$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: P+yqljjpe1fvx7lvKYfPctOMPdEH2QLndIYK3rf1zVo= Subject key identifier: 94:F4:E6:64:48:5C:7D:45:D0:98:92:46:82:EA:99:FE:63:04:95:B4 Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 0127 Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Wed 27 Mar 2024 05:07:19 +0000 ROA not before: Wed 27 Mar 2024 05:07:19 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 05:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Mar 27 05:07:19 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6603a987-7fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:aa:47:0c:30:f9:ac:5b:09:2a:6e:0f:b5:40: 3c:5a:64:19:a7:61:c9:24:b1:9c:2e:db:3b:59:ef: df:41:ba:98:13:c2:4c:88:d3:77:0f:26:e8:a1:f0: ba:10:dd:a0:f6:1a:22:1f:fd:7e:00:2b:87:32:e8: fc:64:b9:50:8c:57:01:95:ac:71:9a:c0:0b:ef:de: c4:a6:6c:86:c7:4d:7e:45:a8:b8:d3:99:48:2e:ed: e5:c8:61:00:84:be:1f:29:fb:9f:fc:8b:79:40:25: cf:fd:26:85:3d:38:44:c8:22:57:7c:e8:4b:b8:20: d2:1d:87:2a:30:74:6c:16:8f:54:25:59:06:74:40: aa:89:7a:96:37:92:d5:80:59:8d:2d:72:6b:23:5a: a9:e7:4e:a2:1c:20:cf:46:9a:61:26:a8:60:cf:b5: fc:05:aa:fb:d9:77:f3:7a:37:56:73:bb:5a:67:f6: 5a:ce:fe:9f:a2:d0:71:50:46:c8:68:5e:09:dd:31: 98:5d:e8:fc:07:08:64:eb:8d:7c:1f:d2:79:10:db: ec:dd:82:c8:60:9a:51:b2:5a:9b:a7:2a:d7:19:24: ce:8d:8c:bc:b6:1c:74:32:0b:f2:ed:90:9b:04:28: 98:47:4f:a2:14:ec:c4:9d:60:d7:23:c9:01:ec:a0: 7a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F4:E6:64:48:5C:7D:45:D0:98:92:46:82:EA:99:FE:63:04:95:B4 X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:fa:2f:eb:5e:75:3a:d7:55:50:f5:77:08:c6:b1:94:d5:66: 59:c5:0f:a9:fd:d6:90:88:b2:81:15:cc:df:be:ef:25:86:15: 70:b4:6d:d4:d9:d3:c0:9d:b5:75:16:0f:58:ff:09:bf:2c:aa: ef:c4:2c:12:70:ab:80:35:d8:78:aa:94:5e:43:c6:cb:82:1b: 93:cd:88:f4:0d:3e:13:f0:e3:bb:d2:e9:41:a8:93:2d:8d:51: 94:6a:17:7a:0a:07:ff:1c:62:ef:e6:b1:68:99:3a:67:d1:ee: a0:2b:89:9b:92:ff:9d:7b:80:e6:70:81:11:e4:62:90:02:ba: 49:eb:9d:7c:bf:65:4b:15:27:76:03:8b:59:0f:11:e0:50:9a: 9e:1d:35:ce:0a:3d:a6:29:e3:c4:f0:51:a4:00:0b:6d:67:c7: 42:d7:02:da:55:82:c3:83:ac:1a:db:c9:ee:3e:94:1e:aa:4c: 5a:a4:e6:8d:eb:fb:d9:f0:9d:d3:ae:1b:33:66:db:2d:40:59: 14:13:94:34:46:4e:54:ba:97:10:81:32:a6:50:04:49:7f:1f: 7e:15:19:34:d1:6a:f3:d2:3e:a7:6b:00:c8:b8:ad:c2:d3:e4: 71:74:00:30:c9:ff:c1:ae:ce:aa:c0:8f:66:d3:7c:f5:46:17: 64:49:ef:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjQwMzI3MDUwNzE5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzYTk4Ny03ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKpHDDD5rFsJKm4PtUA8WmQZp2HJJLGcLts7We/fQbqYE8JMiNN3DyboofC6 EN2g9hoiH/1+ACuHMuj8ZLlQjFcBlaxxmsAL797EpmyGx01+Rai405lILu3lyGEA hL4fKfuf/It5QCXP/SaFPThEyCJXfOhLuCDSHYcqMHRsFo9UJVkGdECqiXqWN5LV gFmNLXJrI1qp506iHCDPRpphJqhgz7X8Bar72XfzejdWc7taZ/Zazv6fotBxUEbI aF4J3TGYXej8Bwhk6418H9J5ENvs3YLIYJpRslqbpyrXGSTOjYy8thx0Mgvy7ZCb BCiYR0+iFOzEnWDXI8kB7KB6lQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJT05mRI XH1F0JiSRoLqmf5jBJW0MB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGBAwDQYJKoZIhvcNAQELBQADggEBACr6L+tedTrXVVD1 dwjGsZTVZlnFD6n91pCIsoEVzN++7yWGFXC0bdTZ08CdtXUWD1j/Cb8squ/ELBJw q4A12HiqlF5DxsuCG5PNiPQNPhPw47vS6UGoky2NUZRqF3oKB/8cYu/msWiZOmfR 7qAriZuS/517gOZwgRHkYpACuknrnXy/ZUsVJ3YDi1kPEeBQmp4dNc4KPaYp48Tw UaQAC21nx0LXAtpVgsODrBrbye4+lB6qTFqk5o3r+9nwndOuGzNm2y1AWRQTlDRG TlS6lxCBMqZQBEl/H34VGTTRavPSPqdrAMi4rcLT5HF0ADDJ/8GuzqrAj2bTfPVG F2RJ79M= -----END CERTIFICATE-----Generated at Wed May 29 06:01:34 2024 by rpki-client on console-fra.rpki-client.org