$ rpki-client -vvf rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa File: E73FF93CF27411E99E67A342C4F9AE02.roa (raw, json) Hash identifier: HTuKrOXo2Ww1fzisrGMVtViC8UEXYANAgC/2a/ph0C0= Subject key identifier: 2E:51:D1:7E:A4:FD:D2:0D:6F:D5:9C:C0:CC:9E:70:84:88:8C:43:62 Certificate issuer: /CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Certificate serial: 0B36 Authority key identifier: 28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa Signing time: Fri 02 Jun 2023 20:00:50 +0000 ROA not before: Fri 02 Jun 2023 20:00:50 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133429 IP address blocks: 103.93.232.0/24 maxlen: 24 2401:31c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Validity Not Before: Jun 2 20:00:50 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a4a72-9643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:d7:95:9c:6c:dd:52:fc:c1:41:7d:a4:3c: a4:95:30:e4:b1:32:1e:8c:7b:e6:5b:c0:c4:df:c7: d9:ff:a0:6c:05:31:5c:ea:e3:26:c8:3d:12:f2:1d: 21:5e:24:fb:dc:4f:07:a6:fc:98:fe:60:99:67:a7: 04:9e:c8:ce:ec:70:93:ab:d9:90:a5:d7:1a:f3:6c: b7:13:de:81:b5:38:0d:92:08:43:d7:e8:b4:25:c5: 30:a9:51:1d:f0:9c:4b:03:f1:90:a9:b5:e4:74:d1: d3:25:43:c9:b1:ac:6a:ed:2d:28:fe:c7:66:9d:49: 78:77:84:e5:19:cf:1a:9a:e0:f9:52:1d:86:1b:94: 1e:bb:3c:d1:89:e6:31:2a:5d:7b:a8:f4:5a:f7:72: 9a:95:c9:fe:58:93:24:2f:b4:f3:ec:1d:49:54:f8: 4d:76:71:a9:cf:00:71:03:6f:15:f1:51:ba:f9:b2: c0:97:66:a3:3c:f7:9c:ca:83:7d:0c:d7:f8:9a:b4: 66:3b:c7:78:eb:0b:82:89:77:a3:d1:ab:3a:c8:c3: 48:63:04:b8:68:23:b5:67:1a:21:22:9c:01:f5:5e: 9f:91:e1:99:88:7d:ff:84:0a:8f:b2:71:26:6e:b5: 1d:49:a3:b2:86:b6:a1:a3:ab:f4:05:8d:36:31:e1: 2d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:51:D1:7E:A4:FD:D2:0D:6F:D5:9C:C0:CC:9E:70:84:88:8C:43:62 X509v3 Authority Key Identifier: keyid:28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.232.0/24 IPv6: 2401:31c0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption b9:d5:e5:66:98:68:2c:e4:c9:9c:6b:49:1c:6d:6a:db:02:9c: b2:aa:62:c4:d3:1b:88:23:89:69:ed:fe:b1:ce:66:c8:61:8d: 37:df:f9:b6:cc:f3:80:5b:7e:11:16:9f:92:cc:5e:7c:83:48: 14:9a:5b:56:86:ce:93:dd:1f:ae:3c:0c:a9:d5:39:f7:4d:cd: cc:98:ec:53:d7:69:7c:6f:0a:8d:e8:36:fb:be:51:32:8e:79: 4c:0c:3a:d4:0b:49:1e:02:b6:77:59:89:b4:4d:66:97:e3:bb: 89:d3:94:cf:9e:99:47:d4:98:28:be:9a:35:e2:ab:70:9e:4f: 75:61:41:d2:51:08:82:2a:39:bb:9d:35:29:77:e1:ca:9b:83: 94:09:b9:0e:9c:0d:1b:62:8f:68:aa:d2:1d:6a:55:72:50:e8: 44:d0:cf:9b:1e:f7:02:de:f8:48:11:60:ae:e3:85:b3:de:52: 88:cb:77:c5:47:9a:34:1c:58:ec:2c:54:22:49:01:a9:e4:c4: 05:06:e4:ea:18:5e:5d:8c:95:b5:bf:6f:09:34:34:6f:12:d5: b3:f3:c4:60:05:38:73:ee:fd:68:9b:30:6d:67:3b:52:e7:da: 1a:29:5a:f4:e0:5b:89:ec:95:7a:80:03:a3:5e:43:a7:5f:a1: 58:17:7f:ce -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZBRjcxMTAvBgNVBAUTKDI4RkJBREYxQzBCNUE0MjVCNUQyMUQ3Q0Y0NUM0MENB QTQ0RURDRTEwHhcNMjMwNjAyMjAwMDUwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNGE3Mi05NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAnXlZxs3VL8wUF9pDyklTDksTIejHvmW8DE38fZ/6BsBTFc6uMmyD0S8h0h XiT73E8HpvyY/mCZZ6cEnsjO7HCTq9mQpdca82y3E96BtTgNkghD1+i0JcUwqVEd 8JxLA/GQqbXkdNHTJUPJsaxq7S0o/sdmnUl4d4TlGc8amuD5Uh2GG5QeuzzRieYx Kl17qPRa93Kalcn+WJMkL7Tz7B1JVPhNdnGpzwBxA28V8VG6+bLAl2ajPPecyoN9 DNf4mrRmO8d46wuCiXej0as6yMNIYwS4aCO1ZxohIpwB9V6fkeGZiH3/hAqPsnEm brUdSaOyhraho6v0BY02MeEtBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC5R0X6k /dINb9WcwMyecISIjENiMB8GA1UdIwQYMBaAFCj7rfHAtaQltdIdfPRcQMqkTtzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkFGNy83QjBCNkY3MkYy NzMxMUU5QUUyNTc2NDBDNEY5QUUwMi9LUHV0OGNDMXBDVzEwaDE4OUZ4QXlxUk8z T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQdXQ4Y0MxcENXMTBoMTg5RnhBeXFSTzNPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZBRjcvN0IwQjZGNzJGMjczMTFFOUFFMjU3NjQwQzRGOUFFMDIvRTczRkY5M0NG Mjc0MTFFOTlFNjdBMzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnXegwDwQCAAIwCQMHACQBMcD//zANBgkqhkiG9w0BAQsF AAOCAQEAudXlZphoLOTJnGtJHG1q2wKcsqpixNMbiCOJae3+sc5myGGNN9/5tszz gFt+ERafksxefINIFJpbVobOk90frjwMqdU5903NzJjsU9dpfG8Kjeg2+75RMo55 TAw61AtJHgK2d1mJtE1ml+O7idOUz56ZR9SYKL6aNeKrcJ5PdWFB0lEIgio5u501 KXfhypuDlAm5DpwNG2KPaKrSHWpVclDoRNDPmx73At74SBFgruOFs95SiMt3xUea NBxY7CxUIkkBqeTEBQbk6hheXYyVtb9vCTQ0bxLVs/PEYAU4c+79aJswbWc7Uufa Gila9OBbieyVeoADo15Dp1+hWBd/zg== -----END CERTIFICATE-----Generated at Fri May 10 20:05:23 2024 by rpki-client on console-fra.rpki-client.org