$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa File: 3E51F73E0C5111EAAF46A23FC4F9AE02.roa (raw, json) Hash identifier: ANLmMk6O9eHYmoUSmiPr17fgz6KI2ZhhF4RXqYVEKY4= Subject key identifier: B0:6B:37:B9:8A:AC:31:F0:4A:9C:EF:2B:EB:5B:42:7B:C0:86:03:2F Certificate issuer: /CN=A911FABE/serialNumber=A74605CB9D5071CA1729D9087834407F14EA8570 Certificate serial: 0B2B Authority key identifier: A7:46:05:CB:9D:50:71:CA:17:29:D9:08:78:34:40:7F:14:EA:85:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa Signing time: Sat 27 Jan 2024 05:35:01 +0000 ROA not before: Sat 27 Jan 2024 05:35:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137815 IP address blocks: 103.114.168.0/22 maxlen: 22 103.114.168.0/23 maxlen: 23 103.114.168.0/24 maxlen: 24 103.114.169.0/24 maxlen: 24 103.114.170.0/23 maxlen: 23 103.114.170.0/24 maxlen: 24 103.114.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.crl rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABE/serialNumber=A74605CB9D5071CA1729D9087834407F14EA8570 Validity Not Before: Jan 27 05:35:01 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65b49604-a1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e2:82:78:0a:3f:6f:c3:27:37:15:51:b8:c6: 6f:fa:4f:fa:4e:78:fc:7a:48:ce:77:30:8b:e2:4a: 20:c8:a1:8b:26:be:42:7a:fb:c4:d2:4e:4a:70:c8: 3f:10:96:9a:5d:68:86:7d:d4:ad:1a:4d:15:86:89: c2:bf:be:06:b8:93:2d:6f:cb:df:f5:74:a5:52:8c: 8b:ce:bf:40:81:3e:00:f0:6f:1d:45:4a:8d:46:5e: ae:ca:65:83:ee:c1:00:0f:4e:7b:52:cd:7f:ed:e6: c5:48:12:86:9f:6a:be:fb:a0:3d:47:65:56:0a:80: 8c:b6:7d:cd:77:c6:2d:ae:7d:23:35:b2:0c:98:85: d5:15:0f:38:ac:2d:07:e9:f6:db:01:5a:8b:75:5e: 2f:c0:7e:ab:a3:54:61:d6:64:e7:e8:fb:29:0d:cc: ca:75:d6:bd:20:08:af:83:b8:16:81:3c:da:e1:ab: ad:22:74:bc:32:14:de:c9:2f:c5:bf:92:d1:4c:ab: 96:3a:5d:09:9d:4f:7d:86:8c:f7:81:3c:80:c9:6f: de:4d:21:a2:45:af:ae:3f:5d:79:f5:96:eb:08:b2: c9:ad:9e:de:d3:aa:d3:35:a0:c3:b3:a0:ef:cd:38: 94:da:7b:6e:a5:f1:2e:e9:44:44:4a:91:b7:ff:8f: 5f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6B:37:B9:8A:AC:31:F0:4A:9C:EF:2B:EB:5B:42:7B:C0:86:03:2F X509v3 Authority Key Identifier: keyid:A7:46:05:CB:9D:50:71:CA:17:29:D9:08:78:34:40:7F:14:EA:85:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.168.0/22 Signature Algorithm: sha256WithRSAEncryption 03:41:e2:e5:bc:1f:8a:25:20:32:36:23:4a:7c:1e:eb:7e:59: 25:0b:13:99:c6:5b:89:1c:5e:6d:2e:91:64:56:0c:11:fa:41: 5e:c2:50:a3:8a:25:6e:51:8d:53:4d:75:cd:25:5f:3f:76:ea: 3f:34:b6:a7:02:84:35:96:8d:ec:57:41:d8:3a:b2:15:34:8a: eb:f5:40:42:81:c6:c9:d3:8a:5c:4b:64:20:45:63:b7:69:74: b6:f6:3a:23:bc:d5:8f:a6:0a:5e:e8:40:d7:92:e0:72:b0:e3: 50:3c:09:71:13:46:72:be:de:e6:e0:43:1b:71:41:79:e9:73: 93:73:cf:4c:8a:57:d3:8a:4c:66:99:d3:04:81:cb:ef:48:f6: d8:6a:9d:1d:f3:51:f4:b6:27:68:f2:a3:40:59:78:47:b7:2d: 15:b6:c7:3d:e8:f5:35:60:dc:83:20:62:e3:11:7e:4a:8c:d3: 60:93:2f:54:d0:24:e6:7e:aa:d9:2b:21:b5:7d:20:17:6d:89: d7:33:d2:f3:27:82:11:97:a2:bf:f1:cb:9b:a5:db:28:72:39: e4:88:36:3f:d0:e4:6c:92:84:00:78:90:88:9a:2a:7d:b6:4c: 94:76:e5:65:22:7e:93:43:81:9b:8e:8e:f7:43:a0:c7:f9:91: 50:51:ff:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkUxMTAvBgNVBAUTKEE3NDYwNUNCOUQ1MDcxQ0ExNzI5RDkwODc4MzQ0MDdG MTRFQTg1NzAwHhcNMjQwMTI3MDUzNTAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0OTYwNC1hMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteKCeAo/b8MnNxVRuMZv+k/6Tnj8ekjOdzCL4kogyKGLJr5CevvE0k5KcMg/ EJaaXWiGfdStGk0VhonCv74GuJMtb8vf9XSlUoyLzr9AgT4A8G8dRUqNRl6uymWD 7sEAD057Us1/7ebFSBKGn2q++6A9R2VWCoCMtn3Nd8Ytrn0jNbIMmIXVFQ84rC0H 6fbbAVqLdV4vwH6ro1Rh1mTn6PspDczKdda9IAivg7gWgTza4autInS8MhTeyS/F v5LRTKuWOl0JnU99hoz3gTyAyW/eTSGiRa+uP1159ZbrCLLJrZ7e06rTNaDDs6Dv zTiU2ntupfEu6URESpG3/49fbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBrN7mK rDHwSpzvK+tbQnvAhgMvMB8GA1UdIwQYMBaAFKdGBcudUHHKFynZCHg0QH8U6oVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCRS9BM0Y1MDlGMjBD NEYxMUVBQThDNkIxM0NDNEY5QUUwMi9wMFlGeTUxUWNjb1hLZGtJZURSQWZ4VHFo WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AwWUZ5NTFRY2NvWEtka0llRFJBZnhUcWhYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZBQkUvQTNGNTA5RjIwQzRGMTFFQUE4QzZCMTNDQzRGOUFFMDIvM0U1MUY3M0Uw QzUxMTFFQUFGNDZBMjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncqgwDQYJKoZIhvcNAQELBQADggEBAANB4uW8H4olIDI2 I0p8Hut+WSULE5nGW4kcXm0ukWRWDBH6QV7CUKOKJW5RjVNNdc0lXz926j80tqcC hDWWjexXQdg6shU0iuv1QEKBxsnTilxLZCBFY7dpdLb2OiO81Y+mCl7oQNeS4HKw 41A8CXETRnK+3ubgQxtxQXnpc5Nzz0yKV9OKTGaZ0wSBy+9I9thqnR3zUfS2J2jy o0BZeEe3LRW2xz3o9TVg3IMgYuMRfkqM02CTL1TQJOZ+qtkrIbV9IBdtidcz0vMn ghGXor/xy5ul2yhyOeSINj/Q5GyShAB4kIiaKn22TJR25WUifpNDgZuOjvdDoMf5 kVBR/4M= -----END CERTIFICATE-----Generated at Sat May 18 20:48:17 2024 by rpki-client on console-fra.rpki-client.org