$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa File: 476C306204A711EEA68A0D2FC4F9AE02.roa (raw, json) Hash identifier: sYReBRsO2kMrQYVi7A8dBr3Z4LfBSO6Mhxo6wiqrrO4= Subject key identifier: 93:76:1E:22:D2:D2:12:44:61:B8:86:A8:32:A8:72:5E:0D:BF:B6:C3 Certificate issuer: /CN=A912AF79/serialNumber=6BD8C0A11500B3CA0FEC4A9FD340C3120595B0C7 Certificate serial: 08 Authority key identifier: 6B:D8:C0:A1:15:00:B3:CA:0F:EC:4A:9F:D3:40:C3:12:05:95:B0:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa Signing time: Tue 06 Jun 2023 20:18:20 +0000 ROA not before: Tue 06 Jun 2023 20:18:20 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151329 IP address blocks: 103.170.98.0/24 maxlen: 24 103.170.99.0/24 maxlen: 24 2001:df2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.crl rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 06:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF79/serialNumber=6BD8C0A11500B3CA0FEC4A9FD340C3120595B0C7 Validity Not Before: Jun 6 20:18:20 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647f948c-6367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:68:90:04:c3:88:35:7d:a3:53:e3:f1:dc:5c: 73:e2:f9:42:19:66:ba:6a:f0:39:eb:1d:4d:c7:1a: ac:77:fe:e4:ab:92:3c:27:68:23:57:e8:1a:fb:cd: 62:42:b7:53:66:2a:68:b0:e3:ba:06:ed:22:eb:e4: 73:a7:49:c5:75:e4:8b:ba:0f:4a:07:91:db:51:44: c1:a7:2f:6c:af:99:1b:cd:e6:b3:15:1f:36:3d:91: b5:ae:1f:fa:18:c1:5b:db:8c:9f:d0:dc:ce:9e:aa: 37:9a:dd:15:56:ea:0c:12:64:6a:91:9a:d6:62:33: 84:63:e4:92:5e:9c:35:93:2a:03:16:4e:24:e2:7a: 99:d2:c1:35:eb:e6:9e:ae:4c:56:59:6a:91:28:de: ac:a0:2a:b4:6f:db:ee:0d:f8:e3:e3:48:2a:f4:99: 38:b8:5e:c7:5f:b9:4a:40:62:a7:c6:41:40:69:2d: 88:81:8d:92:d7:04:00:a6:b7:38:c1:16:bd:06:55: 1a:1f:c1:d4:45:de:b0:03:3f:f6:0e:c0:ed:ec:f8: 6b:cb:01:73:f0:ea:d7:09:ad:70:df:99:e7:86:30: 0e:84:4f:eb:c9:fd:1a:7e:65:16:56:5c:0a:8c:d4: 01:24:32:c7:01:04:44:fa:ae:12:44:68:71:b0:55: ea:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:76:1E:22:D2:D2:12:44:61:B8:86:A8:32:A8:72:5E:0D:BF:B6:C3 X509v3 Authority Key Identifier: keyid:6B:D8:C0:A1:15:00:B3:CA:0F:EC:4A:9F:D3:40:C3:12:05:95:B0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.98.0/23 IPv6: 2001:df2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 4c:0c:ba:a8:a7:11:6a:21:da:f6:26:10:43:c6:08:30:78:db: d0:df:09:3f:30:86:e7:94:c8:56:65:5f:31:e0:6b:32:a5:2d: 93:c0:1a:cc:ed:f0:c8:c7:dc:87:7f:ba:85:07:87:3b:bf:75: cf:12:a8:cb:a5:11:81:07:0c:20:1b:35:4e:11:f0:2c:75:6a: 91:a0:b5:56:0d:4a:bd:50:2b:30:40:7a:c2:41:93:c2:70:33: 75:61:10:bc:5a:c3:88:8b:5b:9d:00:5c:23:a4:c4:48:5a:9c: b0:20:ac:d6:c2:30:23:83:b2:02:b2:3b:80:17:6c:77:fa:2f: 20:62:4e:59:82:3d:6e:11:fb:4f:11:1c:d1:af:93:5a:09:ce: 06:9b:98:2e:a6:d7:7e:d4:c4:07:f4:70:7a:d2:be:7f:c5:8c: 43:3c:95:a0:15:fe:20:29:12:68:e0:b9:ba:bd:5b:78:4c:ee: 6b:00:10:d6:ac:37:00:f4:5a:99:33:ae:4e:31:e8:5a:93:8c: d7:52:c4:01:4f:40:ad:38:5f:f1:bc:60:0f:e9:e4:fb:59:23: e9:c6:8e:6a:e6:b2:17:f0:21:5a:f9:0f:89:21:d3:82:70:fe: bd:2d:4f:4d:24:f4:35:64:94:56:fe:26:60:b0:ab:3b:06:04: 11:a8:8f:2e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QUY3OTExMC8GA1UEBRMoNkJEOEMwQTExNTAwQjNDQTBGRUM0QTlGRDM0MEMzMTIw NTk1QjBDNzAeFw0yMzA2MDYyMDE4MjBaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0N2Y5NDhjLTYzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoaJAEw4g1faNT4/HcXHPi+UIZZrpq8DnrHU3HGqx3/uSrkjwnaCNX6Br7zWJC t1NmKmiw47oG7SLr5HOnScV15Iu6D0oHkdtRRMGnL2yvmRvN5rMVHzY9kbWuH/oY wVvbjJ/Q3M6eqjea3RVW6gwSZGqRmtZiM4Rj5JJenDWTKgMWTiTiepnSwTXr5p6u TFZZapEo3qygKrRv2+4N+OPjSCr0mTi4XsdfuUpAYqfGQUBpLYiBjZLXBACmtzjB Fr0GVRofwdRF3rADP/YOwO3s+GvLAXPw6tcJrXDfmeeGMA6ET+vJ/Rp+ZRZWXAqM 1AEkMscBBET6rhJEaHGwVerxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUk3YeItLS EkRhuIaoMqhyXg2/tsMwHwYDVR0jBBgwFoAUa9jAoRUAs8oP7Eqf00DDEgWVsMcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBRjc5L0QwRjg2RDcyRkUw NDExRUQ5MDVFMjE2QkM0RjlBRTAyL2E5akFvUlVBczhvUDdFcWYwMERERWdXVnNN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTlqQW9SVUFzOG9QN0VxZjAwRERFZ1dWc01jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUY3OS9EMEY4NkQ3MkZFMDQxMUVEOTA1RTIxNkJDNEY5QUUwMi80NzZDMzA2MjA0 QTcxMUVFQTY4QTBEMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeqYjAPBAIAAjAJAwcAIAEN8nRAMA0GCSqGSIb3DQEBCwUA A4IBAQBMDLqopxFqIdr2JhBDxggweNvQ3wk/MIbnlMhWZV8x4GsypS2TwBrM7fDI x9yHf7qFB4c7v3XPEqjLpRGBBwwgGzVOEfAsdWqRoLVWDUq9UCswQHrCQZPCcDN1 YRC8WsOIi1udAFwjpMRIWpywIKzWwjAjg7ICsjuAF2x3+i8gYk5Zgj1uEftPERzR r5NaCc4Gm5guptd+1MQH9HB60r5/xYxDPJWgFf4gKRJo4Lm6vVt4TO5rABDWrDcA 9FqZM65OMehak4zXUsQBT0CtOF/xvGAP6eT7WSPpxo5q5rIX8CFa+Q+JIdOCcP69 LU9NJPQ1ZJRW/iZgsKs7BgQRqI8u -----END CERTIFICATE-----Generated at Mon May 27 07:39:14 2024 by rpki-client on console-fra.rpki-client.org