$ rpki-client -vvf rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa File: 4578BBA89F4E11EEB293B87EC4F9AE02.roa (raw, json) Hash identifier: OXrFUVRlCUypfbLs5hm3cE5ycOXJ9vF5Rzr0DVn8pyE= Subject key identifier: EF:93:2E:74:25:58:88:B1:F5:1E:48:18:93:92:B4:98:38:1C:B2:88 Certificate issuer: /CN=A9193604/serialNumber=2FFFFCA3E64BD75A085E6C76732625F224C74432 Certificate serial: 02 Authority key identifier: 2F:FF:FC:A3:E6:4B:D7:5A:08:5E:6C:76:73:26:25:F2:24:C7:44:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa Signing time: Wed 20 Dec 2023 15:41:42 +0000 ROA not before: Wed 20 Dec 2023 15:41:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151365 IP address blocks: 103.67.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.crl rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193604/serialNumber=2FFFFCA3E64BD75A085E6C76732625F224C74432 Validity Not Before: Dec 20 15:41:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65830b35-1591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:e0:50:8f:f5:62:01:49:81:8f:55:48:ca: ec:6c:48:28:8e:8a:a6:dc:a6:b8:4b:d5:95:bc:fd: 94:63:44:bc:05:c3:8e:a9:31:90:1f:2b:06:33:22: f3:9c:53:1b:18:a0:9a:16:11:b8:c7:b6:98:78:0e: 15:1b:c9:a8:8a:85:7c:b7:ab:00:bd:27:4d:6c:cf: 23:a6:4b:a8:7a:23:27:f5:b1:68:b2:21:45:23:d5: 67:e7:65:0c:97:56:5e:37:d5:f7:3f:bf:80:c1:aa: 57:93:ae:65:de:b0:f9:4f:cb:cc:f3:f1:a3:4c:05: 29:df:67:7e:a6:4d:d2:e5:74:63:ab:f6:54:0d:3d: 48:23:73:55:1a:97:3c:ef:d9:a4:30:54:07:69:7b: 5c:ad:ea:40:ea:36:f9:d8:28:8e:d8:e4:9b:62:5f: f1:c2:a0:a3:b8:4b:53:d8:d3:c4:18:3f:25:e0:49: b7:10:2c:e7:f9:e9:ec:f4:c8:3f:46:e1:f3:a0:93: a1:e3:60:47:fd:5f:3b:56:10:13:34:f1:0a:8c:ed: a6:84:bb:8f:b5:48:4d:ba:cc:f8:c4:01:05:5f:b2: 44:15:59:b8:55:75:fd:23:fe:71:d5:5c:9b:fc:b4: 82:d0:d2:27:df:57:da:4e:ad:7f:d1:db:50:2e:39: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:93:2E:74:25:58:88:B1:F5:1E:48:18:93:92:B4:98:38:1C:B2:88 X509v3 Authority Key Identifier: keyid:2F:FF:FC:A3:E6:4B:D7:5A:08:5E:6C:76:73:26:25:F2:24:C7:44:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.166.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:a0:a5:5a:87:e3:45:02:1d:12:00:47:ce:42:21:b2:69:a1: f8:ad:73:a5:d4:80:77:b5:cf:17:cf:2d:f1:45:03:8e:d9:58: 95:48:22:7c:59:76:9e:33:cd:20:c1:ca:c6:41:d1:18:39:80: 8f:b8:31:51:99:69:a4:1d:f9:e4:7b:66:88:80:8d:18:12:40: 66:b8:37:33:9b:25:11:25:40:61:21:b0:0a:6a:70:52:27:9f: a4:72:15:8d:fe:a5:ca:cc:b1:23:38:47:a5:f2:f9:55:0b:af: 7c:2d:93:ff:00:9e:71:56:4b:b2:d9:37:7d:a0:4f:e6:f8:81: 5e:41:3f:aa:73:e1:f9:db:94:f6:a9:cb:87:05:0b:c9:1e:f6: 2f:74:79:0c:82:23:cf:f9:50:e6:e1:c6:cb:ac:ee:4f:80:c1: 6b:6f:ba:6a:be:80:d5:af:31:df:7a:e3:a4:8b:d0:e5:4e:9f: cb:73:7d:f8:86:ca:45:6c:5b:0e:bd:0d:fb:3d:c8:5c:1c:50: 9f:fb:31:bd:3d:a9:67:60:b0:b3:10:cd:d1:ae:87:1a:db:5d: 79:04:78:4a:61:0c:60:60:72:9f:37:8a:1e:26:dd:56:6b:eb: 71:dc:ca:e1:f4:5f:34:38:06:88:c2:9b:44:db:89:a4:8b:c3: 5c:df:44:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzYwNDExMC8GA1UEBRMoMkZGRkZDQTNFNjRCRDc1QTA4NUU2Qzc2NzMyNjI1RjIy NEM3NDQzMjAeFw0yMzEyMjAxNTQxNDJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODMwYjM1LTE1OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFGuBQj/ViAUmBj1VIyuxsSCiOiqbcprhL1ZW8/ZRjRLwFw46pMZAfKwYzIvOc UxsYoJoWEbjHtph4DhUbyaiKhXy3qwC9J01szyOmS6h6Iyf1sWiyIUUj1WfnZQyX Vl431fc/v4DBqleTrmXesPlPy8zz8aNMBSnfZ36mTdLldGOr9lQNPUgjc1Ualzzv 2aQwVAdpe1yt6kDqNvnYKI7Y5JtiX/HCoKO4S1PY08QYPyXgSbcQLOf56ez0yD9G 4fOgk6HjYEf9XztWEBM08QqM7aaEu4+1SE26zPjEAQVfskQVWbhVdf0j/nHVXJv8 tILQ0iffV9pOrX/R21AuOSKlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU75MudCVY iLH1HkgYk5K0mDgcsogwHwYDVR0jBBgwFoAUL//8o+ZL11oIXmx2cyYl8iTHRDIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzNjA0L0I1OTVGREEyOUY0 RDExRUU4NERCMEY3REM0RjlBRTAyL0xfXzhvLVpMMTFvSVhteDJjeVlsOGlUSFJE SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTF9fOG8tWkwxMW9JWG14MmN5WWw4aVRIUkRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzYwNC9CNTk1RkRBMjlGNEQxMUVFODREQjBGN0RDNEY5QUUwMi80NTc4QkJBODlG NEUxMUVFQjI5M0I4N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdDpjANBgkqhkiG9w0BAQsFAAOCAQEAHKClWofjRQIdEgBH zkIhsmmh+K1zpdSAd7XPF88t8UUDjtlYlUgifFl2njPNIMHKxkHRGDmAj7gxUZlp pB355HtmiICNGBJAZrg3M5slESVAYSGwCmpwUiefpHIVjf6lysyxIzhHpfL5VQuv fC2T/wCecVZLstk3faBP5viBXkE/qnPh+duU9qnLhwULyR72L3R5DIIjz/lQ5uHG y6zuT4DBa2+6ar6A1a8x33rjpIvQ5U6fy3N9+IbKRWxbDr0N+z3IXBxQn/sxvT2p Z2CwsxDN0a6HGttdeQR4SmEMYGBynzeKHibdVmvrcdzK4fRfNDgGiMKbRNuJpIvD XN9EYQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org