$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa File: 23B1A0120FA511EFB28F5235C4F9AE02.roa (raw, json) Hash identifier: hXpBoYToApPmmdPekjKleadge49SIJY0fjcaISdG6yE= Subject key identifier: D7:14:AB:B1:6A:4C:1D:40:39:6E:45:A0:AD:BA:8C:70:EC:EB:00:BA Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 20 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa Signing time: Wed 03 Jul 2024 07:48:08 +0000 ROA not before: Wed 03 Jul 2024 07:48:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 46015 IP address blocks: 103.233.0.0/22 maxlen: 22 103.233.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Jul 3 07:48:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66850237-c604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:20:46:5f:22:00:1e:87:a4:93:f8:29:78: c0:28:0b:74:cc:90:d1:80:54:85:e0:20:71:fd:f1: f0:e7:a3:32:a4:41:4d:b3:25:10:62:41:76:97:c6: 87:47:93:ab:de:85:ce:f3:93:85:4f:3f:c1:ab:ef: 26:73:c9:d1:ce:a3:63:84:98:c9:6a:ee:bb:43:55: 76:78:54:af:a9:e4:ae:8b:9a:ff:12:77:d2:62:ab: b5:d8:39:5a:f2:51:69:9f:5a:12:36:23:ad:0f:2b: 21:0d:35:18:99:d1:cc:99:2e:60:d2:5d:f1:ec:77: 72:52:1a:98:e8:7b:67:ef:09:58:b4:9a:4e:58:85: 7a:61:93:1c:2b:38:79:60:be:f9:7d:d2:30:46:f2: ec:5e:8c:68:75:c8:fa:64:b5:03:f6:72:78:f6:9d: 93:a5:3e:81:8c:94:68:5a:f2:8e:73:4e:66:5f:53: 0d:ac:dc:84:12:40:af:4a:80:12:96:79:1d:b6:21: 45:72:24:44:5d:7d:48:29:f5:26:ed:75:5c:56:57: f2:5b:48:ca:f1:f0:01:87:2c:0a:b9:fb:52:b0:ee: db:13:66:6e:d4:82:28:27:85:37:48:74:34:ac:f0: 5c:88:85:08:7c:aa:e6:41:e0:61:c0:47:34:5f:e9: 64:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:14:AB:B1:6A:4C:1D:40:39:6E:45:A0:AD:BA:8C:70:EC:EB:00:BA X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.0.0/22 Signature Algorithm: sha256WithRSAEncryption 01:32:46:a3:0b:a7:f4:c0:6a:f7:c2:9e:5d:5a:e2:10:a6:07: 9f:83:33:a4:15:ec:f0:4f:f2:a0:19:c3:ee:4a:bc:e1:89:b5: 31:b5:be:66:ae:cf:31:04:75:49:38:c8:be:bf:63:d3:16:db: 63:b3:27:34:bf:bd:02:ba:a9:e3:ca:ee:28:54:ae:8b:2c:4a: d7:08:50:32:97:f6:4b:1f:08:69:c0:a4:4e:97:62:6b:28:db: f1:fb:3c:0a:27:2c:ce:29:27:14:3f:20:04:07:cb:e7:51:41: 08:4e:93:73:cc:ce:11:70:70:9e:93:f1:d9:b3:f4:b8:e9:29: 36:c3:d0:94:fc:d2:06:07:94:42:1f:23:b3:38:34:3c:f8:09: aa:fc:7c:ae:6a:15:57:ce:16:f6:5e:c8:35:68:db:6a:e8:f8: 6d:3d:21:8d:ac:86:38:40:28:4b:bd:f7:69:41:5b:19:04:25: c0:84:72:51:a4:fc:7f:67:50:32:a4:52:9d:5f:90:6a:63:2d: 65:5d:63:6e:75:d9:a8:64:4f:04:d0:77:0e:80:f8:b8:89:45: 1f:0d:88:9e:94:47:2f:7b:b3:04:2e:08:72:d9:d7:c8:bc:5b: 69:29:5f:08:c1:81:32:78:d4:86:e2:96:58:5b:77:2c:4c:86: 18:9b:ad:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0I0NzExMC8GA1UEBRMoNURGNTY2RDc2MjM2N0MyOEM3RjNGMTI1NjFCNDcxNkI4 Q0ExQjk2NjAeFw0yNDA3MDMwNzQ4MDhaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODUwMjM3LWM2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/3SBGXyIAHoekk/gpeMAoC3TMkNGAVIXgIHH98fDnozKkQU2zJRBiQXaXxodH k6vehc7zk4VPP8Gr7yZzydHOo2OEmMlq7rtDVXZ4VK+p5K6Lmv8Sd9Jiq7XYOVry UWmfWhI2I60PKyENNRiZ0cyZLmDSXfHsd3JSGpjoe2fvCVi0mk5YhXphkxwrOHlg vvl90jBG8uxejGh1yPpktQP2cnj2nZOlPoGMlGha8o5zTmZfUw2s3IQSQK9KgBKW eR22IUVyJERdfUgp9SbtdVxWV/JbSMrx8AGHLAq5+1Kw7tsTZm7UgignhTdIdDSs 8FyIhQh8quZB4GHARzRf6WQBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1xSrsWpM HUA5bkWgrbqMcOzrALowHwYDVR0jBBgwFoAUXfVm12I2fCjH8/ElYbRxa4yhuWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQjQ3Lzg3MUI5Mjk0MEZB NDExRUZBMUExNjkzNEM0RjlBRTAyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGZWbTEySTJmQ2pIOF9FbFliUnhhNHlodVdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi8yM0IxQTAxMjBG QTUxMUVGQjI4RjUyMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfpADANBgkqhkiG9w0BAQsFAAOCAQEAATJGowun9MBq98Ke XVriEKYHn4MzpBXs8E/yoBnD7kq84Ym1MbW+Zq7PMQR1STjIvr9j0xbbY7MnNL+9 Arqp48ruKFSuiyxK1whQMpf2Sx8IacCkTpdiayjb8fs8CicsziknFD8gBAfL51FB CE6Tc8zOEXBwnpPx2bP0uOkpNsPQlPzSBgeUQh8jszg0PPgJqvx8rmoVV84W9l7I NWjbauj4bT0hjayGOEAoS733aUFbGQQlwIRyUaT8f2dQMqRSnV+QamMtZV1jbnXZ qGRPBNB3DoD4uIlFHw2InpRHL3uzBC4IctnXyLxbaSlfCMGBMnjUhuKWWFt3LEyG GJutKA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org