:55:8e:33:ec: 14:8f:fb:a2:f9:71:cb:5d:ad:9c:b0:9c:46:55:11: 90:27:18:92:72:cb:01:78:7f:15:f8:39:a1:69:7b: a2:f1:62:85:dd:87:45:81:c2:67:b8:2d:27:67:06: ef:24:78:dd:e8:f5:66:5d:be:75:0c:80:a1:7c:2c: 0a:05:39:7d:e6:bc:cc:37:ee:c7:d8:71:2a:59:91: b9:a4:e5:6a:f6:09:95:dc:a5:62:02:c3:23:a9:fc: 0b:82:2e:3c:fa:98:02:16:fe:31:d0:8c:13:6d:0e: 46:5f:54:6e:89:2d:58:41:15:77:0a:1e:1d:37:7b: 03:d9:d4:1c:71:8e:b4:fa:a2:65:f7:6f:c9:fe:e3: 8d:fe:a0:13:57:ce:88:c5:91:39:c0:f2:51:b1:59: 62:f9:76:38:b6:2f:1d:0b:ab:06:df:d9:b7:27:37: 8e:03:36:15:25:a8:44:06:7a:fe:b4:67:17:1e:e6: 87:cd:89:4e:93:62:87:3b:05:4d:4d:15:86:57:3a: 9a:95:24:24:53:e8:01:29:1e:f3:59:09:03:47:49: 73:78:d3:4d:04:9e:4a:70:55:5b:ae:9a:6e:aa:5c: 10:09:d4:4e:f1:7b:7f:0f:ed:02:82:5c:99:bc:27: 2c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2E:DE:63:F2:41:18:65:A9:2C:05:A8:BC:1C:FA:34:87:50:5A:E0 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/8D0C1E0E37EF11EE82AF270BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.234.0/23 Signature Algorithm: sha256WithRSAEncryption 70:39:49:9a:e1:b4:40:09:aa:6c:48:fa:49:27:6a:3d:fc:90: 2c:8f:da:3b:5f:5b:2a:f6:50:27:c6:86:a6:1b:ae:ea:bf:5a: 4c:8b:d8:da:b0:50:33:af:01:54:2e:b9:0d:81:4b:9a:3b:a0: 4f:8d:9e:f6:c4:4e:12:16:78:02:5e:b6:67:9f:f7:e6:d9:47: b2:c2:09:f2:75:7d:dd:69:33:f0:34:98:97:2e:b8:a3:4c:10: 64:d1:cb:6e:f8:5e:4b:15:cd:68:c3:93:71:87:4f:0e:9f:5a: df:22:cc:f4:1d:a1:3c:30:2b:74:1a:0a:ee:30:a2:7a:d0:4f: a7:d0:21:1e:4f:91:0c:41:44:62:63:c6:6b:6e:f3:c9:3f:d3: dc:21:f9:b2:5e:10:f9:da:47:7a:5d:04:a9:fa:20:f7:00:7b: 45:4e:9d:02:ac:32:a3:89:c6:3f:bb:3d:39:6b:92:99:f6:0e: cf:72:54:ce:7e:e1:3d:ca:4a:94:d0:a2:c8:c8:33:e4:b7:35: 02:2c:6e:3f:b3:25:b4:0b:ff:72:28:5e:eb:7a:1f:b5:20:31: c8:8c:47:19:a5:71:89:c5:47:64:65:52:57:d4:37:ae:d6:a5: 97:f7:0f:f9:30:71:42:f7:98:3a:dd:39:bf:75:fa:7b:24:36: a4:ff:0f:04 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QUREMTExMC8GA1UEBRMoNzY1MkEyMkZDMjUwRkFBQUUzQUIyQzBDMkFGREQwNEUz MDQ3RTUwNzAeFw0yMzA4MTEwMjM0MTBaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDU5ZTIyLWM4YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQm3khLlK1+modVY4z7BSP+6L5cctdrZywnEZVEZAnGJJyywF4fxX4OaFpe6Lx YoXdh0WBwme4LSdnBu8keN3o9WZdvnUMgKF8LAoFOX3mvMw37sfYcSpZkbmk5Wr2 CZXcpWICwyOp/AuCLjz6mAIW/jHQjBNtDkZfVG6JLVhBFXcKHh03ewPZ1BxxjrT6 omX3b8n+443+oBNXzojFkTnA8lGxWWL5dji2Lx0Lqwbf2bcnN44DNhUlqEQGev60 Zxce5ofNiU6TYoc7BU1NFYZXOpqVJCRT6AEpHvNZCQNHSXN4000EnkpwVVuumm6q XBAJ1E7xe38P7QKCXJm8JyyNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHS7eY/JB GGWpLAWovBz6NIdQWuAwHwYDVR0jBBgwFoAUdlKiL8JQ+qrjqywMKv3QTjBH5Qcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBREQxL0QwMDZDMERFMzdF RTExRUU5OERGMzY2NkM0RjlBRTAyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVR Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGxLaUw4SlEtcXJqcXl3TUt2M1FUakJINVFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi84RDBDMUUwRTM3 RUYxMUVFODJBRjI3MEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfl6jANBgkqhkiG9w0BAQsFAAOCAQEAcDlJmuG0QAmqbEj6 SSdqPfyQLI/aO19bKvZQJ8aGphuu6r9aTIvY2rBQM68BVC65DYFLmjugT42e9sRO EhZ4Al62Z5/35tlHssIJ8nV93Wkz8DSYly64o0wQZNHLbvheSxXNaMOTcYdPDp9a 3yLM9B2hPDArdBoK7jCietBPp9AhHk+RDEFEYmPGa27zyT/T3CH5sl4Q+dpHel0E qfog9wB7RU6dAqwyo4nGP7s9OWuSmfYOz3JUzn7hPcpKlNCiyMgz5Lc1AixuP7Ml tAv/cihe63oftSAxyIxHGaVxicVHZGVSV9Q3rtall/cP+TBxQveYOt05v3X6eyQ2 pP8PBA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:18 2024 by rpki-client on console-ams.rpki-client.org