$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9CDF55D87D6A11EEA59E8C3FC4F9AE02.roa File: 9CDF55D87D6A11EEA59E8C3FC4F9AE02.roa (raw, json) Hash identifier: 3i3/+3TviMXVS19weXNE90eVfI3dkG7JZBnmDmIOvV8= Subject key identifier: 5B:81:85:48:38:0C:76:14:30:2A:EA:AF:CB:CA:DA:5D:D3:50:2C:04 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0556 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9CDF55D87D6A11EEA59E8C3FC4F9AE02.roa Signing time: Tue 07 Nov 2023 13:17:50 +0000 ROA not before: Tue 07 Nov 2023 13:17:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 41717 IP address blocks: 103.209.233.0/24 maxlen: 24 103.209.234.0/24 maxlen: 24 163.53.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Nov 7 13:17:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654a38fe-5654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:24:83:bd:1d:54:11:02:bc:81:c3:07:73: 90:f8:72:88:ab:db:09:73:2f:13:bb:87:53:c8:98: 0d:9a:cf:e3:5f:57:75:44:f8:be:c8:9d:5d:e8:91: 79:89:5a:c5:f0:3b:b8:16:8d:b5:a0:6e:cc:de:ea: 08:89:2c:51:df:c4:6d:a6:a6:a4:c4:74:dd:f4:1b: 8e:cd:5c:76:2e:33:1c:be:d6:a6:56:1e:fb:6a:e2: b8:28:b9:a6:66:56:de:f1:6f:5c:62:72:8c:2c:51: 15:a6:c8:76:9e:fd:c7:48:9c:21:58:28:e1:37:70: 1f:90:1e:b9:16:90:7d:3d:bf:a8:5b:1b:92:d1:9d: c5:c5:4f:28:6d:94:ab:ce:3c:83:ab:1e:a9:c4:26: 5b:c6:46:1d:0f:08:73:ab:b6:30:d0:20:05:a0:ed: 46:6c:2e:fa:4e:01:cf:ea:77:fa:e5:38:26:61:c0: 11:02:0c:d4:2c:57:3b:9b:31:4c:64:ae:6e:c3:50: 9f:db:2f:44:c5:69:57:ce:9f:42:9b:dc:9e:2c:a3: d5:48:1c:40:7b:b0:b8:87:58:1e:bf:c3:41:78:8a: e1:0c:16:8c:ae:ff:01:78:cf:ab:ef:34:31:c7:03: c6:db:3b:54:68:7c:21:d7:02:42:25:f0:bd:24:c0: a4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:81:85:48:38:0C:76:14:30:2A:EA:AF:CB:CA:DA:5D:D3:50:2C:04 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9CDF55D87D6A11EEA59E8C3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.233.0-103.209.234.255 163.53.17.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:51:bb:17:56:96:11:d4:69:32:d6:45:70:d8:6b:a6:5d:a5: 73:a8:fe:6d:f0:5e:dc:04:6e:a2:7e:9a:45:af:2e:79:9c:75: d5:02:dd:ee:16:0d:60:8e:15:c0:d1:a5:03:39:10:a2:d2:9d: 42:0a:e8:9d:11:80:ca:62:65:2b:79:d5:c4:dd:15:34:de:61: e1:a5:97:49:96:77:d8:7b:59:43:bb:10:9a:9c:ea:2c:d1:89: 52:73:59:1b:5b:e4:d0:48:43:12:2c:91:a8:23:3e:fb:6e:07: dd:12:93:f7:c7:8e:41:d1:34:00:3b:0a:09:b4:66:e3:e2:f7: 48:f1:b9:f3:5e:87:b9:59:db:c7:8b:e6:41:98:9f:89:d8:f1: c2:97:09:c1:11:b1:57:53:d9:2f:3f:a5:42:d1:28:55:b7:13: 4e:cb:e8:9d:23:e2:22:c6:43:80:23:84:bd:56:c9:5a:bd:43: 51:8d:ee:35:58:8e:d7:84:ba:95:99:4d:09:3e:ff:7d:b1:fb: c8:d4:47:d7:1d:32:9a:4a:2b:fe:74:06:db:71:8a:59:60:89: ed:2b:0c:09:a1:3c:3a:fa:79:0f:fd:94:95:72:41:ae:a5:f1: a3:22:78:44:db:6c:88:d1:de:59:00:b7:f7:27:7c:3a:c7:22: 4d:f6:6d:db -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjMxMTA3MTMxNzUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRhMzhmZS01NjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGMkg70dVBECvIHDB3OQ+HKIq9sJcy8Tu4dTyJgNms/jX1d1RPi+yJ1d6JF5 iVrF8Du4Fo21oG7M3uoIiSxR38RtpqakxHTd9BuOzVx2LjMcvtamVh77auK4KLmm Zlbe8W9cYnKMLFEVpsh2nv3HSJwhWCjhN3AfkB65FpB9Pb+oWxuS0Z3FxU8obZSr zjyDqx6pxCZbxkYdDwhzq7Yw0CAFoO1GbC76TgHP6nf65TgmYcARAgzULFc7mzFM ZK5uw1Cf2y9ExWlXzp9Cm9yeLKPVSBxAe7C4h1gev8NBeIrhDBaMrv8BeM+r7zQx xwPG2ztUaHwh1wJCJfC9JMCkHQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFuBhUg4 DHYUMCrqr8vK2l3TUCwEMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvOUNERjU1RDg3 RDZBMTFFRUE1OUU4QzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfR6QMEAGfR6gMEAKM1ETANBgkqhkiG9w0BAQsFAAOC AQEAW1G7F1aWEdRpMtZFcNhrpl2lc6j+bfBe3ARuon6aRa8ueZx11QLd7hYNYI4V wNGlAzkQotKdQgronRGAymJlK3nVxN0VNN5h4aWXSZZ32HtZQ7sQmpzqLNGJUnNZ G1vk0EhDEiyRqCM++24H3RKT98eOQdE0ADsKCbRm4+L3SPG5816HuVnbx4vmQZif idjxwpcJwRGxV1PZLz+lQtEoVbcTTsvonSPiIsZDgCOEvVbJWr1DUY3uNViO14S6 lZlNCT7/fbH7yNRH1x0ymkor/nQG23GKWWCJ7SsMCaE8Ovp5D/2UlXJBrqXxoyJ4 RNtsiNHeWQC39yd8OsciTfZt2w== -----END CERTIFICATE-----Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org