$ rpki-client -vvf rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/8577B1EAD1BF11ECA166E56FC4F9AE02.roa File: 8577B1EAD1BF11ECA166E56FC4F9AE02.roa (raw, json) Hash identifier: ikM/tg69JjWY6nettr5wxHjBh1+m3SzyShTdzRB5R+A= Subject key identifier: 68:95:D5:FF:24:1E:FE:B7:46:B6:2E:E4:72:E7:55:4B:68:F1:C8:DA Certificate issuer: /CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Certificate serial: 0B3F Authority key identifier: 8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/8577B1EAD1BF11ECA166E56FC4F9AE02.roa Signing time: Tue 14 Nov 2023 19:47:19 +0000 ROA not before: Tue 14 Nov 2023 19:47:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 38336 IP address blocks: 103.130.112.0/24 maxlen: 24 103.130.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Validity Not Before: Nov 14 19:47:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6553cec7-900e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f8:78:a1:e5:b9:1d:6c:48:3e:79:b0:8d:67: 96:c8:e0:be:88:81:dc:08:ff:60:81:17:7f:6b:0a: 33:60:fc:d4:f4:86:2b:d4:8b:1a:12:d0:a1:8c:65: b7:71:58:f0:26:13:8f:ae:6c:05:50:9d:10:75:a2: d6:e4:b2:59:cd:60:79:9a:2e:bb:24:5a:d9:45:2a: 18:2f:e4:cd:de:2c:f4:fe:07:82:57:e1:4d:5c:ff: df:f1:0f:4d:17:b9:b2:b9:34:28:2b:dc:9a:b7:dd: 1e:b7:0f:c4:43:d5:10:01:e8:57:72:2b:f9:8a:06: 5a:02:da:02:28:aa:4c:a7:66:2c:ae:58:bb:a2:c3: 3a:50:d7:6d:19:68:2e:79:3c:aa:08:0b:3b:ee:59: 8f:b9:40:24:d8:fd:43:4c:73:0a:e7:38:f1:32:90: f5:1a:81:21:e9:70:7e:fd:32:ae:82:3a:2f:02:2b: 12:40:d5:6e:63:eb:49:fd:49:30:0f:09:09:11:c5: 2c:8e:1e:2f:03:be:5c:5f:55:17:d9:cc:35:8f:cb: fc:51:a2:0d:f9:33:99:dd:8d:ee:6c:8d:36:ed:24: 1b:09:b5:0f:88:d1:3c:53:28:08:66:8e:c1:a7:94: 70:7b:90:6e:21:90:0b:95:e1:c1:83:bc:91:10:26: db:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:95:D5:FF:24:1E:FE:B7:46:B6:2E:E4:72:E7:55:4B:68:F1:C8:DA X509v3 Authority Key Identifier: keyid:8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/8577B1EAD1BF11ECA166E56FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.112.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:d0:f8:9e:87:1e:4d:ad:cc:ef:9b:26:7a:0d:e9:9a:f7:dc: 3d:4d:a9:82:02:59:31:a6:18:d9:e6:82:7c:6f:2b:74:b4:2a: 9f:3b:39:eb:2c:ed:0f:1a:b0:28:6a:3e:4b:d6:3a:ff:29:ad: 89:21:77:54:82:95:c1:f8:e7:3f:7b:8f:54:20:70:fc:b1:91: c1:5a:b1:2e:49:f0:48:d8:03:9e:69:89:59:a0:86:c6:5b:58: 51:e6:92:d0:cd:bc:41:ed:59:0f:00:24:32:f1:08:99:2c:dc: ae:80:65:03:4f:c5:3d:5b:8d:39:62:c2:39:c1:00:bf:ab:e7: 83:6c:d6:f8:e1:d4:d3:ec:bd:d1:e7:d1:8e:f1:43:f1:56:5c: d3:de:23:52:8f:fa:7a:03:52:03:b4:61:cd:a9:02:33:54:7d: f9:64:d0:9f:08:04:dc:a4:ff:8c:4f:e2:e3:61:03:1f:9d:b8: ec:22:77:c4:ea:fe:b4:e3:65:f1:a7:82:fe:a5:45:df:77:00: fc:67:2a:b5:33:7e:0e:33:b0:d7:5f:c7:33:e1:96:76:46:c1: a0:86:e0:52:76:f0:97:72:d7:23:42:7f:4f:da:f8:e0:97:60: 04:73:6c:5e:2d:99:46:d8:f7:25:d0:82:0c:69:f5:51:03:6f: 1e:db:8c:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyMUUxMTAvBgNVBAUTKDhCRTM4NzQ1NDZFOTBCQTgzMjM3MTc5RUU4OTMyMDEz QjJEOUY4NDAwHhcNMjMxMTE0MTk0NzE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzY2VjNy05MDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/h4oeW5HWxIPnmwjWeWyOC+iIHcCP9ggRd/awozYPzU9IYr1IsaEtChjGW3 cVjwJhOPrmwFUJ0QdaLW5LJZzWB5mi67JFrZRSoYL+TN3iz0/geCV+FNXP/f8Q9N F7myuTQoK9yat90etw/EQ9UQAehXciv5igZaAtoCKKpMp2Ysrli7osM6UNdtGWgu eTyqCAs77lmPuUAk2P1DTHMK5zjxMpD1GoEh6XB+/TKugjovAisSQNVuY+tJ/Ukw DwkJEcUsjh4vA75cX1UX2cw1j8v8UaIN+TOZ3Y3ubI027SQbCbUPiNE8UygIZo7B p5Rwe5BuIZALleHBg7yRECbbbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGiV1f8k Hv63RrYu5HLnVUto8cjaMB8GA1UdIwQYMBaAFIvjh0VG6QuoMjcXnuiTIBOy2fhA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzIxRS82MEMxODE1NDBC ODkxMUVBOEU1QUI3NUZDNEY5QUUwMi9pLU9IUlVicEM2Z3lOeGVlNkpNZ0U3TFot RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktT0hSVWJwQzZneU54ZWU2Sk1nRTdMWi1FQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyMUUvNjBDMTgxNTQwQjg5MTFFQThFNUFCNzVGQzRGOUFFMDIvODU3N0IxRUFE MUJGMTFFQ0ExNjZFNTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFngnAwDQYJKoZIhvcNAQELBQADggEBABrQ+J6HHk2tzO+b JnoN6Zr33D1NqYICWTGmGNnmgnxvK3S0Kp87Oess7Q8asChqPkvWOv8prYkhd1SC lcH45z97j1QgcPyxkcFasS5J8EjYA55piVmghsZbWFHmktDNvEHtWQ8AJDLxCJks 3K6AZQNPxT1bjTliwjnBAL+r54Ns1vjh1NPsvdHn0Y7xQ/FWXNPeI1KP+noDUgO0 Yc2pAjNUfflk0J8IBNyk/4xP4uNhAx+duOwid8Tq/rTjZfGngv6lRd93APxnKrUz fg4zsNdfxzPhlnZGwaCG4FJ28Jdy1yNCf0/a+OCXYARzbF4tmUbY9yXQggxp9VED bx7bjMQ= -----END CERTIFICATE-----Generated at Thu May 30 21:49:27 2024 by rpki-client on console-ams.rpki-client.org