$ rpki-client -vvf rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/D6CC557C6E2C11EEBFE28628C4F9AE02.roa File: D6CC557C6E2C11EEBFE28628C4F9AE02.roa (raw, json) Hash identifier: mn7Krz3EVkdERMeASJg44CHZ1Fcn/MUB67Qdb0V29Qs= Subject key identifier: 59:48:6C:25:FE:2D:8A:C1:83:35:2A:3B:CD:71:9E:CD:C0:85:B8:F4 Certificate issuer: /CN=A914B813/serialNumber=107618E36C91DBED0C8745295D0149842787AF83 Certificate serial: 03 Authority key identifier: 10:76:18:E3:6C:91:DB:ED:0C:87:45:29:5D:01:49:84:27:87:AF:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHYY42yR2-0Mh0UpXQFJhCeHr4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/D6CC557C6E2C11EEBFE28628C4F9AE02.roa Signing time: Thu 19 Oct 2023 03:08:56 +0000 ROA not before: Thu 19 Oct 2023 03:08:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55884 IP address blocks: 103.61.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/EHYY42yR2-0Mh0UpXQFJhCeHr4M.crl rsync://rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/EHYY42yR2-0Mh0UpXQFJhCeHr4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHYY42yR2-0Mh0UpXQFJhCeHr4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B813/serialNumber=107618E36C91DBED0C8745295D0149842787AF83 Validity Not Before: Oct 19 03:08:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65309dc7-d9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9f:09:68:b6:88:cd:e9:27:6a:51:74:82:e1: ce:b7:4a:fc:7a:31:7d:c6:42:c2:38:4d:a7:ea:be: bc:31:b4:11:f1:6f:b3:cf:0a:7f:3a:e8:93:17:fa: 87:e2:85:60:47:77:05:3e:da:38:e1:a6:35:aa:2d: 5f:3b:07:e1:79:d4:45:fb:db:16:13:08:2b:61:c0: 26:06:e4:3e:ef:e3:3d:18:df:35:a4:a4:2e:b0:0d: da:d7:56:24:72:3a:d9:4e:91:c6:62:39:1b:e5:13: 13:9a:10:a0:c6:aa:78:0a:be:78:bd:2b:ec:a5:56: 19:cd:78:5d:66:fb:63:64:2d:a9:8e:8f:3a:69:61: e9:f2:90:e7:86:e5:af:5b:ab:e3:b6:57:fc:d6:46: 05:6e:64:c7:23:81:75:e5:58:7d:e2:9c:42:24:be: 2b:0a:bf:02:3f:ef:17:6b:c6:ba:b9:8e:4e:ce:3d: 40:cd:14:fa:2d:8a:03:a0:4f:45:74:9b:cf:b3:59: fc:86:c0:4e:50:cd:19:69:3d:a4:c7:86:b2:0b:2b: 66:78:38:32:17:3c:d1:cb:49:f2:0f:94:a8:eb:ec: 00:23:ea:74:c4:96:50:a4:42:a0:14:38:22:55:d0: 2f:19:f5:7d:89:6a:e4:78:18:13:29:99:c6:87:e7: 12:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:48:6C:25:FE:2D:8A:C1:83:35:2A:3B:CD:71:9E:CD:C0:85:B8:F4 X509v3 Authority Key Identifier: keyid:10:76:18:E3:6C:91:DB:ED:0C:87:45:29:5D:01:49:84:27:87:AF:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/EHYY42yR2-0Mh0UpXQFJhCeHr4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHYY42yR2-0Mh0UpXQFJhCeHr4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B813/A852436A6E2B11EE8DD66735C4F9AE02/D6CC557C6E2C11EEBFE28628C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.96.0/24 Signature Algorithm: sha256WithRSAEncryption a4:44:9b:bd:2f:7b:f9:b5:ef:53:d5:dd:26:a5:e1:77:58:1d: eb:24:75:75:2e:4f:c8:da:e4:86:ee:f2:2f:0b:b6:bc:ba:33: bc:04:b0:a1:c9:c3:c7:17:d7:02:fa:bc:d6:77:82:30:37:35: 73:06:33:33:9a:c6:f6:fd:7a:80:67:f8:a8:62:73:81:a2:82: 5f:3c:d9:b7:f0:94:74:f9:7b:40:92:28:9d:c5:af:d5:8c:1e: 10:84:e6:b3:68:97:37:a9:4f:d0:36:f8:49:ae:1b:f6:30:a4: cc:b2:83:ae:c0:42:7b:e9:f0:b6:bb:4f:21:96:8f:63:1a:ab: 09:b1:bf:18:9a:b4:a9:a5:2e:46:08:df:62:88:c7:ab:e2:3d: 4d:57:b4:88:c8:fe:da:aa:c6:60:0c:1c:1d:29:74:d4:61:99: c1:81:6b:b4:2a:aa:00:34:19:d5:72:d7:b9:0e:e1:ea:d6:bc: 2a:17:c4:8b:3d:c6:5c:3a:0c:c2:c2:15:1a:f5:58:e1:33:bc: d6:30:4f:25:ac:22:f1:f3:7d:45:eb:37:57:51:bf:aa:56:9e: 7a:a5:1a:6e:d2:8a:61:7b:a6:2c:f1:ce:e6:e5:c5:eb:21:68: bd:03:fd:3a:62:d5:90:0b:8c:68:eb:86:34:1f:98:d9:63:fb: 28:dd:fc:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjgxMzExMC8GA1UEBRMoMTA3NjE4RTM2QzkxREJFRDBDODc0NTI5NUQwMTQ5ODQy Nzg3QUY4MzAeFw0yMzEwMTkwMzA4NTZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzA5ZGM3LWQ5ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClnwlotojN6SdqUXSC4c63Svx6MX3GQsI4TafqvrwxtBHxb7PPCn866JMX+ofi hWBHdwU+2jjhpjWqLV87B+F51EX72xYTCCthwCYG5D7v4z0Y3zWkpC6wDdrXViRy OtlOkcZiORvlExOaEKDGqngKvni9K+ylVhnNeF1m+2NkLamOjzppYenykOeG5a9b q+O2V/zWRgVuZMcjgXXlWH3inEIkvisKvwI/7xdrxrq5jk7OPUDNFPotigOgT0V0 m8+zWfyGwE5QzRlpPaTHhrILK2Z4ODIXPNHLSfIPlKjr7AAj6nTEllCkQqAUOCJV 0C8Z9X2JauR4GBMpmcaH5xIhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWUhsJf4t isGDNSo7zXGezcCFuPQwHwYDVR0jBBgwFoAUEHYY42yR2+0Mh0UpXQFJhCeHr4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCODEzL0E4NTI0MzZBNkUy QjExRUU4REQ2NjczNUM0RjlBRTAyL0VIWVk0MnlSMi0wTWgwVXBYUUZKaENlSHI0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUhZWTQyeVIyLTBNaDBVcFhRRkpoQ2VIcjRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjgxMy9BODUyNDM2QTZFMkIxMUVFOERENjY3MzVDNEY5QUUwMi9ENkNDNTU3QzZF MkMxMUVFQkZFMjg2MjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGc9YDANBgkqhkiG9w0BAQsFAAOCAQEApESbvS97+bXvU9Xd JqXhd1gd6yR1dS5PyNrkhu7yLwu2vLozvASwocnDxxfXAvq81neCMDc1cwYzM5rG 9v16gGf4qGJzgaKCXzzZt/CUdPl7QJIoncWv1YweEITms2iXN6lP0Db4Sa4b9jCk zLKDrsBCe+nwtrtPIZaPYxqrCbG/GJq0qaUuRgjfYojHq+I9TVe0iMj+2qrGYAwc HSl01GGZwYFrtCqqADQZ1XLXuQ7h6ta8KhfEiz3GXDoMwsIVGvVY4TO81jBPJawi 8fN9Res3V1G/qlaeeqUabtKKYXumLPHO5uXF6yFovQP9OmLVkAuMaOuGNB+Y2WP7 KN382Q== -----END CERTIFICATE-----Generated at Wed May 29 09:16:18 2024 by rpki-client on console-fra.rpki-client.org