$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa File: 229357E6E46211EBB880A73AC4F9AE02.roa (raw, json) Hash identifier: /tuH2o+L6COqz455MtJQT1smgIzMIZN+NTYUwLLg1Co= Subject key identifier: AD:32:E6:CA:EE:22:0F:63:C2:29:0F:40:22:78:C2:97:98:FA:CC:2E Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1D9B Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa Signing time: Sat 28 Oct 2023 16:23:25 +0000 ROA not before: Sat 28 Oct 2023 16:23:25 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.193.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7579 (0x1d9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Oct 28 16:23:25 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d357d-8087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b3:56:2c:eb:5c:5c:3b:1b:35:16:6a:42:d7: 71:71:46:4e:f1:8b:0e:51:0d:e7:78:74:33:a3:81: 4c:27:7c:29:74:52:68:4b:b7:e5:7c:0c:3e:93:58: cc:80:1a:51:b2:6f:d8:35:48:d2:43:f5:af:69:66: c2:31:9a:ee:6e:6c:0f:36:ff:79:60:a7:03:aa:59: d8:17:91:4f:cb:3a:81:1c:65:92:d3:0f:f9:50:79: fd:9f:c9:12:38:19:0c:67:50:db:bf:c0:9e:52:60: 34:c8:2e:8a:ae:e5:14:d1:ee:01:eb:1d:30:49:df: 56:f6:59:9c:a5:e1:90:aa:b0:80:c0:c2:31:81:96: 96:d7:b2:9c:d5:3c:d3:13:52:6a:dd:cd:ab:dd:0f: 01:21:ec:52:f6:3b:97:70:da:41:a9:28:3d:76:3e: 2e:9e:70:3e:1a:15:b6:23:fb:85:8d:ba:bc:18:6b: ff:55:a9:0d:41:3e:d1:9c:55:18:90:e6:bd:48:9b: af:7d:51:e1:15:93:fb:6f:69:2e:e7:36:a2:4c:2c: 87:76:d3:28:31:cb:8e:92:44:b0:3b:f3:80:f8:b2: 1a:2d:1e:32:58:6b:d7:93:ac:f6:89:36:86:7e:62: 3d:42:28:e3:b6:b7:46:7a:3c:06:be:e2:99:88:4e: b8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:32:E6:CA:EE:22:0F:63:C2:29:0F:40:22:78:C2:97:98:FA:CC:2E X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.8.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:2f:bc:33:8b:8d:3d:93:1a:be:05:c1:7e:b2:63:35:48:ef: f4:4a:39:fe:e9:d7:34:ed:71:b1:dd:f2:5c:18:c9:35:83:25: 37:e9:c6:4b:36:e6:c6:e6:e9:63:5c:a0:b5:44:8b:a1:d0:a7: f3:b2:e6:37:15:0f:8d:f2:12:a6:96:ba:29:c6:b1:2c:af:3c: ea:18:79:ad:59:61:31:7d:22:32:71:d5:89:c8:4b:5d:88:13: d0:76:00:20:67:d7:42:8e:f3:1d:64:ad:ad:53:1a:f5:c2:43: 0b:8a:d7:11:46:45:ef:af:6e:a4:1a:17:53:41:10:70:f7:60: a7:31:f4:37:92:78:de:75:c7:50:43:8e:27:9a:1a:26:98:42: ec:14:82:a5:32:79:29:6e:aa:ce:86:aa:4d:90:c7:71:90:02: 09:9e:6e:df:f1:e5:d6:bd:cb:62:53:75:94:d6:17:20:fb:39: ec:03:e9:88:d5:33:64:0e:6f:82:c4:37:d4:95:19:09:28:e4: c6:24:db:89:aa:9f:ef:e2:4c:dd:db:79:fd:1b:d4:22:60:02: 0a:90:48:1b:74:ec:a4:f7:3a:4f:9a:be:79:8b:d7:66:e6:14: 9f:7b:4f:0b:8c:3e:fe:c2:41:ba:50:0c:8a:84:de:51:7e:7d: 2c:e5:82:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjMxMDI4MTYyMzI1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMzU3ZC04MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLNWLOtcXDsbNRZqQtdxcUZO8YsOUQ3neHQzo4FMJ3wpdFJoS7flfAw+k1jM gBpRsm/YNUjSQ/WvaWbCMZrubmwPNv95YKcDqlnYF5FPyzqBHGWS0w/5UHn9n8kS OBkMZ1Dbv8CeUmA0yC6KruUU0e4B6x0wSd9W9lmcpeGQqrCAwMIxgZaW17Kc1TzT E1Jq3c2r3Q8BIexS9juXcNpBqSg9dj4unnA+GhW2I/uFjbq8GGv/VakNQT7RnFUY kOa9SJuvfVHhFZP7b2ku5zaiTCyHdtMoMcuOkkSwO/OA+LIaLR4yWGvXk6z2iTaG fmI9QijjtrdGejwGvuKZiE64nQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK0y5sru Ig9jwikPQCJ4wpeY+swuMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMjI5MzU3RTZF NDYyMTFFQkI4ODBBNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnwQgwDQYJKoZIhvcNAQELBQADggEBAB0vvDOLjT2TGr4F wX6yYzVI7/RKOf7p1zTtcbHd8lwYyTWDJTfpxks25sbm6WNcoLVEi6HQp/Oy5jcV D43yEqaWuinGsSyvPOoYea1ZYTF9IjJx1YnIS12IE9B2ACBn10KO8x1kra1TGvXC QwuK1xFGRe+vbqQaF1NBEHD3YKcx9DeSeN51x1BDjieaGiaYQuwUgqUyeSluqs6G qk2Qx3GQAgmebt/x5da9y2JTdZTWFyD7OewD6YjVM2QOb4LEN9SVGQko5MYk24mq n+/iTN3bef0b1CJgAgqQSBt07KT3Ok+avnmL12bmFJ97TwuMPv7CQbpQDIqE3lF+ fSzlgso= -----END CERTIFICATE-----Generated at Tue Apr 23 18:42:28 2024 by rpki-client on console-ams.rpki-client.org