$ rpki-client -vvf rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/E8B7423A7DE911EDBCFD3082C4F9AE02.roa File: E8B7423A7DE911EDBCFD3082C4F9AE02.roa (raw, json) Hash identifier: vOSrn73uuNI7bKVAyn91p2274vbKZOFmvm+dfMnjwrA= Subject key identifier: E9:EA:EE:D5:2F:83:33:05:49:FA:6C:F3:65:0E:2E:0A:10:2F:4D:76 Certificate issuer: /CN=A913EC3B/serialNumber=2DDCD05DCE2C58037FE02F95E1A8BFCBD3E0E325 Certificate serial: AA Authority key identifier: 2D:DC:D0:5D:CE:2C:58:03:7F:E0:2F:95:E1:A8:BF:CB:D3:E0:E3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/E8B7423A7DE911EDBCFD3082C4F9AE02.roa Signing time: Sat 11 Nov 2023 04:54:23 +0000 ROA not before: Sat 11 Nov 2023 04:54:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.crl rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 05:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EC3B/serialNumber=2DDCD05DCE2C58037FE02F95E1A8BFCBD3E0E325 Validity Not Before: Nov 11 04:54:23 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654f08fe-9ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a8:52:15:a1:ed:95:03:59:79:32:d2:3e:31: 3f:3d:29:c9:54:67:91:87:ac:61:56:0b:92:02:fa: 15:22:0d:0c:b5:7e:e5:ef:fa:95:64:7c:82:7b:63: fc:cf:ca:05:60:bd:f6:97:03:13:32:d6:a0:5d:39: 41:b1:c2:34:cd:4a:b4:3c:2a:7c:2a:fc:fd:76:d3: c3:3c:c7:6f:cf:99:4b:7f:e8:50:f4:a5:3a:0a:6f: 93:a3:37:06:9e:00:4d:4b:5a:81:9f:fb:c6:01:e9: 5c:cc:22:cc:ce:28:be:e5:6a:d1:f2:a6:d6:c6:b7: 71:01:12:a1:2f:3d:ba:0d:1a:6e:de:1e:d1:70:12: 71:87:3c:cc:7d:58:9f:e7:cc:ad:6a:42:b7:bd:31: 8e:87:70:9d:24:6e:46:45:ef:e3:30:e9:96:83:ad: 8d:46:73:8d:33:0e:33:96:eb:0e:bb:ad:d5:13:39: 7d:cf:40:c4:9b:e0:e9:3c:52:42:7e:e0:1c:74:11: 78:99:35:42:37:f8:ac:9d:d3:44:2e:42:21:df:4b: cf:6c:44:16:c2:58:4b:31:cf:12:75:cb:47:3e:91: 34:76:8a:46:86:9b:46:37:a9:c1:04:9d:db:8c:bc: 04:d8:2a:61:5f:69:0b:48:6e:29:38:d4:e8:34:55: 7e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EA:EE:D5:2F:83:33:05:49:FA:6C:F3:65:0E:2E:0A:10:2F:4D:76 X509v3 Authority Key Identifier: keyid:2D:DC:D0:5D:CE:2C:58:03:7F:E0:2F:95:E1:A8:BF:CB:D3:E0:E3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/E8B7423A7DE911EDBCFD3082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.3.0/24 Signature Algorithm: sha256WithRSAEncryption 49:e6:dc:af:c8:ec:8b:59:10:f6:ce:0f:8d:d5:19:1c:ed:74: e3:d6:b3:35:33:3e:a9:72:68:cb:6b:04:7b:ce:67:19:7c:79: fd:bf:a3:e6:b6:30:80:b0:e1:ca:d8:95:b2:34:03:4e:1e:38: 22:e6:8a:20:f0:07:0f:e9:da:03:81:2e:a4:0e:fa:a2:6a:6d: 46:de:fa:8e:6a:c3:2e:67:d8:4f:bc:0a:33:3e:be:98:c7:34: a7:4a:6b:29:c2:94:d0:d8:1e:33:2e:c0:5b:71:fa:d0:2f:a6: 3c:f3:ac:ae:cf:6b:78:5c:f5:8c:08:7d:69:0a:15:47:d8:c8: 02:a2:88:8d:b1:b0:e8:40:bc:57:89:ad:1c:d8:d6:a5:ee:69: 9b:fb:a0:a2:5f:13:ed:bb:b7:b8:70:eb:dc:ec:96:c9:00:71: dc:b5:92:97:de:27:f4:37:54:f1:f9:84:7e:af:4d:62:3e:43: 13:81:85:b9:49:0a:cd:e5:9c:9b:c9:ee:2f:54:ca:7f:ae:4b: 3a:24:0f:0c:7a:3c:ee:e2:05:87:af:cb:38:79:20:a0:4c:eb: 53:1f:0d:e5:ae:4f:ac:fe:f7:fd:ac:f5:33:18:5d:cb:0c:c1: 55:3e:b7:53:4d:25:e8:d0:ef:63:c6:c6:c5:d1:87:11:a8:ab: 06:a9:92:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VDM0IxMTAvBgNVBAUTKDJERENEMDVEQ0UyQzU4MDM3RkUwMkY5NUUxQThCRkNC RDNFMEUzMjUwHhcNMjMxMTExMDQ1NDIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRmMDhmZS05YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6hSFaHtlQNZeTLSPjE/PSnJVGeRh6xhVguSAvoVIg0MtX7l7/qVZHyCe2P8 z8oFYL32lwMTMtagXTlBscI0zUq0PCp8Kvz9dtPDPMdvz5lLf+hQ9KU6Cm+TozcG ngBNS1qBn/vGAelczCLMzii+5WrR8qbWxrdxARKhLz26DRpu3h7RcBJxhzzMfVif 58ytakK3vTGOh3CdJG5GRe/jMOmWg62NRnONMw4zlusOu63VEzl9z0DEm+DpPFJC fuAcdBF4mTVCN/isndNELkIh30vPbEQWwlhLMc8SdctHPpE0dopGhptGN6nBBJ3b jLwE2CphX2kLSG4pONToNFV+iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOnq7tUv gzMFSfps82UOLgoQL012MB8GA1UdIwQYMBaAFC3c0F3OLFgDf+AvleGov8vT4OMl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUMzQi9ERjRBNDM3MjdE RTUxMUVEODc4MTEyN0ZDNEY5QUUwMi9MZHpRWGM0c1dBTl80Qy1WNGFpX3k5UGc0 eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xkelFYYzRzV0FOXzRDLVY0YWlfeTlQZzR5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VDM0IvREY0QTQzNzI3REU1MTFFRDg3ODExMjdGQzRGOUFFMDIvRThCNzQyM0E3 REU5MTFFREJDRkQzMDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5QMwDQYJKoZIhvcNAQELBQADggEBAEnm3K/I7ItZEPbO D43VGRztdOPWszUzPqlyaMtrBHvOZxl8ef2/o+a2MICw4crYlbI0A04eOCLmiiDw Bw/p2gOBLqQO+qJqbUbe+o5qwy5n2E+8CjM+vpjHNKdKaynClNDYHjMuwFtx+tAv pjzzrK7Pa3hc9YwIfWkKFUfYyAKiiI2xsOhAvFeJrRzY1qXuaZv7oKJfE+27t7hw 69zslskAcdy1kpfeJ/Q3VPH5hH6vTWI+QxOBhblJCs3lnJvJ7i9Uyn+uSzokDwx6 PO7iBYevyzh5IKBM61MfDeWuT6z+9/2s9TMYXcsMwVU+t1NNJejQ72PGxsXRhxGo qwapksY= -----END CERTIFICATE-----Generated at Thu Apr 25 06:17:16 2024 by rpki-client on console-ams.rpki-client.org