$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa File: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (raw, json) Hash identifier: UT8feWjhyQrq1iGWYI0jw13wLL7dpnckr6c2FJ0EwLc= Subject key identifier: 47:F3:FA:BC:D9:E4:A2:8C:E4:78:98:55:EA:22:9B:39:05:E5:4A:1F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 03E3 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa Signing time: Mon 11 Dec 2023 01:53:25 +0000 ROA not before: Mon 11 Dec 2023 01:53:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64098 IP address blocks: 43.227.108.0/23 maxlen: 23 43.227.110.0/24 maxlen: 24 43.227.111.0/24 maxlen: 24 103.46.220.0/24 maxlen: 24 103.46.221.0/24 maxlen: 24 103.46.222.0/24 maxlen: 24 103.46.223.0/24 maxlen: 24 203.23.68.0/24 maxlen: 24 203.23.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Dec 11 01:53:25 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65766b95-a5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:9c:5a:a9:d7:1e:01:88:48:ec:fb:ec:a1: d1:06:3f:ae:cf:07:98:98:a6:4f:3e:ee:9e:5b:0f: bd:e4:3d:84:b8:04:df:df:8f:01:5b:97:38:2a:36: ae:41:b4:7b:06:bc:1f:3c:31:99:56:75:b0:0e:a7: b7:d6:7c:90:d0:bd:ae:20:87:19:6f:83:9d:65:d1: 42:d2:9e:1c:dc:2e:99:10:ba:86:c2:e3:7b:35:3c: 92:a8:fa:a5:16:ef:a3:57:03:18:64:dc:98:31:e6: 47:b7:6c:31:7b:22:8b:1c:e0:91:7c:25:67:ca:10: 83:c1:57:a3:aa:30:09:7c:73:ed:1b:41:07:f0:85: 2b:1d:65:d9:e2:16:16:18:dd:2b:ec:d4:fb:06:f1: ec:55:17:5c:fd:0c:f6:0f:8b:c3:5f:6a:1d:5b:ac: c0:a3:09:a3:cd:6b:05:83:31:7e:ec:e3:b6:f5:68: b3:03:10:68:78:fd:8a:b6:a2:a6:e8:b8:52:a3:34: b0:9d:45:78:30:24:f6:f8:0a:94:3a:14:f4:b6:32: 73:5f:36:48:1e:d9:1c:3c:6c:a7:53:6e:02:6f:b1: 52:b4:6d:bb:de:93:f2:f0:6d:e8:83:d9:0a:b2:30: 16:d4:28:98:fe:b3:48:5e:ee:ba:58:01:98:77:62: 3b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F3:FA:BC:D9:E4:A2:8C:E4:78:98:55:EA:22:9B:39:05:E5:4A:1F X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.108.0/22 103.46.220.0/22 203.23.68.0/23 Signature Algorithm: sha256WithRSAEncryption 05:e4:73:ce:d8:99:b1:a8:2f:6a:1f:f7:3f:05:e5:12:d8:29: ab:51:0d:2f:ee:79:e5:da:e2:40:f1:65:2d:2e:fa:27:b5:43: c1:4e:7d:37:0f:3a:c5:ae:f7:f0:3c:60:b3:a2:44:a7:69:fa: 0c:26:57:92:3a:e5:2b:5c:c1:b2:68:c0:8a:5f:6e:57:8d:be: 83:d8:9b:99:54:dc:dc:d4:23:c2:04:35:80:d1:8a:e7:d9:c6: 5b:15:55:a7:95:26:45:c1:60:b3:66:b1:d3:d4:c4:d3:5d:28: f7:b6:6b:ab:46:16:62:06:0a:a8:38:2c:8b:54:9c:a1:77:2d: b2:f5:28:e7:2c:b3:e7:70:d9:b7:ee:7c:be:54:7d:98:83:ae: 6c:23:a5:70:20:b3:a7:16:3b:b0:6a:dc:45:9b:af:42:99:47: 2e:68:85:06:8a:98:9a:9f:aa:fc:d7:02:ab:71:74:33:5f:0d: a0:7c:be:b4:38:13:48:bc:17:82:b6:f4:25:d5:2a:43:48:c3: f4:a2:1d:69:e0:1f:7a:a1:d8:c0:4b:3b:f0:49:60:b5:c2:79: 76:a3:34:da:b5:69:80:39:7a:be:1c:b6:a9:07:82:07:f7:8c: 1b:43:59:ba:d7:2c:ac:8a:a3:be:f9:0a:71:3d:ce:8a:66:74: 01:35:cc:c6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjMxMjExMDE1MzI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc2NmI5NS1hNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhicWqnXHgGISOz77KHRBj+uzweYmKZPPu6eWw+95D2EuATf348BW5c4Kjau QbR7BrwfPDGZVnWwDqe31nyQ0L2uIIcZb4OdZdFC0p4c3C6ZELqGwuN7NTySqPql Fu+jVwMYZNyYMeZHt2wxeyKLHOCRfCVnyhCDwVejqjAJfHPtG0EH8IUrHWXZ4hYW GN0r7NT7BvHsVRdc/Qz2D4vDX2odW6zAowmjzWsFgzF+7OO29WizAxBoeP2KtqKm 6LhSozSwnUV4MCT2+AqUOhT0tjJzXzZIHtkcPGynU24Cb7FStG273pPy8G3og9kK sjAW1CiY/rNIXu66WAGYd2I7gwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEfz+rzZ 5KKM5HiYVeoimzkF5UofMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFMTMvODkzNjM1NzgyNkZCMTFFQ0E3MTM1RDczQzRGOUFFMDIvOUI1MjhBNUFC N0Q2MTFFREFDRURFQzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr42wDBAJnLtwDBAHLF0QwDQYJKoZIhvcNAQELBQADggEB AAXkc87YmbGoL2of9z8F5RLYKatRDS/ueeXa4kDxZS0u+ie1Q8FOfTcPOsWu9/A8 YLOiRKdp+gwmV5I65StcwbJowIpfbleNvoPYm5lU3NzUI8IENYDRiufZxlsVVaeV JkXBYLNmsdPUxNNdKPe2a6tGFmIGCqg4LItUnKF3LbL1KOcss+dw2bfufL5UfZiD rmwjpXAgs6cWO7Bq3EWbr0KZRy5ohQaKmJqfqvzXAqtxdDNfDaB8vrQ4E0i8F4K2 9CXVKkNIw/SiHWngH3qh2MBLO/BJYLXCeXajNNq1aYA5er4ctqkHggf3jBtDWbrX LKyKo775CnE9zopmdAE1zMY= -----END CERTIFICATE-----Generated at Sat May 11 03:57:06 2024 by rpki-client on console-fra.rpki-client.org