$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa File: 214233D0E46211EBB880A73AC4F9AE02.roa (raw, json) Hash identifier: lg+GMx809C9t6MoJJjhpeDWTEsKTDm3tsnDSB6Fm4Go= Subject key identifier: 39:FD:E6:29:52:A2:A7:EC:69:01:F9:BE:AD:18:DB:E7:B5:1A:0F:2C Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1D9A Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa Signing time: Sat 28 Oct 2023 16:23:24 +0000 ROA not before: Sat 28 Oct 2023 16:23:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.193.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 16:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7578 (0x1d9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Oct 28 16:23:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d357c-8702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:f1:9c:8b:85:19:64:2d:58:63:8f:14:3b: 44:84:87:ae:98:fb:e0:65:b9:a2:a4:33:80:c8:62: 60:a1:63:21:12:19:93:38:41:f3:e4:c8:e0:0a:cd: 24:66:da:28:5e:f8:42:75:f9:ce:56:be:c4:00:47: a0:e4:04:c6:71:c2:6a:b6:6a:79:2f:9b:50:80:34: 14:ee:5a:40:38:cd:f0:aa:d2:01:11:c7:2e:bf:47: 65:4d:5e:87:08:d5:f3:be:65:0d:96:b6:bc:3d:54: 0f:46:6d:a7:90:cb:dc:5c:80:a3:f4:1c:ba:df:31: 85:f2:12:54:41:91:81:83:79:ed:38:5a:3c:2f:de: 78:6b:be:db:fe:c6:88:2b:5f:55:77:ab:99:bf:11: 34:3c:05:9c:86:19:6d:fc:70:d0:22:b8:e0:7a:3b: 2f:2a:77:d4:1c:29:02:72:62:87:83:39:53:11:d6: 93:61:1c:cc:4c:e3:37:ec:06:96:eb:43:94:7d:45: a4:af:d5:36:7b:f5:a2:21:34:08:d8:53:de:9b:b2: b5:90:95:c9:93:88:40:92:57:3f:2e:4e:3b:26:72: b7:bc:37:d0:06:be:d3:d7:84:31:93:cc:8f:6e:ee: 39:15:a0:34:08:e0:84:6d:97:e1:b2:b1:42:b0:95: 25:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FD:E6:29:52:A2:A7:EC:69:01:F9:BE:AD:18:DB:E7:B5:1A:0F:2C X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.8.0/23 Signature Algorithm: sha256WithRSAEncryption 12:8b:e8:6e:17:94:8f:77:3d:5c:8a:14:8c:60:82:de:9e:1f: 8d:bd:e8:4c:d5:b5:0d:bb:ac:7b:38:26:a1:57:fe:18:51:fb: 66:34:f3:32:cd:78:20:d1:c9:71:bf:0b:22:bb:69:1d:8e:a7: e6:a7:81:8f:82:94:26:a4:71:ff:93:ea:5d:02:b4:3c:a0:f7: 25:a4:e2:c9:c8:c3:a2:be:49:c9:4b:5f:4d:b7:c3:f3:43:f4: f8:b2:ff:2b:c0:a2:8d:9e:8f:15:05:13:15:7e:1d:d1:f8:8e: 85:60:16:84:86:6e:ae:05:9e:47:5a:b5:01:8f:51:c9:87:be: 22:28:11:b7:dd:46:02:ef:3d:85:f6:8d:b0:7e:8d:95:e1:99: eb:72:9b:2b:6a:53:6f:dc:c0:c6:8f:45:9e:5c:97:e4:60:2b: 64:35:e0:ed:9c:55:90:8f:8d:fd:af:d5:a2:fd:02:68:82:4d: 98:85:19:bc:97:41:d6:e7:92:18:5c:92:17:32:67:e9:64:ed: 87:83:e1:cf:aa:ee:bc:1d:f9:a1:2b:bc:3e:41:0b:e3:cb:5c: ce:a2:f7:13:3d:e9:7c:4e:0a:80:bb:d1:27:8a:89:a4:71:6b: e3:7d:e5:ba:e9:77:14:bd:ec:18:5a:6f:a1:7a:d1:18:c8:1e: e9:15:40:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjMxMDI4MTYyMzI0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMzU3Yy04NzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz/xnIuFGWQtWGOPFDtEhIeumPvgZbmipDOAyGJgoWMhEhmTOEHz5MjgCs0k ZtooXvhCdfnOVr7EAEeg5ATGccJqtmp5L5tQgDQU7lpAOM3wqtIBEccuv0dlTV6H CNXzvmUNlra8PVQPRm2nkMvcXICj9By63zGF8hJUQZGBg3ntOFo8L954a77b/saI K19Vd6uZvxE0PAWchhlt/HDQIrjgejsvKnfUHCkCcmKHgzlTEdaTYRzMTOM37AaW 60OUfUWkr9U2e/WiITQI2FPem7K1kJXJk4hAklc/Lk47JnK3vDfQBr7T14Qxk8yP bu45FaA0COCEbZfhsrFCsJUl1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDn95ilS oqfsaQH5vq0Y2+e1Gg8sMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMjE0MjMzRDBF NDYyMTFFQkI4ODBBNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnwQgwDQYJKoZIhvcNAQELBQADggEBABKL6G4XlI93PVyK FIxggt6eH4296EzVtQ27rHs4JqFX/hhR+2Y08zLNeCDRyXG/CyK7aR2Op+angY+C lCakcf+T6l0CtDyg9yWk4snIw6K+SclLX023w/ND9Piy/yvAoo2ejxUFExV+HdH4 joVgFoSGbq4FnkdatQGPUcmHviIoEbfdRgLvPYX2jbB+jZXhmetymytqU2/cwMaP RZ5cl+RgK2Q14O2cVZCPjf2v1aL9AmiCTZiFGbyXQdbnkhhckhcyZ+lk7YeD4c+q 7rwd+aErvD5BC+PLXM6i9xM96XxOCoC70SeKiaRxa+N95brpdxS97Bhab6F60RjI HukVQPU= -----END CERTIFICATE-----Generated at Wed Apr 24 18:31:00 2024 by rpki-client on console-fra.rpki-client.org