$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa File: 32503D0625FC11EE9A575E36C4F9AE02.roa (raw, json) Hash identifier: 33HkpvrkeHpGV0MCCkt2Uwsnq/ooEKYbSLSLSfasvYI= Subject key identifier: 71:CF:6E:16:CD:89:B0:F1:D4:D0:EF:97:4E:C0:8E:3B:28:96:74:7D Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 12 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa Signing time: Mon 07 Aug 2023 10:18:35 +0000 ROA not before: Mon 07 Aug 2023 10:18:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151498 IP address blocks: 103.234.126.0/23 maxlen: 23 2001:df2:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Aug 7 10:18:35 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d0c4fa-7875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:63:c8:58:aa:25:d7:44:02:e1:8a:99:90:3a: 7f:fa:a1:af:be:bf:17:d5:a0:78:06:9d:46:47:ac: a3:a8:cd:1e:3b:65:3c:e3:04:21:73:78:3e:08:cc: 62:97:c0:d3:f1:b7:3d:a1:f9:4c:b4:45:e0:08:51: 3e:ff:b1:ee:bb:5f:6b:68:98:c1:4c:89:b4:14:89: 69:41:ec:2d:7c:f8:64:45:7c:91:74:69:8e:ef:34: b8:79:80:e8:68:58:7e:f6:2c:f7:35:02:c9:93:b0: 23:5d:b9:e8:20:5f:1e:ab:78:f5:7b:0e:f4:2c:22: 62:d7:ee:84:ab:67:a5:36:99:5f:33:31:2f:6f:52: 49:35:f8:5a:23:aa:cd:33:5b:cd:95:60:a3:03:59: a0:f4:3b:f6:e8:6f:0d:5a:78:8a:60:0d:6f:68:4d: a8:3c:78:4e:f4:21:12:42:c5:4a:0a:5a:bd:10:7b: 47:ef:5e:74:0b:fe:26:b3:09:44:ca:e0:12:a4:09: cd:9c:97:fa:97:c4:13:c7:51:11:58:87:be:38:e2: 56:83:43:42:76:c5:f6:98:42:09:5a:04:56:3e:9f: bf:12:ae:ce:cd:9a:8b:88:16:c4:79:00:94:c7:b9: c9:b6:0a:99:3e:80:15:59:58:a2:2c:cc:e6:7e:67: fc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CF:6E:16:CD:89:B0:F1:D4:D0:EF:97:4E:C0:8E:3B:28:96:74:7D X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/32503D0625FC11EE9A575E36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.126.0/23 IPv6: 2001:df2:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption 8a:41:02:b9:fb:cf:9e:bc:ee:7c:b1:44:1b:4e:d0:29:9d:e6: b6:ad:78:c7:c9:d2:ff:a6:dd:c8:1a:80:8f:4b:f8:10:28:e1: d6:ff:cd:e7:7e:9a:5f:8e:be:86:94:d0:11:d9:12:9a:ac:31: 5f:bb:dd:f9:e9:9c:3b:31:7f:cd:b4:0f:d0:be:5e:00:77:2d: 1a:72:dc:ec:28:82:38:a9:a3:2c:35:66:fb:ce:5f:d0:ef:a9: a5:94:87:bf:99:7e:8c:74:a2:ed:47:b0:ab:4c:01:40:1c:4e: 37:fa:37:e7:14:10:7b:e7:02:66:98:89:dd:c7:49:91:27:90: 8d:ac:88:6a:80:c4:24:49:37:7d:17:98:8d:6f:ed:54:ba:36: a7:8d:b8:2a:fb:0b:91:90:b2:13:da:13:19:15:05:5b:ec:2e: 7e:9d:78:4a:27:15:01:ea:2d:ab:f1:05:53:d9:40:df:52:a2: d4:39:3c:9f:40:20:4f:ed:c0:a5:7a:5e:e0:d9:49:99:d5:4f: 94:95:a6:c6:45:0a:4e:e3:e6:d5:4f:64:61:c8:54:0a:47:c4: 1f:e0:06:f1:1e:f9:9b:9e:b1:5d:ca:bb:84:a7:aa:4d:7a:9f: a2:1f:91:c2:98:3d:6e:b5:55:a1:e6:21:cd:dc:43:d7:02:eb: d4:5c:18:06 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkVEOTExMC8GA1UEBRMoQzEzQTlGNjJBMTRCMDUxMDNDNUFDNTc1NkY5NzY1OTI4 ODhBNDk1QTAeFw0yMzA4MDcxMDE4MzVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDBjNGZhLTc4NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqY8hYqiXXRALhipmQOn/6oa++vxfVoHgGnUZHrKOozR47ZTzjBCFzeD4IzGKX wNPxtz2h+Uy0ReAIUT7/se67X2tomMFMibQUiWlB7C18+GRFfJF0aY7vNLh5gOho WH72LPc1AsmTsCNdueggXx6rePV7DvQsImLX7oSrZ6U2mV8zMS9vUkk1+Fojqs0z W82VYKMDWaD0O/bobw1aeIpgDW9oTag8eE70IRJCxUoKWr0Qe0fvXnQL/iazCUTK 4BKkCc2cl/qXxBPHURFYh7444laDQ0J2xfaYQglaBFY+n78Srs7NmouIFsR5AJTH ucm2Cpk+gBVZWKIszOZ+Z/wPAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUcc9uFs2J sPHU0O+XTsCOOyiWdH0wHwYDVR0jBBgwFoAUwTqfYqFLBRA8WsV1b5dlkoiKSVow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGRUQ5L0MwQkE4QUFFMjIx QjExRUVBNTA4RDYyRUM0RjlBRTAyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NW by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1RxZllxRkxCUkE4V3NWMWI1ZGxrb2lLU1ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkVEOS9DMEJBOEFBRTIyMUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi8zMjUwM0QwNjI1 RkMxMUVFOUE1NzVFMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfqfjAPBAIAAjAJAwcAIAEN8qjAMA0GCSqGSIb3DQEBCwUA A4IBAQCKQQK5+8+evO58sUQbTtApnea2rXjHydL/pt3IGoCPS/gQKOHW/83nfppf jr6GlNAR2RKarDFfu9356Zw7MX/NtA/Qvl4Ady0actzsKII4qaMsNWb7zl/Q76ml lIe/mX6MdKLtR7CrTAFAHE43+jfnFBB75wJmmIndx0mRJ5CNrIhqgMQkSTd9F5iN b+1Uujanjbgq+wuRkLIT2hMZFQVb7C5+nXhKJxUB6i2r8QVT2UDfUqLUOTyfQCBP 7cClel7g2UmZ1U+UlabGRQpO4+bVT2RhyFQKR8Qf4AbxHvmbnrFdyruEp6pNep+i H5HCmD1utVWh5iHN3EPXAuvUXBgG -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org