$ rpki-client -vvf rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa File: 2F341A72E93C11EDA61CF335C4F9AE02.roa (raw, json) Hash identifier: M5RGvAdHd9jNB7xOnNh53+PVgXgdcc+v9pWLo+rFyQY= Subject key identifier: 95:3F:4F:7A:44:81:BF:E0:A5:EA:A3:C6:62:C9:DE:97:0E:A9:70:D3 Certificate issuer: /CN=A915B978/serialNumber=A83B01C96E794DE8CF8F1C9FA86421296DA871C4 Certificate serial: 1B5E Authority key identifier: A8:3B:01:C9:6E:79:4D:E8:CF:8F:1C:9F:A8:64:21:29:6D:A8:71:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDsByW55TejPjxyfqGQhKW2occQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa Signing time: Wed 28 Feb 2024 16:54:07 +0000 ROA not before: Wed 28 Feb 2024 16:54:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 38136 IP address blocks: 103.84.216.0/23 maxlen: 24 103.84.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/qDsByW55TejPjxyfqGQhKW2occQ.crl rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/qDsByW55TejPjxyfqGQhKW2occQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDsByW55TejPjxyfqGQhKW2occQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7006 (0x1b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B978/serialNumber=A83B01C96E794DE8CF8F1C9FA86421296DA871C4 Validity Not Before: Feb 28 16:54:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65df652f-c522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:11:08:dc:6a:06:3a:87:16:c8:6b:3f:45: 10:ae:6b:26:c0:93:30:d3:c7:aa:67:81:78:29:d8: c9:3e:b7:a7:0b:ef:4b:95:5f:74:bb:e0:0d:83:ce: 23:3c:98:bf:ed:bb:2b:53:3d:72:5d:f8:74:d5:cb: 84:dd:cd:07:d9:91:bb:78:c1:48:57:f3:d9:27:60: fe:2f:1e:d7:22:d8:6b:8c:25:86:11:8f:10:ef:42: e3:e4:93:d9:3e:b9:b3:7a:47:7c:02:91:93:ec:2a: 9e:e8:8d:62:b1:7b:2f:61:07:de:e9:ab:88:52:68: 9e:d5:1a:6c:5d:85:f3:02:52:00:11:cf:97:88:58: df:fe:51:58:a3:41:c3:77:d1:e3:27:54:25:94:72: 81:3a:72:eb:2f:ff:c7:9b:83:79:01:9b:f3:17:d0: 39:9c:27:a5:ed:ea:9e:75:b9:84:da:fd:bf:22:e8: 5e:2e:9c:7d:bc:7b:d4:98:a4:62:49:31:71:c4:b7: 1b:93:bf:65:d9:a2:c7:02:b0:f8:85:eb:f8:be:09: de:05:03:2d:7b:c7:a9:10:6b:2b:7d:9a:dc:b3:31: ed:01:68:e9:73:ef:b1:46:e3:8a:ad:e9:cc:d1:be: 37:5a:88:25:69:66:ec:09:f3:6d:15:53:88:c1:95: a1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3F:4F:7A:44:81:BF:E0:A5:EA:A3:C6:62:C9:DE:97:0E:A9:70:D3 X509v3 Authority Key Identifier: keyid:A8:3B:01:C9:6E:79:4D:E8:CF:8F:1C:9F:A8:64:21:29:6D:A8:71:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/qDsByW55TejPjxyfqGQhKW2occQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDsByW55TejPjxyfqGQhKW2occQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.216.0/22 Signature Algorithm: sha256WithRSAEncryption ad:83:44:c6:c2:32:17:54:70:0d:c8:b1:c6:ed:0e:3b:4f:be: f6:25:85:6c:43:86:83:f6:1f:41:ae:4d:52:21:a3:dd:b8:da: db:c8:05:30:3a:d8:e5:b4:b7:fb:ce:11:fe:ae:aa:34:c0:b8: cd:73:89:22:19:a6:73:c0:28:d3:3f:ca:91:03:2d:c9:23:09: 54:53:e1:20:a3:bf:a3:ff:bb:56:4d:de:ae:a1:42:0b:58:46: 7b:76:47:37:0a:00:eb:ca:f6:65:f1:3f:d6:76:38:f8:19:01: dc:e7:65:75:dc:d5:6b:0a:a1:99:db:d9:2e:f8:21:7a:a2:27: 2d:26:97:95:89:7e:49:ce:15:f4:fd:dc:37:d8:74:e1:15:e2: 27:18:4d:5b:ba:0d:b6:24:2d:e3:3c:fd:d4:a0:38:4c:c0:b0: 0c:b3:83:e5:0d:e8:35:b3:10:47:6e:9c:f7:58:a9:d2:ab:60: 9b:97:0b:68:3e:10:0e:89:f1:88:61:39:b1:0d:17:e6:27:de: 77:a6:87:27:4c:9f:de:b1:d9:bb:23:a0:2a:87:a3:b3:79:f9: 98:dc:5d:35:dc:72:5b:51:60:0f:65:3f:f0:8f:4f:f4:b7:ed: 29:49:06:76:6a:8a:e5:d9:ff:ff:bd:4d:48:23:fb:43:c0:89: 79:8c:99:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI5NzgxMTAvBgNVBAUTKEE4M0IwMUM5NkU3OTRERThDRjhGMUM5RkE4NjQyMTI5 NkRBODcxQzQwHhcNMjQwMjI4MTY1NDA3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNjUyZi1jNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZsRCNxqBjqHFshrP0UQrmsmwJMw08eqZ4F4KdjJPrenC+9LlV90u+ANg84j PJi/7bsrUz1yXfh01cuE3c0H2ZG7eMFIV/PZJ2D+Lx7XIthrjCWGEY8Q70Lj5JPZ Prmzekd8ApGT7Cqe6I1isXsvYQfe6auIUmie1RpsXYXzAlIAEc+XiFjf/lFYo0HD d9HjJ1QllHKBOnLrL//Hm4N5AZvzF9A5nCel7eqedbmE2v2/IuheLpx9vHvUmKRi STFxxLcbk79l2aLHArD4hev4vgneBQMte8epEGsrfZrcszHtAWjpc++xRuOKrenM 0b43WoglaWbsCfNtFVOIwZWhtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJU/T3pE gb/gpeqjxmLJ3pcOqXDTMB8GA1UdIwQYMBaAFKg7AclueU3oz48cn6hkISltqHHE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjk3OC9GQzRBMkEyMEU5 MDExMUU2OEMyQ0QzMTFDNEY5QUUwMi9xRHNCeVc1NVRlalBqeHlmcUdRaEtXMm9j Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FEc0J5VzU1VGVqUGp4eWZxR1FoS1cyb2NjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI5NzgvRkM0QTJBMjBFOTAxMTFFNjhDMkNEMzExQzRGOUFFMDIvMkYzNDFBNzJF OTNDMTFFREE2MUNGMzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnVNgwDQYJKoZIhvcNAQELBQADggEBAK2DRMbCMhdUcA3I scbtDjtPvvYlhWxDhoP2H0GuTVIho9242tvIBTA62OW0t/vOEf6uqjTAuM1ziSIZ pnPAKNM/ypEDLckjCVRT4SCjv6P/u1ZN3q6hQgtYRnt2RzcKAOvK9mXxP9Z2OPgZ AdznZXXc1WsKoZnb2S74IXqiJy0ml5WJfknOFfT93DfYdOEV4icYTVu6DbYkLeM8 /dSgOEzAsAyzg+UN6DWzEEdunPdYqdKrYJuXC2g+EA6J8YhhObENF+Yn3nemhydM n96x2bsjoCqHo7N5+ZjcXTXccltRYA9lP/CPT/S37SlJBnZqiuXZ//+9TUgj+0PA iXmMmfs= -----END CERTIFICATE-----Generated at Mon May 20 17:22:06 2024 by rpki-client on console-fra.rpki-client.org