$ rpki-client -vvf rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/A033FFB4F7F511ECADEAB528C4F9AE02.roa File: A033FFB4F7F511ECADEAB528C4F9AE02.roa (raw, json) Hash identifier: CGmdTdxNE4CtKZ1npSPVTLiZv02EjkNH36UTa8hZE6Y= Subject key identifier: B3:C8:6A:F1:D8:3C:85:5D:5E:33:03:4A:3C:C9:65:F0:24:45:8A:6C Certificate issuer: /CN=A912CE21/serialNumber=59F221A9D7014727490246B68E82C29767C70D38 Certificate serial: 014E Authority key identifier: 59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/A033FFB4F7F511ECADEAB528C4F9AE02.roa Signing time: Sat 03 Jun 2023 06:15:10 +0000 ROA not before: Sat 03 Jun 2023 06:15:10 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149820 IP address blocks: 103.187.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CE21/serialNumber=59F221A9D7014727490246B68E82C29767C70D38 Validity Not Before: Jun 3 06:15:10 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647ada6e-4232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:71:cb:ca:b9:21:53:41:b1:49:f8:75:57:0d: bd:bb:2c:d9:18:c3:1f:77:4e:3a:80:61:ef:fc:22: fb:0b:d7:80:a2:1a:96:d1:fb:e0:95:84:c3:1c:fc: a4:fa:99:f3:9f:a1:7b:c4:8d:dd:97:d2:0b:f9:8d: 1c:0d:5e:02:5c:23:d7:d7:a2:de:1e:73:86:67:de: f5:7e:fc:7c:03:ff:f4:ca:44:2a:78:7d:51:fd:6c: 82:2a:56:a3:0c:89:e4:ea:be:56:4a:7b:73:f4:44: 24:c7:63:5d:1c:5c:28:69:8f:09:00:b5:c4:23:ae: 6f:70:bb:65:9d:a6:ce:6e:bc:21:80:81:e0:da:6e: 8f:35:17:b4:4d:e0:0a:5e:44:96:69:38:44:7a:f0: fe:93:24:6b:1f:39:6c:c9:a4:5b:0f:87:ab:d7:18: 62:78:cd:03:94:ca:a6:a7:ec:03:02:27:16:82:31: 7c:77:a1:79:a9:fa:f8:c8:e9:b7:b9:73:74:46:3e: 2f:a0:a9:92:cb:73:7a:e6:d8:b4:54:b8:ad:9d:8d: c0:59:c0:8d:73:77:cd:c9:2c:b3:e7:8e:2b:93:31: 45:0c:da:90:34:25:93:64:e3:98:74:7e:2e:4f:c7: d1:00:77:ff:3c:b5:79:d8:10:fb:55:84:f7:d1:c2: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C8:6A:F1:D8:3C:85:5D:5E:33:03:4A:3C:C9:65:F0:24:45:8A:6C X509v3 Authority Key Identifier: keyid:59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/A033FFB4F7F511ECADEAB528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.32.0/23 Signature Algorithm: sha256WithRSAEncryption 98:47:e0:ea:b5:ff:53:88:1e:ec:f2:1b:ab:e7:13:d0:7b:9c: 22:6c:89:fb:0c:51:2b:71:c5:9c:99:71:24:53:b1:2a:9a:e4: 9d:03:cd:49:60:e8:3b:c0:24:0f:7e:37:79:57:31:87:ee:87: 7c:51:b8:9b:7c:9b:a8:13:a5:d9:07:9c:28:78:4a:5f:b2:b1: 40:18:be:dd:6d:89:00:73:33:8e:23:fb:83:03:9d:ad:22:80: 1a:c1:44:a5:c3:f2:90:c0:f5:dd:26:1a:f2:39:2e:66:6f:7d: 3c:4c:d4:e5:d1:ee:1b:73:6a:6a:44:20:4e:54:d3:f4:ac:90: e5:c3:4a:4e:17:bf:1b:ad:87:a2:67:24:f4:c1:82:1d:80:35: 3e:8c:a0:c0:b1:a5:60:a2:34:07:bc:40:de:20:60:7d:3a:87: cd:4d:f7:6e:a7:24:5b:d8:61:5e:99:a3:5c:2f:f8:5c:5f:59: c6:c8:3d:d7:16:a2:07:02:d7:1d:7b:af:b8:c7:97:67:64:fe: 41:8d:66:d3:d9:20:c4:05:80:de:eb:e5:78:87:41:03:c6:8c: 2d:b0:a1:60:ac:fc:38:7c:2e:27:11:51:e4:ac:c5:76:1e:b0: e3:67:f3:3c:da:86:13:e8:f5:5e:eb:eb:47:1d:09:5b:ac:6d: fe:39:d4:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNFMjExMTAvBgNVBAUTKDU5RjIyMUE5RDcwMTQ3Mjc0OTAyNDZCNjhFODJDMjk3 NjdDNzBEMzgwHhcNMjMwNjAzMDYxNTEwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhZGE2ZS00MjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHHLyrkhU0GxSfh1Vw29uyzZGMMfd046gGHv/CL7C9eAohqW0fvglYTDHPyk +pnzn6F7xI3dl9IL+Y0cDV4CXCPX16LeHnOGZ971fvx8A//0ykQqeH1R/WyCKlaj DInk6r5WSntz9EQkx2NdHFwoaY8JALXEI65vcLtlnabObrwhgIHg2m6PNRe0TeAK XkSWaThEevD+kyRrHzlsyaRbD4er1xhieM0DlMqmp+wDAicWgjF8d6F5qfr4yOm3 uXN0Rj4voKmSy3N65ti0VLitnY3AWcCNc3fNySyz544rkzFFDNqQNCWTZOOYdH4u T8fRAHf/PLV52BD7VYT30cKQiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLPIavHY PIVdXjMDSjzJZfAkRYpsMB8GA1UdIwQYMBaAFFnyIanXAUcnSQJGto6Cwpdnxw04 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0UyMS9DRTQ4RTdDOEYx OUUxMUVDQTlFRTlCM0RDNEY5QUUwMi9XZklocWRjQlJ5ZEpBa2Eyam9MQ2wyZkhE VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dmSWhxZGNCUnlkSkFrYTJqb0xDbDJmSERUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNFMjEvQ0U0OEU3QzhGMTlFMTFFQ0E5RUU5QjNEQzRGOUFFMDIvQTAzM0ZGQjRG N0Y1MTFFQ0FERUFCNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuyAwDQYJKoZIhvcNAQELBQADggEBAJhH4Oq1/1OIHuzy G6vnE9B7nCJsifsMUStxxZyZcSRTsSqa5J0DzUlg6DvAJA9+N3lXMYfuh3xRuJt8 m6gTpdkHnCh4Sl+ysUAYvt1tiQBzM44j+4MDna0igBrBRKXD8pDA9d0mGvI5LmZv fTxM1OXR7htzampEIE5U0/SskOXDSk4Xvxuth6JnJPTBgh2ANT6MoMCxpWCiNAe8 QN4gYH06h81N926nJFvYYV6Zo1wv+FxfWcbIPdcWogcC1x17r7jHl2dk/kGNZtPZ IMQFgN7r5XiHQQPGjC2woWCs/Dh8LicRUeSsxXYesONn8zzahhPo9V7r60cdCVus bf451CE= -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org