$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa File: D58286CA1F9D11EDA5DD9842C4F9AE02.roa (raw, json) Hash identifier: 03jSD02N/CN+zlR+/cGuv3ZINAxO9XyWBPNxOPO25q8= Subject key identifier: A3:9A:F2:16:51:13:D2:C7:D4:CC:31:F6:F7:44:90:E4:9C:D2:28:CB Certificate issuer: /CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Certificate serial: 0135 Authority key identifier: 0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa Signing time: Tue 21 Nov 2023 04:15:14 +0000 ROA not before: Tue 21 Nov 2023 04:15:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140381 IP address blocks: 103.146.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Validity Not Before: Nov 21 04:15:14 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=655c2ed1-c684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:12:93:20:f1:5c:f5:0a:3d:4b:98:54:e2:71: 13:60:f6:ce:31:41:3f:0d:f3:8c:63:57:31:aa:2c: fe:ad:20:9f:36:c9:dd:d9:c2:cf:11:2b:0d:3c:47: df:ab:ba:52:45:6b:3c:04:11:0d:a2:46:78:b0:a7: 18:47:d6:29:ab:b1:c6:38:58:84:30:cc:60:c3:6d: 46:10:91:c1:4f:f0:34:7e:ff:27:ab:9f:3e:14:10: 32:50:bf:e3:02:27:61:73:9e:21:b3:79:0c:e4:86: 08:9f:a1:ca:8c:f7:4b:a7:02:cd:14:54:04:e2:e3: 5f:68:1b:6c:d7:0e:a6:86:2d:e4:c1:38:4a:fb:d2: ce:11:6f:ac:65:e7:85:1b:f1:ad:49:0a:d2:af:89: 56:31:11:11:dc:70:54:0a:d9:8f:02:bd:ac:b7:35: e5:df:71:31:17:0f:af:af:d6:b9:c0:f8:79:ad:88: 60:79:4c:88:09:ff:95:e2:29:db:c9:d6:09:71:49: a1:07:98:e8:b0:95:e4:dc:68:d2:ed:1d:17:85:1c: 26:83:a4:31:9c:92:af:60:de:d8:f6:31:19:82:d0: d6:9a:7d:8e:a5:4d:67:fc:fb:ee:2e:c0:10:b4:ca: e0:2f:88:9d:bf:4b:02:38:7a:16:fd:92:ac:a9:dd: 47:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9A:F2:16:51:13:D2:C7:D4:CC:31:F6:F7:44:90:E4:9C:D2:28:CB X509v3 Authority Key Identifier: keyid:0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.56.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:80:fe:22:d8:f3:95:62:f2:0f:0e:00:27:81:0e:11:2e:97: ab:ef:03:a1:37:bb:3e:8d:e1:56:73:ec:4f:72:71:fa:d9:16: fa:6b:6e:8b:b5:0c:cf:58:56:a0:c0:48:a4:91:57:d7:30:e2: 50:a4:95:ab:b0:8b:59:3e:c1:1d:8b:7d:d6:90:f5:34:7a:9c: b1:3a:c2:dc:16:d6:7c:b9:9a:6f:5b:df:2c:ec:53:f0:24:f0: 61:3e:73:5a:99:b3:c7:6e:e8:1d:3e:a8:26:1d:29:86:01:1e: 15:46:89:db:ff:48:4d:2b:40:40:d9:f5:5e:4c:51:98:42:fc: f3:06:a7:0c:7b:6d:6a:ba:8b:e7:0f:5e:5d:4e:5f:08:c5:4e: 03:0a:d9:6e:2c:db:70:4c:f2:89:2a:af:ce:c0:47:a4:52:10: 3c:7f:4a:46:a7:0e:45:e7:50:b1:9a:14:95:82:26:4c:b1:0a: 7e:9c:24:04:55:2f:a4:8c:a3:28:9d:b9:ed:88:0b:ab:0c:51: 21:41:62:c4:69:86:f2:c7:d5:09:69:a1:16:9d:6e:a5:f9:7a: 52:f3:dc:27:36:c5:12:c5:b0:ab:34:ac:b3:f1:c3:42:7f:fc: 0e:9f:97:59:a7:75:22:4b:75:7d:ef:3d:68:95:a5:57:08:c4: 3b:cf:de:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGMUUxMTAvBgNVBAUTKDBBQjNGMTE0OUNGNUMzQkFEQTY4NUIxQzZBMTM3OUI2 ODhENzQzODQwHhcNMjMxMTIxMDQxNTE0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMmVkMS1jNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RKTIPFc9Qo9S5hU4nETYPbOMUE/DfOMY1cxqiz+rSCfNsnd2cLPESsNPEff q7pSRWs8BBENokZ4sKcYR9Ypq7HGOFiEMMxgw21GEJHBT/A0fv8nq58+FBAyUL/j Aidhc54hs3kM5IYIn6HKjPdLpwLNFFQE4uNfaBts1w6mhi3kwThK+9LOEW+sZeeF G/GtSQrSr4lWMRER3HBUCtmPAr2stzXl33ExFw+vr9a5wPh5rYhgeUyICf+V4inb ydYJcUmhB5josJXk3GjS7R0XhRwmg6QxnJKvYN7Y9jEZgtDWmn2OpU1n/PvuLsAQ tMrgL4idv0sCOHoW/ZKsqd1HIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKOa8hZR E9LH1Mwx9vdEkOSc0ijLMB8GA1UdIwQYMBaAFAqz8RSc9cO62mhbHGoTebaI10OE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYxRS9DQzY1QTY2QTFG OUExMUVEODM1Q0FBM0ZDNEY5QUUwMi9DclB4Rkp6MXc3cmFhRnNjYWhONXRvalhR NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyUHhGSnoxdzdyYWFGc2NhaE41dG9qWFE0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RGMUUvQ0M2NUE2NkExRjlBMTFFRDgzNUNBQTNGQzRGOUFFMDIvRDU4Mjg2Q0Ex RjlEMTFFREE1REQ5ODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkjgwDQYJKoZIhvcNAQELBQADggEBAA2A/iLY85Vi8g8O ACeBDhEul6vvA6E3uz6N4VZz7E9ycfrZFvprbou1DM9YVqDASKSRV9cw4lCklauw i1k+wR2LfdaQ9TR6nLE6wtwW1ny5mm9b3yzsU/Ak8GE+c1qZs8du6B0+qCYdKYYB HhVGidv/SE0rQEDZ9V5MUZhC/PMGpwx7bWq6i+cPXl1OXwjFTgMK2W4s23BM8okq r87AR6RSEDx/SkanDkXnULGaFJWCJkyxCn6cJARVL6SMoyidue2IC6sMUSFBYsRp hvLH1QlpoRadbqX5elLz3Cc2xRLFsKs0rLPxw0J//A6fl1mndSJLdX3vPWiVpVcI xDvP3os= -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org