$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa File: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (raw, json) Hash identifier: c0HT9dBg6yx92mNeJl9gTHdunA9v+Kix8k9fOS4ZSW0= Subject key identifier: D3:0F:16:66:50:75:4D:44:46:A0:11:88:19:08:14:AA:95:0A:14:42 Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 3344 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa Signing time: Sun 02 Jul 2023 15:40:51 +0000 ROA not before: Sun 02 Jul 2023 15:40:51 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58666 IP address blocks: 103.232.156.0/23 maxlen: 23 103.232.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 15:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13124 (0x3344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Jul 2 15:40:51 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a19a83-6fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:44:91:05:07:fb:b9:e1:22:c0:8e:31:7c: 5b:91:21:74:51:a5:cc:d0:f9:bb:5d:15:69:24:9b: 21:e9:69:6e:a1:ce:35:68:be:b7:f4:a9:e8:b2:6b: a9:0e:02:5d:0e:15:a9:0b:48:c0:df:8c:76:31:41: ca:33:af:a8:2d:8d:4f:ea:10:53:05:bb:33:5f:ff: 2f:07:89:10:e5:2d:06:51:d5:d9:5d:8c:79:1f:73: d3:3f:38:c7:7c:4b:4b:c0:cb:2f:45:ef:a2:26:85: 7e:43:fd:b7:7f:90:ed:4b:52:f9:9f:db:7c:82:fb: 79:52:1c:4a:83:ac:94:16:68:bd:13:cf:86:30:66: 10:cc:a4:7e:a6:94:6f:aa:d2:e8:55:58:cd:22:e0: 47:e5:da:bd:8c:c9:86:82:4b:84:61:39:c9:08:87: d0:db:88:06:92:16:67:7c:56:33:8a:f7:6d:81:bf: 51:7f:aa:5d:1f:9b:52:b8:f7:c6:5b:75:25:3b:39: 32:ae:ca:29:c8:5b:d7:9f:10:9c:74:eb:7e:33:72: 43:f2:9f:4e:20:69:c8:c5:13:63:f2:18:84:a3:f7: fd:47:a9:7a:2d:73:f0:70:95:2b:36:08:03:72:8f: ee:ae:50:d2:46:7e:4e:62:dc:ad:17:1b:5f:28:0e: c9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0F:16:66:50:75:4D:44:46:A0:11:88:19:08:14:AA:95:0A:14:42 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6BC5DC4AB10511E591A3E484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.156.0-103.232.158.255 Signature Algorithm: sha256WithRSAEncryption 9d:90:91:3e:8b:3b:e1:81:9e:f8:22:0b:11:8b:46:8b:1d:29: 2c:6a:1c:1e:ec:1b:86:8e:e1:49:2d:cc:fe:11:85:74:51:15: 07:5f:fa:07:d7:74:d7:d5:87:d6:25:ac:88:e4:82:5b:49:74: ac:b8:7f:bd:79:2b:9f:70:57:79:b9:fe:65:8d:ae:74:07:c2: 1e:b0:c3:b4:49:a5:a0:8d:38:18:e6:65:f7:d6:b6:1e:c1:38: f2:d5:75:f3:3b:46:0c:d0:b4:48:78:0b:51:65:09:17:91:25: a5:9f:9d:29:ca:5e:49:7b:07:c3:cf:1a:68:02:9f:cf:77:7c: 5a:3b:b3:c0:2c:0b:87:96:a5:a1:68:af:41:be:95:c9:8e:d5: 71:3a:f6:e0:a7:f2:63:76:92:bc:cc:44:2c:6a:d2:67:43:86: 42:07:b6:a5:81:e5:07:b8:76:93:f6:62:f4:87:8b:91:3e:46: 96:a2:08:58:23:74:b3:6b:91:00:d5:92:48:13:27:68:60:f5: 36:e1:b3:03:52:1d:63:13:0e:1e:2a:0a:c5:48:15:a4:5f:53: ee:8e:47:00:f5:4a:fa:4a:12:7e:2f:d7:a9:f5:e7:ba:6d:38: 1f:9c:2f:2a:56:1b:16:e8:01:f1:5c:c4:53:09:52:1b:78:ae: 95:f6:44:5c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICM0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjMwNzAyMTU0MDUxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExOWE4My02ZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuM1EkQUH+7nhIsCOMXxbkSF0UaXM0Pm7XRVpJJsh6Wluoc41aL639Knosmup DgJdDhWpC0jA34x2MUHKM6+oLY1P6hBTBbszX/8vB4kQ5S0GUdXZXYx5H3PTPzjH fEtLwMsvRe+iJoV+Q/23f5DtS1L5n9t8gvt5UhxKg6yUFmi9E8+GMGYQzKR+ppRv qtLoVVjNIuBH5dq9jMmGgkuEYTnJCIfQ24gGkhZnfFYzivdtgb9Rf6pdH5tSuPfG W3UlOzkyrsopyFvXnxCcdOt+M3JD8p9OIGnIxRNj8hiEo/f9R6l6LXPwcJUrNggD co/urlDSRn5OYtytFxtfKA7JswIDAQABo4ICnTCCApkwHQYDVR0OBBYEFNMPFmZQ dU1ERqARiBkIFKqVChRCMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMxRkUvRDExOEFBQkExREFBMTFFMkEyRUNDQUE2MDhCMDJDRDIvNkJDNURDNEFC MTA1MTFFNTkxQTNFNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmfonAMEAGfonjANBgkqhkiG9w0BAQsFAAOCAQEAnZCR Pos74YGe+CILEYtGix0pLGocHuwbho7hSS3M/hGFdFEVB1/6B9d019WH1iWsiOSC W0l0rLh/vXkrn3BXebn+ZY2udAfCHrDDtEmloI04GOZl99a2HsE48tV18ztGDNC0 SHgLUWUJF5ElpZ+dKcpeSXsHw88aaAKfz3d8WjuzwCwLh5aloWivQb6VyY7VcTr2 4KfyY3aSvMxELGrSZ0OGQge2pYHlB7h2k/Zi9IeLkT5GlqIIWCN0s2uRANWSSBMn aGD1NuGzA1IdYxMOHioKxUgVpF9T7o5HAPVK+koSfi/XqfXnum04H5wvKlYbFugB 8VzEUwlSG3iulfZEXA== -----END CERTIFICATE-----Generated at Mon Jun 24 17:44:53 2024 by rpki-client on console-ams.rpki-client.org