$ rpki-client -vvf rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa File: 2FD08C3244C511EAB6D6A36FC4F9AE02.roa (raw, json) Hash identifier: w61W+nCijTD4DUuaZsDj1z3Nw3QZ2ZeANbtzBR4toqk= Subject key identifier: 9D:C2:5E:CA:62:F3:0E:1A:79:9D:72:28:B8:7B:BE:65:E0:D5:89:E4 Certificate issuer: /CN=A919DF6F/serialNumber=FDC6135515D5D015C9443BB4C59BCBFB6D0693D1 Certificate serial: 0A13 Authority key identifier: FD:C6:13:55:15:D5:D0:15:C9:44:3B:B4:C5:9B:CB:FB:6D:06:93:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa Signing time: Sun 28 Jan 2024 20:18:40 +0000 ROA not before: Sun 28 Jan 2024 20:18:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139928 IP address blocks: 103.147.110.0/23 maxlen: 23 103.147.110.0/24 maxlen: 24 103.147.111.0/24 maxlen: 24 2001:df2:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.crl rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 20:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DF6F/serialNumber=FDC6135515D5D015C9443BB4C59BCBFB6D0693D1 Validity Not Before: Jan 28 20:18:40 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b6b6a0-1cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4a:65:20:c1:23:8c:53:3f:5d:0d:01:08:cc: 79:45:c4:7c:96:35:3b:a8:4e:87:30:21:e7:c6:2c: c9:c7:97:3a:c4:24:ae:c7:0a:dc:30:44:fb:bc:d8: 7f:fa:54:9e:99:61:13:07:e8:00:bb:b7:0a:ab:21: 9e:08:1e:b1:e9:4c:42:bc:98:a5:2d:cb:a6:0e:5c: 09:74:ae:89:66:4d:de:c6:ed:6f:47:dd:ab:b6:ac: 0f:f1:10:45:7f:75:91:7f:1b:6c:6a:25:79:30:4e: c7:58:40:15:2e:52:af:f7:00:73:de:fb:70:3a:c3: 2d:e5:ef:67:d5:a5:8d:1d:8e:66:e2:f4:d1:86:a2: c7:ed:37:e4:31:1a:84:e8:62:7f:2c:1f:22:6a:7e: d8:7d:5e:c7:2d:03:2b:fd:9a:3e:a7:87:37:12:49: 10:af:5a:84:e1:d7:9b:c7:03:8f:d6:e6:27:21:13: 4b:23:57:2f:4d:0f:5d:43:c7:7d:5e:71:0f:e1:c4: 57:6e:0a:bd:f5:7e:38:8f:db:26:c6:ca:cf:04:03: 79:dd:16:d5:cc:e7:ce:27:3e:02:12:c4:07:47:8b: 22:f9:25:e2:d2:b7:d0:9e:89:3a:23:46:41:00:2b: e5:14:68:ee:eb:f7:34:d3:9e:8e:d1:67:ec:de:ef: 2f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C2:5E:CA:62:F3:0E:1A:79:9D:72:28:B8:7B:BE:65:E0:D5:89:E4 X509v3 Authority Key Identifier: keyid:FD:C6:13:55:15:D5:D0:15:C9:44:3B:B4:C5:9B:CB:FB:6D:06:93:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.110.0/23 IPv6: 2001:df2:9380::/48 Signature Algorithm: sha256WithRSAEncryption 1e:62:5b:6c:25:60:a1:22:64:db:29:6f:da:d5:da:ec:e5:63: d9:68:73:87:38:b9:55:42:c4:f5:6d:4c:02:08:ad:28:4f:25: 19:25:77:b4:99:50:e5:f5:ff:ca:bc:51:b1:72:fb:42:24:e5: 77:ce:a2:02:05:73:63:10:57:af:7f:27:a2:64:74:f8:78:f6: e4:3f:4b:d5:18:ca:e1:13:eb:4e:0e:e2:16:7a:14:99:70:a7: 64:29:36:57:da:b8:a8:d8:7f:83:cf:5e:49:ad:41:8d:73:ec: 50:e8:f9:71:db:5f:60:c3:3a:8f:84:ee:10:a3:3f:cb:33:2c: c9:f6:39:3b:f7:5b:4e:92:3b:1f:6c:90:ac:f0:c6:2a:1b:37: 41:05:f4:d9:1c:28:db:00:5f:0b:84:c7:49:bb:c6:6e:4d:b8: f6:1f:d5:3c:9c:c9:58:db:29:33:55:10:62:ca:52:92:85:bb: 12:3c:d6:6c:fd:d0:f7:ad:4e:fa:27:79:61:74:1e:68:39:92: 1e:48:6b:86:01:cc:51:9b:8a:46:c6:7e:89:25:88:44:63:bf: 23:1e:3c:8b:ca:07:1f:39:06:6b:0d:f0:d1:b3:c2:9c:eb:6d: 15:90:d8:c6:52:56:05:66:7e:47:e4:f2:cf:87:d8:bc:d0:2f: 98:0c:c9:98 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURGNkYxMTAvBgNVBAUTKEZEQzYxMzU1MTVENUQwMTVDOTQ0M0JCNEM1OUJDQkZC NkQwNjkzRDEwHhcNMjQwMTI4MjAxODQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI2YjZhMC0xY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUplIMEjjFM/XQ0BCMx5RcR8ljU7qE6HMCHnxizJx5c6xCSuxwrcMET7vNh/ +lSemWETB+gAu7cKqyGeCB6x6UxCvJilLcumDlwJdK6JZk3exu1vR92rtqwP8RBF f3WRfxtsaiV5ME7HWEAVLlKv9wBz3vtwOsMt5e9n1aWNHY5m4vTRhqLH7TfkMRqE 6GJ/LB8ian7YfV7HLQMr/Zo+p4c3EkkQr1qE4debxwOP1uYnIRNLI1cvTQ9dQ8d9 XnEP4cRXbgq99X44j9smxsrPBAN53RbVzOfOJz4CEsQHR4si+SXi0rfQnok6I0ZB ACvlFGju6/c0056O0Wfs3u8v1QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ3CXspi 8w4aeZ1yKLh7vmXg1YnkMB8GA1UdIwQYMBaAFP3GE1UV1dAVyUQ7tMWby/ttBpPR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REY2Ri9EQTQwQThFODQy OTgxMUVBQjdBMjJBMTJDNEY5QUUwMi9fY1lUVlJYVjBCWEpSRHUweFp2TC0yMEdr OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19jWVRWUlhWMEJYSlJEdTB4WnZMLTIwR2s5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURGNkYvREE0MEE4RTg0Mjk4MTFFQUI3QTIyQTEyQzRGOUFFMDIvMkZEMDhDMzI0 NEM1MTFFQUI2RDZBMzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnk24wDwQCAAIwCQMHACABDfKTgDANBgkqhkiG9w0BAQsF AAOCAQEAHmJbbCVgoSJk2ylv2tXa7OVj2Whzhzi5VULE9W1MAgitKE8lGSV3tJlQ 5fX/yrxRsXL7QiTld86iAgVzYxBXr38nomR0+Hj25D9L1RjK4RPrTg7iFnoUmXCn ZCk2V9q4qNh/g89eSa1BjXPsUOj5cdtfYMM6j4TuEKM/yzMsyfY5O/dbTpI7H2yQ rPDGKhs3QQX02Rwo2wBfC4THSbvGbk249h/VPJzJWNspM1UQYspSkoW7EjzWbP3Q 961O+id5YXQeaDmSHkhrhgHMUZuKRsZ+iSWIRGO/Ix48i8oHHzkGaw3w0bPCnOtt FZDYxlJWBWZ+R+Tyz4fYvNAvmAzJmA== -----END CERTIFICATE-----Generated at Sun Jun 2 22:48:34 2024 by rpki-client on console-ams.rpki-client.org