$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa File: C08B939607D911EDA41A0B25C4F9AE02.roa (raw, json) Hash identifier: yqzAkEYJuVQZoZTXn1PcDDbM0HMxH5jSsVwoY+k666k= Subject key identifier: D2:B0:C2:95:E1:1D:FA:B3:41:36:1B:CC:E5:F4:3C:91:03:91:35:2C Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 03B1 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa Signing time: Sun 11 Jun 2023 03:10:13 +0000 ROA not before: Sun 11 Jun 2023 03:10:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 59117 IP address blocks: 103.204.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jun 11 03:10:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64853b15-6027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cf:05:20:77:01:bf:8a:ce:51:d0:9c:10:bc: e4:f2:95:64:d7:fe:97:ba:b9:e8:66:38:95:44:5d: 5b:ef:26:86:14:c1:2c:11:7d:e7:41:c5:74:05:ad: 29:b1:b0:9f:7b:28:23:12:28:8e:6a:b3:7b:01:f4: 33:e9:bd:82:41:24:46:1b:7f:87:ef:c9:18:8e:7f: ac:d6:2e:bf:7b:c4:c2:c6:14:a3:5d:d6:82:51:fe: 69:f2:dd:7a:e2:ee:36:90:b6:30:46:6d:7a:f1:46: b9:6d:47:c8:bd:0e:ea:4c:f9:95:01:22:bc:35:93: 2a:1a:82:b1:54:3f:66:bc:09:c1:70:53:27:b2:8c: 37:ab:e0:34:44:02:56:fe:8f:ee:4d:e0:f7:e0:94: 4a:7b:0a:ee:28:e5:d7:0e:3e:a4:db:ce:23:c3:38: 08:69:bc:51:8b:0c:73:46:17:6e:1e:0a:ca:f5:7b: 0b:e1:08:b8:3d:9d:fe:08:f1:f0:17:e6:fd:77:25: 19:3f:4e:ab:04:85:87:3e:5d:d7:e2:4f:5f:b1:3f: e7:60:f5:cd:0b:01:53:cc:65:68:36:c7:72:c7:a4: a0:bf:04:95:35:9e:9f:39:6d:a6:9d:c0:69:cc:09: 5c:92:4e:e8:77:99:b4:99:a5:31:0f:95:87:b9:36: 7e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B0:C2:95:E1:1D:FA:B3:41:36:1B:CC:E5:F4:3C:91:03:91:35:2C X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.13.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:12:40:89:18:b2:85:7f:93:5b:e5:bb:f8:0d:6c:2a:29:99: c8:be:ef:2e:71:5f:62:a8:df:69:f0:e1:e0:08:aa:bf:b4:19: 67:24:c2:07:98:f4:09:20:55:23:db:e2:35:7a:3d:7e:ce:2f: 1c:0f:e0:ef:1b:11:a9:c0:2e:a8:18:3a:95:01:ae:f7:65:72: fe:ec:c3:50:0b:54:4e:b0:1d:45:4b:99:e7:b5:84:de:2c:14: 58:42:53:cd:e4:a5:2d:dc:b3:90:8e:dd:04:6d:82:22:74:a7: 67:8c:cd:f7:bf:a8:f5:00:b6:9c:cc:ee:83:d9:36:73:84:e9: c5:56:62:45:06:ac:56:06:fe:9f:d4:a4:76:04:96:12:e2:af: 2b:fd:f4:bc:d1:e1:3f:6f:82:2b:e2:da:3a:b6:a4:ed:ea:74: a9:03:e5:e0:01:b8:6f:cd:ae:ba:55:d2:9d:df:87:55:30:58: b6:ad:db:25:f1:18:9a:5b:0c:cf:89:2d:90:86:13:71:f0:d4: 8e:f4:f4:0e:7c:9c:14:4a:e8:1e:91:13:25:59:ae:a0:11:b6: 2e:29:40:c2:62:05:41:4a:35:4c:17:cc:64:56:47:d4:e6:a7: 0b:e0:0c:3c:1a:cc:79:ab:49:08:6f:cf:fb:89:dd:5f:c4:5e: 0a:18:b8:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjMwNjExMDMxMDEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg1M2IxNS02MDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs8FIHcBv4rOUdCcELzk8pVk1/6XurnoZjiVRF1b7yaGFMEsEX3nQcV0Ba0p sbCfeygjEiiOarN7AfQz6b2CQSRGG3+H78kYjn+s1i6/e8TCxhSjXdaCUf5p8t16 4u42kLYwRm168Ua5bUfIvQ7qTPmVASK8NZMqGoKxVD9mvAnBcFMnsow3q+A0RAJW /o/uTeD34JRKewruKOXXDj6k284jwzgIabxRiwxzRhduHgrK9XsL4Qi4PZ3+CPHw F+b9dyUZP06rBIWHPl3X4k9fsT/nYPXNCwFTzGVoNsdyx6SgvwSVNZ6fOW2mncBp zAlckk7od5m0maUxD5WHuTZ+UQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNKwwpXh HfqzQTYbzOX0PJEDkTUsMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQzA4QjkzOTYw N0Q5MTFFREE0MUEwQjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzA0wDQYJKoZIhvcNAQELBQADggEBAAsSQIkYsoV/k1vl u/gNbCopmci+7y5xX2Ko32nw4eAIqr+0GWckwgeY9AkgVSPb4jV6PX7OLxwP4O8b EanALqgYOpUBrvdlcv7sw1ALVE6wHUVLmee1hN4sFFhCU83kpS3cs5CO3QRtgiJ0 p2eMzfe/qPUAtpzM7oPZNnOE6cVWYkUGrFYG/p/UpHYElhLiryv99LzR4T9vgivi 2jq2pO3qdKkD5eABuG/NrrpV0p3fh1UwWLat2yXxGJpbDM+JLZCGE3Hw1I709A58 nBRK6B6REyVZrqARti4pQMJiBUFKNUwXzGRWR9TmpwvgDDwazHmrSQhvz/uJ3V/E XgoYuAo= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org