$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa File: 398211B2DE1C11ED8935D41DC4F9AE02.roa (raw, json) Hash identifier: Ac0p0V91/5RGSU1buTUB/ZnDzLP6Wcp7JF8KI/NclQY= Subject key identifier: 03:B8:FB:FD:01:87:B3:1D:2D:9B:6E:40:4C:20:A3:C3:A8:EF:91:24 Certificate issuer: /CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Certificate serial: 66 Authority key identifier: 9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa Signing time: Tue 31 Oct 2023 05:35:33 +0000 ROA not before: Tue 31 Oct 2023 05:35:33 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 3320 IP address blocks: 103.12.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Validity Not Before: Oct 31 05:35:33 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65409224-43c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:41:b8:79:fd:51:2f:d3:37:ea:98:e4:34:64: 63:c6:1f:73:6f:11:18:c6:35:46:cb:68:52:85:cc: f1:9d:1b:c9:38:a1:c0:4a:94:66:59:5e:7b:e7:0e: c0:4d:aa:eb:d2:56:71:e5:a3:df:61:ca:9e:10:ea: 1c:b0:59:09:7b:30:ae:a4:bf:54:7e:13:ae:10:c5: 19:56:44:5a:0f:37:8a:c2:f1:6a:71:32:74:a2:5d: a5:9b:34:e3:42:c3:0f:33:48:f6:a5:e6:61:2f:e7: f2:30:b1:b1:b0:d8:54:09:22:0b:49:2a:2e:f0:7c: 28:e6:d5:1d:cb:3c:c7:4d:45:5d:ea:65:a6:ce:d0: a6:b4:f0:36:7b:e9:91:39:e2:d4:50:6f:0b:e5:1d: 04:4b:14:34:a2:8f:60:83:95:7a:ee:a2:be:d7:69: c7:cb:5c:f9:32:a9:65:0e:d6:4c:7b:e2:ed:95:c1: 92:8b:75:a2:53:4f:10:99:88:49:51:3d:3c:78:34: f5:f6:25:33:63:bd:2a:f5:74:3f:bb:03:49:c9:c5: 95:0d:6b:a0:01:12:17:10:20:68:b8:d5:b3:99:8c: f5:96:6d:35:26:89:26:1b:c3:f5:fa:41:97:da:82: 45:7c:85:bd:bf:0e:29:60:85:1e:95:53:93:16:83: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B8:FB:FD:01:87:B3:1D:2D:9B:6E:40:4C:20:A3:C3:A8:EF:91:24 X509v3 Authority Key Identifier: keyid:9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.180.0/23 Signature Algorithm: sha256WithRSAEncryption 37:0a:d0:d0:39:35:2a:30:06:a9:5a:4b:05:05:23:38:96:47: 13:fd:5c:09:72:16:21:85:6c:b2:b9:fc:28:70:cb:b3:58:a1: a2:03:60:e6:40:78:76:34:bc:4e:44:19:23:64:b4:d5:5b:13: 28:6e:cc:5e:b1:72:3a:eb:9e:5b:c8:b5:12:e4:ba:a7:de:b7: d9:23:8d:1b:1f:dd:08:31:e1:60:a6:a2:1b:1b:55:15:e2:c1: f6:8b:3c:e8:38:91:37:19:60:b3:91:b2:89:8e:42:d5:45:f3: 0f:2d:b1:c5:ca:94:c2:21:6b:5b:c4:32:0c:1a:bb:17:92:50: da:79:bf:88:e9:60:c9:29:e8:90:79:02:d5:e6:ac:8b:d0:d8: 68:d6:41:5b:f3:9d:9e:a2:6e:bb:c1:d5:5e:e3:20:9f:d9:32: e2:fb:be:3a:85:fe:f9:78:4c:2a:c0:9f:f0:d9:d2:b8:92:e0: 27:41:b3:ce:99:6d:10:a8:00:0b:b4:d8:71:85:1b:45:3a:14: 59:3e:f3:da:c9:37:37:9a:c2:8d:91:25:4c:61:ff:eb:38:da: ad:67:1c:93:a4:0d:98:36:ac:40:ad:e1:53:06:ff:24:41:e4: dc:c6:95:47:8e:4c:f0:d1:ec:92:36:d8:0c:16:32:0b:99:16: ae:9c:31:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QkMyQTExMC8GA1UEBRMoOUUwNTVEMzVDRjMyOTI1MzM1Q0M5NDBDQzg4MjhCNjNE RDYwNzMwQjAeFw0yMzEwMzEwNTM1MzNaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDA5MjI0LTQzYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Qbh5/VEv0zfqmOQ0ZGPGH3NvERjGNUbLaFKFzPGdG8k4ocBKlGZZXnvnDsBN quvSVnHlo99hyp4Q6hywWQl7MK6kv1R+E64QxRlWRFoPN4rC8WpxMnSiXaWbNONC ww8zSPal5mEv5/IwsbGw2FQJIgtJKi7wfCjm1R3LPMdNRV3qZabO0Ka08DZ76ZE5 4tRQbwvlHQRLFDSij2CDlXruor7XacfLXPkyqWUO1kx74u2VwZKLdaJTTxCZiElR PTx4NPX2JTNjvSr1dD+7A0nJxZUNa6ABEhcQIGi41bOZjPWWbTUmiSYbw/X6QZfa gkV8hb2/DilghR6VU5MWg5GBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUA7j7/QGH sx0tm25ATCCjw6jvkSQwHwYDVR0jBBgwFoAUngVdNc8yklM1zJQMyIKLY91gcwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCQzJBL0VEOUY4REJBREUx MTExRUQ4NUVDMEE0OUM0RjlBRTAyL25nVmROYzh5a2xNMXpKUU15SUtMWTkxZ2N3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmdWZE5jOHlrbE0xekpRTXlJS0xZOTFnY3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkMyQS9FRDlGOERCQURFMTExMUVEODVFQzBBNDlDNEY5QUUwMi8zOTgyMTFCMkRF MUMxMUVEODkzNUQ0MURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcMtDANBgkqhkiG9w0BAQsFAAOCAQEANwrQ0Dk1KjAGqVpL BQUjOJZHE/1cCXIWIYVssrn8KHDLs1ihogNg5kB4djS8TkQZI2S01VsTKG7MXrFy OuueW8i1EuS6p9632SONGx/dCDHhYKaiGxtVFeLB9os86DiRNxlgs5GyiY5C1UXz Dy2xxcqUwiFrW8QyDBq7F5JQ2nm/iOlgySnokHkC1easi9DYaNZBW/OdnqJuu8HV XuMgn9ky4vu+OoX++XhMKsCf8NnSuJLgJ0GzzpltEKgAC7TYcYUbRToUWT7z2sk3 N5rCjZElTGH/6zjarWcck6QNmDasQK3hUwb/JEHk3MaVR45M8NHskjbYDBYyC5kW rpwxKw== -----END CERTIFICATE-----Generated at Sat May 11 07:50:55 2024 by rpki-client on console-ams.rpki-client.org