$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa File: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (raw, json) Hash identifier: zu2QIibL8QZhnECTmI8ip0GGGoCl+/y5ToV7KXXOOtM= Subject key identifier: 3F:44:11:32:6E:15:53:0E:5A:18:06:5A:D1:00:59:34:AE:36:ED:BC Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 09B5 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa Signing time: Tue 30 May 2023 01:22:12 +0000 ROA not before: Tue 30 May 2023 01:22:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 20:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2485 (0x9b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 30 01:22:12 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64754fc4-98d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:20:d2:7c:90:72:a7:43:e8:d7:45:2e:8c: fc:4a:c3:55:fa:ae:15:a0:07:90:aa:1b:45:33:be: e4:0b:85:74:34:c0:44:4f:b4:49:2e:92:ee:13:af: d7:57:a4:f1:97:49:a4:a1:81:27:c4:91:f3:b4:79: 29:5b:f4:53:7b:ae:7b:e7:c9:1a:f8:b0:2e:f3:e0: c8:ee:f2:65:07:13:1c:aa:a7:93:b1:32:a3:54:87: 1b:e5:53:00:a8:3d:6d:4b:f1:87:a4:1e:b3:97:e7: 66:ac:41:5a:5b:6d:cf:26:f1:e4:73:ae:3b:2c:41: ba:21:74:f7:db:a0:67:73:ea:1d:13:f3:78:38:fc: 6f:37:89:8c:ed:7c:41:cb:da:fa:62:4d:85:4e:a0: 97:02:5f:1b:ad:42:c2:5a:65:d0:6b:96:14:cf:34: 41:68:73:87:24:75:1c:7f:7d:ea:10:21:c9:48:c9: 0d:21:9a:bb:e5:59:1b:7e:29:4f:4f:8d:41:25:83: 64:86:3e:53:58:70:6d:f6:57:16:f9:17:df:16:69: c9:f7:7f:dc:f8:2c:c2:31:f0:0d:5c:27:4d:4b:bc: 13:65:0f:9b:8a:33:26:05:d0:57:5f:77:87:f9:75: c9:56:d0:f6:2a:12:e8:55:c9:32:4c:0c:d9:f2:ee: 61:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:44:11:32:6E:15:53:0E:5A:18:06:5A:D1:00:59:34:AE:36:ED:BC X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption 12:05:48:2b:91:19:5a:86:8f:a9:fa:93:77:54:20:17:13:87: d1:70:13:37:e2:19:6d:6d:4f:52:b9:a6:f5:8f:56:a2:0b:92: 04:a9:94:b1:95:3d:64:43:af:20:1b:01:b2:9c:a3:0f:03:cf: 56:ac:ac:46:ad:3e:7b:42:1d:b0:ac:1b:7b:61:a8:73:9a:f1: 4d:6c:65:10:3e:24:4a:29:ac:01:3e:0d:5e:21:72:51:90:07: 76:e3:b2:de:22:0d:20:4b:54:08:c9:cc:47:96:54:4b:a5:54: d2:c2:e7:4c:d5:9f:4c:94:26:dd:31:62:93:38:7b:30:df:9d: 8b:d3:73:79:0a:84:d2:84:d5:e6:f2:8f:20:95:60:ee:15:01: 31:e3:c6:d3:f1:da:fc:5f:0f:06:ee:0c:f4:f7:ae:86:4d:c3: 8d:9d:1e:9e:d1:ef:67:43:d7:4d:cf:fb:02:94:25:ad:57:72: 34:d1:ae:7c:51:5f:20:57:9f:7e:41:58:c4:1e:fb:cf:7f:c7: 68:97:ac:d7:e0:e1:b1:43:f1:2c:58:4a:cb:dd:fd:0b:a1:18: 34:c7:1c:f5:38:4b:dd:6c:e2:56:56:b9:fa:e0:22:e3:be:82: 5a:ed:93:22:1b:6e:79:04:d0:e8:8a:35:f6:80:28:55:74:cf: e2:58:24:11 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjMwNTMwMDEyMjEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc1NGZjNC05OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cMg0nyQcqdD6NdFLoz8SsNV+q4VoAeQqhtFM77kC4V0NMBET7RJLpLuE6/X V6Txl0mkoYEnxJHztHkpW/RTe65758ka+LAu8+DI7vJlBxMcqqeTsTKjVIcb5VMA qD1tS/GHpB6zl+dmrEFaW23PJvHkc647LEG6IXT326Bnc+odE/N4OPxvN4mM7XxB y9r6Yk2FTqCXAl8brULCWmXQa5YUzzRBaHOHJHUcf33qECHJSMkNIZq75VkbfilP T41BJYNkhj5TWHBt9lcW+RffFmnJ93/c+CzCMfANXCdNS7wTZQ+bijMmBdBXX3eH +XXJVtD2KhLoVckyTAzZ8u5h9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD9EETJu FVMOWhgGWtEAWTSuNu28MB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvOUYwRDY1NzRC RkYwMTFFQUEzOEQzQjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+IAwDwQCAAIwCQMHBCQDX0DKADANBgkqhkiG9w0BAQsF AAOCAQEAEgVIK5EZWoaPqfqTd1QgFxOH0XATN+IZbW1PUrmm9Y9WoguSBKmUsZU9 ZEOvIBsBspyjDwPPVqysRq0+e0IdsKwbe2Goc5rxTWxlED4kSimsAT4NXiFyUZAH duOy3iINIEtUCMnMR5ZUS6VU0sLnTNWfTJQm3TFikzh7MN+di9NzeQqE0oTV5vKP IJVg7hUBMePG0/Ha/F8PBu4M9Peuhk3DjZ0entHvZ0PXTc/7ApQlrVdyNNGufFFf IFeffkFYxB77z3/HaJes1+DhsUPxLFhKy939C6EYNMcc9ThL3WziVla5+uAi476C Wu2TIhtueQTQ6Io19oAoVXTP4lgkEQ== -----END CERTIFICATE-----Generated at Tue Apr 16 22:13:05 2024 by rpki-client on console-fra.rpki-client.org