$ rpki-client -vvf rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/E4BA0144BA8E11EE91E3AF15C4F9AE02.roa File: E4BA0144BA8E11EE91E3AF15C4F9AE02.roa (raw, json) Hash identifier: AxmM4uXwWp1gj6vr9AE5UA2acdyFvQJrumr3Qxho0EE= Subject key identifier: DA:1D:73:D3:21:50:62:DA:8E:8B:54:D8:CB:25:0B:FA:D0:52:5D:82 Certificate issuer: /CN=A911112F/serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Certificate serial: 1F Authority key identifier: 1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/E4BA0144BA8E11EE91E3AF15C4F9AE02.roa Signing time: Thu 14 Mar 2024 15:15:22 +0000 ROA not before: Thu 14 Mar 2024 15:15:22 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 58504 IP address blocks: 103.167.186.0/24 maxlen: 24 103.167.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911112F/serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Validity Not Before: Mar 14 15:15:22 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65f31489-d926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:39:94:6d:3a:41:82:e1:44:57:a9:36:58: cd:d3:68:7a:3b:b4:99:fc:ed:71:80:c9:bd:05:1a: 06:0a:ff:e9:7e:53:d1:ec:c4:6d:87:6a:66:1f:be: 75:1a:61:ac:1e:2d:2b:0e:70:c3:42:59:d5:d0:fd: 6a:05:bc:dd:78:b0:c3:8a:34:31:04:a1:0e:8c:fd: 20:14:18:57:9b:b1:db:ea:60:41:ff:b3:df:1a:f4: 98:1b:94:b0:a0:d8:3d:6a:bf:41:f2:2a:6b:8a:cf: f5:91:78:e5:21:95:2d:74:c6:32:24:27:6e:ec:ca: 96:94:e4:e3:91:33:02:0d:3f:7c:0a:e5:d4:49:e2: b9:0b:37:52:29:2d:66:72:30:05:fe:9c:38:fe:9f: a6:ae:cb:10:60:e5:04:5e:8f:0c:08:ab:0b:a5:c9: d1:93:3f:0d:e6:96:d4:59:5b:be:4f:0c:a4:f6:cf: f0:6a:ff:d8:61:ca:44:61:8a:9e:18:b7:84:d8:de: a3:70:4d:3a:e0:b9:48:f2:1d:2d:94:37:1c:9c:f1: 13:84:ae:b7:34:e5:78:f5:2e:56:ad:9c:8d:9f:7b: 21:0f:48:37:63:f9:24:fc:e0:3b:24:d2:17:81:ed: e1:ff:8b:68:b1:12:d1:87:6b:fc:01:62:cc:17:f3: e9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1D:73:D3:21:50:62:DA:8E:8B:54:D8:CB:25:0B:FA:D0:52:5D:82 X509v3 Authority Key Identifier: keyid:1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/E4BA0144BA8E11EE91E3AF15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.186.0/23 Signature Algorithm: sha256WithRSAEncryption 06:fc:5b:79:0d:58:ab:ec:cb:c8:8f:bc:5c:7d:7a:0e:2f:aa: e0:6d:08:27:fc:4a:36:2c:1b:06:15:f1:d5:3f:de:e7:ef:e5: c8:58:5f:97:f2:ef:e5:f3:a3:9a:2d:4b:5f:88:b0:76:a2:06: 4a:5c:27:45:1e:a3:8b:b7:3f:d0:6e:3f:38:89:ca:8c:5f:c0: 6b:52:b2:9a:5a:9f:ec:9e:3a:93:b9:b2:fe:0c:8b:05:84:bc: a5:47:c2:20:0d:cb:8e:6e:77:75:be:cc:ad:1c:ec:60:fc:4a: 8b:8a:8c:80:7f:39:8d:84:e2:87:44:36:f3:fe:d1:12:94:28: f4:83:3e:f6:d3:75:c6:f6:4d:10:7c:d0:90:53:2d:75:f7:2e: dc:57:8a:1e:71:5c:b7:32:49:60:33:16:d0:c5:f9:5e:de:5f: 22:3a:30:22:9a:e4:b6:3f:28:ea:9d:90:5d:5f:14:fd:41:6a: fc:cc:16:6c:aa:61:fe:e0:70:8a:f4:2d:b3:e4:b3:c9:75:e0: 46:29:b9:e2:91:f3:a5:14:6a:20:91:1b:0c:85:1a:01:31:90: 12:24:c3:53:7c:1e:b2:b6:05:e6:36:df:82:60:aa:7e:cb:b3: 82:5e:19:cf:b4:63:a5:12:74:40:22:9f:2a:35:75:57:e6:60: 78:e2:ca:a1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTEyRjExMC8GA1UEBRMoMUU1N0I0M0YwNDRENEFCQTgyMjJBNDA5Nzg2NjE0Mjgw QUE3MzlBMTAeFw0yNDAzMTQxNTE1MjJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjMxNDg5LWQ5MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrwjmUbTpBguFEV6k2WM3TaHo7tJn87XGAyb0FGgYK/+l+U9HsxG2HamYfvnUa YaweLSsOcMNCWdXQ/WoFvN14sMOKNDEEoQ6M/SAUGFebsdvqYEH/s98a9JgblLCg 2D1qv0HyKmuKz/WReOUhlS10xjIkJ27sypaU5OORMwINP3wK5dRJ4rkLN1IpLWZy MAX+nDj+n6auyxBg5QRejwwIqwulydGTPw3mltRZW75PDKT2z/Bq/9hhykRhip4Y t4TY3qNwTTrguUjyHS2UNxyc8ROErrc05Xj1LlatnI2feyEPSDdj+ST84Dsk0heB 7eH/i2ixEtGHa/wBYswX8+n3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2h1z0yFQ YtqOi1TYyyUL+tBSXYIwHwYDVR0jBBgwFoAUHle0PwRNSrqCIqQJeGYUKAqnOaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExMTJGLzk2NERDNjlBQkE4 RDExRUU4MjhBODk0NkM0RjlBRTAyL0hsZTBQd1JOU3JxQ0lxUUplR1lVS0Fxbk9h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGxlMFB3Uk5TcnFDSXFRSmVHWVVLQXFuT2FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTEyRi85NjREQzY5QUJBOEQxMUVFODI4QTg5NDZDNEY5QUUwMi9FNEJBMDE0NEJB OEUxMUVFOTFFM0FGMTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWenujANBgkqhkiG9w0BAQsFAAOCAQEABvxbeQ1Yq+zLyI+8 XH16Di+q4G0IJ/xKNiwbBhXx1T/e5+/lyFhfl/Lv5fOjmi1LX4iwdqIGSlwnRR6j i7c/0G4/OInKjF/Aa1Kymlqf7J46k7my/gyLBYS8pUfCIA3Ljm53db7MrRzsYPxK i4qMgH85jYTih0Q28/7REpQo9IM+9tN1xvZNEHzQkFMtdfcu3FeKHnFctzJJYDMW 0MX5Xt5fIjowIprktj8o6p2QXV8U/UFq/MwWbKph/uBwivQts+SzyXXgRim54pHz pRRqIJEbDIUaATGQEiTDU3wesrYF5jbfgmCqfsuzgl4Zz7RjpRJ0QCKfKjV1V+Zg eOLKoQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:25 2024 by rpki-client on console-fra.rpki-client.org