$ rpki-client -vvf rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A591C4A2933D11EEA6B4A653C4F9AE02.roa File: A591C4A2933D11EEA6B4A653C4F9AE02.roa (raw, json) Hash identifier: bfNhwGImovVkJ2nMHJxM6MVKJiq0HIzj8jV7cX6C1l4= Subject key identifier: 2C:B5:4B:BA:B4:8A:36:3B:B2:5D:37:71:5C:AA:DD:4C:E4:83:D9:D7 Certificate issuer: /CN=A912B129/serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Certificate serial: 02 Authority key identifier: 2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A591C4A2933D11EEA6B4A653C4F9AE02.roa Signing time: Tue 05 Dec 2023 07:12:27 +0000 ROA not before: Tue 05 Dec 2023 07:12:27 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132353 IP address blocks: 103.14.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B129/serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Validity Not Before: Dec 5 07:12:27 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656ecd5b-c8ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:e3:ab:25:8b:30:04:e3:51:77:95:cb:cb: 89:31:4b:2b:dd:3a:ae:23:cb:83:63:14:b8:40:c8: 77:d2:98:fd:c7:f5:89:07:b3:75:6f:27:8c:19:64: 0d:41:4d:a5:4f:8a:cc:e7:ba:d6:f5:0c:df:cb:2f: 17:e1:42:d0:e7:30:90:8a:29:d3:d3:07:ac:92:8a: db:11:a4:53:49:17:6b:ba:15:09:1a:01:ad:cc:bc: b3:21:77:65:97:18:a2:a8:b4:3a:f8:cc:b0:ba:67: ff:59:1f:e8:43:e0:e6:57:28:49:1c:51:1a:0f:f5: fc:4e:77:25:9f:bb:b7:68:51:a2:43:cc:c1:84:bf: 3c:0d:b6:fc:f5:d9:a7:7c:d7:9c:22:25:35:2b:7f: 1d:f8:21:3b:06:dd:c9:9d:c4:de:fc:77:1f:3a:7f: 99:26:2f:1a:9d:83:65:33:02:c8:4f:a5:f7:7a:d2: eb:81:d2:8a:a5:51:16:ce:c4:44:d7:8b:b0:53:bc: 0a:e0:a5:1e:ad:c6:5d:4b:a3:71:73:2c:4f:a5:c7: cf:01:31:a4:55:88:63:b4:af:4c:18:91:5d:0e:18: 33:e8:5c:7d:45:8c:e7:bf:7e:4d:0e:7d:e4:85:46: a7:a8:85:0f:7f:c2:0b:b6:0d:bd:a1:3a:b0:c9:1e: a3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B5:4B:BA:B4:8A:36:3B:B2:5D:37:71:5C:AA:DD:4C:E4:83:D9:D7 X509v3 Authority Key Identifier: keyid:2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A591C4A2933D11EEA6B4A653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.180.0/24 Signature Algorithm: sha256WithRSAEncryption 29:b5:9d:bf:ae:7c:78:d2:da:94:24:74:45:22:89:25:0b:e1: 9d:37:88:55:e0:b6:7b:b9:d9:8a:f1:6b:06:3b:1d:ec:bd:d1: 99:8a:fd:9d:d0:f5:f5:fb:98:03:0e:63:c1:cf:3d:19:d2:d7: 05:52:01:08:4f:5e:5c:f8:18:55:7a:11:11:fa:07:87:cc:a4: 42:e5:2d:8c:87:93:30:f1:ca:c7:5d:aa:96:70:9a:5e:78:90: 2b:e4:70:d7:8a:62:4e:28:49:7c:4a:26:6d:be:7f:d9:1d:26: 8f:89:8e:14:f3:b4:b4:5e:64:2c:96:57:ce:5c:91:7d:82:64: ca:ec:09:49:97:3f:c3:55:bf:1c:e9:91:6c:19:bc:cd:8b:65: 58:93:eb:18:1c:58:7a:71:56:66:13:1d:93:8c:e7:c9:bf:28: a0:b4:78:ee:3d:b3:f6:72:92:ed:69:49:b8:58:7c:d7:7a:cc: 35:f2:a3:2b:90:ef:a6:23:2e:7d:4f:5d:dc:b7:79:12:dd:a7: ed:74:a2:b8:0b:80:c4:40:b3:9b:74:0d:d0:67:5f:d3:5e:98: 4f:6f:b7:7d:aa:89:62:55:44:85:0f:15:19:04:df:04:f6:47: d4:ba:f4:50:95:6e:23:e5:fe:95:df:3a:4f:4d:e0:96:b7:08: bb:dc:8d:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjEyOTExMC8GA1UEBRMoMkM4RDFBNTgwNTZFRDE4OEZFODU4MEU3MEQxREU1MEY0 QzNEQTI3MDAeFw0yMzEyMDUwNzEyMjdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NmVjZDViLWM4ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFP+OrJYswBONRd5XLy4kxSyvdOq4jy4NjFLhAyHfSmP3H9YkHs3VvJ4wZZA1B TaVPisznutb1DN/LLxfhQtDnMJCKKdPTB6ySitsRpFNJF2u6FQkaAa3MvLMhd2WX GKKotDr4zLC6Z/9ZH+hD4OZXKEkcURoP9fxOdyWfu7doUaJDzMGEvzwNtvz12ad8 15wiJTUrfx34ITsG3cmdxN78dx86f5kmLxqdg2UzAshPpfd60uuB0oqlURbOxETX i7BTvArgpR6txl1Lo3FzLE+lx88BMaRViGO0r0wYkV0OGDPoXH1FjOe/fk0OfeSF RqeohQ9/wgu2Db2hOrDJHqObAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULLVLurSK NjuyXTdxXKrdTOSD2dcwHwYDVR0jBBgwFoAULI0aWAVu0Yj+hYDnDR3lD0w9onAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMTI5LzRCM0NFRUI0OTMz RDExRUU4QTk1MDI1M0M0RjlBRTAyL0xJMGFXQVZ1MFlqLWhZRG5EUjNsRDB3OW9u QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEkwYVdBVnUwWWotaFlEbkRSM2xEMHc5b25BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjEyOS80QjNDRUVCNDkzM0QxMUVFOEE5NTAyNTNDNEY5QUUwMi9BNTkxQzRBMjkz M0QxMUVFQTZCNEE2NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcOtDANBgkqhkiG9w0BAQsFAAOCAQEAKbWdv658eNLalCR0 RSKJJQvhnTeIVeC2e7nZivFrBjsd7L3RmYr9ndD19fuYAw5jwc89GdLXBVIBCE9e XPgYVXoREfoHh8ykQuUtjIeTMPHKx12qlnCaXniQK+Rw14piTihJfEombb5/2R0m j4mOFPO0tF5kLJZXzlyRfYJkyuwJSZc/w1W/HOmRbBm8zYtlWJPrGBxYenFWZhMd k4znyb8ooLR47j2z9nKS7WlJuFh813rMNfKjK5DvpiMufU9d3Ld5Et2n7XSiuAuA xECzm3QN0Gdf016YT2+3faqJYlVEhQ8VGQTfBPZH1Lr0UJVuI+X+ld86T03glrcI u9yNVw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org