$ rpki-client -vvf rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/9F393A5801D611EDA3BFA62EC4F9AE02.roa File: 9F393A5801D611EDA3BFA62EC4F9AE02.roa (raw, json) Hash identifier: OrBeQ7nQdK2tiYksQ5hHLLr4gJzqWAkLwYiHXPFHMac= Subject key identifier: 97:C4:70:10:4D:BD:41:6C:01:00:A1:67:E7:21:64:C7:4F:3B:61:CF Certificate issuer: /CN=A911D8BA/serialNumber=7318DA73A0AB3DD090E6B73FC4DF0D7510185CF1 Certificate serial: 011B Authority key identifier: 73:18:DA:73:A0:AB:3D:D0:90:E6:B7:3F:C4:DF:0D:75:10:18:5C:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxjac6CrPdCQ5rc_xN8NdRAYXPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/9F393A5801D611EDA3BFA62EC4F9AE02.roa Signing time: Sat 13 May 2023 06:25:13 +0000 ROA not before: Sat 13 May 2023 06:25:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 59216 IP address blocks: 103.227.236.0/24 maxlen: 24 103.227.237.0/24 maxlen: 24 103.227.238.0/24 maxlen: 24 2001:df3:f800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/cxjac6CrPdCQ5rc_xN8NdRAYXPE.crl rsync://rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/cxjac6CrPdCQ5rc_xN8NdRAYXPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxjac6CrPdCQ5rc_xN8NdRAYXPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D8BA/serialNumber=7318DA73A0AB3DD090E6B73FC4DF0D7510185CF1 Validity Not Before: May 13 06:25:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645f2d49-1fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8e:09:a7:80:9d:c5:af:9a:84:a1:be:bf:7b: 3a:e8:e1:12:28:97:e8:8e:42:24:8d:08:30:4e:00: fd:ed:2d:d3:1d:06:a3:37:db:62:7c:58:bc:95:8b: cc:c7:1e:81:f9:ff:22:ee:42:05:84:73:cc:e5:e6: 7d:47:66:11:81:fa:46:92:f7:9d:29:82:21:8f:af: 8e:32:d7:89:6c:a9:59:06:7f:d6:69:3d:f3:e8:70: 4b:d1:45:98:8c:4e:7a:01:e0:04:4d:bc:f8:22:1f: 58:24:c3:a8:a3:15:64:a0:d0:fd:49:cf:fa:39:5c: 76:8c:d8:35:2c:34:8d:1b:97:7c:38:fb:24:98:93: 2e:31:93:8a:b9:f0:69:3f:2e:73:93:69:56:77:3d: 48:50:dd:3c:95:8d:e4:d6:81:2c:25:7a:3e:dc:5e: 4f:41:95:1b:3d:fd:56:8c:83:25:fb:fa:ab:a0:43: e7:6d:8a:b3:83:82:60:dd:43:b4:89:0a:a6:f1:7a: 35:0a:56:05:cd:f0:a7:e0:41:e7:3d:ef:2d:20:ab: 51:ed:6c:e0:5a:8e:ca:f4:8e:27:99:6a:ee:11:0c: 9c:38:b7:05:fa:d7:d3:d0:57:f6:b9:ab:46:7f:31: af:f8:00:e3:45:4c:e1:04:c7:db:7a:f1:00:2c:e8: 5d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C4:70:10:4D:BD:41:6C:01:00:A1:67:E7:21:64:C7:4F:3B:61:CF X509v3 Authority Key Identifier: keyid:73:18:DA:73:A0:AB:3D:D0:90:E6:B7:3F:C4:DF:0D:75:10:18:5C:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/cxjac6CrPdCQ5rc_xN8NdRAYXPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxjac6CrPdCQ5rc_xN8NdRAYXPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D8BA/48B40A8401D411EDA92EAA2DC4F9AE02/9F393A5801D611EDA3BFA62EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.236.0-103.227.238.255 IPv6: 2001:df3:f800::/48 Signature Algorithm: sha256WithRSAEncryption 17:7a:3e:62:2d:f7:40:f3:87:b8:16:bc:54:6b:d3:10:cb:3a: 20:78:55:15:97:c8:68:bd:5d:71:99:e0:f6:18:95:90:01:90: 51:0c:66:12:28:8b:e3:be:d0:fd:4b:b6:61:b3:b1:1e:bb:08: 16:68:0f:00:f7:45:01:45:94:c2:06:18:cb:ca:9a:bc:ac:68: 83:a4:77:34:dd:be:09:09:db:12:50:a6:6e:38:af:e2:d1:5d: c4:70:8d:3c:03:9b:47:c0:24:c5:aa:ec:e0:99:15:ec:02:27: b7:93:c7:2a:a9:7c:02:2b:09:4d:36:67:28:9e:37:ad:ce:d7: 87:f5:a9:ae:b2:1c:32:46:f9:74:e5:0c:d6:3d:25:a7:00:d9: bb:fe:19:3b:6f:5a:71:e5:8e:04:56:a0:37:8a:5a:04:10:e6: 91:28:fc:76:ff:c6:ef:ae:b1:d1:e3:c0:bf:05:95:62:66:8a: 26:e8:e7:45:82:ee:e9:a6:4f:53:48:70:80:98:f2:7e:0e:65: c5:c6:76:e5:c7:b6:ac:0b:da:c4:99:ea:2e:5c:d8:77:22:f6: 6d:07:70:44:97:e0:e3:e3:5b:31:1e:5e:8b:21:b3:85:35:e2: ec:22:6b:2e:41:e7:89:a9:3f:99:ed:a0:5b:46:f7:af:05:62: 86:5e:06:64 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4QkExMTAvBgNVBAUTKDczMThEQTczQTBBQjNERDA5MEU2QjczRkM0REYwRDc1 MTAxODVDRjEwHhcNMjMwNTEzMDYyNTEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVmMmQ0OS0xZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo4Jp4Cdxa+ahKG+v3s66OESKJfojkIkjQgwTgD97S3THQajN9tifFi8lYvM xx6B+f8i7kIFhHPM5eZ9R2YRgfpGkvedKYIhj6+OMteJbKlZBn/WaT3z6HBL0UWY jE56AeAETbz4Ih9YJMOooxVkoND9Sc/6OVx2jNg1LDSNG5d8OPskmJMuMZOKufBp Py5zk2lWdz1IUN08lY3k1oEsJXo+3F5PQZUbPf1WjIMl+/qroEPnbYqzg4Jg3UO0 iQqm8Xo1ClYFzfCn4EHnPe8tIKtR7WzgWo7K9I4nmWruEQycOLcF+tfT0Ff2uatG fzGv+ADjRUzhBMfbevEALOhdOwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFJfEcBBN vUFsAQChZ+chZMdPO2HPMB8GA1UdIwQYMBaAFHMY2nOgqz3QkOa3P8TfDXUQGFzx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDhCQS80OEI0MEE4NDAx RDQxMUVEQTkyRUFBMkRDNEY5QUUwMi9jeGphYzZDclBkQ1E1cmNfeE44TmRSQVlY UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4amFjNkNyUGRDUTVyY194TjhOZFJBWVhQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ4QkEvNDhCNDBBODQwMUQ0MTFFREE5MkVBQTJEQzRGOUFFMDIvOUYzOTNBNTgw MUQ2MTFFREEzQkZBNjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAmfj7AMEAGfj7jAPBAIAAjAJAwcAIAEN8/gAMA0GCSqG SIb3DQEBCwUAA4IBAQAXej5iLfdA84e4FrxUa9MQyzogeFUVl8hovV1xmeD2GJWQ AZBRDGYSKIvjvtD9S7Zhs7EeuwgWaA8A90UBRZTCBhjLypq8rGiDpHc03b4JCdsS UKZuOK/i0V3EcI08A5tHwCTFquzgmRXsAie3k8cqqXwCKwlNNmconjetzteH9amu shwyRvl05QzWPSWnANm7/hk7b1px5Y4EVqA3iloEEOaRKPx2/8bvrrHR48C/BZVi Zoom6OdFgu7ppk9TSHCAmPJ+DmXFxnblx7asC9rEmeouXNh3IvZtB3BEl+Dj41sx Hl6LIbOFNeLsImsuQeeJqT+Z7aBbRvevBWKGXgZk -----END CERTIFICATE-----Generated at Wed May 15 05:28:53 2024 by rpki-client on console-ams.rpki-client.org