$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa File: 9D85178EE2AF11E9919C1D4EC4F9AE02.roa (raw, json) Hash identifier: okKhIAo5cLtGI8W8tBHwe7Y/dKgWVjuOG8v14Ov04dM= Subject key identifier: 66:D1:B9:1A:87:2F:53:5F:12:C1:00:EC:9D:58:7D:D3:F4:5B:3E:21 Certificate issuer: /CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Certificate serial: 0BAA Authority key identifier: 72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa Signing time: Wed 02 Aug 2023 18:56:23 +0000 ROA not before: Wed 02 Aug 2023 18:56:23 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137967 IP address blocks: 103.14.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Validity Not Before: Aug 2 18:56:23 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64caa6d7-afc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:47:2c:44:da:53:58:b1:05:7e:60:a0:c9: 07:a3:29:62:42:3c:a8:05:0b:13:f9:b9:2a:07:0c: 52:ac:63:3e:a6:4f:6f:0e:1e:80:a4:ea:07:c5:72: 57:62:1e:78:ab:95:e1:7d:92:79:7a:5f:59:58:64: 03:78:68:bf:8a:56:55:ae:2d:b2:1d:15:bf:7b:a7: a3:cd:a0:80:7a:4c:39:f7:b4:17:06:7c:62:25:d8: 4e:93:8c:4f:83:7e:e4:0c:8f:1a:0f:ff:15:a1:59: 21:56:98:42:49:90:22:b7:a3:99:eb:41:66:9e:4d: da:9c:b5:46:10:fe:08:94:a7:f6:17:53:b1:50:66: 3b:71:9e:e4:9b:4c:d6:bc:bd:d6:11:5f:61:2c:18: 19:d1:1a:d3:5d:46:ae:89:68:0f:f4:54:88:16:e8: ab:94:01:11:9f:5b:09:a9:ef:dd:d3:41:59:3a:65: d5:62:0e:26:78:33:26:35:26:aa:3d:27:a4:f9:5f: a3:8c:9d:02:ce:7f:52:54:7b:32:0e:85:8e:ff:17: 39:c8:bc:9f:5e:2d:0d:10:60:a5:f9:b3:ea:c4:39: 4a:f6:90:3a:5d:d0:4d:87:71:e4:33:c7:e9:f2:24: 91:46:c4:c1:60:7a:29:21:f2:de:aa:a5:dc:0a:c3: b2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D1:B9:1A:87:2F:53:5F:12:C1:00:EC:9D:58:7D:D3:F4:5B:3E:21 X509v3 Authority Key Identifier: keyid:72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.72.0/24 Signature Algorithm: sha256WithRSAEncryption 69:58:1e:01:9e:b0:1e:b0:a1:c4:cc:4c:99:3b:57:56:0c:99: 28:24:0f:ca:25:df:99:07:9b:32:86:fe:d2:b7:d1:b5:de:70: a0:bc:b3:01:d6:5c:27:3d:33:7a:76:87:49:c6:71:70:b5:05: 14:35:56:9f:d6:2c:02:aa:f4:9b:e6:d8:b9:2f:64:3e:ac:23: 09:3e:0e:98:de:7a:65:cb:a0:ea:ff:be:fd:83:f3:84:7a:97: 66:2e:55:16:37:64:5e:83:ba:f6:3f:86:37:73:b1:0a:59:c1: 1d:9c:86:26:ff:46:10:78:85:7c:27:d4:bb:8d:7a:34:c2:d9: d3:02:4e:bd:6a:40:fe:aa:8c:62:9e:e7:76:ed:97:68:31:4b: 72:58:f3:49:b8:36:67:48:3b:fd:97:75:29:dc:33:cd:60:6b: 8e:76:f7:20:09:3d:14:c5:45:90:ac:02:08:18:5b:7e:c8:54: 01:db:11:d3:47:fe:0e:24:49:51:fe:2d:7f:1a:7d:58:5f:3c: 37:bb:eb:44:8e:db:3b:62:8c:66:58:96:f0:0f:02:7c:2b:da: 37:22:c3:b4:9a:48:50:5a:4b:30:80:50:c0:4f:32:21:1b:d1: f3:b7:39:19:c1:68:f4:2a:fb:94:22:76:e3:2a:dc:74:62:67: d2:75:3f:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJENTk3NzIzMzYx QTA0QkYyOTIwHhcNMjMwODAyMTg1NjIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYTZkNy1hZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8dHLETaU1ixBX5goMkHoyliQjyoBQsT+bkqBwxSrGM+pk9vDh6ApOoHxXJX Yh54q5XhfZJ5el9ZWGQDeGi/ilZVri2yHRW/e6ejzaCAekw597QXBnxiJdhOk4xP g37kDI8aD/8VoVkhVphCSZAit6OZ60Fmnk3anLVGEP4IlKf2F1OxUGY7cZ7km0zW vL3WEV9hLBgZ0RrTXUauiWgP9FSIFuirlAERn1sJqe/d00FZOmXVYg4meDMmNSaq PSek+V+jjJ0Czn9SVHsyDoWO/xc5yLyfXi0NEGCl+bPqxDlK9pA6XdBNh3HkM8fp 8iSRRsTBYHopIfLeqqXcCsOylQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGbRuRqH L1NfEsEA7J1YfdP0Wz4hMB8GA1UdIwQYMBaAFHKKgkCS5XQSVLuS1ZdyM2GgS/KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUI2MS8zRjAwRDc1Q0Uy QUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpMbGRCSlV1NUxWbDNJellhQkw4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NvcUNRSkxsZEJKVXU1TFZsM0l6WWFCTDhwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFCNjEvM0YwMEQ3NUNFMkFGMTFFOUJCMDFGQzREQzRGOUFFMDIvOUQ4NTE3OEVF MkFGMTFFOTkxOUMxRDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDkgwDQYJKoZIhvcNAQELBQADggEBAGlYHgGesB6wocTM TJk7V1YMmSgkD8ol35kHmzKG/tK30bXecKC8swHWXCc9M3p2h0nGcXC1BRQ1Vp/W LAKq9Jvm2LkvZD6sIwk+DpjeemXLoOr/vv2D84R6l2YuVRY3ZF6DuvY/hjdzsQpZ wR2chib/RhB4hXwn1LuNejTC2dMCTr1qQP6qjGKe53btl2gxS3JY80m4NmdIO/2X dSncM81ga4529yAJPRTFRZCsAggYW37IVAHbEdNH/g4kSVH+LX8afVhfPDe760SO 2ztijGZYlvAPAnwr2jciw7SaSFBaSzCAUMBPMiEb0fO3ORnBaPQq+5QiduMq3HRi Z9J1PzQ= -----END CERTIFICATE-----Generated at Fri May 31 22:13:12 2024 by rpki-client on console-fra.rpki-client.org