$ rpki-client -vvf rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/C80572DEF70911ED9D4B561AC4F9AE02.roa File: C80572DEF70911ED9D4B561AC4F9AE02.roa (raw, json) Hash identifier: k26LdkklDHtPjNi+CtJWDmWk+WigMsV1BnXdW/63JR4= Subject key identifier: 8F:DD:5B:55:F2:4A:BA:BA:90:CB:E9:A0:2B:23:67:60:2C:D6:6F:92 Certificate issuer: /CN=A915648D/serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Certificate serial: 08 Authority key identifier: F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/C80572DEF70911ED9D4B561AC4F9AE02.roa Signing time: Sat 20 May 2023 12:28:11 +0000 ROA not before: Sat 20 May 2023 12:28:11 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135654 IP address blocks: 103.137.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915648D/serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Validity Not Before: May 20 12:28:11 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6468bcda-349d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:8f:79:ea:8b:67:54:cb:16:9e:e8:37:5b: 15:ce:a5:68:7b:ed:8d:ac:6a:00:f5:eb:41:8a:28: c7:bf:81:40:54:04:72:ab:a2:23:a8:dc:7b:b4:23: c8:55:ac:d0:7a:51:81:ba:90:46:27:db:31:73:9e: ef:fa:51:8f:6d:1a:fc:5a:6d:7b:85:52:4e:40:9e: b1:eb:ab:90:2b:02:87:96:58:40:6a:1b:fe:d5:ec: 58:ce:11:78:92:b3:20:9c:ea:98:d8:a2:48:de:7b: ac:e3:87:b9:52:93:8d:60:f7:50:a8:4d:f2:48:90: 11:52:f4:7d:d9:56:61:5f:d7:d0:b6:5f:f3:10:55: 1b:b5:9e:39:55:8d:01:ba:a7:42:ce:04:ce:ce:e2: 0b:3b:a5:42:2b:e3:5a:6c:18:2a:d1:13:00:b7:55: dc:90:7f:bd:48:cb:21:54:52:4a:7d:b4:37:36:22: 3f:00:ae:99:66:2a:61:54:be:c1:18:b8:0c:0b:bd: 9c:79:66:aa:16:cb:2c:3c:59:3d:7e:58:25:92:98: 1a:58:e1:fa:11:68:2f:2c:80:fa:f5:18:af:da:c7: 85:83:69:6c:b0:63:81:46:4e:81:d3:ac:2e:47:90: 06:a1:04:b8:5d:4e:79:93:67:7d:5b:e0:e4:00:61: 94:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DD:5B:55:F2:4A:BA:BA:90:CB:E9:A0:2B:23:67:60:2C:D6:6F:92 X509v3 Authority Key Identifier: keyid:F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/C80572DEF70911ED9D4B561AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.228.0/23 Signature Algorithm: sha256WithRSAEncryption be:c4:f5:be:11:3c:7b:c3:0c:58:eb:98:1a:f0:26:57:79:2a: 20:c1:bc:7f:ac:e4:a4:8c:93:ef:0b:ef:08:fc:10:44:44:6a: 8b:40:b0:cc:ce:c7:c7:1a:4b:49:a3:1f:a5:d6:14:bf:86:9a: c3:0d:5b:5e:ce:1c:24:de:67:0f:94:82:ee:d0:58:60:61:51: 34:58:2c:0d:ec:44:9b:ec:30:e5:2c:4b:54:17:8c:d9:5e:48: b2:7b:49:fe:42:c2:7e:bc:cd:7d:54:30:ab:bd:62:61:59:47: e2:b0:5a:17:3a:6e:2e:b0:e2:bd:74:56:3b:eb:7a:6f:07:22: 17:1c:58:72:9c:b9:4a:f5:c0:9d:88:2c:d0:43:fa:83:f5:16: 0e:c6:f6:7b:65:f4:23:3b:94:58:41:8f:70:03:98:7c:b3:7b: 0b:e6:6b:18:fb:b5:70:a9:48:17:a1:02:8d:0e:1e:96:b7:43: 3c:e3:df:c4:19:3d:8d:5a:fb:8d:23:19:94:62:11:7b:c8:c3: 65:62:01:07:1e:0c:a7:1b:b4:aa:d1:48:5c:6b:58:b3:38:3b: f9:6d:aa:e4:00:24:87:af:3e:b1:3b:9d:4a:c2:ab:d4:33:cd: 52:bd:20:ae:87:9d:5b:68:0b:57:c1:42:ce:6a:86:cb:68:43: 50:c6:c4:f7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjQ4RDExMC8GA1UEBRMoRjE3QjUzMjFBNThENzlFMjMwNTMxQzVBQTBGMEIyNEUx RDgxMjFBMzAeFw0yMzA1MjAxMjI4MTFaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NjhiY2RhLTM0OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD84956otnVMsWnug3WxXOpWh77Y2sagD160GKKMe/gUBUBHKroiOo3Hu0I8hV rNB6UYG6kEYn2zFznu/6UY9tGvxabXuFUk5AnrHrq5ArAoeWWEBqG/7V7FjOEXiS syCc6pjYokjee6zjh7lSk41g91CoTfJIkBFS9H3ZVmFf19C2X/MQVRu1njlVjQG6 p0LOBM7O4gs7pUIr41psGCrREwC3VdyQf71IyyFUUkp9tDc2Ij8ArplmKmFUvsEY uAwLvZx5ZqoWyyw8WT1+WCWSmBpY4foRaC8sgPr1GK/ax4WDaWywY4FGToHTrC5H kAahBLhdTnmTZ31b4OQAYZQRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUj91bVfJK urqQy+mgKyNnYCzWb5IwHwYDVR0jBBgwFoAU8XtTIaWNeeIwUxxaoPCyTh2BIaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NDhEL0MzRUVFMkE4RUZF MjExRURBM0M2QzE0N0M0RjlBRTAyLzhYdFRJYVdOZWVJd1V4eGFvUEN5VGgyQklh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOFh0VElhV05lZUl3VXh4YW9QQ3lUaDJCSWFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjQ4RC9DM0VFRTJBOEVGRTIxMUVEQTNDNkMxNDdDNEY5QUUwMi9DODA1NzJERUY3 MDkxMUVEOUQ0QjU2MUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeJ5DANBgkqhkiG9w0BAQsFAAOCAQEAvsT1vhE8e8MMWOuY GvAmV3kqIMG8f6zkpIyT7wvvCPwQRERqi0CwzM7HxxpLSaMfpdYUv4aaww1bXs4c JN5nD5SC7tBYYGFRNFgsDexEm+ww5SxLVBeM2V5IsntJ/kLCfrzNfVQwq71iYVlH 4rBaFzpuLrDivXRWO+t6bwciFxxYcpy5SvXAnYgs0EP6g/UWDsb2e2X0IzuUWEGP cAOYfLN7C+ZrGPu1cKlIF6ECjQ4elrdDPOPfxBk9jVr7jSMZlGIRe8jDZWIBBx4M pxu0qtFIXGtYszg7+W2q5AAkh68+sTudSsKr1DPNUr0groedW2gLV8FCzmqGy2hD UMbE9w== -----END CERTIFICATE-----Generated at Tue May 21 08:38:35 2024 by rpki-client on console-fra.rpki-client.org