$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa File: 35A768B8563B11EC94608B5BC4F9AE02.roa (raw, json) Hash identifier: wYcTgIonokGnJpRK7sLevs2iYL3qEseQvmQD5UUFtQI= Subject key identifier: 29:D1:E2:35:11:83:85:18:B8:31:60:AB:88:58:72:59:53:53:87:6B Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 03AD Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa Signing time: Sun 11 Jun 2023 03:10:08 +0000 ROA not before: Sun 11 Jun 2023 03:10:08 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 13335 IP address blocks: 103.172.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jun 11 03:10:08 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64853b0f-8351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8e:15:b6:b9:77:0f:9c:47:64:b6:44:c2:e7: 7b:bf:ed:cd:d3:54:f8:c8:d5:96:58:f9:e8:26:8b: c1:bf:98:9a:8a:2a:5b:22:1a:25:f7:40:56:f2:f0: 33:94:bb:67:b9:21:c0:b9:cc:e8:a8:32:8b:44:a6: 81:d5:3a:aa:0c:95:1f:79:14:b7:a7:ab:b5:9a:2a: d9:ac:fd:75:0e:35:f6:44:45:39:a6:37:e0:a3:9a: 51:1f:ad:87:36:a1:3c:29:5e:19:d3:54:2c:cf:fb: 82:6e:dd:d3:ce:d4:3c:6c:2f:6d:32:f9:ed:ca:09: 87:0d:6f:aa:5a:f0:9f:e4:2d:9e:a3:6d:e5:82:98: 8b:2e:5c:39:6b:69:5c:1e:25:1f:bf:6a:18:19:11: 0d:8f:c1:3f:f8:b0:b5:5d:17:14:2f:7c:b0:11:71: 4e:5b:93:87:fd:95:52:eb:23:87:f8:c6:c0:17:71: 3a:4e:21:02:dc:4e:00:e5:1d:d3:d4:09:57:2b:e9: a5:36:2f:f1:9c:40:57:93:f7:48:ec:a6:27:18:62: 94:88:8c:d4:3b:d7:12:9d:68:d1:56:83:f7:5d:46: 5f:0b:85:44:7e:54:35:9e:fc:0b:f6:d0:ca:24:65: 82:cc:08:9b:17:7e:35:fa:8e:eb:98:e1:3c:32:13: 4f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D1:E2:35:11:83:85:18:B8:31:60:AB:88:58:72:59:53:53:87:6B X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:e0:7b:85:ae:08:92:0c:76:67:90:a8:58:c1:25:ba:e8:17: 22:85:10:3e:07:bb:60:d8:b5:e0:9e:0e:3a:7e:d5:fc:9d:ec: c0:34:d9:8c:bc:be:09:91:dc:12:55:e5:00:fc:7a:e4:8e:48: 49:e5:a3:ca:e8:b4:02:fa:5b:00:68:ce:c0:12:b5:76:18:b9: 93:12:65:2b:22:6f:15:c7:88:b7:68:ee:5c:01:b6:c4:d0:c2: c4:ea:d1:89:96:47:af:2d:49:09:38:a5:37:e7:57:aa:ef:f5: 0b:8d:cf:2c:0a:72:1f:2a:eb:87:72:d6:79:b0:10:8c:6b:26: 67:89:80:1e:c0:76:b2:83:19:46:b0:e5:08:89:4c:58:fb:a1: 41:de:33:14:15:b7:3d:ed:fd:b3:45:99:69:3c:97:dc:e2:65: 23:ec:6a:c9:05:17:bd:d2:f4:1b:69:83:98:1d:7c:d1:69:e9: 74:15:e1:72:39:f6:1b:1e:cb:a4:82:5b:a3:09:43:d5:f6:c6: bf:57:b4:05:94:89:b5:f8:ef:7a:a1:4d:55:bc:e1:cf:1a:6b: f4:a6:1b:23:56:7e:af:1b:a6:b2:00:b7:4c:6a:cd:e8:0a:0d: 6d:4b:b5:8c:8b:df:89:1e:0c:1b:23:66:66:a8:32:0f:a2:ed: a4:2f:87:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjMwNjExMDMxMDA4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg1M2IwZi04MzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx44Vtrl3D5xHZLZEwud7v+3N01T4yNWWWPnoJovBv5iaiipbIhol90BW8vAz lLtnuSHAuczoqDKLRKaB1TqqDJUfeRS3p6u1mirZrP11DjX2REU5pjfgo5pRH62H NqE8KV4Z01Qsz/uCbt3TztQ8bC9tMvntygmHDW+qWvCf5C2eo23lgpiLLlw5a2lc HiUfv2oYGRENj8E/+LC1XRcUL3ywEXFOW5OH/ZVS6yOH+MbAF3E6TiEC3E4A5R3T 1AlXK+mlNi/xnEBXk/dI7KYnGGKUiIzUO9cSnWjRVoP3XUZfC4VEflQ1nvwL9tDK JGWCzAibF341+o7rmOE8MhNP0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCnR4jUR g4UYuDFgq4hYcllTU4drMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMzVBNzY4Qjg1 NjNCMTFFQzk0NjA4QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrG4wDQYJKoZIhvcNAQELBQADggEBAE3ge4WuCJIMdmeQ qFjBJbroFyKFED4Hu2DYteCeDjp+1fyd7MA02Yy8vgmR3BJV5QD8euSOSEnlo8ro tAL6WwBozsAStXYYuZMSZSsibxXHiLdo7lwBtsTQwsTq0YmWR68tSQk4pTfnV6rv 9QuNzywKch8q64dy1nmwEIxrJmeJgB7AdrKDGUaw5QiJTFj7oUHeMxQVtz3t/bNF mWk8l9ziZSPsaskFF73S9Btpg5gdfNFp6XQV4XI59hsey6SCW6MJQ9X2xr9XtAWU ibX473qhTVW84c8aa/SmGyNWfq8bprIAt0xqzegKDW1LtYyL34keDBsjZmaoMg+i 7aQvh5s= -----END CERTIFICATE-----Generated at Sat May 11 02:39:22 2024 by rpki-client on console-fra.rpki-client.org