$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa File: F3E5A660E69E11ED841AC682C4F9AE02.roa (raw, json) Hash identifier: r2cF6CUXXIssXVNgjy8s5EtYMgj+u5C+YMxAfCyAwO4= Subject key identifier: 74:01:B4:79:C0:63:CF:DA:8E:EF:7A:1E:C4:B3:DB:8B:A7:09:CD:C3 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04B1 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:28 +0000 ROA not before: Tue 05 Sep 2023 00:51:28 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136557 IP address blocks: 103.24.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 00:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:28 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67b90-2f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b0:0f:c4:f8:66:d6:ed:9f:9a:01:26:5b:ea: 8d:04:49:dd:4b:35:a6:45:a1:ce:37:18:26:ea:c1: 30:de:1c:e2:b8:5e:11:83:82:90:ef:66:f7:d9:a9: 3b:68:8d:b7:50:a6:f6:c0:fc:fd:f2:d1:b8:53:77: 01:20:b6:6e:db:ce:91:60:f6:2e:3b:47:ef:c1:3a: 56:e7:f2:5d:6a:fc:cb:e3:f1:4f:b3:52:50:74:16: e2:d8:41:94:c6:c2:67:44:bb:ee:8f:f2:c6:31:75: bc:17:35:7c:d7:fa:d3:c7:cf:a4:78:5f:3c:03:82: 52:0f:8c:f2:fd:e8:a2:13:00:a7:c0:a3:2d:83:38: 8b:c8:fe:9c:15:f1:37:9d:66:d9:02:7a:7f:00:99: 6f:59:d0:61:46:38:f4:d0:79:19:4b:62:ca:03:1b: 23:b5:a4:5c:a4:4a:1a:b5:b6:b3:9e:83:61:51:c5: 65:04:b7:75:cf:3b:12:d2:c5:dc:36:d2:86:a6:28: 06:d6:54:cb:ec:f9:62:35:61:dc:82:c2:f4:e2:c4: a7:66:0d:cf:2e:15:03:f4:60:5b:33:8a:24:89:e9: c5:01:19:56:14:2c:88:fb:90:75:0d:97:25:f1:77: ae:09:a7:42:27:99:da:89:0d:ef:09:e8:4e:89:f1: 35:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:01:B4:79:C0:63:CF:DA:8E:EF:7A:1E:C4:B3:DB:8B:A7:09:CD:C3 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.219.0/24 Signature Algorithm: sha256WithRSAEncryption 29:ae:bb:df:8a:e6:ae:7b:0a:eb:2d:41:0c:ac:85:f2:3d:c8: e9:f5:e0:3a:f3:bd:bb:7d:aa:ef:d9:f9:39:4c:8f:eb:58:9e: 53:8e:fb:47:df:ae:c4:fa:49:c3:c8:6c:9a:e4:0d:41:85:35: 32:b6:79:af:7d:f7:39:26:90:02:ff:b7:1b:64:4f:be:1e:a4: 8b:d1:b0:db:06:0c:f8:0b:03:f5:c8:fa:d4:aa:72:a6:4f:39: 70:1f:bb:69:45:c8:e7:5e:14:73:eb:1f:44:f0:58:64:ae:2e: 9b:5e:1b:28:4a:57:eb:bb:40:ae:d2:bf:ce:75:4f:ee:f1:44: 78:3d:e9:d9:f1:57:9b:dc:f5:b3:3e:ca:14:3c:ac:ad:8b:06: 2b:5d:20:51:ff:19:ad:c8:ad:cf:a5:4e:5a:91:d3:0f:78:9d: 69:ef:29:8b:1c:d0:67:16:2d:f8:50:6d:87:bd:dc:53:1d:ef: 1f:4d:cc:50:77:03:fe:12:43:6b:42:30:32:fe:1a:62:a5:3e: c8:e8:80:14:49:ab:67:20:57:68:00:c0:7d:a6:59:7c:08:bc: 99:02:36:56:b3:cb:a5:2c:d7:ec:55:cd:1d:96:3a:e7:90:e7: 84:ae:01:84:ca:6f:ad:80:bc:c8:bd:4c:00:8e:3e:77:d8:26: 45:58:f5:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTI4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2I5MC0yZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rAPxPhm1u2fmgEmW+qNBEndSzWmRaHONxgm6sEw3hziuF4Rg4KQ72b32ak7 aI23UKb2wPz98tG4U3cBILZu286RYPYuO0fvwTpW5/JdavzL4/FPs1JQdBbi2EGU xsJnRLvuj/LGMXW8FzV81/rTx8+keF88A4JSD4zy/eiiEwCnwKMtgziLyP6cFfE3 nWbZAnp/AJlvWdBhRjj00HkZS2LKAxsjtaRcpEoatbaznoNhUcVlBLd1zzsS0sXc NtKGpigG1lTL7PliNWHcgsL04sSnZg3PLhUD9GBbM4okienFARlWFCyI+5B1DZcl 8XeuCadCJ5naiQ3vCehOifE1nQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHQBtHnA Y8/aju96HsSz24unCc3DMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRjNFNUE2NjBF NjlFMTFFRDg0MUFDNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGNswDQYJKoZIhvcNAQELBQADggEBACmuu9+K5q57Cust QQyshfI9yOn14Drzvbt9qu/Z+TlMj+tYnlOO+0ffrsT6ScPIbJrkDUGFNTK2ea99 9zkmkAL/txtkT74epIvRsNsGDPgLA/XI+tSqcqZPOXAfu2lFyOdeFHPrH0TwWGSu LpteGyhKV+u7QK7Sv851T+7xRHg96dnxV5vc9bM+yhQ8rK2LBitdIFH/Ga3Irc+l TlqR0w94nWnvKYsc0GcWLfhQbYe93FMd7x9NzFB3A/4SQ2tCMDL+GmKlPsjogBRJ q2cgV2gAwH2mWXwIvJkCNlazy6Us1+xVzR2WOueQ54SuAYTKb62AvMi9TACOPnfY JkVY9QE= -----END CERTIFICATE-----Generated at Mon May 27 02:57:01 2024 by rpki-client on console-fra.rpki-client.org