$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/99C38DDE95C311EF8BAA846AC4F9AE02.roa File: 99C38DDE95C311EF8BAA846AC4F9AE02.roa (raw, json) Hash identifier: DTSCNfC+ZQO725wLkDaJCLTqEP7IAx/7xDezw0K1KMY= Subject key identifier: 30:41:38:FE:4D:E1:C7:5E:63:86:6B:86:46:A4:06:75:2B:D7:09:7C Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 2618 Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/99C38DDE95C311EF8BAA846AC4F9AE02.roa Signing time: Thu 14 Nov 2024 16:39:44 +0000 ROA not before: Thu 14 Nov 2024 16:39:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134732 IP address blocks: 103.228.202.0/23 maxlen: 23 103.228.202.0/24 maxlen: 24 103.228.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9752 (0x2618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Nov 14 16:39:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=673627d0-4b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:fa:85:fb:62:8d:dc:4a:ca:2e:ca:16:a8: 9e:f8:bd:73:f0:ad:18:1a:44:ca:75:0b:5c:e8:a9: ba:62:f8:63:bf:b0:48:09:68:36:e6:f5:f6:ee:04: 8a:fa:ce:a2:14:81:cb:eb:7b:84:dc:09:0f:3c:e2: a5:4c:d9:02:1a:24:36:b9:0f:1f:1f:20:bc:f7:f0: b0:14:db:9e:4a:77:ef:1c:8c:ab:18:8c:8f:4e:3f: 5f:f8:04:64:be:2a:9b:42:fd:d0:e7:87:38:d7:0c: 10:f0:00:f3:47:3d:44:a1:d4:74:d2:05:da:9f:d1: b8:a8:08:0d:b1:5c:9e:c1:ec:5d:72:fb:75:cd:04: 9c:e9:f4:bd:fe:3e:83:38:5c:29:ee:dd:e3:6e:10: e0:b3:35:8e:cb:53:7c:e4:73:b4:e3:fa:00:4f:2d: 1a:d9:be:1e:05:bd:05:71:0b:b0:8f:d4:04:39:af: 49:8b:66:9f:a1:a5:1e:a4:b8:9a:81:3e:db:c6:ae: 59:c3:b7:36:90:80:5f:19:0e:7d:01:ac:f6:36:44: 55:ea:d5:de:53:89:d7:fe:9a:92:68:7b:df:00:c2: 9e:71:ea:e2:f9:d2:15:c3:d4:22:df:7b:cd:b9:32: 7e:e2:c0:6f:2d:2d:81:62:b9:fa:90:24:fe:1b:d1: 73:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:41:38:FE:4D:E1:C7:5E:63:86:6B:86:46:A4:06:75:2B:D7:09:7C X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/99C38DDE95C311EF8BAA846AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.202.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:be:06:96:d4:b3:5e:b0:24:37:fa:53:0d:23:2b:78:27:22: e6:2d:ff:cb:bb:f3:e8:c0:5b:c1:e8:88:80:ac:8b:0e:6e:58: b6:23:d4:e6:f0:d1:ec:0c:a2:c4:7d:5e:7a:84:89:27:06:5e: 56:0c:a2:72:64:28:ea:82:18:c0:f3:3f:5e:54:38:37:9d:dd: 2a:93:74:bb:8a:d2:09:f8:0f:45:c4:08:19:4f:ca:6d:2e:08: 8d:9e:79:36:b3:dc:40:0b:e1:3f:5a:9a:28:3d:7e:1b:27:1b: b2:71:1f:75:53:ce:a9:25:f9:51:3c:48:74:96:e1:74:df:92: 85:76:e8:8f:9a:f9:3b:eb:2b:22:21:6e:23:30:00:22:de:58: 7a:58:67:fd:dd:cf:8d:c3:03:bc:b7:ce:57:0d:70:fd:c2:37: 9b:4d:a9:d3:4f:63:96:4f:24:a4:31:1c:7b:bf:1c:13:93:00: 9c:eb:4a:c9:f7:14:46:15:6f:e3:43:2c:0e:99:40:c2:6c:7b: 04:36:a9:bf:64:e2:e0:b4:38:69:a1:96:24:ef:1a:ea:42:3e: 6a:0f:4d:5d:2c:5a:c5:a5:88:b6:29:cf:db:13:5d:cf:56:bf: ed:c4:00:ee:dc:c6:89:5e:9c:1d:91:03:f6:d9:07:e4:6f:6e: c9:c2:15:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjQxMTE0MTYzOTQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2MjdkMC00YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKj6hftijdxKyi7KFqie+L1z8K0YGkTKdQtc6Km6Yvhjv7BICWg25vX27gSK +s6iFIHL63uE3AkPPOKlTNkCGiQ2uQ8fHyC89/CwFNueSnfvHIyrGIyPTj9f+ARk viqbQv3Q54c41wwQ8ADzRz1EodR00gXan9G4qAgNsVyewexdcvt1zQSc6fS9/j6D OFwp7t3jbhDgszWOy1N85HO04/oATy0a2b4eBb0FcQuwj9QEOa9Ji2afoaUepLia gT7bxq5Zw7c2kIBfGQ59Aaz2NkRV6tXeU4nX/pqSaHvfAMKeceri+dIVw9Qi33vN uTJ+4sBvLS2BYrn6kCT+G9Fz3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDBBOP5N 4cdeY4ZrhkakBnUr1wl8MB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvOTlDMzhEREU5 NUMzMTFFRjhCQUE4NDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5MowDQYJKoZIhvcNAQELBQADggEBADu+BpbUs16wJDf6 Uw0jK3gnIuYt/8u78+jAW8HoiICsiw5uWLYj1Obw0ewMosR9XnqEiScGXlYMonJk KOqCGMDzP15UODed3SqTdLuK0gn4D0XECBlPym0uCI2eeTaz3EAL4T9amig9fhsn G7JxH3VTzqkl+VE8SHSW4XTfkoV26I+a+TvrKyIhbiMwACLeWHpYZ/3dz43DA7y3 zlcNcP3CN5tNqdNPY5ZPJKQxHHu/HBOTAJzrSsn3FEYVb+NDLA6ZQMJsewQ2qb9k 4uC0OGmhliTvGupCPmoPTV0sWsWliLYpz9sTXc9Wv+3EAO7cxolenB2RA/bZB+Rv bsnCFTs= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org