$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/A9630ACCF78011ED829BBD5DC4F9AE02.roa File: A9630ACCF78011ED829BBD5DC4F9AE02.roa (raw, json) Hash identifier: /1k8cf09XpBT8IXB/KxmxDgDn3BpN9om+/6lhG0uR6Y= Subject key identifier: 64:E6:A5:8E:94:26:A4:11:03:E5:28:11:81:E6:0A:7E:5A:D4:27:44 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0DA4 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/A9630ACCF78011ED829BBD5DC4F9AE02.roa Signing time: Fri 02 Jun 2023 19:29:36 +0000 ROA not before: Fri 02 Jun 2023 19:29:36 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 210542 IP address blocks: 103.232.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3492 (0xda4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 2 19:29:36 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a4320-6981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ae:13:a0:a6:e6:91:1e:cc:0a:7a:3f:18:cd: 69:8e:c2:e1:9d:83:14:9f:45:e0:f9:c6:84:9a:50: bf:c6:99:1d:68:4c:d2:6f:57:16:44:c1:e8:8e:05: d1:87:ac:dd:44:e8:66:06:9e:e3:4a:da:d9:06:94: 16:a7:a8:64:72:8f:2b:5c:ed:96:10:32:25:1f:8c: cb:ff:0a:1b:7f:b1:bb:cc:b2:ce:cf:40:2e:10:b3: 80:5b:ef:67:2e:c6:58:8a:a6:58:7b:48:f8:b9:f7: 04:0f:55:d0:de:ad:5e:c8:ad:c5:f6:c7:ff:d5:c8: d7:49:2e:9c:7b:2e:e4:1a:d0:ca:a4:dd:fc:1f:08: b7:45:56:40:eb:64:ee:0c:15:fd:bc:d8:16:dc:7b: ec:a9:46:e1:91:08:75:b8:60:c0:f3:f0:b9:fa:9c: f1:86:34:d4:fa:7c:82:32:2e:99:d8:2e:b3:85:43: 0c:f3:48:d1:54:9e:4e:a5:a2:24:a8:57:61:5b:e4: 64:16:d8:03:69:9b:37:4b:c5:0f:ec:d1:49:e5:98: b8:de:ed:1f:94:38:0f:de:2a:f9:ae:29:bd:09:dd: 0e:9f:c6:62:9e:4e:4c:26:b2:cb:40:39:16:16:20: 50:f0:86:57:0a:77:b9:17:6e:fc:9f:1c:89:33:18: b9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E6:A5:8E:94:26:A4:11:03:E5:28:11:81:E6:0A:7E:5A:D4:27:44 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/A9630ACCF78011ED829BBD5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.214.0/23 Signature Algorithm: sha256WithRSAEncryption 68:59:30:ea:f6:89:bc:d3:ec:04:7f:17:fd:85:75:67:d9:82: 00:2c:8f:19:6c:51:d0:a1:35:40:bd:4b:ec:ea:9d:68:d2:33: 74:85:a8:dc:2f:30:ca:2a:35:26:05:fc:74:5a:6b:00:68:15: 2b:7d:cb:69:4f:47:be:6c:1a:22:e3:5f:18:9d:23:47:31:b6: 73:60:67:00:a3:c7:35:b5:92:52:83:90:1c:f2:5d:4d:e9:85: c2:1d:a3:d5:f9:84:52:e8:7d:52:c6:4e:cb:67:d7:dc:4a:c4: d7:31:1b:99:0d:9f:87:b2:81:bd:33:18:4c:93:20:df:e4:2a: e8:8f:42:12:cb:1d:69:05:d2:8e:6a:92:42:09:73:2b:b6:d6: 4e:c0:6b:96:27:b3:8f:0f:6f:aa:d2:ac:cb:5e:ce:bf:c2:42: db:d9:23:00:53:dd:fb:95:af:92:f7:1e:00:11:3c:ee:9c:7c: 63:f6:ce:4c:05:a2:de:b5:24:f6:45:f0:e3:6b:0f:78:b2:06: e9:a9:b5:f3:29:c4:4d:e3:12:5a:97:f2:98:e5:6d:d6:1a:9e: df:fd:96:fc:f5:0d:9b:5f:f0:76:00:87:71:65:b9:2f:6c:1f: 7b:e9:0a:4c:be:6f:42:f8:1f:8d:d6:0c:4d:90:b8:57:7b:62: 35:00:dd:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjMwNjAyMTkyOTM2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNDMyMC02OTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqq4ToKbmkR7MCno/GM1pjsLhnYMUn0Xg+caEmlC/xpkdaEzSb1cWRMHojgXR h6zdROhmBp7jStrZBpQWp6hkco8rXO2WEDIlH4zL/wobf7G7zLLOz0AuELOAW+9n LsZYiqZYe0j4ufcED1XQ3q1eyK3F9sf/1cjXSS6cey7kGtDKpN38Hwi3RVZA62Tu DBX9vNgW3HvsqUbhkQh1uGDA8/C5+pzxhjTU+nyCMi6Z2C6zhUMM80jRVJ5OpaIk qFdhW+RkFtgDaZs3S8UP7NFJ5Zi43u0flDgP3ir5rim9Cd0On8Zink5MJrLLQDkW FiBQ8IZXCne5F278nxyJMxi59wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGTmpY6U JqQRA+UoEYHmCn5a1CdEMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvQTk2MzBBQ0NG NzgwMTFFRDgyOUJCRDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6NYwDQYJKoZIhvcNAQELBQADggEBAGhZMOr2ibzT7AR/ F/2FdWfZggAsjxlsUdChNUC9S+zqnWjSM3SFqNwvMMoqNSYF/HRaawBoFSt9y2lP R75sGiLjXxidI0cxtnNgZwCjxzW1klKDkBzyXU3phcIdo9X5hFLofVLGTstn19xK xNcxG5kNn4eygb0zGEyTIN/kKuiPQhLLHWkF0o5qkkIJcyu21k7Aa5Yns48Pb6rS rMtezr/CQtvZIwBT3fuVr5L3HgARPO6cfGP2zkwFot61JPZF8ONrD3iyBumptfMp xE3jElqX8pjlbdYant/9lvz1DZtf8HYAh3FluS9sH3vpCky+b0L4H43WDE2QuFd7 YjUA3dI= -----END CERTIFICATE-----Generated at Fri May 10 20:05:23 2024 by rpki-client on console-fra.rpki-client.org