$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/4CBECA5CF9C311EBBA064C70C4F9AE02.roa File: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (raw, json) Hash identifier: NW9Dnogo6fzVe8/NSDdkiJhVqi35HTsWrAj7gpi+A34= Subject key identifier: 45:18:FC:23:F0:30:0B:C3:C1:06:B8:0A:FD:79:48:C1:1D:93:83:09 Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 0423 Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/4CBECA5CF9C311EBBA064C70C4F9AE02.roa Signing time: Wed 13 Dec 2023 13:11:23 +0000 ROA not before: Wed 13 Dec 2023 13:11:23 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142428 IP address blocks: 103.168.68.0/23 maxlen: 24 2001:df6:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Dec 13 13:11:23 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6579ad7b-287d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:77:9b:8e:2f:af:5a:52:28:3f:0d:20:a8:3e: 7e:af:f6:36:53:a4:77:0f:05:aa:20:49:71:a0:5c: a4:f9:66:75:5e:53:ed:41:63:1a:c8:b4:c0:50:e2: 79:af:1c:f7:24:59:be:0a:41:7b:3f:e9:a2:2f:4d: f6:39:f4:6c:85:ce:82:31:01:88:87:0c:8b:78:8d: c2:15:93:0c:b5:60:8f:da:9e:7b:17:a1:36:32:5b: 7e:62:09:5b:b6:04:fd:16:9b:51:83:6b:e6:96:60: ce:6e:fd:e7:cc:c4:5f:d4:db:d2:76:87:9b:f3:e0: 50:b1:76:52:b9:a5:10:16:5f:7d:d7:ef:d0:fa:ff: ee:f6:43:55:52:9d:ce:8e:a6:67:b0:3d:3a:09:05: 73:f0:a2:02:98:2d:63:24:77:74:33:f6:10:af:d9: af:30:c1:3f:d9:6a:9f:0c:e3:62:ce:de:08:c0:f5: 93:13:fe:aa:2b:d0:41:55:76:3b:09:dd:18:46:67: 31:df:f5:b1:3f:a1:11:1b:ea:1a:30:fd:25:a2:2d: 4d:5b:ec:e8:5f:2c:97:b1:6d:e5:b8:fa:16:f8:f2: 7d:ef:8c:3a:39:de:51:92:1e:7f:0e:42:dc:23:90: f9:24:5a:ba:bc:65:5f:fe:89:c7:56:24:75:37:15: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:18:FC:23:F0:30:0B:C3:C1:06:B8:0A:FD:79:48:C1:1D:93:83:09 X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/4CBECA5CF9C311EBBA064C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.68.0/23 IPv6: 2001:df6:d180::/48 Signature Algorithm: sha256WithRSAEncryption 44:1d:8b:71:94:e6:59:29:76:35:fa:b7:4a:70:2e:f3:6d:67: ca:87:05:d9:fa:64:94:a2:c3:c6:4f:2d:90:c1:45:db:3e:30: 74:0d:1e:b8:b3:a7:c2:4d:87:64:70:0f:24:a5:3e:bb:93:39: 52:60:6c:7b:b9:ef:15:fb:50:63:c3:06:15:b4:70:42:11:0f: 99:b4:4a:8b:86:ab:f5:3b:a6:8b:62:92:03:55:0f:84:eb:19: 9d:fb:79:d6:f7:eb:d8:c0:f7:74:e7:24:b8:6b:ce:e9:30:8b: 28:74:da:d9:30:86:c7:85:d3:1c:51:a5:29:ad:84:59:09:8d: 69:1a:fd:f3:f9:2f:be:cc:dd:21:13:30:fc:a9:42:17:7f:b8: fb:80:f2:7e:0e:e2:69:40:49:44:c4:9c:c6:76:ae:db:6e:c4: d2:d1:aa:68:41:f5:e7:2c:e1:d2:2d:d7:f6:da:22:fc:c2:6c: c6:c9:90:0b:01:90:23:c2:63:40:79:50:d2:95:0a:08:99:f2: 24:54:b3:78:82:b1:5e:d5:d6:a8:bc:29:41:22:5f:fe:de:e6: 8b:49:d6:b6:6b:fe:3d:c3:c2:e5:63:70:95:e5:73:85:3a:f6: 40:ad:00:22:2c:19:0f:65:be:b2:0a:27:ba:46:8c:a3:3d:4b: 7d:d5:ae:e2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjMxMjEzMTMxMTIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5YWQ3Yi0yODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXebji+vWlIoPw0gqD5+r/Y2U6R3DwWqIElxoFyk+WZ1XlPtQWMayLTAUOJ5 rxz3JFm+CkF7P+miL032OfRshc6CMQGIhwyLeI3CFZMMtWCP2p57F6E2Mlt+Yglb tgT9FptRg2vmlmDObv3nzMRf1NvSdoeb8+BQsXZSuaUQFl991+/Q+v/u9kNVUp3O jqZnsD06CQVz8KICmC1jJHd0M/YQr9mvMME/2WqfDONizt4IwPWTE/6qK9BBVXY7 Cd0YRmcx3/WxP6ERG+oaMP0loi1NW+zoXyyXsW3luPoW+PJ974w6Od5Rkh5/DkLc I5D5JFq6vGVf/onHViR1NxUC9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEUY/CPw MAvDwQa4Cv15SMEdk4MJMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURDRkIvQUFFQTBEQzBGOUJGMTFFQjgwMjQ1RTZBQzRGOUFFMDIvNENCRUNBNUNG OUMzMTFFQkJBMDY0QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqEQwDwQCAAIwCQMHACABDfbRgDANBgkqhkiG9w0BAQsF AAOCAQEARB2LcZTmWSl2Nfq3SnAu821nyocF2fpklKLDxk8tkMFF2z4wdA0euLOn wk2HZHAPJKU+u5M5UmBse7nvFftQY8MGFbRwQhEPmbRKi4ar9Tumi2KSA1UPhOsZ nft51vfr2MD3dOckuGvO6TCLKHTa2TCGx4XTHFGlKa2EWQmNaRr98/kvvszdIRMw /KlCF3+4+4Dyfg7iaUBJRMScxnau227E0tGqaEH15yzh0i3X9toi/MJsxsmQCwGQ I8JjQHlQ0pUKCJnyJFSzeIKxXtXWqLwpQSJf/t7mi0nWtmv+PcPC5WNwleVzhTr2 QK0AIiwZD2W+sgonukaMoz1LfdWu4g== -----END CERTIFICATE-----Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org