$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/971C513C022111EFBBBD7C47C4F9AE02.roa File: 971C513C022111EFBBBD7C47C4F9AE02.roa (raw, json) Hash identifier: V08W++GItVQJtupzRq0Un7PAFXQUxEvHx8HXvaaLg4o= Subject key identifier: 92:25:64:A9:68:64:70:62:40:A5:02:25:CD:CA:9A:C3:66:D1:01:96 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 05DA Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/971C513C022111EFBBBD7C47C4F9AE02.roa Signing time: Wed 24 Apr 2024 10:01:16 +0000 ROA not before: Wed 24 Apr 2024 10:01:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137076 IP address blocks: 103.8.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Apr 24 10:01:16 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6628d86c-3cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:34:c2:52:7e:da:2a:8d:c0:d1:28:22:80:2e: 03:22:bc:8b:d2:6c:3f:e2:30:61:dd:1b:95:44:12: c5:7f:07:e9:0b:90:47:f5:b8:2a:10:af:67:ff:22: 3a:d9:8d:90:04:78:68:b6:ed:7b:8b:5b:e7:64:48: 25:fd:41:21:82:53:cd:e0:9c:58:56:1a:99:c3:4d: 5a:b5:bd:3a:fa:77:b9:ff:64:01:72:07:3a:d8:0b: 1e:3d:1b:f8:6d:22:06:51:f4:78:09:a2:64:3e:67: f9:48:06:d1:aa:31:af:f4:83:1d:81:96:96:6a:bf: 32:a7:3d:00:03:73:b5:fd:0f:bf:46:cf:78:96:8a: b5:0c:85:31:ba:26:66:32:5c:0b:08:ce:4d:25:4e: 7a:ff:94:45:68:0e:84:c6:c8:35:e9:62:0a:24:45: 30:33:ec:b5:63:53:9c:4c:2c:4d:9e:d4:6d:4c:11: d7:ce:86:22:d8:a2:58:06:4e:34:01:c9:80:41:7b: 6c:89:1d:80:cf:8e:c6:d3:94:6d:1b:e8:89:bd:7e: 88:26:71:19:2d:9e:ed:96:f1:d4:ad:4d:1b:25:8f: cb:93:bd:db:d7:3e:b9:8c:99:b3:e8:5c:46:59:2b: 34:a3:81:b6:f7:cb:3e:e6:ca:c6:e6:ff:0f:f1:be: d7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:25:64:A9:68:64:70:62:40:A5:02:25:CD:CA:9A:C3:66:D1:01:96 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/971C513C022111EFBBBD7C47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.47.0/24 Signature Algorithm: sha256WithRSAEncryption 98:c6:fc:3c:f7:4d:99:7f:7a:b6:a4:39:dc:61:31:48:50:15: c1:36:b4:1d:7a:14:01:f6:f2:72:61:99:27:aa:03:c3:eb:e5: 00:e7:23:01:0b:5c:a2:34:d0:3c:e8:f5:80:dd:12:c9:c3:5d: 02:17:a3:e4:5a:1e:1a:e7:4a:53:c2:97:df:6e:37:6e:e6:46: b6:0c:19:5a:e6:a1:0c:2c:59:8b:87:1e:ad:8d:02:ec:03:0b: 7d:41:7e:ce:94:53:30:6c:30:75:d2:2d:e1:53:e1:b4:27:dd: b6:d9:5b:5d:5f:a6:82:ab:35:6f:8d:d8:05:14:6b:3f:89:75: c0:55:56:7e:a3:a6:10:18:57:f4:71:6c:a1:94:7b:48:cd:78: 5c:a2:7d:c1:c6:51:2b:32:1f:35:62:7e:a5:d5:bb:ff:c9:1b: 80:cf:30:e0:c3:cf:a4:a5:52:cf:c4:8b:79:9b:62:42:94:ee: e5:45:5c:97:db:ad:80:53:4e:0d:97:df:09:d1:de:d1:20:a3: 58:05:ba:18:22:d2:73:0a:a6:83:1f:67:88:dd:22:4c:2d:80: 9c:57:8d:9c:3a:2a:bb:71:ea:52:b7:ea:65:9d:10:e2:3b:54: 60:d7:a0:89:92:10:e3:fe:f3:30:1d:bb:21:20:82:e8:64:58: 12:00:2a:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjQwNDI0MTAwMTE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI4ZDg2Yy0zY2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9zTCUn7aKo3A0SgigC4DIryL0mw/4jBh3RuVRBLFfwfpC5BH9bgqEK9n/yI6 2Y2QBHhotu17i1vnZEgl/UEhglPN4JxYVhqZw01atb06+ne5/2QBcgc62AsePRv4 bSIGUfR4CaJkPmf5SAbRqjGv9IMdgZaWar8ypz0AA3O1/Q+/Rs94loq1DIUxuiZm MlwLCM5NJU56/5RFaA6Exsg16WIKJEUwM+y1Y1OcTCxNntRtTBHXzoYi2KJYBk40 AcmAQXtsiR2Az47G05RtG+iJvX6IJnEZLZ7tlvHUrU0bJY/Lk73b1z65jJmz6FxG WSs0o4G298s+5srG5v8P8b7XSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJIlZKlo ZHBiQKUCJc3KmsNm0QGWMB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvOTcxQzUxM0Mw MjIxMTFFRkJCQkQ3QzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCC8wDQYJKoZIhvcNAQELBQADggEBAJjG/Dz3TZl/erak OdxhMUhQFcE2tB16FAH28nJhmSeqA8Pr5QDnIwELXKI00Dzo9YDdEsnDXQIXo+Ra HhrnSlPCl99uN27mRrYMGVrmoQwsWYuHHq2NAuwDC31Bfs6UUzBsMHXSLeFT4bQn 3bbZW11fpoKrNW+N2AUUaz+JdcBVVn6jphAYV/RxbKGUe0jNeFyifcHGUSsyHzVi fqXVu//JG4DPMODDz6SlUs/Ei3mbYkKU7uVFXJfbrYBTTg2X3wnR3tEgo1gFuhgi 0nMKpoMfZ4jdIkwtgJxXjZw6Krtx6lK36mWdEOI7VGDXoImSEOP+8zAduyEgguhk WBIAKiA= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org