$ rpki-client -vvf rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/CF9E64BED65711EE8623B920C4F9AE02.roa File: CF9E64BED65711EE8623B920C4F9AE02.roa (raw, json) Hash identifier: zWYR8QAy7N2GS5DQTyhRhcDnGuBhK80YMuuGcbf9ORY= Subject key identifier: 99:8F:2D:2F:FF:0A:EC:89:F4:43:BC:4A:FF:FE:08:9B:61:6D:6D:D4 Certificate issuer: /CN=A9117373/serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Certificate serial: 0440 Authority key identifier: 61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/CF9E64BED65711EE8623B920C4F9AE02.roa Signing time: Tue 26 Mar 2024 07:44:27 +0000 ROA not before: Tue 26 Mar 2024 07:44:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 58061 IP address blocks: 103.101.84.0/24 maxlen: 24 103.101.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117373/serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Validity Not Before: Mar 26 07:44:27 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66027cdb-3203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ed:8e:7e:0a:c4:88:e7:aa:1a:cc:d9:c8:3a: a0:ec:cd:dc:ee:05:26:56:45:dc:5d:89:80:b6:3c: 3b:bf:b3:12:ec:45:b7:16:85:3e:36:03:45:85:66: 0c:e9:18:bb:cb:10:f0:a1:62:14:d0:d0:c7:e9:68: 47:dc:7f:66:68:c4:d9:39:af:81:0f:27:05:a1:6f: d6:f8:fe:f9:f6:71:4b:85:d4:0d:3e:2a:da:e0:7a: 96:1c:7a:f7:83:44:17:ae:fc:9e:08:17:90:4b:1d: 66:ab:ff:11:26:d3:8b:2c:4f:df:b4:c6:e4:54:20: 3f:9e:af:77:13:48:40:ce:be:3f:3a:87:a2:61:af: 74:32:85:c0:c1:95:52:b3:9f:8c:80:92:d2:f4:e6: 36:14:0f:14:ee:39:b4:95:0e:d0:0a:62:e2:c1:b5: 12:82:1f:ba:99:d0:c7:bc:3f:9d:c2:c2:7c:c2:5d: fa:d8:c7:34:02:3e:8e:1b:b2:36:f8:41:55:92:1d: 9e:50:2f:e4:77:16:56:2e:29:cd:7c:e3:8b:64:9f: a7:97:55:fd:1c:08:91:2c:04:ec:bc:83:70:09:c1: f7:18:1e:e3:48:f6:b2:21:2d:d9:d6:e3:99:b6:b3: b4:87:4c:a9:86:57:9e:91:69:f1:a7:41:01:fa:a4: 03:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8F:2D:2F:FF:0A:EC:89:F4:43:BC:4A:FF:FE:08:9B:61:6D:6D:D4 X509v3 Authority Key Identifier: keyid:61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/CF9E64BED65711EE8623B920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.84.0/24 103.101.86.0/24 Signature Algorithm: sha256WithRSAEncryption 39:4c:83:4c:ba:1e:9a:39:55:f0:02:1f:f1:5b:f3:1e:ac:89: 7a:d5:3b:9b:b6:6f:fa:51:f9:27:7c:d3:be:4b:d7:34:41:35: 79:ad:b6:8d:69:f0:e8:61:f1:78:06:a7:a6:22:98:7c:a6:c4: e5:e5:00:8e:1a:63:a2:32:95:22:a5:2c:a0:32:98:9c:80:aa: b1:d6:14:26:8b:91:a6:21:34:20:4d:4a:c9:1b:9e:4e:2b:18: bc:9b:31:2c:1e:3a:01:64:3f:c5:08:b8:38:ad:e1:d2:53:16: 38:bc:80:a2:cc:58:f4:73:5e:b1:9e:40:ec:2e:a1:51:54:23: 67:16:96:ad:5a:10:9d:cf:82:d6:21:47:8a:c0:1b:82:15:c3: c3:b1:01:4c:e9:89:0c:4a:73:92:09:a6:60:3f:0f:83:25:f1: 42:a7:51:ec:58:0d:ee:e9:ff:92:d3:76:77:1e:fd:a8:b0:32: f8:15:ac:20:05:e7:a7:29:4e:cc:f6:0a:91:34:68:74:75:06: e5:5e:8a:29:50:17:13:57:12:d2:c8:45:72:cf:68:9f:3b:f8: 3c:ea:1c:48:a2:c1:1c:1b:b1:9a:15:7a:cd:73:92:93:6f:32: 6a:5c:d0:f4:c2:63:35:69:ea:0d:c7:91:1e:1e:17:a3:9e:76: 79:24:f3:a2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTczNzMxMTAvBgNVBAUTKDYxODQxRDFFREFCRjlGRjBGNjAxOEM2MTEwMTdBRjcx OTYyN0EyNEQwHhcNMjQwMzI2MDc0NDI3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAyN2NkYi0zMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+2OfgrEiOeqGszZyDqg7M3c7gUmVkXcXYmAtjw7v7MS7EW3FoU+NgNFhWYM 6Ri7yxDwoWIU0NDH6WhH3H9maMTZOa+BDycFoW/W+P759nFLhdQNPira4HqWHHr3 g0QXrvyeCBeQSx1mq/8RJtOLLE/ftMbkVCA/nq93E0hAzr4/OoeiYa90MoXAwZVS s5+MgJLS9OY2FA8U7jm0lQ7QCmLiwbUSgh+6mdDHvD+dwsJ8wl362Mc0Aj6OG7I2 +EFVkh2eUC/kdxZWLinNfOOLZJ+nl1X9HAiRLATsvINwCcH3GB7jSPayIS3Z1uOZ trO0h0yphleekWnxp0EB+qQDawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJmPLS// CuyJ9EO8Sv/+CJthbW3UMB8GA1UdIwQYMBaAFGGEHR7av5/w9gGMYRAXr3GWJ6JN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzM3My9CRkE5QzM2MjIz QUExMUVDQTgxMTZCMjdDNEY5QUUwMi9ZWVFkSHRxX25fRDJBWXhoRUJldmNaWW5v azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lZUWRIdHFfbl9EMkFZeGhFQmV2Y1pZbm9rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTczNzMvQkZBOUMzNjIyM0FBMTFFQ0E4MTE2QjI3QzRGOUFFMDIvQ0Y5RTY0QkVE NjU3MTFFRTg2MjNCOTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZVQDBABnZVYwDQYJKoZIhvcNAQELBQADggEBADlMg0y6 Hpo5VfACH/Fb8x6siXrVO5u2b/pR+Sd8075L1zRBNXmtto1p8Ohh8XgGp6YimHym xOXlAI4aY6IylSKlLKAymJyAqrHWFCaLkaYhNCBNSskbnk4rGLybMSweOgFkP8UI uDit4dJTFji8gKLMWPRzXrGeQOwuoVFUI2cWlq1aEJ3PgtYhR4rAG4IVw8OxAUzp iQxKc5IJpmA/D4Ml8UKnUexYDe7p/5LTdnce/aiwMvgVrCAF56cpTsz2CpE0aHR1 BuVeiilQFxNXEtLIRXLPaJ87+DzqHEiiwRwbsZoVes1zkpNvMmpc0PTCYzVp6g3H kR4eF6Oednkk86I= -----END CERTIFICATE-----Generated at Fri May 17 03:16:58 2024 by rpki-client on console-fra.rpki-client.org