$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/14B2A85C3DA611EAAD093F5EC4F9AE02.roa File: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (raw, json) Hash identifier: +Ss8JuJ8i/ZlqkFUJbp2u+rFHfJ1QOq9ahocv6L4dbI= Subject key identifier: 5B:D0:18:63:C8:19:99:3F:9A:B4:4D:22:8A:5F:A2:C7:11:27:3A:7A Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 09B7 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/14B2A85C3DA611EAAD093F5EC4F9AE02.roa Signing time: Tue 30 May 2023 21:38:11 +0000 ROA not before: Tue 30 May 2023 21:38:11 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135038 IP address blocks: 103.92.84.0/23 maxlen: 23 103.92.84.0/24 maxlen: 24 103.92.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 20:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: May 30 21:38:11 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64766cc3-55fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:25:9f:0c:2d:6e:2b:97:fd:32:52:12:60: c9:7b:db:a1:86:f0:13:ba:5d:4e:ac:02:ff:b9:62: fc:12:fd:9e:17:a6:c7:6f:4f:cf:0a:10:0a:4b:08: a1:16:28:fc:50:d7:96:96:42:98:39:5a:f1:e1:62: 1b:ba:23:63:a4:8c:5a:16:6a:c4:eb:c4:52:1a:9e: 44:41:8a:83:a0:58:97:87:81:0c:50:60:45:47:78: c4:dd:60:5e:61:28:35:7a:fd:8d:c4:31:b5:3c:87: 57:72:cc:21:56:90:79:4f:d4:a8:e1:37:e7:8a:71: 56:c9:10:04:91:75:28:e1:96:16:8e:aa:59:43:d3: 50:92:49:72:38:34:b1:f8:8f:22:52:15:63:c7:51: 95:96:3d:98:dd:45:57:bd:f9:4e:da:7f:46:c8:4d: 3e:cb:eb:c3:bb:d2:7e:ee:08:7a:c3:ff:7a:2c:e5: 30:da:d8:45:36:ad:ed:05:d7:2d:7d:e0:c9:92:b2: e5:ad:4c:46:08:8d:6f:55:28:d0:13:90:f4:b5:ca: fa:eb:ef:d5:bb:56:5f:5a:f4:43:1d:4f:f3:15:38: 82:be:14:36:fa:bd:0e:9b:9a:d0:c9:63:c6:ff:a5: 2d:31:c3:47:cf:04:18:bb:5b:95:56:ee:71:82:8e: e4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D0:18:63:C8:19:99:3F:9A:B4:4D:22:8A:5F:A2:C7:11:27:3A:7A X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/14B2A85C3DA611EAAD093F5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.84.0/23 Signature Algorithm: sha256WithRSAEncryption a1:96:8d:a1:d7:21:12:5c:ab:d8:89:d4:80:1c:c4:fa:4c:c7: 17:ac:d3:1b:25:0c:85:f0:20:cf:2d:37:60:81:b2:56:aa:17: f1:1c:9c:a9:73:38:03:a0:e0:6e:e1:8c:cc:aa:9c:7a:7e:8e: c7:19:7f:8b:2a:af:e5:20:8e:d3:b8:f5:eb:10:30:c9:30:8c: 80:be:24:fd:80:b2:93:a1:b7:02:31:71:4b:a9:f0:c3:97:0b: 7d:ef:f1:f1:eb:66:af:90:10:ba:55:9e:a1:1b:98:a1:31:a2: f7:9a:74:39:ac:53:c1:de:a0:4d:63:62:b9:be:d1:5a:fd:77: 78:c4:b6:a1:ca:ef:6b:24:c3:bb:e6:ae:60:ee:ac:37:39:c8: 6b:40:45:a2:6d:87:70:ad:b1:8a:d3:7e:bd:c8:2b:aa:ed:69: 56:9e:c9:c5:99:44:19:f3:b9:3f:cf:94:ed:33:52:1a:e2:f1: 83:95:d6:89:3b:bd:60:42:c7:f1:72:0b:b9:5a:6b:ba:c7:c3: c4:bf:51:df:6d:5c:00:55:e4:6a:6c:ad:9a:66:11:a8:8a:e2: c3:6f:61:4d:61:f5:55:3f:83:5f:bb:b3:59:cd:8e:71:13:29: 76:d8:5a:21:fa:db:b2:c8:e3:ea:74:2d:9a:70:ec:2a:5a:af: f5:08:5b:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjMwNTMwMjEzODExWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2NmNjMy01NWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaAlnwwtbiuX/TJSEmDJe9uhhvATul1OrAL/uWL8Ev2eF6bHb0/PChAKSwih Fij8UNeWlkKYOVrx4WIbuiNjpIxaFmrE68RSGp5EQYqDoFiXh4EMUGBFR3jE3WBe YSg1ev2NxDG1PIdXcswhVpB5T9So4TfninFWyRAEkXUo4ZYWjqpZQ9NQkklyODSx +I8iUhVjx1GVlj2Y3UVXvflO2n9GyE0+y+vDu9J+7gh6w/96LOUw2thFNq3tBdct feDJkrLlrUxGCI1vVSjQE5D0tcr66+/Vu1ZfWvRDHU/zFTiCvhQ2+r0Om5rQyWPG /6UtMcNHzwQYu1uVVu5xgo7kbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFvQGGPI GZk/mrRNIopfoscRJzp6MB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQzNDAvMDQ2ODM5N0EzQzRFMTFFQTk0NzI1QzI4QzRGOUFFMDIvMTRCMkE4NUMz REE2MTFFQUFEMDkzRjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnXFQwDQYJKoZIhvcNAQELBQADggEBAKGWjaHXIRJcq9iJ 1IAcxPpMxxes0xslDIXwIM8tN2CBslaqF/EcnKlzOAOg4G7hjMyqnHp+jscZf4sq r+UgjtO49esQMMkwjIC+JP2AspOhtwIxcUup8MOXC33v8fHrZq+QELpVnqEbmKEx oveadDmsU8HeoE1jYrm+0Vr9d3jEtqHK72skw7vmrmDurDc5yGtARaJth3CtsYrT fr3IK6rtaVaeycWZRBnzuT/PlO0zUhri8YOV1ok7vWBCx/FyC7laa7rHw8S/Ud9t XABV5GpsrZpmEaiK4sNvYU1h9VU/g1+7s1nNjnETKXbYWiH627LI4+p0LZpw7Cpa r/UIWxE= -----END CERTIFICATE-----Generated at Sun May 26 23:05:23 2024 by rpki-client on console-ams.rpki-client.org