$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa File: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (raw, json) Hash identifier: 2DySL4ObOCmXyb+PPtfKYhuKGwJyecMzBCKZCiDkN6w= Subject key identifier: 24:87:08:DE:74:4D:55:4D:CF:97:86:9E:D1:A5:92:51:3C:DC:D9:45 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0DA6 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa Signing time: Fri 02 Jun 2023 19:29:38 +0000 ROA not before: Fri 02 Jun 2023 19:29:38 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 51847 IP address blocks: 103.232.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3494 (0xda6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 2 19:29:38 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a4322-9df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:b9:53:9b:3c:10:44:10:c2:30:e7:95:01: e8:ad:39:df:bc:d8:54:b3:50:e3:3a:e3:55:76:ae: 71:db:06:13:9d:8d:12:16:63:cf:2c:f8:cc:a0:be: 8e:b4:cc:3f:cc:38:00:fb:b1:23:4d:26:a4:f4:8d: c7:64:20:eb:e5:e9:0c:44:7c:01:00:04:9b:e9:57: 5c:e2:3f:15:eb:04:fa:9d:2c:7a:01:06:8f:89:10: a1:06:49:0f:69:f8:dc:c5:6e:84:2e:18:26:9c:d1: 3e:8e:27:e3:05:4b:25:2a:1f:82:6c:4c:fa:0b:0f: 22:d2:f7:1a:6f:45:ed:78:89:20:ab:48:55:45:16: 70:23:4e:80:7e:e6:ed:91:6b:f1:a2:95:77:f8:4d: 05:da:7c:89:59:8b:86:6d:bd:11:7c:b4:17:13:5e: a3:6f:05:38:a7:4f:13:6c:fc:36:0a:6f:fe:74:f8: 3b:14:f2:1f:3d:99:47:3a:18:d8:65:86:37:07:dd: f6:78:f0:f8:4e:a5:95:fd:85:45:c0:51:55:91:ea: f1:aa:20:59:ba:9d:21:23:fb:e6:61:c2:27:ef:b2: 01:8f:ce:5e:99:43:ed:13:96:2a:f6:24:57:36:a6: 6e:1d:6d:6a:49:fa:93:ff:86:0b:2d:db:23:56:3e: 4c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:87:08:DE:74:4D:55:4D:CF:97:86:9E:D1:A5:92:51:3C:DC:D9:45 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.214.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:da:a9:ef:35:15:d3:c5:a0:eb:11:3f:7a:ec:1f:2b:6e:e6: 1f:10:f6:30:f6:5c:98:8a:ed:eb:10:06:21:f8:41:aa:a2:bd: ef:92:f7:06:6d:1c:a1:fc:22:6c:9c:9d:87:4a:28:2f:e1:5d: 3a:a2:47:ad:55:e5:03:33:c0:7a:f4:bb:db:52:43:63:1c:d2: f0:b7:a5:12:ea:59:6b:54:46:e0:01:c1:da:6f:84:19:29:f7: 9a:ef:1f:eb:15:79:d9:1c:42:e5:42:b9:dc:56:8b:f4:dc:d3: ce:15:63:21:85:d5:88:26:1b:e2:1f:9e:2d:50:75:40:f4:8d: 54:9c:af:70:3c:61:b5:49:37:ca:86:ab:e0:71:4c:4c:6d:4a: 11:12:ec:e3:0d:7e:2c:6f:80:ee:69:30:37:b8:d6:c4:1c:00: 0a:1d:9d:f6:77:7c:ca:f4:a1:ba:be:52:c6:e5:38:6c:48:b6: 6c:c3:ae:f5:b5:e3:7c:05:02:fb:83:a1:8b:0d:a5:6d:cb:fe: 5f:1b:3c:ff:ba:e9:ec:cf:79:83:23:89:d3:05:65:a0:6e:71: f7:a4:61:ed:d8:8f:a7:82:f3:dc:1a:4e:5a:a9:47:89:1a:17: f5:54:dd:1a:43:2b:ec:ec:ae:6e:b0:9f:ba:13:04:c5:00:c6: 5f:64:04:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjMwNjAyMTkyOTM4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNDMyMi05ZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/u5U5s8EEQQwjDnlQHorTnfvNhUs1DjOuNVdq5x2wYTnY0SFmPPLPjMoL6O tMw/zDgA+7EjTSak9I3HZCDr5ekMRHwBAASb6Vdc4j8V6wT6nSx6AQaPiRChBkkP afjcxW6ELhgmnNE+jifjBUslKh+CbEz6Cw8i0vcab0XteIkgq0hVRRZwI06Afubt kWvxopV3+E0F2nyJWYuGbb0RfLQXE16jbwU4p08TbPw2Cm/+dPg7FPIfPZlHOhjY ZYY3B932ePD4TqWV/YVFwFFVkerxqiBZup0hI/vmYcIn77IBj85emUPtE5Yq9iRX NqZuHW1qSfqT/4YLLdsjVj5MEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCSHCN50 TVVNz5eGntGlklE83NlFMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvRUQyQkY1RkVE RjM3MTFFRDk5QUM3RDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6NYwDQYJKoZIhvcNAQELBQADggEBAA7aqe81FdPFoOsR P3rsHytu5h8Q9jD2XJiK7esQBiH4Qaqive+S9wZtHKH8ImycnYdKKC/hXTqiR61V 5QMzwHr0u9tSQ2Mc0vC3pRLqWWtURuABwdpvhBkp95rvH+sVedkcQuVCudxWi/Tc 084VYyGF1YgmG+Ifni1QdUD0jVScr3A8YbVJN8qGq+BxTExtShES7OMNfixvgO5p MDe41sQcAAodnfZ3fMr0obq+UsblOGxItmzDrvW143wFAvuDoYsNpW3L/l8bPP+6 6ezPeYMjidMFZaBucfekYe3Yj6eC89waTlqpR4kaF/VU3RpDK+zsrm6wn7oTBMUA xl9kBPs= -----END CERTIFICATE-----Generated at Fri May 10 20:05:23 2024 by rpki-client on console-fra.rpki-client.org