$ rpki-client -vvf rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/D2A0E6FEE3C811EE900A6909C4F9AE02.roa File: D2A0E6FEE3C811EE900A6909C4F9AE02.roa (raw, json) Hash identifier: g97LC1BCWHycvusZlIYhFR2TmnuGnbENmy2sxwjPlKs= Subject key identifier: 31:50:31:88:BC:80:D3:F1:5C:A3:2C:6A:E8:27:5B:5F:1B:03:DB:44 Certificate issuer: /CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Certificate serial: 2C Authority key identifier: 5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/D2A0E6FEE3C811EE900A6909C4F9AE02.roa Signing time: Sat 16 Mar 2024 19:10:16 +0000 ROA not before: Sat 16 Mar 2024 19:10:16 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58715 IP address blocks: 103.188.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Validity Not Before: Mar 16 19:10:16 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65f5ee98-ac0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b3:b6:57:b0:4b:7a:29:13:1a:2c:5a:64:61: 82:24:c4:35:6d:96:76:05:3e:e5:92:12:c4:62:4d: d1:bf:43:8c:c7:48:84:1a:93:a4:3b:c8:fa:99:f5: 3a:55:78:3f:da:a6:6d:17:1e:6f:85:d4:d9:3c:ed: 89:8c:27:af:af:fd:ca:61:c1:44:1d:70:ba:0b:bf: 9f:f4:c2:5c:0a:85:35:67:c5:32:ef:72:03:de:fa: 3d:9a:70:a8:bd:3d:15:ec:bb:1a:80:6b:43:0d:cb: f0:f8:b2:4a:20:36:90:8d:4e:3a:42:41:09:1d:9d: 28:1f:ea:47:f5:0c:6f:75:77:06:3e:e7:b1:5d:46: ca:95:c0:d3:bc:23:24:a8:e5:35:e3:e5:29:0b:86: 1a:ba:f1:78:8c:18:8a:59:bf:6e:e1:56:65:a5:35: ed:61:3f:b2:10:53:8a:02:ee:f8:1f:13:8e:f8:63: 13:87:69:3c:c8:5f:96:4e:e1:a7:8a:21:da:ba:1b: fb:90:b2:6c:96:3a:0d:cb:cc:c6:1f:87:55:07:f2: 53:28:b4:56:e0:d0:2d:f5:43:50:f6:b1:ba:6c:d3: 3c:8b:e3:dd:e5:3f:22:34:85:da:10:00:07:54:70: 8a:3f:0e:ef:99:b6:40:7f:3a:5f:90:6c:1a:5e:29: b2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:50:31:88:BC:80:D3:F1:5C:A3:2C:6A:E8:27:5B:5F:1B:03:DB:44 X509v3 Authority Key Identifier: keyid:5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/D2A0E6FEE3C811EE900A6909C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.137.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:90:04:4c:30:9c:4c:02:d9:ff:ef:3b:d3:b8:c0:29:b5:be: d3:76:bf:6c:c3:8c:99:15:7f:8e:18:66:50:75:b1:4b:9f:f7: 49:ad:17:2f:96:8b:72:69:43:2c:4c:a5:a4:64:b9:4e:77:89: 80:9c:b5:e9:40:00:b1:50:13:77:43:d5:7c:09:3b:97:5d:d3: 3a:bb:fb:b3:22:a0:57:96:66:c4:68:b9:17:1b:b7:d7:87:47: 3e:ee:34:cc:40:cc:58:bd:e4:6f:6c:3c:ad:a5:47:f4:98:ab: a1:12:1b:fd:5b:06:d2:22:b4:25:3b:e6:e6:5c:70:41:30:f0: a5:c7:1d:ae:15:f5:9a:35:64:a1:67:8c:5a:fa:8e:a0:d5:cd: 6c:b8:43:84:2f:d3:03:dc:ac:01:23:ee:87:a5:3d:b4:f9:ea: 94:31:4c:b0:b7:3c:b5:6d:65:b4:4e:61:06:21:26:a3:bc:d4: 05:1d:df:f1:5a:f4:69:3e:b8:b1:07:dd:15:b9:55:bf:c9:db: 97:f2:59:6e:4d:38:54:af:f1:7b:77:7d:df:9f:43:54:9f:81: 22:9f:a6:0e:d5:21:17:4e:a5:96:f8:63:97:19:06:89:ad:09: d7:a9:f9:44:9a:11:69:86:a4:52:d3:1e:1f:53:3c:14:65:cb: 66:c0:c9:1e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkRDNDExMC8GA1UEBRMoNUI0MzAwRkU0OUFFRTBFNDE1Q0M2MTk3NkMwMkI1QjlD MDIwNEFBRDAeFw0yNDAzMTYxOTEwMTZaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjVlZTk4LWFjMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvs7ZXsEt6KRMaLFpkYYIkxDVtlnYFPuWSEsRiTdG/Q4zHSIQak6Q7yPqZ9TpV eD/apm0XHm+F1Nk87YmMJ6+v/cphwUQdcLoLv5/0wlwKhTVnxTLvcgPe+j2acKi9 PRXsuxqAa0MNy/D4skogNpCNTjpCQQkdnSgf6kf1DG91dwY+57FdRsqVwNO8IySo 5TXj5SkLhhq68XiMGIpZv27hVmWlNe1hP7IQU4oC7vgfE474YxOHaTzIX5ZO4aeK Idq6G/uQsmyWOg3LzMYfh1UH8lMotFbg0C31Q1D2sbps0zyL493lPyI0hdoQAAdU cIo/Du+ZtkB/Ol+QbBpeKbJfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMVAxiLyA 0/Fcoyxq6CdbXxsD20QwHwYDVR0jBBgwFoAUW0MA/kmu4OQVzGGXbAK1ucAgSq0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyREM0LzVCRUREMDU0QjMx NjExRUVBOEJDQzYyNEM0RjlBRTAyL1cwTUFfa211NE9RVnpHR1hiQUsxdWNBZ1Nx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVzBNQV9rbXU0T1FWekdHWGJBSzF1Y0FnU3EwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkRDNC81QkVERDA1NEIzMTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9EMkEwRTZGRUUz QzgxMUVFOTAwQTY5MDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe8iTANBgkqhkiG9w0BAQsFAAOCAQEAL5AETDCcTALZ/+87 07jAKbW+03a/bMOMmRV/jhhmUHWxS5/3Sa0XL5aLcmlDLEylpGS5TneJgJy16UAA sVATd0PVfAk7l13TOrv7syKgV5ZmxGi5Fxu314dHPu40zEDMWL3kb2w8raVH9Jir oRIb/VsG0iK0JTvm5lxwQTDwpccdrhX1mjVkoWeMWvqOoNXNbLhDhC/TA9ysASPu h6U9tPnqlDFMsLc8tW1ltE5hBiEmo7zUBR3f8Vr0aT64sQfdFblVv8nbl/JZbk04 VK/xe3d9359DVJ+BIp+mDtUhF06llvhjlxkGia0J16n5RJoRaYakUtMeH1M8FGXL ZsDJHg== -----END CERTIFICATE-----Generated at Thu Jun 13 08:42:01 2024 by rpki-client on console-fra.rpki-client.org