$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa File: 23B1A0120FA511EFB28F5235C4F9AE02.roa (raw, json) Hash identifier: 44PToKnQMLYmf4tGPX0vn4meZpq1209WbHd/hcB+7Kc= Subject key identifier: CE:08:E3:9A:33:51:E5:57:BA:63:CB:93:9B:19:99:6F:92:EC:9B:A6 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 02 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa Signing time: Sat 11 May 2024 14:45:42 +0000 ROA not before: Sat 11 May 2024 14:45:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 46015 IP address blocks: 103.233.0.0/22 maxlen: 22 103.233.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 07:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: May 11 14:45:42 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=663f8495-41cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b0:ce:6b:16:af:d4:67:96:61:04:32:b2:96: 79:6c:8b:e7:6f:bb:1e:4d:04:5d:2d:11:9b:dc:b7: 57:be:ff:3d:af:98:25:40:a5:81:f9:8d:78:2c:76: a1:32:95:e7:13:66:70:87:2c:a0:a6:58:3d:e9:f6: da:38:fa:75:3c:83:e3:3d:0a:1e:a1:b4:87:13:33: b5:97:ff:91:0d:d5:d8:4c:9e:3c:ff:78:f1:fd:d2: 32:c6:94:78:a3:b4:41:bc:dc:f8:93:1e:61:40:70: 17:77:b4:ca:6c:14:76:71:f8:9e:6c:06:27:6e:bb: e4:d3:d4:29:ef:7f:c5:06:10:bb:8b:b3:c4:4b:b0: 1a:36:a8:1d:0f:14:39:69:e8:91:23:e9:66:26:94: a8:00:c4:f5:74:fe:59:78:94:19:c1:9f:02:db:76: 8e:6a:f5:2b:36:91:d8:37:8f:34:7c:7c:cf:0e:ff: d2:86:69:51:d1:aa:04:37:dc:4f:57:ee:78:74:2c: 74:8d:2c:ae:d5:88:6b:23:b7:99:68:7c:74:bd:c5: 62:02:da:0e:95:1e:cd:9d:b7:26:08:e2:5e:59:b6: fd:91:f8:8a:8f:33:e1:cd:b2:ae:84:e7:5d:f7:fb: 98:77:53:e1:91:55:aa:88:13:65:98:be:41:d9:85: 28:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:08:E3:9A:33:51:E5:57:BA:63:CB:93:9B:19:99:6F:92:EC:9B:A6 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/23B1A0120FA511EFB28F5235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.0.0/22 Signature Algorithm: sha256WithRSAEncryption 76:54:64:8e:e5:3e:2d:b0:f0:15:2b:1b:f1:58:8f:70:ff:12: 97:1e:84:70:2d:4d:ea:94:70:fa:b2:4c:ef:cc:f5:ec:7e:f5: d0:b1:ff:02:07:e5:b2:37:a4:ce:8b:1e:74:5b:09:13:90:d6: 90:bd:6e:c6:b3:e8:16:94:79:02:85:f5:35:38:9b:d4:50:0b: 7c:97:95:16:b9:cf:fc:bf:e4:ce:f1:94:94:a2:83:a8:ba:7e: 92:e2:07:7a:45:dc:0a:8c:9d:c0:c2:e5:34:9f:65:35:da:e9: d5:dd:2b:70:32:b4:5e:f2:27:82:78:97:b3:ca:52:7e:db:2a: 85:00:79:f0:f1:cb:75:45:25:eb:86:ac:78:6d:0e:17:d4:22: 3a:e3:a1:60:32:fd:02:ec:3b:69:c7:1a:bf:a1:3f:c5:21:47: 90:95:a0:d4:d0:cf:b4:af:aa:c5:c6:e0:95:f1:7f:8b:24:40: 84:f6:06:00:e6:fc:ca:dc:c6:36:ba:ad:76:34:5d:36:e2:37: 10:b5:71:db:b9:08:fd:f5:6c:26:60:77:b1:3f:a7:22:ec:41: c0:86:3b:76:b1:7c:ad:45:79:3e:9a:ac:53:20:77:8f:c5:d1: 1b:3a:f8:59:09:4c:dd:d4:1c:b9:01:1a:98:ce:11:ff:03:c7: 50:40:97:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0I0NzExMC8GA1UEBRMoNURGNTY2RDc2MjM2N0MyOEM3RjNGMTI1NjFCNDcxNkI4 Q0ExQjk2NjAeFw0yNDA1MTExNDQ1NDJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2Y4NDk1LTQxY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwsM5rFq/UZ5ZhBDKylnlsi+dvux5NBF0tEZvct1e+/z2vmCVApYH5jXgsdqEy lecTZnCHLKCmWD3p9to4+nU8g+M9Ch6htIcTM7WX/5EN1dhMnjz/ePH90jLGlHij tEG83PiTHmFAcBd3tMpsFHZx+J5sBiduu+TT1Cnvf8UGELuLs8RLsBo2qB0PFDlp 6JEj6WYmlKgAxPV0/ll4lBnBnwLbdo5q9Ss2kdg3jzR8fM8O/9KGaVHRqgQ33E9X 7nh0LHSNLK7ViGsjt5lofHS9xWIC2g6VHs2dtyYI4l5Ztv2R+IqPM+HNsq6E5133 +5h3U+GRVaqIE2WYvkHZhShnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzgjjmjNR 5Ve6Y8uTmxmZb5Lsm6YwHwYDVR0jBBgwFoAUXfVm12I2fCjH8/ElYbRxa4yhuWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQjQ3Lzg3MUI5Mjk0MEZB NDExRUZBMUExNjkzNEM0RjlBRTAyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGZWbTEySTJmQ2pIOF9FbFliUnhhNHlodVdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi8yM0IxQTAxMjBG QTUxMUVGQjI4RjUyMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfpADANBgkqhkiG9w0BAQsFAAOCAQEAdlRkjuU+LbDwFSsb 8ViPcP8Slx6EcC1N6pRw+rJM78z17H710LH/AgflsjekzosedFsJE5DWkL1uxrPo FpR5AoX1NTib1FALfJeVFrnP/L/kzvGUlKKDqLp+kuIHekXcCoydwMLlNJ9lNdrp 1d0rcDK0XvIngniXs8pSftsqhQB58PHLdUUl64aseG0OF9QiOuOhYDL9Auw7acca v6E/xSFHkJWg1NDPtK+qxcbglfF/iyRAhPYGAOb8ytzGNrqtdjRdNuI3ELVx27kI /fVsJmB3sT+nIuxBwIY7drF8rUV5PpqsUyB3j8XRGzr4WQlM3dQcuQEamM4R/wPH UECXRA== -----END CERTIFICATE-----Generated at Tue Jun 25 10:01:17 2024 by rpki-client on console-fra.rpki-client.org