$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa File: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (raw, json) Hash identifier: tWgKdiKEkxy7J+w5eCL6fH6x9Y2woWkufKdftPBBbXw= Subject key identifier: 96:41:86:05:15:B3:C8:96:3D:F0:24:F8:59:65:42:2B:37:06:42:BA Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0684 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa Signing time: Tue 08 Aug 2023 22:19:13 +0000 ROA not before: Tue 08 Aug 2023 22:19:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58715 IP address blocks: 103.155.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Aug 8 22:19:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64d2bf61-5a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:17:f1:12:a2:3f:78:d2:3b:2b:d9:f8:7b:4e: 95:61:6f:26:81:87:99:e7:df:30:98:8d:70:27:5a: 27:61:64:57:f1:26:f2:98:4a:ad:bb:19:86:39:df: f2:5b:ab:18:b0:92:00:45:66:b5:37:8e:53:63:df: 1d:61:d3:73:4f:c1:dd:bd:9c:d4:71:42:33:93:0f: f3:a8:53:bf:80:dc:37:4f:15:31:18:71:38:7a:f9: ee:b9:7f:f6:0e:7f:94:0a:d8:4b:de:84:a5:0b:51: e9:1c:31:2c:f0:ba:e6:7c:99:4a:9f:0f:2c:fa:1f: a3:52:09:4a:e8:92:55:0b:08:06:43:4a:d8:89:18: 82:f5:98:c3:56:2f:9f:99:4d:17:23:7c:63:e8:98: bf:44:b4:b8:87:72:7a:a7:4c:de:96:a6:3f:8c:ad: c4:74:10:92:a7:72:ff:5e:62:ff:df:15:7e:ce:3d: 38:8a:a1:78:28:c4:3d:f2:c1:3c:89:1d:1b:d6:c8: b5:7f:58:bf:3d:e5:1c:8f:07:22:3a:72:46:bd:cf: 07:00:c9:e0:b2:61:d1:30:b8:a5:12:fa:e0:ce:22: 64:5e:19:82:34:40:1c:39:6a:da:60:80:e5:fd:a2: fd:9c:6c:5e:25:de:e6:78:bd:1b:fb:09:72:af:82: b0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:41:86:05:15:B3:C8:96:3D:F0:24:F8:59:65:42:2B:37:06:42:BA X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.118.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:30:6a:87:10:60:9c:4f:ac:6a:15:54:98:3b:49:0f:24:92: 04:eb:a5:c0:0e:78:c9:c1:59:61:db:a4:78:fb:d6:d8:cb:c4: 74:ef:52:c2:33:24:de:71:32:85:04:a9:25:fc:f4:07:1f:61: cd:c1:aa:99:ee:27:ba:b8:79:33:b9:a3:e5:b5:82:45:7a:d1: 4a:87:09:fc:88:73:0f:82:01:d7:76:3a:b0:a5:c4:21:30:e0: ba:b6:fd:7a:69:50:d8:c4:30:c0:3e:25:06:5a:7a:32:8e:56: 59:ee:57:c2:fe:d0:68:a5:e8:bb:28:a9:01:94:07:18:7e:09: 49:97:2d:ed:8e:ad:9a:d7:de:11:47:66:2e:da:73:67:21:2e: 46:5a:fb:dc:32:89:de:70:81:e4:5c:99:f3:14:29:65:b1:c8: fe:e5:8b:1f:11:b7:81:39:e7:7f:75:59:07:53:2b:9c:b8:61: 83:50:f0:16:ae:99:ac:ce:b6:f6:2f:d5:84:5b:84:dd:9f:07: af:29:eb:b3:68:76:d2:95:1d:0c:6e:ff:9b:22:ab:09:7b:23: 28:21:9c:e9:8c:c3:b2:3c:48:49:e9:fe:27:16:5f:14:17:70: 85:52:dd:83:f9:24:20:a9:65:0e:5e:d9:8f:a9:66:13:f1:21: d2:5e:97:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjMwODA4MjIxOTEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyYmY2MS01YTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxfxEqI/eNI7K9n4e06VYW8mgYeZ598wmI1wJ1onYWRX8SbymEqtuxmGOd/y W6sYsJIARWa1N45TY98dYdNzT8HdvZzUcUIzkw/zqFO/gNw3TxUxGHE4evnuuX/2 Dn+UCthL3oSlC1HpHDEs8LrmfJlKnw8s+h+jUglK6JJVCwgGQ0rYiRiC9ZjDVi+f mU0XI3xj6Ji/RLS4h3J6p0zelqY/jK3EdBCSp3L/XmL/3xV+zj04iqF4KMQ98sE8 iR0b1si1f1i/PeUcjwciOnJGvc8HAMngsmHRMLilEvrgziJkXhmCNEAcOWraYIDl /aL9nGxeJd7meL0b+wlyr4KwQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZBhgUV s8iWPfAk+FllQis3BkK6MB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVEMkIvOEI2NzAwQTZGNDA4MTFFQTkwQUM1NjZGQzRGOUFFMDIvQ0QwNzEwREEz RjM1MTFFRDg0QUZFQTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnm3YwDQYJKoZIhvcNAQELBQADggEBAEowaocQYJxPrGoV VJg7SQ8kkgTrpcAOeMnBWWHbpHj71tjLxHTvUsIzJN5xMoUEqSX89AcfYc3Bqpnu J7q4eTO5o+W1gkV60UqHCfyIcw+CAdd2OrClxCEw4Lq2/XppUNjEMMA+JQZaejKO VlnuV8L+0Gil6LsoqQGUBxh+CUmXLe2OrZrX3hFHZi7ac2chLkZa+9wyid5wgeRc mfMUKWWxyP7lix8Rt4E55391WQdTK5y4YYNQ8BaumazOtvYv1YRbhN2fB68p67No dtKVHQxu/5siqwl7IyghnOmMw7I8SEnp/icWXxQXcIVS3YP5JCCpZQ5e2Y+pZhPx IdJely4= -----END CERTIFICATE-----Generated at Wed May 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org