$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa File: 217830E8779A11EE903E3E53C4F9AE02.roa (raw, json) Hash identifier: 1TqPRpBbx32/nqdo82VI3gFHZC2vNfrxqpkvnsy7GWw= Subject key identifier: 8E:DB:55:31:D2:54:5A:41:33:33:C4:1B:2D:47:CE:C1:EF:6A:0F:C5 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0534 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa Signing time: Tue 31 Oct 2023 03:03:57 +0000 ROA not before: Tue 31 Oct 2023 03:03:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 20473 IP address blocks: 103.231.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Oct 31 03:03:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65406e9c-b0bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:bf:dc:60:be:ba:a9:0d:e2:9f:e6:77:eb:bf: 6a:42:4d:ad:7e:79:a2:00:27:16:7d:d2:f9:03:60: dc:63:d1:e7:ed:b7:1a:9d:1e:61:0f:72:f4:de:b6: 5c:f8:b1:ab:8f:04:0c:e8:9c:df:27:32:c3:e7:e5: 4d:2a:80:d7:c6:98:15:e7:24:5f:74:66:50:42:65: 95:f4:78:7a:4d:da:0d:54:fa:d9:7b:74:e2:18:f0: 58:b5:d9:1a:17:2e:fb:12:90:56:94:36:93:49:77: de:f7:ce:c3:8b:95:93:ce:cd:fd:2b:f3:af:f3:ff: e8:af:a4:2b:07:be:90:5d:3f:8d:dd:c6:75:ec:cd: 84:0e:33:fc:21:f2:08:fa:29:c7:ec:14:fe:3f:ff: f2:82:70:8a:d3:2f:90:15:99:7c:18:d8:8e:c1:38: b2:af:ea:fa:66:c6:f3:8d:56:99:57:95:9c:8d:8a: b0:68:10:8c:33:25:39:9e:c7:23:fb:65:a6:38:7a: 93:e6:32:02:fc:96:d6:49:20:55:51:8a:06:1d:36: eb:aa:16:b8:05:a9:06:80:a9:e6:f8:3a:0d:45:a6: ba:8b:03:63:fa:74:47:c1:c2:e8:0e:33:30:c6:39: 77:c2:8c:47:1a:66:65:4b:6c:3b:d8:52:85:77:3f: d0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DB:55:31:D2:54:5A:41:33:33:C4:1B:2D:47:CE:C1:EF:6A:0F:C5 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.58.0/24 Signature Algorithm: sha256WithRSAEncryption 65:04:94:03:09:b6:08:cc:9f:f6:7c:53:0b:a5:69:93:f7:2e: c2:f6:fb:07:ab:66:0e:97:3e:60:70:46:eb:f8:d1:30:5b:e0: b1:12:e9:28:3c:2a:44:cc:c9:b3:53:ea:1f:0a:dd:15:8a:6f: 31:a0:6d:7e:c4:d9:30:f8:a0:d2:b7:30:47:7c:6b:4f:36:70: 01:70:ef:2c:28:5b:21:69:2b:85:02:e6:0b:d2:3d:ee:a1:97: 07:26:b1:e7:96:d2:0b:08:35:a4:8e:2b:6d:a6:fa:19:fb:0e: b4:74:78:e1:42:74:f6:58:e6:a3:79:e9:fb:2d:d1:ec:50:d3: 7f:4b:63:0d:29:41:80:51:73:b7:33:bc:94:37:91:e6:ed:05: a4:3d:fd:91:ab:a9:78:ac:65:42:da:43:d0:71:93:30:0f:33: ce:61:e1:98:f3:b8:c3:8f:5c:a7:68:b2:7b:eb:6f:d7:c7:cf: 6b:4b:0e:c4:89:c6:82:ae:9b:af:0d:97:c9:e6:f3:91:d8:67: 7e:44:e4:2c:2f:3a:d9:91:d0:ab:96:eb:42:88:09:d3:56:e6: 5d:46:ba:95:44:9b:65:51:8d:3d:9d:9a:17:74:39:45:b8:7e: bd:eb:ca:57:3c:ee:59:75:cc:7c:b6:c3:08:3c:c6:42:c1:bb: 65:59:5f:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMxMDMxMDMwMzU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQwNmU5Yy1iMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6r/cYL66qQ3in+Z3679qQk2tfnmiACcWfdL5A2DcY9Hn7bcanR5hD3L03rZc +LGrjwQM6JzfJzLD5+VNKoDXxpgV5yRfdGZQQmWV9Hh6TdoNVPrZe3TiGPBYtdka Fy77EpBWlDaTSXfe987Di5WTzs39K/Ov8//or6QrB76QXT+N3cZ17M2EDjP8IfII +inH7BT+P//ygnCK0y+QFZl8GNiOwTiyr+r6ZsbzjVaZV5WcjYqwaBCMMyU5nscj +2WmOHqT5jIC/JbWSSBVUYoGHTbrqha4BakGgKnm+DoNRaa6iwNj+nRHwcLoDjMw xjl3woxHGmZlS2w72FKFdz/Q8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI7bVTHS VFpBMzPEGy1HzsHvag/FMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMjE3ODMwRTg3 NzlBMTFFRTkwM0UzRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zowDQYJKoZIhvcNAQELBQADggEBAGUElAMJtgjMn/Z8 UwulaZP3LsL2+werZg6XPmBwRuv40TBb4LES6Sg8KkTMybNT6h8K3RWKbzGgbX7E 2TD4oNK3MEd8a082cAFw7ywoWyFpK4UC5gvSPe6hlwcmseeW0gsINaSOK22m+hn7 DrR0eOFCdPZY5qN56fst0exQ039LYw0pQYBRc7czvJQ3kebtBaQ9/ZGrqXisZULa Q9BxkzAPM85h4ZjzuMOPXKdosnvrb9fHz2tLDsSJxoKum68Nl8nm85HYZ35E5Cwv OtmR0KuW60KICdNW5l1GupVEm2VRjT2dmhd0OUW4fr3rylc87ll1zHy2wwg8xkLB u2VZXz4= -----END CERTIFICATE-----Generated at Sun May 5 03:09:53 2024 by rpki-client on console-ams.rpki-client.org