$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/4B167396E74111EC80E35542C4F9AE02.roa File: 4B167396E74111EC80E35542C4F9AE02.roa (raw, json) Hash identifier: u7PlVQH0cq5BEuSWOo0gI8VTE01UeWTciTJcC0+9FF0= Subject key identifier: EB:35:42:44:7C:35:33:15:18:34:48:71:77:E2:9B:18:B2:E3:E6:FF Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 02C5 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/4B167396E74111EC80E35542C4F9AE02.roa Signing time: Sun 17 Sep 2023 02:02:46 +0000 ROA not before: Sun 17 Sep 2023 02:02:46 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 3786 IP address blocks: 103.99.208.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 02:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Sep 17 02:02:46 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65065e46-9317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bb:76:85:54:6e:80:fb:db:df:a1:16:2a:75: a3:b3:26:e6:49:4b:de:28:58:0a:8f:15:27:11:dc: 14:f6:f6:91:e4:c0:6c:d5:eb:b9:7b:4f:51:bc:fc: 32:98:05:2f:c1:01:d1:e3:8e:a6:6c:80:68:94:b2: 06:6d:c4:79:cb:ef:8f:40:25:3c:1a:0f:cb:4b:68: 33:4b:dc:87:a0:64:79:99:34:e3:80:8d:29:cc:06: 86:92:ef:0d:f1:e9:d1:73:80:9a:b3:ea:d4:dd:15: 81:55:6e:8b:b2:ba:e3:f4:73:ee:7e:62:04:32:a9: 61:38:e9:32:d6:cc:b4:80:07:ae:ec:c0:e5:60:53: 41:3f:ff:4b:7c:e0:0c:f7:e7:71:20:fa:89:ff:b9: 2c:b7:3a:04:fe:af:87:3e:c5:d2:c1:20:f1:33:9e: 34:df:58:d9:4e:37:65:b5:b1:0d:e3:df:7e:3d:44: fb:f3:dd:cc:eb:d7:8d:b6:37:ac:0a:1c:a9:e8:9a: fd:2c:74:68:63:e6:68:10:b6:87:42:7b:5f:99:dc: 51:4e:0d:3d:c3:da:bd:f6:35:7d:64:c5:d0:68:df: 77:be:62:01:c3:fc:03:97:78:82:1d:50:a9:74:d6: 0c:87:c7:dc:ef:f5:51:b0:c8:fe:e8:69:65:6b:06: 5b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:35:42:44:7C:35:33:15:18:34:48:71:77:E2:9B:18:B2:E3:E6:FF X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/4B167396E74111EC80E35542C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.208.0/24 103.99.210.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:b8:17:25:98:dc:0b:1d:78:c7:31:24:d4:45:19:10:5f:a9: 78:fa:26:9d:40:70:14:5a:a3:29:66:23:e3:48:47:88:aa:6b: 60:37:55:91:57:4d:cf:12:1e:5d:b8:29:e5:f0:c4:ae:bd:d2: 3b:64:9c:5b:b6:ae:34:7a:f8:a0:5d:b6:6b:e1:1b:a7:e3:1d: 8f:c6:dd:31:2f:c7:a4:2f:e6:5b:a5:e5:ea:d8:8c:98:51:09: a5:7b:01:55:6f:d1:dd:05:b2:5e:77:b9:9f:50:9c:1e:87:32: bf:be:bd:ba:ca:13:9b:a3:3b:1e:f9:bb:40:99:f3:c5:ff:61: 96:f4:3c:e9:6c:f5:57:6d:5e:ee:39:e9:36:2b:43:76:3e:29: 50:98:86:e4:54:32:36:45:58:78:b1:0e:1a:62:04:43:5f:36: 61:4f:8c:dd:fc:93:ee:7a:1a:33:45:93:5b:5d:fe:da:d9:5a: ff:79:44:6e:b5:86:16:a2:a0:cf:e4:89:a7:9d:ba:4f:c7:5c: 5f:ca:3a:85:92:2e:3f:3a:e7:5d:46:dc:85:65:34:6b:c2:c1: fe:b6:f7:44:56:1c:db:17:04:93:64:20:05:17:aa:fd:e0:6f: 17:1b:1c:96:49:b3:fb:b0:d4:35:cd:cc:0a:7d:93:7f:4e:c5: 9f:25:62:ad -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjMwOTE3MDIwMjQ2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA2NWU0Ni05MzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrt2hVRugPvb36EWKnWjsybmSUveKFgKjxUnEdwU9vaR5MBs1eu5e09RvPwy mAUvwQHR446mbIBolLIGbcR5y++PQCU8Gg/LS2gzS9yHoGR5mTTjgI0pzAaGku8N 8enRc4Cas+rU3RWBVW6Lsrrj9HPufmIEMqlhOOky1sy0gAeu7MDlYFNBP/9LfOAM 9+dxIPqJ/7kstzoE/q+HPsXSwSDxM54031jZTjdltbEN499+PUT7893M69eNtjes Chyp6Jr9LHRoY+ZoELaHQntfmdxRTg09w9q99jV9ZMXQaN93vmIBw/wDl3iCHVCp dNYMh8fc7/VRsMj+6GllawZbCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOs1QkR8 NTMVGDRIcXfimxiy4+b/MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvNEIxNjczOTZF NzQxMTFFQzgwRTM1NTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnY9ADBABnY9IwDQYJKoZIhvcNAQELBQADggEBAB+4FyWY 3AsdeMcxJNRFGRBfqXj6Jp1AcBRaoylmI+NIR4iqa2A3VZFXTc8SHl24KeXwxK69 0jtknFu2rjR6+KBdtmvhG6fjHY/G3TEvx6Qv5lul5erYjJhRCaV7AVVv0d0Fsl53 uZ9QnB6HMr++vbrKE5ujOx75u0CZ88X/YZb0POls9VdtXu456TYrQ3Y+KVCYhuRU MjZFWHixDhpiBENfNmFPjN38k+56GjNFk1td/trZWv95RG61hhaioM/kiaeduk/H XF/KOoWSLj86511G3IVlNGvCwf6290RWHNsXBJNkIAUXqv3gbxcbHJZJs/uw1DXN zAp9k39OxZ8lYq0= -----END CERTIFICATE-----Generated at Thu Apr 25 03:19:28 2024 by rpki-client on console-fra.rpki-client.org