$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa File: EDDDD55C252E11EEB91A8941C4F9AE02.roa (raw, json) Hash identifier: XdjG4uHL5z6+XBjKDCeJYvoNR322IymaPGaDji///S0= Subject key identifier: 2F:DC:5C:08:D4:1F:FD:A4:2B:17:97:E1:2A:6C:3A:DF:AE:F9:F4:FC Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 29 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa Signing time: Tue 18 Jul 2023 05:49:59 +0000 ROA not before: Tue 18 Jul 2023 05:49:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151333 IP address blocks: 103.199.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Jul 18 05:49:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b62806-db28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dc:d9:7c:5d:a4:fd:6e:6f:ee:50:39:04:83: 99:dc:e8:2c:ad:b8:29:61:f7:6b:6f:28:9a:3d:be: a8:78:0d:e3:f7:09:89:93:28:85:ab:95:03:52:70: d8:ae:16:4c:1a:82:6f:a0:a6:e2:c4:18:66:06:8d: d2:ba:03:0f:d2:1d:08:a6:7c:70:97:07:b5:ea:58: 1f:27:50:99:58:4a:9e:1a:82:d0:27:00:d4:05:bb: 0c:77:b1:6e:23:f4:c9:55:d6:7c:14:e9:64:b7:41: c1:7c:31:2c:10:ca:ff:e8:55:17:8c:a0:6a:a2:16: 8c:88:36:74:94:dd:47:02:e6:00:fa:db:d0:d8:01: 12:e7:cf:1c:7c:e9:6b:f8:0b:17:1b:42:c4:ef:d2: 24:31:4a:12:25:6c:c8:a8:d0:5e:b3:bc:b3:2c:60: a5:fc:af:dc:4c:4f:63:4b:0d:4e:ec:fb:65:23:c0: 4e:cd:47:6b:c1:d1:8a:35:b1:f8:1d:1d:72:21:18: 78:d4:9d:3c:26:df:b2:cb:24:ff:99:c8:47:a3:1b: 6a:3f:37:b2:dc:36:26:a3:32:47:d6:c0:ca:39:9a: 7b:70:d8:b9:fc:25:7e:dc:6e:5c:05:ee:94:72:90: 85:db:a9:6c:99:f9:fc:25:bd:6f:0b:fb:6d:42:6b: 5c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DC:5C:08:D4:1F:FD:A4:2B:17:97:E1:2A:6C:3A:DF:AE:F9:F4:FC X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.141.0/24 Signature Algorithm: sha256WithRSAEncryption b0:dd:84:75:af:5b:51:de:07:a6:2c:1d:23:b3:0f:eb:bf:03: 7b:1a:24:c0:9d:00:ac:78:a3:b6:b1:e7:13:02:b5:13:f9:ce: f1:19:1e:4e:ad:25:3a:f3:2d:ac:a3:59:6b:81:fc:a7:3a:db: 3a:3f:22:c0:e3:df:15:7d:04:44:f3:0e:a4:f0:bf:a5:40:3f: 79:c7:bd:83:61:38:bb:69:a1:99:1b:08:96:3c:f5:44:2a:c6: 6f:f5:cd:5d:72:62:dc:6a:3f:12:b1:14:14:85:7c:ec:d9:ab: 29:68:85:97:07:7b:3c:ce:bc:78:f8:33:e0:01:ac:c1:21:bb: f8:a7:35:71:a2:5c:93:d3:66:ec:8a:70:0d:93:18:15:7e:56: f6:eb:d1:46:14:08:44:47:f1:ab:50:58:85:de:0e:01:2d:4c: 7a:56:00:77:1d:f3:a4:d0:d6:7a:16:ae:2b:b3:52:32:f9:32: 34:62:a8:ae:a0:09:9f:17:ae:bc:7d:5a:9a:cc:a8:e2:ce:df: f0:a9:bf:c5:99:68:45:48:e3:bf:1b:63:1d:49:bf:0f:dd:e4: e3:ab:70:74:75:b5:76:8f:9c:f0:a2:5a:3f:ba:cf:19:51:fb: 41:3d:9f:a0:7f:42:4d:a6:5a:8b:a5:a1:c9:ee:d2:4d:d2:32: bb:7f:ad:56 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUUyNDExMC8GA1UEBRMoMjQyMjNEMEM3RDEwMURCN0FEN0UzQ0I4RERCMTcwNjI5 MzY1Q0FFRTAeFw0yMzA3MTgwNTQ5NTlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YjYyODA2LWRiMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg3Nl8XaT9bm/uUDkEg5nc6CytuClh92tvKJo9vqh4DeP3CYmTKIWrlQNScNiu Fkwagm+gpuLEGGYGjdK6Aw/SHQimfHCXB7XqWB8nUJlYSp4agtAnANQFuwx3sW4j 9MlV1nwU6WS3QcF8MSwQyv/oVReMoGqiFoyINnSU3UcC5gD629DYARLnzxx86Wv4 CxcbQsTv0iQxShIlbMio0F6zvLMsYKX8r9xMT2NLDU7s+2UjwE7NR2vB0Yo1sfgd HXIhGHjUnTwm37LLJP+ZyEejG2o/N7LcNiajMkfWwMo5mntw2Ln8JX7cblwF7pRy kIXbqWyZ+fwlvW8L+21Ca1xjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUL9xcCNQf /aQrF5fhKmw636759PwwHwYDVR0jBBgwFoAUJCI9DH0QHbetfjy43bFwYpNlyu4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBRTI0L0YyRjY3NUZFRjNG RjExRUQ5NTJENzQxQ0M0RjlBRTAyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNJOURIMFFIYmV0Zmp5NDNiRndZcE5seXU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUUyNC9GMkY2NzVGRUYzRkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9FRERERDU1QzI1 MkUxMUVFQjkxQTg5NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfHjTANBgkqhkiG9w0BAQsFAAOCAQEAsN2Eda9bUd4Hpiwd I7MP678DexokwJ0ArHijtrHnEwK1E/nO8RkeTq0lOvMtrKNZa4H8pzrbOj8iwOPf FX0ERPMOpPC/pUA/ece9g2E4u2mhmRsIljz1RCrGb/XNXXJi3Go/ErEUFIV87Nmr KWiFlwd7PM68ePgz4AGswSG7+Kc1caJck9Nm7IpwDZMYFX5W9uvRRhQIREfxq1BY hd4OAS1MelYAdx3zpNDWehauK7NSMvkyNGKorqAJnxeuvH1amsyo4s7f8Km/xZlo RUjjvxtjHUm/D93k46twdHW1do+c8KJaP7rPGVH7QT2foH9CTaZai6Whye7STdIy u3+tVg== -----END CERTIFICATE-----Generated at Tue May 7 07:01:19 2024 by rpki-client on console-fra.rpki-client.org