$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa File: BF6649687AC811EDAE44E656C4F9AE02.roa (raw, json) Hash identifier: dByQ8g0jFG1D2M/qi7F7t4/rrCn3xAzdE2/PRavCCQ8= Subject key identifier: 07:C1:DF:CC:CD:C1:01:F5:AC:BD:2A:E4:38:A6:E7:2B:9D:8F:D5:9D Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 34D7 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa Signing time: Tue 26 Sep 2023 14:30:17 +0000 ROA not before: Tue 26 Sep 2023 14:30:17 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 131887 IP address blocks: 103.104.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Sep 26 14:30:17 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6512eaf9-e0b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:67:56:39:de:6a:cb:85:d4:54:83:81:50: 89:06:80:7d:37:07:0d:5a:e3:15:e6:8c:c2:7f:dc: 6d:15:0f:98:00:75:23:b2:8f:f8:e4:2f:0c:4b:b0: fa:e9:7a:d3:bd:ea:e4:2d:d7:60:7d:1f:53:91:6e: 86:83:0b:10:2e:8f:e5:29:cb:7d:cf:cc:af:8a:0e: 57:50:1e:ef:db:37:aa:f0:ac:ab:c7:73:b2:39:a9: 79:92:82:ce:c2:b3:78:ab:89:3f:45:68:0b:3f:7a: ef:7e:02:47:26:ae:4d:14:7c:62:24:89:67:3c:73: 47:ab:2b:a6:56:a2:ff:6a:47:23:0c:be:7f:1d:dd: 86:61:8a:8d:7a:64:09:60:e0:55:f9:de:13:05:31: c1:44:2a:f6:c2:3a:6e:60:34:27:cd:a9:f0:22:12: 75:be:aa:cb:f7:70:90:d3:06:90:74:e9:48:5c:17: ec:de:6a:b3:7c:66:69:7d:90:f3:8d:2b:af:35:a3: e8:53:af:c8:07:bf:35:83:69:81:da:de:1e:c1:49: bd:55:3a:40:7e:d1:f7:13:be:49:2c:4a:e3:03:98: e0:04:fb:bf:7b:8d:c0:87:2a:97:44:1a:8b:b0:64: e1:da:34:f7:ca:3a:36:bc:f4:cc:d3:1f:c0:bf:e4: 8c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C1:DF:CC:CD:C1:01:F5:AC:BD:2A:E4:38:A6:E7:2B:9D:8F:D5:9D X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.86.0/24 Signature Algorithm: sha256WithRSAEncryption 64:8e:73:f0:56:43:27:29:bc:70:ad:5f:94:1a:07:7b:b5:39: 24:41:31:e5:71:8a:de:8c:7e:72:95:7b:e4:1e:0d:cf:b1:30: f2:fb:e3:24:b7:ac:b1:b6:d0:7f:91:d3:eb:dd:71:5e:bb:ee: 86:c6:b9:84:f5:d5:7d:cb:76:23:09:b3:01:f4:8c:bd:7e:25: 2d:ad:bb:5b:02:97:1a:55:2b:4c:8a:4d:f7:30:c3:b6:0f:21: ce:df:67:ab:2c:88:91:e0:d7:47:d8:89:f0:e5:3f:e9:db:89: 97:43:24:f2:33:33:96:8b:d0:8a:5c:e1:77:96:b2:cd:1d:bd: f4:03:3b:2d:51:a0:95:73:b0:b1:be:37:4e:f5:76:15:00:b4: 7c:dd:c5:98:66:91:e0:8a:52:10:a8:08:3b:39:b3:61:f7:eb: ff:aa:78:3d:3d:26:33:0e:b2:d4:40:b1:65:48:01:ee:50:9f: 8c:a2:8a:29:23:a1:3d:0e:4a:1a:14:f1:5a:78:dc:08:8f:9e: 5c:ff:ff:51:ba:d5:b0:d8:d7:80:1f:03:10:4d:20:b7:49:60: 8f:d6:b0:4e:86:97:ae:ce:ab:92:50:e5:d4:e8:5e:1c:4f:3e: 06:e8:24:a8:89:a3:ad:7a:04:e1:80:b2:8c:88:6f:cc:e2:ed: 42:6e:c4:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjMwOTI2MTQzMDE3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEyZWFmOS1lMGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwlnVjneasuF1FSDgVCJBoB9NwcNWuMV5ozCf9xtFQ+YAHUjso/45C8MS7D6 6XrTverkLddgfR9TkW6GgwsQLo/lKct9z8yvig5XUB7v2zeq8Kyrx3OyOal5koLO wrN4q4k/RWgLP3rvfgJHJq5NFHxiJIlnPHNHqyumVqL/akcjDL5/Hd2GYYqNemQJ YOBV+d4TBTHBRCr2wjpuYDQnzanwIhJ1vqrL93CQ0waQdOlIXBfs3mqzfGZpfZDz jSuvNaPoU6/IB781g2mB2t4ewUm9VTpAftH3E75JLErjA5jgBPu/e43AhyqXRBqL sGTh2jT3yjo2vPTM0x/Av+SMuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAfB38zN wQH1rL0q5Dim5yudj9WdMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQkY2NjQ5Njg3 QUM4MTFFREFFNDRFNjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaFYwDQYJKoZIhvcNAQELBQADggEBAGSOc/BWQycpvHCt X5QaB3u1OSRBMeVxit6MfnKVe+QeDc+xMPL74yS3rLG20H+R0+vdcV677obGuYT1 1X3LdiMJswH0jL1+JS2tu1sClxpVK0yKTfcww7YPIc7fZ6ssiJHg10fYifDlP+nb iZdDJPIzM5aL0Ipc4XeWss0dvfQDOy1RoJVzsLG+N071dhUAtHzdxZhmkeCKUhCo CDs5s2H36/+qeD09JjMOstRAsWVIAe5Qn4yiiikjoT0OShoU8Vp43AiPnlz//1G6 1bDY14AfAxBNILdJYI/WsE6Gl67Oq5JQ5dToXhxPPgboJKiJo616BOGAsoyIb8zi 7UJuxLU= -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org