$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa File: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (raw, json) Hash identifier: CRENTEav9/fZVIqZUUGypzd7V9o6NVqZzftWBS25NZs= Subject key identifier: E4:97:83:0C:F8:7D:15:88:55:8D:CE:96:8E:9D:F6:EA:A6:29:EC:16 Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 1F Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa Signing time: Thu 01 Feb 2024 11:07:47 +0000 ROA not before: Thu 01 Feb 2024 11:07:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 31898 IP address blocks: 103.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 08:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Feb 1 11:07:47 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65bb7b82-be65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ee:30:e3:8a:f9:85:9e:ad:53:68:60:47:48: 02:9c:64:a3:a3:85:32:12:f6:aa:0a:18:18:af:42: f5:6e:cc:88:a5:be:75:c7:87:fc:d2:03:17:1d:d4: 37:67:a4:4f:33:11:4f:ea:06:d6:32:96:3b:fd:3c: 92:20:3e:60:3d:f7:09:76:37:ce:55:ad:ad:c4:b8: 8d:63:37:23:11:5a:5d:d8:1c:ae:67:93:0e:1d:bb: 51:36:3a:b4:d1:35:d9:7f:0e:99:d4:0b:64:1b:aa: fa:14:bf:77:3c:5a:3d:87:00:d2:b3:39:ac:fb:4b: 05:0a:de:fd:73:4a:9a:de:7c:4b:7a:e6:1b:0b:0d: d8:14:f1:f6:80:43:5d:bd:99:6c:fc:23:51:f5:0e: 9f:62:70:2d:34:cf:49:b2:38:44:3d:00:01:62:fc: b5:98:0d:45:80:d1:23:b1:c6:dd:18:eb:68:76:a7: 90:5a:68:bd:c0:b8:5c:87:89:44:36:2f:0f:e2:97: 62:d1:2c:9d:0c:1c:17:90:1a:3a:24:a6:87:1d:b2: cd:b6:6d:68:83:a3:9f:54:46:c9:12:90:8d:50:35: 43:83:14:3e:e1:d1:86:49:e5:04:2a:c0:a5:6c:71: 86:ef:f6:8e:ce:ef:b0:93:4d:d4:bd:78:c7:cb:34: 27:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:97:83:0C:F8:7D:15:88:55:8D:CE:96:8E:9D:F6:EA:A6:29:EC:16 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.97.0/24 Signature Algorithm: sha256WithRSAEncryption 55:a3:1e:92:0b:4d:ad:d6:bd:b2:35:41:5d:e8:80:d5:54:f1: 2f:17:79:5f:46:e1:92:c9:f7:3c:bc:28:cd:64:fe:3a:37:4b: 87:79:b7:3d:22:c6:fe:66:ee:4e:0a:c4:5e:e0:cc:d7:3b:08: 2c:41:75:57:7e:02:e4:22:14:98:32:c9:7e:4e:d4:2c:8c:d2: fd:1b:0b:6d:d7:a3:1e:48:fc:2b:c7:ca:ff:26:9c:6c:7d:41: 9f:77:e1:bd:2e:9e:9e:b0:06:55:c1:cd:4b:65:9f:73:1a:e8: a9:66:a7:a6:fb:e0:8d:fb:e7:b6:21:8f:83:63:8a:16:35:0b: 6a:c0:1f:1f:a5:f4:db:d3:87:6c:73:54:af:36:c7:0e:00:85: d7:d9:d9:73:02:26:bc:54:6e:47:0f:28:8c:0c:f9:db:2f:8b: ab:77:91:4f:43:8a:e8:51:36:25:97:c6:df:95:b6:4f:98:e6: b7:ba:ef:ba:1a:ee:be:33:54:b4:60:c3:2b:60:94:62:c9:b2: 04:e6:a0:de:60:be:2b:a2:b7:9a:b0:7f:0d:b5:a2:37:84:43: d4:88:03:bf:85:66:54:44:78:8b:9b:c5:a5:3e:0c:ee:49:b4: e4:75:0b:c2:a0:03:ad:11:83:a6:0b:d6:5b:07:33:79:a7:00: a0:b3:01:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OEMzMzExMC8GA1UEBRMoQUYyRUUwNDQxMjM1NkFCRkQ4RTE5QUUyQzFCMjJBNzM3 Q0RGNUU5RTAeFw0yNDAyMDExMTA3NDdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmI3YjgyLWJlNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb7jDjivmFnq1TaGBHSAKcZKOjhTIS9qoKGBivQvVuzIilvnXHh/zSAxcd1Ddn pE8zEU/qBtYyljv9PJIgPmA99wl2N85Vra3EuI1jNyMRWl3YHK5nkw4du1E2OrTR Ndl/DpnUC2QbqvoUv3c8Wj2HANKzOaz7SwUK3v1zSprefEt65hsLDdgU8faAQ129 mWz8I1H1Dp9icC00z0myOEQ9AAFi/LWYDUWA0SOxxt0Y62h2p5BaaL3AuFyHiUQ2 Lw/il2LRLJ0MHBeQGjokpocdss22bWiDo59URskSkI1QNUODFD7h0YZJ5QQqwKVs cYbv9o7O77CTTdS9eMfLNCedAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5JeDDPh9 FYhVjc6Wjp326qYp7BYwHwYDVR0jBBgwFoAUry7gRBI1ar/Y4ZriwbIqc3zfXp4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4QzMzLzk1NkNCMDg2OTgx QjExRUVBQjBGQzkyMkM0RjlBRTAyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6Zlhw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnk3Z1JCSTFhcl9ZNFpyaXdiSXFjM3pmWHA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi8yMTBBNEVCQUMw RjIxMUVFOTlGRkJBMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf/YTANBgkqhkiG9w0BAQsFAAOCAQEAVaMekgtNrda9sjVB XeiA1VTxLxd5X0bhksn3PLwozWT+OjdLh3m3PSLG/mbuTgrEXuDM1zsILEF1V34C 5CIUmDLJfk7ULIzS/RsLbdejHkj8K8fK/yacbH1Bn3fhvS6enrAGVcHNS2Wfcxro qWanpvvgjfvntiGPg2OKFjULasAfH6X029OHbHNUrzbHDgCF19nZcwImvFRuRw8o jAz52y+Lq3eRT0OK6FE2JZfG35W2T5jmt7rvuhruvjNUtGDDK2CUYsmyBOag3mC+ K6K3mrB/DbWiN4RD1IgDv4VmVER4i5vFpT4M7km05HULwqADrRGDpgvWWwczeacA oLMBbg== -----END CERTIFICATE-----Generated at Wed May 1 10:10:27 2024 by rpki-client on console-ams.rpki-client.org