$ rpki-client -vvf rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa File: 0357A064679D11EABD681D0FC4F9AE02.roa (raw, json) Hash identifier: jKGVgYJukPiK6ySsx84NYDRYeDXnDYGdPyvlYaZsN/E= Subject key identifier: 63:9B:D1:C3:11:0D:CC:79:6B:FF:2A:AA:7E:4D:3A:4D:F4:9D:11:3C Certificate issuer: /CN=A9149DF2/serialNumber=50EFE1DF72915ED3361DB559B5B6B83EAE3EF3C0 Certificate serial: 0928 Authority key identifier: 50:EF:E1:DF:72:91:5E:D3:36:1D:B5:59:B5:B6:B8:3E:AE:3E:F3:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa Signing time: Sat 04 Nov 2023 20:48:19 +0000 ROA not before: Sat 04 Nov 2023 20:48:19 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136014 IP address blocks: 103.80.0.0/22 maxlen: 24 2400:47c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.crl rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2344 (0x928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149DF2/serialNumber=50EFE1DF72915ED3361DB559B5B6B83EAE3EF3C0 Validity Not Before: Nov 4 20:48:19 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6546ae13-bae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:c7:3c:cf:b0:c5:75:3d:68:75:bc:4b:af: 05:6f:43:77:61:e2:16:61:4d:08:98:83:97:89:83: 07:92:7a:5d:5a:8d:fe:d2:be:e9:c8:da:6b:d6:3b: 3f:82:83:b7:22:0a:c9:7b:2f:d8:ee:92:26:ca:0d: a1:14:73:bb:95:31:56:17:2a:5f:a1:68:b6:f5:db: c8:98:6b:d4:4c:11:91:06:1d:27:93:63:ef:75:78: eb:7c:3e:e2:d5:aa:ab:9e:bf:97:00:49:4f:8d:e2: 55:a0:0e:c3:62:d4:14:c5:b4:0f:2f:7e:cb:d0:46: 63:89:12:94:d2:5c:65:ba:5b:ef:49:af:8c:85:b9: ea:9f:76:7e:92:45:49:d4:29:9e:29:3e:9c:6a:1a: 18:fb:c2:c8:55:97:34:ea:c5:82:16:ce:bb:b6:d2: e0:a0:72:1f:2b:04:9b:91:90:0b:2f:54:93:66:c5: b8:8e:2e:2f:25:d0:a8:ec:78:09:be:ee:5f:1e:1a: 93:c1:5f:f1:61:dd:7a:6f:df:7c:c1:d6:2e:8e:66: b6:d1:df:0a:cd:d6:9f:03:9a:c2:40:fe:4f:98:d8: 8f:6d:d8:05:3c:c0:c5:9f:e4:5d:21:7e:3b:ce:d6: cf:0e:1b:9e:0a:9a:7e:29:2f:04:a6:fc:d8:3e:2e: bd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9B:D1:C3:11:0D:CC:79:6B:FF:2A:AA:7E:4D:3A:4D:F4:9D:11:3C X509v3 Authority Key Identifier: keyid:50:EF:E1:DF:72:91:5E:D3:36:1D:B5:59:B5:B6:B8:3E:AE:3E:F3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.0.0/22 IPv6: 2400:47c0::/32 Signature Algorithm: sha256WithRSAEncryption 16:04:b6:35:b5:7e:6f:ff:53:19:74:c5:2b:07:0f:12:f7:0e: 13:0c:26:26:16:6f:11:83:e2:a8:c1:b9:2d:f3:b8:1c:8e:c2: 56:d5:75:98:7f:eb:41:7b:19:be:a7:69:16:54:fb:29:da:46: 28:06:9c:72:24:4e:0e:30:ba:f4:96:92:e9:4c:fb:48:96:6a: 41:4a:f3:f4:62:71:56:b6:39:85:8e:bf:12:63:45:ee:4c:3d: 33:49:0b:d1:62:16:80:b3:79:0a:b2:9e:05:71:81:3c:97:c5: 3b:2d:30:56:ed:74:e5:80:3d:ab:01:d8:08:52:3f:e9:a7:96: 04:22:ad:34:cc:bd:a8:8e:b1:37:d8:d6:93:89:1d:b0:4d:d2: f1:d7:6e:8b:fd:17:cb:5d:7c:d1:ce:a4:1e:0c:e7:eb:4c:cd: 9f:3d:1b:6d:bc:f9:c8:74:69:ea:f1:f4:80:5b:da:1d:f5:95: bf:c6:9a:5f:3e:13:43:fc:f6:fc:dd:4b:0d:71:8c:f3:a2:c0: 12:df:be:cb:b6:2a:b2:31:09:bf:97:ca:1b:ff:dc:f1:8a:45: 64:8a:22:29:e9:b6:2c:b6:f4:ed:1a:cc:26:21:4d:44:d3:33: 2d:ce:26:80:3a:9b:28:99:43:17:cf:0b:5e:72:30:f5:2e:c2: fa:25:a7:54 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlERjIxMTAvBgNVBAUTKDUwRUZFMURGNzI5MTVFRDMzNjFEQjU1OUI1QjZCODNF QUUzRUYzQzAwHhcNMjMxMTA0MjA0ODE5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2YWUxMy1iYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMrHPM+wxXU9aHW8S68Fb0N3YeIWYU0ImIOXiYMHknpdWo3+0r7pyNpr1js/ goO3IgrJey/Y7pImyg2hFHO7lTFWFypfoWi29dvImGvUTBGRBh0nk2PvdXjrfD7i 1aqrnr+XAElPjeJVoA7DYtQUxbQPL37L0EZjiRKU0lxlulvvSa+Mhbnqn3Z+kkVJ 1CmeKT6cahoY+8LIVZc06sWCFs67ttLgoHIfKwSbkZALL1STZsW4ji4vJdCo7HgJ vu5fHhqTwV/xYd16b998wdYujma20d8KzdafA5rCQP5PmNiPbdgFPMDFn+RdIX47 ztbPDhueCpp+KS8EpvzYPi69lQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGOb0cMR Dcx5a/8qqn5NOk30nRE8MB8GA1UdIwQYMBaAFFDv4d9ykV7TNh21WbW2uD6uPvPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OURGMi85OTk4RjFDNDY3 OUIxMUVBOTlBQTQyMEFDNEY5QUUwMi9VT19oMzNLUlh0TTJIYlZadGJhNFBxNC04 OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPX2gzM0tSWHRNMkhiVlp0YmE0UHE0LTg4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlERjIvOTk5OEYxQzQ2NzlCMTFFQTk5QUE0MjBBQzRGOUFFMDIvMDM1N0EwNjQ2 NzlEMTFFQUJENjgxRDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnUAAwDQQCAAIwBwMFACQAR8AwDQYJKoZIhvcNAQELBQAD ggEBABYEtjW1fm//Uxl0xSsHDxL3DhMMJiYWbxGD4qjBuS3zuByOwlbVdZh/60F7 Gb6naRZU+ynaRigGnHIkTg4wuvSWkulM+0iWakFK8/RicVa2OYWOvxJjRe5MPTNJ C9FiFoCzeQqyngVxgTyXxTstMFbtdOWAPasB2AhSP+mnlgQirTTMvaiOsTfY1pOJ HbBN0vHXbov9F8tdfNHOpB4M5+tMzZ89G228+ch0aerx9IBb2h31lb/Gml8+E0P8 9vzdSw1xjPOiwBLfvsu2KrIxCb+Xyhv/3PGKRWSKIinptiy29O0azCYhTUTTMy3O JoA6myiZQxfPC15yMPUuwvolp1Q= -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org