$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa File: 1EF2D862C9F511ED8771C865C4F9AE02.roa (raw, json) Hash identifier: P+uq7WBg06+zHlN3uA88TkBnHi2bGu6YyGHpZu3034g= Subject key identifier: 69:37:93:5E:46:AF:78:D2:B7:1D:F7:09:8C:77:51:83:F2:4D:EF:47 Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 64 Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa Signing time: Fri 29 Sep 2023 04:45:31 +0000 ROA not before: Fri 29 Sep 2023 04:45:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136798 IP address blocks: 103.96.128.0/24 maxlen: 24 103.96.129.0/24 maxlen: 24 103.96.130.0/24 maxlen: 24 103.96.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: Sep 29 04:45:31 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6516566a-3346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:81:61:22:bf:5b:ea:51:4c:ad:82:95:4f:88: c2:18:00:1f:ae:65:ff:0a:69:b7:8f:21:26:e6:f4: d7:79:13:e7:37:5b:6a:5d:39:e2:5e:a1:c6:04:2c: f1:03:4a:d9:b9:bf:e7:01:71:0f:45:12:22:b6:5d: 11:dc:dc:e5:cd:54:d0:ac:81:dc:57:0b:cd:17:37: 84:f2:0a:23:6e:9b:74:0d:11:20:9e:cf:ef:49:d3: b0:33:6b:4a:0a:3b:d6:b4:ad:97:f5:e6:43:0f:2d: 53:34:c4:a9:74:ef:0e:4c:b0:a7:d1:94:8a:a8:81: a2:f1:8f:77:bd:83:e1:fb:a5:d7:a3:36:f9:1c:fe: fa:13:fa:eb:07:dd:cf:68:15:88:5e:cf:a3:13:61: f1:01:40:24:45:f8:f1:92:61:a2:2c:90:94:8a:12: 80:9a:d4:e9:17:81:9a:3c:f1:ec:4a:28:56:49:a2: 71:c0:ac:ad:7d:d6:32:d0:2b:ab:4d:7a:bf:d8:74: 8c:65:54:49:e4:a5:46:b5:a4:50:09:8f:fa:87:1d: 60:cb:77:5b:8d:ce:45:a7:43:af:fb:22:0c:d9:a1: ae:cb:f3:c7:38:98:99:10:ae:01:cf:75:c4:88:fc: 4b:9a:4b:a2:01:ce:33:3a:8a:cd:e3:f7:3d:fb:9a: dd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:37:93:5E:46:AF:78:D2:B7:1D:F7:09:8C:77:51:83:F2:4D:EF:47 X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.128.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:f0:1c:4d:42:93:26:0b:fe:18:d6:a6:b9:df:bd:92:87:78: 20:00:6f:90:22:66:57:5d:bf:7d:ec:8b:68:23:fe:9e:07:a9: 2f:e2:cb:1d:de:fc:3c:a9:b7:80:f6:9e:a8:5a:b4:ef:70:ca: 23:b4:36:66:87:b9:39:6f:a5:f8:ce:18:75:e7:39:0f:81:44: 7f:35:09:74:83:2c:0c:cb:6a:ef:19:07:14:37:37:65:6c:58: 8f:35:40:62:57:06:7a:74:78:5b:a3:4a:91:eb:fb:cb:50:2c: bd:0c:86:85:01:3a:d0:51:06:2c:44:d3:6a:19:a1:c4:76:9c: 98:67:c0:c3:3d:6a:43:70:d5:80:c4:16:6e:eb:91:e8:39:82: 2a:3b:c2:a8:b0:65:74:ae:e9:38:75:3a:1f:d6:ac:11:b3:02: 8d:ef:53:98:f0:5c:1d:e5:6f:a6:cb:03:6a:35:03:79:40:0b: 21:b5:97:db:9b:32:b5:03:b6:d7:f0:59:ea:10:b0:67:cf:f2: 76:9a:47:d6:5e:c2:f5:e5:80:f2:bd:f0:52:eb:55:ae:8b:4b: 56:f1:17:53:8f:e7:29:c8:a0:cb:c8:61:78:32:82:d6:8d:12: 0a:40:ae:dc:0e:a2:97:1c:a8:c4:60:93:89:ac:d9:07:c4:a1: 59:fb:85:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz Mjc3QzExMC8GA1UEBRMoMUNENDlFRkJDMzdFRjRBOEM2Qzg4NzY1NjJCRDExMzM0 NEJDN0VEMTAeFw0yMzA5MjkwNDQ1MzFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTY1NjZhLTMzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcgWEiv1vqUUytgpVPiMIYAB+uZf8KabePISbm9Nd5E+c3W2pdOeJeocYELPED Stm5v+cBcQ9FEiK2XRHc3OXNVNCsgdxXC80XN4TyCiNum3QNESCez+9J07Aza0oK O9a0rZf15kMPLVM0xKl07w5MsKfRlIqogaLxj3e9g+H7pdejNvkc/voT+usH3c9o FYhez6MTYfEBQCRF+PGSYaIskJSKEoCa1OkXgZo88exKKFZJonHArK191jLQK6tN er/YdIxlVEnkpUa1pFAJj/qHHWDLd1uNzkWnQ6/7IgzZoa7L88c4mJkQrgHPdcSI /EuaS6IBzjM6is3j9z37mt1jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaTeTXkav eNK3HfcJjHdRg/JN70cwHwYDVR0jBBgwFoAUHNSe+8N+9KjGyIdlYr0RM0S8ftEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyNzdDL0I5N0M3Mzk2QzlG MjExRURBMUQ5OUU2NUM0RjlBRTAyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5TZS04Ti05S2pHeUlkbFlyMFJNMFM4ZnRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc3Qy9COTdDNzM5NkM5RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi8xRUYyRDg2MkM5 RjUxMUVEODc3MUM4NjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdggDANBgkqhkiG9w0BAQsFAAOCAQEAm/AcTUKTJgv+GNam ud+9kod4IABvkCJmV12/feyLaCP+ngepL+LLHd78PKm3gPaeqFq073DKI7Q2Zoe5 OW+l+M4Ydec5D4FEfzUJdIMsDMtq7xkHFDc3ZWxYjzVAYlcGenR4W6NKkev7y1As vQyGhQE60FEGLETTahmhxHacmGfAwz1qQ3DVgMQWbuuR6DmCKjvCqLBldK7pOHU6 H9asEbMCje9TmPBcHeVvpssDajUDeUALIbWX25sytQO21/BZ6hCwZ8/ydppH1l7C 9eWA8r3wUutVrotLVvEXU4/nKcigy8hheDKC1o0SCkCu3A6ilxyoxGCTiazZB8Sh WfuFUg== -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org