$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/60377A8C695311EEB599BD23C4F9AE02.roa File: 60377A8C695311EEB599BD23C4F9AE02.roa (raw, json) Hash identifier: rNowfx2EhJf4hg/ESYIlYmZHv4ibD1NacFWQmrG90/0= Subject key identifier: 78:15:50:2F:1C:C9:98:B3:46:B6:9F:5B:2F:83:98:B1:99:2B:32:2A Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 6F Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/60377A8C695311EEB599BD23C4F9AE02.roa Signing time: Thu 12 Oct 2023 23:02:11 +0000 ROA not before: Thu 12 Oct 2023 23:02:11 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55850 IP address blocks: 103.96.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Oct 12 23:02:11 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65287af3-b2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:31:9d:ee:06:f0:89:1f:79:0e:97:5d:b6: f9:4b:1b:9a:8f:6d:f3:08:75:a8:74:b5:04:30:c8: 21:d7:b0:f0:5c:84:01:4f:dd:1d:c6:be:73:8f:f3: 19:c7:e0:ae:4d:c5:b3:ae:da:8a:13:06:53:09:1d: d1:98:36:0b:ad:a8:17:1e:a2:95:ac:32:80:03:b2: 58:83:8e:48:3b:d2:28:a5:0b:51:07:8c:76:c3:b9: 3c:ca:bb:09:17:ec:6e:ac:9b:23:d7:fc:f3:86:38: 6e:e2:22:1e:12:06:66:d8:e4:87:f4:ef:7d:60:be: 07:bf:0f:c2:f1:c1:8b:88:19:a1:90:dc:6f:c7:67: 06:44:ab:11:2c:cd:0b:aa:a5:5f:5c:af:5a:4d:c0: 1f:ea:49:34:8c:c6:94:f0:17:25:52:28:26:7a:ac: 1b:e1:1b:74:57:a1:3f:51:06:b8:af:0c:71:b6:94: 46:c2:00:e7:b5:a5:de:cd:fc:95:4b:6f:04:f0:90: 3b:63:11:15:cb:24:6c:1f:d5:0d:ac:96:2c:6a:27: 83:61:ff:d1:82:c2:92:a9:88:22:77:12:42:08:18: 76:80:cc:a1:9a:7e:11:2e:98:86:89:89:a7:01:0c: 49:39:b2:55:dd:1e:f2:f9:9c:26:d3:25:dc:83:1e: 4b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:15:50:2F:1C:C9:98:B3:46:B6:9F:5B:2F:83:98:B1:99:2B:32:2A X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/60377A8C695311EEB599BD23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.84.0/24 Signature Algorithm: sha256WithRSAEncryption 17:4a:50:85:20:14:0f:c8:43:21:ca:7e:f5:89:a1:80:a8:f0: 85:bc:b5:fd:7a:18:f5:da:02:97:dc:11:f5:6d:a8:31:b4:e1: e8:db:86:af:8f:79:32:d8:b7:a6:64:27:35:82:42:a0:79:4a: 68:a4:55:f1:02:bd:9e:ee:b4:93:96:68:0f:8e:2f:2a:c5:e5: 50:a7:45:9f:2f:2d:b6:74:a2:46:07:df:33:c8:97:73:58:1d: 54:e7:9f:b9:86:f4:e9:47:d6:0c:ae:ce:45:df:44:e8:92:c7: f5:55:93:e4:88:8e:b5:74:13:a9:9c:6f:9d:b7:8e:40:2d:72: d6:58:2d:24:74:2f:10:64:98:bb:42:97:51:4c:8e:b1:4f:5d: cf:09:d5:58:0b:e0:d4:c3:40:12:9e:07:6c:05:9b:d0:8c:61: 2d:c8:1c:53:d1:ed:38:3d:02:b5:17:d5:43:f5:1e:c6:c1:f2: dd:c6:95:62:29:3c:9b:df:c7:fb:06:7f:1b:82:e6:79:11:77: 88:6c:b4:37:d9:c0:3a:23:f7:e4:cb:f6:49:3d:78:74:8f:d7: d8:4b:74:3f:4c:96:da:91:08:2d:e4:23:f8:c9:09:55:e5:a0: 8a:cd:58:0f:7a:28:85:99:0d:36:54:54:1e:ec:c4:45:cd:45: 5f:8b:f5:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0MxRDExMC8GA1UEBRMoRkIwMTk3RDgwMkE2NjE4NkU4NDBCRDYyRTg4RUU0MEVE OTVFOTUyOTAeFw0yMzEwMTIyMzAyMTFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Mjg3YWYzLWIyZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOMjGd7gbwiR95DpddtvlLG5qPbfMIdah0tQQwyCHXsPBchAFP3R3GvnOP8xnH 4K5NxbOu2ooTBlMJHdGYNgutqBceopWsMoADsliDjkg70iilC1EHjHbDuTzKuwkX 7G6smyPX/POGOG7iIh4SBmbY5If0731gvge/D8LxwYuIGaGQ3G/HZwZEqxEszQuq pV9cr1pNwB/qSTSMxpTwFyVSKCZ6rBvhG3RXoT9RBrivDHG2lEbCAOe1pd7N/JVL bwTwkDtjERXLJGwf1Q2slixqJ4Nh/9GCwpKpiCJ3EkIIGHaAzKGafhEumIaJiacB DEk5slXdHvL5nCbTJdyDHktNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUeBVQLxzJ mLNGtp9bL4OYsZkrMiowHwYDVR0jBBgwFoAU+wGX2AKmYYboQL1i6I7kDtlelSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzFELzhDRkUxRDlBRDFF MjExRUQ5MjNDNjExRkM0RjlBRTAyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXdHWDJBS21ZWWJvUUwxaTZJN2tEdGxlbFNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0MxRC84Q0ZFMUQ5QUQxRTIxMUVEOTIzQzYxMUZDNEY5QUUwMi82MDM3N0E4QzY5 NTMxMUVFQjU5OUJEMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdgVDANBgkqhkiG9w0BAQsFAAOCAQEAF0pQhSAUD8hDIcp+ 9YmhgKjwhby1/XoY9doCl9wR9W2oMbTh6NuGr495Mti3pmQnNYJCoHlKaKRV8QK9 nu60k5ZoD44vKsXlUKdFny8ttnSiRgffM8iXc1gdVOefuYb06UfWDK7ORd9E6JLH 9VWT5IiOtXQTqZxvnbeOQC1y1lgtJHQvEGSYu0KXUUyOsU9dzwnVWAvg1MNAEp4H bAWb0IxhLcgcU9HtOD0CtRfVQ/UexsHy3caVYik8m9/H+wZ/G4LmeRF3iGy0N9nA OiP35Mv2ST14dI/X2Et0P0yW2pEILeQj+MkJVeWgis1YD3oohZkNNlRUHuzERc1F X4v1HQ== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org