$ rpki-client -vvf rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/BD9131004E2811EEBC65304DC4F9AE02.roa File: BD9131004E2811EEBC65304DC4F9AE02.roa (raw, json) Hash identifier: OnN3gNIZ/fCbsBg1DuMqFTew2UrHIqCTnUQyEN0vDoQ= Subject key identifier: 2D:1B:9F:66:80:94:C2:CD:7F:77:26:E2:CA:C3:0A:63:97:FB:28:0A Certificate issuer: /CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Certificate serial: 02 Authority key identifier: 19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/BD9131004E2811EEBC65304DC4F9AE02.roa Signing time: Fri 08 Sep 2023 09:18:58 +0000 ROA not before: Fri 08 Sep 2023 09:18:58 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63526 IP address blocks: 103.72.60.0/24 maxlen: 24 103.72.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Validity Not Before: Sep 8 09:18:58 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64fae702-6cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:22:8e:f4:05:75:71:3e:78:0e:f1:37:85:d4: 00:91:bd:a6:73:75:6e:8c:1a:ae:55:10:8c:dc:ef: b7:8c:50:44:2e:90:dc:e1:b3:27:8e:0f:ce:28:20: 4d:1d:41:f8:45:1f:11:1b:8a:56:e9:9d:73:72:79: cb:1b:c6:55:b1:60:77:5d:47:16:0a:85:4b:95:e5: c4:ae:36:1a:9c:b0:cb:ba:02:9b:22:86:f1:b1:8b: f2:bb:eb:82:79:b8:64:fb:32:f2:76:80:36:e1:e0: da:37:b3:5c:1c:d0:91:3b:57:db:74:05:18:19:a4: 2a:0b:83:22:85:09:d9:3e:59:e4:4b:77:39:4a:d2: 7c:0d:c6:fa:13:22:b8:d0:3f:73:4a:33:1a:1f:b1: b8:b6:27:60:30:a9:18:36:46:50:0d:3b:50:f0:59: 40:d8:c6:d5:55:1a:f8:e9:8d:ca:42:4e:a3:84:ef: 6a:3c:57:94:91:d8:a2:25:0e:8a:11:fa:c0:d5:c8: fd:e8:f5:e2:38:85:b9:b8:30:8c:12:b3:69:05:20: 12:e4:96:1d:dc:78:ec:c8:49:ee:a3:26:a1:f6:bb: 6e:29:93:a6:86:b9:43:25:5a:a7:86:b4:26:14:33: 06:e1:c0:d8:c9:99:d0:5b:51:d1:4b:56:16:5a:97: ad:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1B:9F:66:80:94:C2:CD:7F:77:26:E2:CA:C3:0A:63:97:FB:28:0A X509v3 Authority Key Identifier: keyid:19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/BD9131004E2811EEBC65304DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.60.0/23 Signature Algorithm: sha256WithRSAEncryption b0:4e:d6:04:b3:c6:5f:37:52:65:f0:81:db:87:82:3e:7d:db: df:26:78:b1:f4:a8:cc:79:3c:6c:c0:74:4d:23:e0:7b:42:c0: 0c:a9:55:f1:a0:7e:f7:28:9f:5b:2c:c0:85:6a:66:ee:ea:bf: a7:63:7f:e2:69:75:1b:b5:d2:b8:ba:04:5d:ef:f0:35:d4:27: 3b:8b:ad:f8:f5:ea:17:2e:f5:75:35:68:47:cc:7e:04:96:72: 39:e5:be:6d:b7:f8:74:e1:cf:cc:7d:86:18:5a:16:62:54:2d: 67:56:d1:44:0a:92:a8:69:d1:d2:2b:ed:4a:dc:9a:90:9d:8d: f9:92:9f:cf:62:5e:41:12:c2:a8:28:5c:90:ce:4b:49:25:4a: 53:35:99:e8:1b:94:6c:f8:99:9d:9f:8f:d8:84:51:b2:c3:0b: b1:61:6b:1b:fc:fd:6d:6c:91:33:53:c4:40:30:7b:a8:75:50: 2a:20:be:13:ed:ab:18:34:ee:dd:27:25:7e:8f:8d:f1:34:9a: c9:86:0b:78:91:a1:57:60:d5:8e:90:1c:03:7f:42:cc:c0:6c: 59:96:1c:17:c0:0f:ff:ab:5f:47:b1:96:99:bf:65:5f:ea:ca: ad:1a:c7:62:cd:18:5f:e4:aa:f9:b0:f4:93:37:22:03:9c:1b: 8b:76:50:79 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDg1NzExMC8GA1UEBRMoMTlBMzYwNTlFMzE3RUY3RjY3ODg1Q0UyNTJBRURCOTE5 NThGNUU2ODAeFw0yMzA5MDgwOTE4NThaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZmFlNzAyLTZjZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Io70BXVxPngO8TeF1ACRvaZzdW6MGq5VEIzc77eMUEQukNzhsyeOD84oIE0d QfhFHxEbilbpnXNyecsbxlWxYHddRxYKhUuV5cSuNhqcsMu6ApsihvGxi/K764J5 uGT7MvJ2gDbh4No3s1wc0JE7V9t0BRgZpCoLgyKFCdk+WeRLdzlK0nwNxvoTIrjQ P3NKMxofsbi2J2AwqRg2RlANO1DwWUDYxtVVGvjpjcpCTqOE72o8V5SR2KIlDooR +sDVyP3o9eI4hbm4MIwSs2kFIBLklh3ceOzISe6jJqH2u24pk6aGuUMlWqeGtCYU MwbhwNjJmdBbUdFLVhZal61nAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULRufZoCU ws1/dybiysMKY5f7KAowHwYDVR0jBBgwFoAUGaNgWeMX739niFziUq7bkZWPXmgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEODU3LzYxQzVDREI4NEUy ODExRUU5NEZEQjM0Q0M0RjlBRTAyL0dhTmdXZU1YNzM5bmlGemlVcTdia1pXUFht Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR2FOZ1dlTVg3MzluaUZ6aVVxN2JrWldQWG1nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDg1Ny82MUM1Q0RCODRFMjgxMUVFOTRGREIzNENDNEY5QUUwMi9CRDkxMzEwMDRF MjgxMUVFQkM2NTMwNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdIPDANBgkqhkiG9w0BAQsFAAOCAQEAsE7WBLPGXzdSZfCB 24eCPn3b3yZ4sfSozHk8bMB0TSPge0LADKlV8aB+9yifWyzAhWpm7uq/p2N/4ml1 G7XSuLoEXe/wNdQnO4ut+PXqFy71dTVoR8x+BJZyOeW+bbf4dOHPzH2GGFoWYlQt Z1bRRAqSqGnR0ivtStyakJ2N+ZKfz2JeQRLCqChckM5LSSVKUzWZ6BuUbPiZnZ+P 2IRRssMLsWFrG/z9bWyRM1PEQDB7qHVQKiC+E+2rGDTu3Sclfo+N8TSayYYLeJGh V2DVjpAcA39CzMBsWZYcF8AP/6tfR7GWmb9lX+rKrRrHYs0YX+Sq+bD0kzciA5wb i3ZQeQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org