$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5E8F2C98FA5311EE9E6A8150C4F9AE02.roa File: 5E8F2C98FA5311EE9E6A8150C4F9AE02.roa (raw, json) Hash identifier: t2XCM7i4OU1dJCWOWGHY/QG5Me6zRsq04MXpYCzedgY= Subject key identifier: 8C:55:EA:10:57:F3:39:D6:F9:BD:1B:B5:57:5E:CF:7C:E5:CB:E3:E2 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 05C8 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5E8F2C98FA5311EE9E6A8150C4F9AE02.roa Signing time: Sun 14 Apr 2024 11:37:27 +0000 ROA not before: Sun 14 Apr 2024 11:37:27 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151487 IP address blocks: 103.240.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Apr 14 11:37:27 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=661bbff7-b3ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:54:96:2c:5c:a8:0e:46:41:62:01:81:66: f3:56:b7:ad:40:07:a6:b0:4e:c7:42:b5:80:b5:ae: 8d:ea:f9:70:a8:09:89:4e:ee:2d:6b:28:ad:5d:b0: 3e:ed:c3:b5:bf:0d:2e:ed:fd:64:b0:bd:9f:a4:e9: 7c:60:5d:f4:2b:b6:e0:3c:7b:e9:e5:fb:7f:6e:6a: d3:32:e0:6b:9b:57:07:d7:c8:ef:c4:68:7c:73:da: 70:1e:9c:bb:5b:6d:91:9f:8b:28:6f:c9:cb:55:31: 44:4e:ce:a9:51:75:23:d7:a9:b1:bc:ea:44:a8:b5: 4a:29:be:73:49:83:c5:01:8f:6a:0d:2f:b8:e5:e9: 8d:a9:26:bf:7e:71:cd:23:56:5f:f8:bb:69:6f:0f: 11:0a:a2:b1:de:23:f1:30:58:dc:6c:72:9b:e7:aa: a3:e7:b4:1c:be:16:22:ac:f5:59:68:e0:b4:dc:16: ce:be:6e:77:cb:0b:d1:15:a3:84:76:72:7a:c6:25: 93:77:31:77:fa:37:b0:6d:15:43:16:4c:0a:be:2b: f1:3e:45:fb:07:6e:0f:82:4e:76:9f:2a:76:97:07: a3:f5:79:39:69:a6:2a:f0:68:94:b6:46:c7:64:11: 87:98:04:56:cf:ca:9c:c8:90:e9:38:b3:b8:5c:08: 00:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:55:EA:10:57:F3:39:D6:F9:BD:1B:B5:57:5E:CF:7C:E5:CB:E3:E2 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/5E8F2C98FA5311EE9E6A8150C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.199.0/24 Signature Algorithm: sha256WithRSAEncryption 91:2c:9a:03:95:05:dd:2b:91:72:8b:a7:a1:49:d7:d3:42:8b: a2:69:a6:3a:58:20:79:9d:1c:63:f6:50:11:93:54:a5:12:fc: e5:5f:10:02:a2:a0:83:28:8c:88:66:de:00:10:5c:d0:fa:e8: 68:97:b5:28:a8:1a:3d:57:ba:2e:ed:0e:60:49:95:9c:3d:fa: 1b:88:d1:64:a7:37:24:9c:15:08:60:a6:1c:2a:25:54:95:c2: 52:12:28:f1:80:31:97:15:b3:65:53:3a:1f:7e:1d:90:cb:d9: b7:97:5f:03:ac:d8:58:f0:28:d3:07:5b:f9:c9:46:71:c7:6c: ae:e8:86:57:82:3e:99:0f:94:f3:7a:e0:5c:72:58:81:df:e1: 03:0c:21:08:83:b2:b8:30:04:63:8a:12:09:b4:f2:02:ec:33: ba:b6:a8:47:04:95:b1:a1:12:b3:00:86:b1:d7:d7:bc:96:f1: c7:5e:20:ab:d7:b3:90:c1:31:03:ef:9a:30:5b:f2:c7:00:da: e3:cc:38:ed:80:ad:7a:9c:5f:0b:14:50:e0:78:28:1f:3c:73: 78:c6:e0:1b:cc:b3:1e:fe:f7:c3:9a:60:38:5d:1c:66:6e:e9: a5:c4:f5:d2:e7:ad:a0:cc:09:33:5e:11:76:a5:93:ff:e0:e5: 32:08:e1:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwNDE0MTEzNzI3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFiYmZmNy1iM2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2X1UlixcqA5GQWIBgWbzVretQAemsE7HQrWAta6N6vlwqAmJTu4tayitXbA+ 7cO1vw0u7f1ksL2fpOl8YF30K7bgPHvp5ft/bmrTMuBrm1cH18jvxGh8c9pwHpy7 W22Rn4sob8nLVTFETs6pUXUj16mxvOpEqLVKKb5zSYPFAY9qDS+45emNqSa/fnHN I1Zf+Ltpbw8RCqKx3iPxMFjcbHKb56qj57QcvhYirPVZaOC03BbOvm53ywvRFaOE dnJ6xiWTdzF3+jewbRVDFkwKvivxPkX7B24Pgk52nyp2lwej9Xk5aaYq8GiUtkbH ZBGHmARWz8qcyJDpOLO4XAgAUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxV6hBX 8znW+b0btVdez3zly+PiMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvNUU4RjJDOThG QTUzMTFFRTlFNkE4MTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8McwDQYJKoZIhvcNAQELBQADggEBAJEsmgOVBd0rkXKL p6FJ19NCi6JppjpYIHmdHGP2UBGTVKUS/OVfEAKioIMojIhm3gAQXND66GiXtSio Gj1Xui7tDmBJlZw9+huI0WSnNyScFQhgphwqJVSVwlISKPGAMZcVs2VTOh9+HZDL 2beXXwOs2FjwKNMHW/nJRnHHbK7ohleCPpkPlPN64FxyWIHf4QMMIQiDsrgwBGOK Egm08gLsM7q2qEcElbGhErMAhrHX17yW8cdeIKvXs5DBMQPvmjBb8scA2uPMOO2A rXqcXwsUUOB4KB88c3jG4BvMsx7+98OaYDhdHGZu6aXE9dLnraDMCTNeEXalk//g 5TII4cw= -----END CERTIFICATE-----Generated at Wed May 29 02:49:53 2024 by rpki-client on console-fra.rpki-client.org