$ rpki-client -vvf rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa File: 2328656A840211EEB9348E11C4F9AE02.roa (raw, json) Hash identifier: N3MDXHzjqV4GpQ6x8O8u+w6AmWLtT9oFMdO88Fh9u3Q= Subject key identifier: 8A:45:D4:CE:2E:3D:F2:D6:44:BE:77:11:ED:58:99:74:A0:19:8F:7F Certificate issuer: /CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Certificate serial: 0BFC Authority key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa Signing time: Wed 15 Nov 2023 21:58:41 +0000 ROA not before: Wed 15 Nov 2023 21:58:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 63989 IP address blocks: 103.131.64.0/24 maxlen: 24 103.131.65.0/24 maxlen: 24 103.131.66.0/24 maxlen: 24 103.131.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3068 (0xbfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Validity Not Before: Nov 15 21:58:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65553f11-5fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b9:be:5a:cf:4e:67:13:bb:af:3b:ce:37:3c: 3a:7c:f7:ab:77:37:d0:58:54:6a:70:5c:2b:47:6d: 2a:60:b2:54:54:06:3b:38:74:b2:ba:c1:c4:ff:24: 6e:82:04:2d:e4:d5:48:fd:4d:32:cc:a2:b2:60:c2: ce:2e:8d:f3:e9:ae:e5:eb:79:72:12:7c:2c:2f:09: 3e:08:5d:da:7e:f4:14:2b:9c:b7:11:48:e7:ed:7e: bb:9f:4d:ff:40:0b:10:ea:8b:97:57:0c:1f:ac:12: de:e8:45:5b:03:fb:3f:db:60:c1:6e:e6:2a:01:c3: a7:91:ce:51:ec:c0:19:cd:82:a5:5e:b8:45:b8:bb: cd:cf:30:7f:c8:91:f2:30:7c:2c:58:83:45:b2:fc: e6:11:be:48:08:44:23:74:5a:6b:c4:28:3b:79:a7: 3d:89:52:c5:24:a3:c9:43:30:e1:e4:70:7f:c9:19: 57:30:b4:d8:31:99:65:f3:71:a5:25:72:0e:2d:98: 05:4c:c6:ae:7b:af:b7:3e:dd:a7:d2:b6:aa:aa:80: ef:61:70:97:2f:a1:5a:be:e6:14:26:dd:60:fd:65: bb:56:fc:89:01:3d:5b:49:d4:e9:d8:69:a7:f7:9f: 0b:27:a5:60:a7:19:4a:26:44:a0:83:81:03:39:22: f7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:45:D4:CE:2E:3D:F2:D6:44:BE:77:11:ED:58:99:74:A0:19:8F:7F X509v3 Authority Key Identifier: keyid:0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.64.0/22 Signature Algorithm: sha256WithRSAEncryption b0:e6:60:71:76:59:12:08:1e:1b:0c:03:17:bb:27:df:9b:77: 05:21:fb:62:06:1f:f4:43:b1:c8:eb:d5:e6:ac:27:8c:a7:dd: bb:3c:dd:2b:0d:b8:74:46:f0:76:87:83:93:1a:32:83:09:e8: bb:78:3f:85:21:66:ea:e0:69:31:51:51:b7:14:b6:2e:3c:bc: 73:81:f2:53:ea:82:3e:ab:87:58:16:40:3d:12:93:80:cd:50: 14:a9:7b:0a:fb:ac:13:9c:10:68:05:65:e1:43:ff:22:f3:84: c7:d8:4d:44:05:39:b9:d4:35:db:14:b8:b7:75:b0:3c:76:22: 64:23:3e:a1:b7:28:5d:38:13:a0:b8:80:40:a0:c8:03:a1:42: 32:f7:30:73:97:7b:11:30:01:6f:e0:54:83:a4:19:73:6d:ab: 42:14:07:cd:ea:13:6c:bd:d1:80:97:e1:3b:41:46:95:2b:5a: 9c:27:a8:84:c1:47:b7:8e:8e:bd:2f:3a:92:3e:7c:dc:b8:85: 39:3d:c1:3f:c9:c7:d7:87:a3:a5:65:bb:70:73:35:96:4b:6b: e6:6f:e9:42:26:50:ad:90:04:36:73:88:cc:07:b7:b5:d3:cd: e3:90:44:64:d8:98:de:ce:3c:71:3b:69:d0:1a:30:52:0c:3a: 23:ff:31:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMzMxMTAvBgNVBAUTKDBERTU5NkNCMkM2MENCNzU3REI4RjQwRUI4NkYyNDc2 NTJDMTNBMzAwHhcNMjMxMTE1MjE1ODQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU1M2YxMS01ZmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprm+Ws9OZxO7rzvONzw6fPerdzfQWFRqcFwrR20qYLJUVAY7OHSyusHE/yRu ggQt5NVI/U0yzKKyYMLOLo3z6a7l63lyEnwsLwk+CF3afvQUK5y3EUjn7X67n03/ QAsQ6ouXVwwfrBLe6EVbA/s/22DBbuYqAcOnkc5R7MAZzYKlXrhFuLvNzzB/yJHy MHwsWINFsvzmEb5ICEQjdFprxCg7eac9iVLFJKPJQzDh5HB/yRlXMLTYMZll83Gl JXIOLZgFTMaue6+3Pt2n0raqqoDvYXCXL6FavuYUJt1g/WW7VvyJAT1bSdTp2Gmn 958LJ6VgpxlKJkSgg4EDOSL3FwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIpF1M4u PfLWRL53Ee1YmXSgGY9/MB8GA1UdIwQYMBaAFA3llsssYMt1fbj0DrhvJHZSwTow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAzMy81RDAwQUU1MkRE NEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kzVjl1UFFPdUc4a2RsTEJP akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlV1d5eXhneTNWOXVQUU91RzhrZGxMQk9qQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMzMvNUQwMEFFNTJERDRDMTFFOUE2RDRCQjFEQzRGOUFFMDIvMjMyODY1NkE4 NDAyMTFFRUI5MzQ4RTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJng0AwDQYJKoZIhvcNAQELBQADggEBALDmYHF2WRIIHhsM Axe7J9+bdwUh+2IGH/RDscjr1easJ4yn3bs83SsNuHRG8HaHg5MaMoMJ6Lt4P4Uh ZurgaTFRUbcUti48vHOB8lPqgj6rh1gWQD0Sk4DNUBSpewr7rBOcEGgFZeFD/yLz hMfYTUQFObnUNdsUuLd1sDx2ImQjPqG3KF04E6C4gECgyAOhQjL3MHOXexEwAW/g VIOkGXNtq0IUB83qE2y90YCX4TtBRpUrWpwnqITBR7eOjr0vOpI+fNy4hTk9wT/J x9eHo6Vlu3BzNZZLa+Zv6UImUK2QBDZziMwHt7XTzeOQRGTYmN7OPHE7adAaMFIM OiP/McA= -----END CERTIFICATE-----Generated at Fri May 10 20:45:22 2024 by rpki-client on console-ams.rpki-client.org