$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/10CF1D82C0E311EE81F3E987C4F9AE02.roa File: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (raw, json) Hash identifier: FzuGlm4J7hB8n0nUgcJ3pI/o6PgR+LasygShla30yoM= Subject key identifier: 9B:31:68:9B:63:02:2B:A5:FB:98:2D:A3:A8:89:63:79:3A:9C:50:D0 Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0AC7 Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/10CF1D82C0E311EE81F3E987C4F9AE02.roa Signing time: Thu 01 Feb 2024 09:19:57 +0000 ROA not before: Thu 01 Feb 2024 09:19:57 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139325 IP address blocks: 103.141.64.0/23 maxlen: 24 2001:df0:f280::/48 maxlen: 48 2401:79e0:4000::/34 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2759 (0xac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Feb 1 09:19:57 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65bb623c-d430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:07:c4:12:63:93:36:ea:e7:91:13:92:6b: 62:35:0f:d4:5f:0f:20:df:de:92:da:2a:e1:20:5c: 0b:4a:7d:ed:14:6a:31:57:86:5b:50:ec:54:39:f4: e0:a8:dd:4e:8b:8a:42:7d:ad:ab:84:33:87:31:a0: 5c:57:d9:44:f5:ad:f8:c6:48:40:82:89:76:e1:32: 6c:5b:8d:30:3d:34:c6:72:82:1e:bf:e1:a2:80:31: a1:90:28:da:34:6c:c4:1d:ec:f0:47:ea:11:68:13: 50:7c:4c:10:40:1f:d7:9c:7f:57:41:e1:fc:20:3d: 94:10:65:73:f5:84:13:f6:8e:91:bd:52:01:2d:24: 44:32:57:fe:ee:5e:76:dc:d4:c6:db:9c:49:4b:1a: 65:85:e3:d2:5e:f7:53:b0:2e:1b:c9:f5:29:d9:57: a7:3b:0b:f1:ea:a0:a2:6f:c7:c8:47:df:d4:0f:ab: 5d:07:0d:b1:8a:6f:7e:db:60:56:9a:a3:8f:26:2c: 25:27:cb:82:e3:f4:f7:0f:2f:2a:78:eb:b2:65:6d: a3:9e:f7:04:75:87:29:15:bd:89:eb:a9:8b:48:85: d5:26:12:17:e9:50:35:90:f9:13:23:40:f2:2e:1f: a0:7d:3c:e4:8b:a0:80:4b:31:3b:48:a4:c6:50:c6: b6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:31:68:9B:63:02:2B:A5:FB:98:2D:A3:A8:89:63:79:3A:9C:50:D0 X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/10CF1D82C0E311EE81F3E987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.64.0/23 IPv6: 2001:df0:f280::/48 2401:79e0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 82:b2:75:ac:bb:be:63:0f:75:d9:0d:eb:60:b8:50:75:62:46: cc:56:c2:80:8b:3b:0b:ff:2a:8a:10:1b:ab:89:e9:ae:0e:b0: 41:96:93:82:df:36:fc:66:fa:f3:e5:d0:ba:b3:db:ed:2c:ad: 24:89:37:31:84:48:cb:5c:dd:a7:83:98:6b:ec:61:51:b4:9a: 48:d9:11:80:60:7a:7e:75:af:8b:17:14:69:37:3f:86:1c:41: fe:7e:18:bf:47:e9:78:9d:33:0a:60:1a:0c:eb:9c:01:6a:93: 70:22:57:cf:ae:be:03:4a:49:4c:86:22:e6:7c:bd:f8:21:ec: 83:cc:c9:53:b7:20:4f:af:51:84:67:81:aa:1d:32:a3:5a:11: d3:43:95:62:df:bc:c1:7d:a6:7c:a3:82:a8:44:41:dd:ea:13: 60:6e:8a:16:a3:50:0c:4d:63:d6:e9:7d:f7:56:a1:33:91:7b: 98:ab:1a:32:f6:af:72:a7:e3:81:22:ed:39:d9:01:ba:86:71: bc:3b:88:ad:5e:fa:96:7d:a4:41:be:9a:d2:b8:4b:c1:fd:96: ca:33:e2:5c:6b:50:22:9d:f1:ce:42:d4:f4:30:cd:9e:a9:06: 84:60:1c:f0:91:2b:a7:1e:f3:44:b9:92:7c:f5:f3:b7:c3:bb: a0:1f:2a:c6 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICCscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjQwMjAxMDkxOTU3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiNjIzYy1kNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk8HxBJjkzbq55ETkmtiNQ/UXw8g396S2irhIFwLSn3tFGoxV4ZbUOxUOfTg qN1Oi4pCfa2rhDOHMaBcV9lE9a34xkhAgol24TJsW40wPTTGcoIev+GigDGhkCja NGzEHezwR+oRaBNQfEwQQB/XnH9XQeH8ID2UEGVz9YQT9o6RvVIBLSREMlf+7l52 3NTG25xJSxplhePSXvdTsC4byfUp2VenOwvx6qCib8fIR9/UD6tdBw2xim9+22BW mqOPJiwlJ8uC4/T3Dy8qeOuyZW2jnvcEdYcpFb2J66mLSIXVJhIX6VA1kPkTI0Dy Lh+gfTzki6CASzE7SKTGUMa21QIDAQABo4ICrjCCAqowHQYDVR0OBBYEFJsxaJtj Aiul+5gto6iJY3k6nFDQMB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEExMzkvRUJCOUVDNjAyNENBMTFFQUFDMkFFNTg2QzRGOUFFMDIvMTBDRjFEODJD MEUzMTFFRTgxRjNFOTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBAFnjUAwFwQCAAIwEQMHACABDfDygAMGBiQBeeBAMA0GCSqG SIb3DQEBCwUAA4IBAQCCsnWsu75jD3XZDetguFB1YkbMVsKAizsL/yqKEBuriemu DrBBlpOC3zb8Zvrz5dC6s9vtLK0kiTcxhEjLXN2ng5hr7GFRtJpI2RGAYHp+da+L FxRpNz+GHEH+fhi/R+l4nTMKYBoM65wBapNwIlfPrr4DSklMhiLmfL34IeyDzMlT tyBPr1GEZ4GqHTKjWhHTQ5Vi37zBfaZ8o4KoREHd6hNgbooWo1AMTWPW6X33VqEz kXuYqxoy9q9yp+OBIu052QG6hnG8O4itXvqWfaRBvprSuEvB/ZbKM+Jca1AinfHO QtT0MM2eqQaEYBzwkSunHvNEuZJ89fO3w7ugHyrG -----END CERTIFICATE-----Generated at Thu May 16 21:45:27 2024 by rpki-client on console-fra.rpki-client.org