$ rpki-client -vvf rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa File: 334C06CE012C11EBA97D451DC4F9AE02.roa (raw, json) Hash identifier: n51yrzTG4X9kbOl93LUA36i+QfiA+VCHWIbhVZWTFGQ= Subject key identifier: CE:42:5B:5A:DE:9E:35:2D:16:6D:FB:CF:AC:78:A1:A4:0F:2F:17:DC Certificate issuer: /CN=A9155374/serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Certificate serial: 063F Authority key identifier: 9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa Signing time: Sat 03 Jun 2023 00:06:59 +0000 ROA not before: Sat 03 Jun 2023 00:06:59 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138973 IP address blocks: 103.137.245.0/24 maxlen: 24 103.157.98.0/24 maxlen: 24 2001:df0:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1599 (0x63f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155374/serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Validity Not Before: Jun 3 00:06:59 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a8423-5be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4a:a6:50:1a:06:04:4d:ff:b0:0a:5d:ca:56: e6:cd:ba:4e:2a:23:1e:83:25:a3:20:71:56:c7:56: fd:3d:ce:a2:a0:2a:be:bd:d0:a3:6a:49:ce:ea:25: 87:df:c6:7a:a9:fb:a4:cd:cf:39:8b:22:d2:c2:f4: 7f:3d:34:fc:39:d5:0b:fc:69:76:45:c2:fc:44:85: 6c:18:dc:d8:66:09:10:f4:94:d3:4c:a0:ae:ef:9e: 48:4d:2f:4c:be:e1:7b:56:28:ab:bf:4d:82:ba:4c: 66:b5:42:e1:21:a8:1f:3b:43:df:18:21:4b:03:1d: 8f:18:27:9f:25:b4:a2:4c:dd:77:44:9c:cf:3c:3d: 82:ec:c4:8c:d4:4e:71:34:97:40:a8:43:d6:a8:8e: 22:46:86:b4:b2:d3:db:2b:86:70:ed:9c:6c:95:6a: 0f:5e:2a:f3:0e:97:8c:68:61:bb:7a:91:64:55:f5: 28:f9:0f:62:25:e3:9b:82:80:26:cf:01:b9:39:c9: f8:15:16:f8:64:e4:34:c3:ea:61:9e:30:49:40:a5: 81:99:f5:6a:05:95:74:b8:c1:71:a2:96:5d:bc:cc: 03:fc:c4:74:01:fc:87:df:0c:30:1a:bc:7c:58:49: e8:c9:10:45:7a:65:eb:e4:b5:91:1b:e1:f1:f6:82: 50:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:42:5B:5A:DE:9E:35:2D:16:6D:FB:CF:AC:78:A1:A4:0F:2F:17:DC X509v3 Authority Key Identifier: keyid:9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.245.0/24 103.157.98.0/24 IPv6: 2001:df0:2780::/48 Signature Algorithm: sha256WithRSAEncryption 49:08:e2:e4:48:37:26:6a:ab:48:bc:9a:6c:d2:34:30:3d:53: c0:f4:ec:17:2b:d0:0e:02:95:89:90:dd:e3:77:70:e1:ee:bd: 5c:14:49:dd:e6:c9:8f:1a:12:63:df:d6:6a:95:a6:f3:6e:e8: 7d:c6:b4:44:5b:6e:e6:54:07:8b:dd:3f:9c:a6:8b:c8:2a:31: 02:36:2f:4f:92:c2:b9:25:ff:3c:23:d1:03:f9:d8:2b:ee:63: f8:7d:41:08:fc:68:6f:a9:2b:f8:90:43:13:ca:8d:48:f6:ce: 6d:a1:d8:f1:21:e7:e1:6c:dd:63:6a:75:89:a2:fa:b2:9f:55: ce:59:43:d0:af:d0:7d:2a:ea:f9:68:97:86:ec:20:5c:99:e6: 25:4e:65:c6:cc:50:c9:13:66:0c:38:2c:9d:22:37:e3:22:75: 8d:30:0c:b1:a9:53:80:75:1e:e9:1b:45:de:77:64:1d:af:e1: 18:a5:5d:6a:71:7f:c2:e8:57:ac:04:20:4b:91:ea:9d:5a:c4: 28:86:a9:84:f2:38:0a:dc:c6:fa:a3:8a:9a:87:8e:32:6d:1d: b2:83:bb:52:15:f8:d5:48:e2:75:b5:86:2c:f2:33:da:12:a4: 9d:97:b0:9b:4e:1b:4c:e8:39:fd:5f:74:01:af:70:9f:ca:0a: 16:fa:48:d5 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUzNzQxMTAvBgNVBAUTKDlCRjU3NERGNUU3Rjk5QkQ0MzZCQUE1MDUyRjhDQThD RkIzMUEyQjkwHhcNMjMwNjAzMDAwNjU5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhODQyMy01YmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EqmUBoGBE3/sApdylbmzbpOKiMegyWjIHFWx1b9Pc6ioCq+vdCjaknO6iWH 38Z6qfukzc85iyLSwvR/PTT8OdUL/Gl2RcL8RIVsGNzYZgkQ9JTTTKCu755ITS9M vuF7Viirv02CukxmtULhIagfO0PfGCFLAx2PGCefJbSiTN13RJzPPD2C7MSM1E5x NJdAqEPWqI4iRoa0stPbK4Zw7ZxslWoPXirzDpeMaGG7epFkVfUo+Q9iJeObgoAm zwG5Ocn4FRb4ZOQ0w+phnjBJQKWBmfVqBZV0uMFxopZdvMwD/MR0AfyH3wwwGrx8 WEnoyRBFemXr5LWRG+Hx9oJQBQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFM5CW1re njUtFm37z6x4oaQPLxfcMB8GA1UdIwQYMBaAFJv1dN9ef5m9Q2uqUFL4yoz7MaK5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTM3NC8zMzZFNThFQzAx MkIxMUVCQjZDODlFMUNDNEY5QUUwMi9tX1YwMzE1X21iMURhNnBRVXZqS2pQc3hv cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fVjAzMTVfbWIxRGE2cFFVdmpLalBzeG9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUzNzQvMzM2RTU4RUMwMTJCMTFFQkI2Qzg5RTFDQzRGOUFFMDIvMzM0QzA2Q0Uw MTJDMTFFQkE5N0Q0NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnifUDBABnnWIwDwQCAAIwCQMHACABDfAngDANBgkqhkiG 9w0BAQsFAAOCAQEASQji5Eg3JmqrSLyabNI0MD1TwPTsFyvQDgKViZDd43dw4e69 XBRJ3ebJjxoSY9/WapWm827ofca0RFtu5lQHi90/nKaLyCoxAjYvT5LCuSX/PCPR A/nYK+5j+H1BCPxob6kr+JBDE8qNSPbObaHY8SHn4WzdY2p1iaL6sp9VzllD0K/Q fSrq+WiXhuwgXJnmJU5lxsxQyRNmDDgsnSI34yJ1jTAMsalTgHUe6RtF3ndkHa/h GKVdanF/wuhXrAQgS5HqnVrEKIaphPI4CtzG+qOKmoeOMm0dsoO7UhX41UjidbWG LPIz2hKknZewm04bTOg5/V90Aa9wn8oKFvpI1Q== -----END CERTIFICATE-----Generated at Thu May 16 23:48:40 2024 by rpki-client on console-fra.rpki-client.org