$ rpki-client -vvf rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/9ADCD3BA0CC211ED8C32645BC4F9AE02.roa File: 9ADCD3BA0CC211ED8C32645BC4F9AE02.roa (raw, json) Hash identifier: 1rkYOWsSbawrSHqOf91E+EnaPlFrs2igbP3gSzDiOVs= Subject key identifier: FC:F0:2C:C2:A7:95:2F:44:90:4E:63:9F:60:26:5F:87:2C:94:49:F5 Certificate issuer: /CN=A915D35E/serialNumber=2406208121EBA3FC74361C89E63560B4986DDF08 Certificate serial: 0698 Authority key identifier: 24:06:20:81:21:EB:A3:FC:74:36:1C:89:E6:35:60:B4:98:6D:DF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/9ADCD3BA0CC211ED8C32645BC4F9AE02.roa Signing time: Thu 16 Nov 2023 22:40:33 +0000 ROA not before: Thu 16 Nov 2023 22:40:33 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24323 IP address blocks: 103.243.81.0/24 maxlen: 24 103.243.82.0/24 maxlen: 24 116.206.62.0/24 maxlen: 24 116.206.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.crl rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D35E/serialNumber=2406208121EBA3FC74361C89E63560B4986DDF08 Validity Not Before: Nov 16 22:40:33 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65569a60-b891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f8:6b:3d:d4:6b:60:c2:e3:10:d0:01:93:c8: 43:93:b4:ef:ad:af:16:1f:89:99:42:5a:30:a0:23: 26:38:3d:d8:d4:54:1f:bd:c7:21:d6:07:a5:2c:56: cc:ca:a6:06:90:5b:0f:79:be:96:fc:2b:f3:8a:b4: a8:35:b3:16:93:6b:81:7e:7b:48:7a:c5:64:87:32: ec:87:37:10:eb:dc:d2:2f:70:14:2b:dd:69:bb:dc: 03:1d:f2:d8:10:9c:41:cf:eb:0e:0a:1a:d9:6b:f2: db:51:79:e6:aa:ab:21:78:13:76:69:10:1a:d0:d4: 9b:5b:34:56:a2:3a:05:36:f7:6c:8c:de:11:cc:e8: 84:e5:c2:d3:ab:23:4b:98:e8:59:f1:34:b6:2f:3d: cb:0d:b8:5e:31:de:2b:88:4d:1f:99:bd:f2:55:91: 82:3c:ca:e1:3a:e3:d4:3e:c1:ea:10:0c:fc:8c:ac: 23:36:64:d9:f6:e6:db:dd:c2:2c:e1:e3:03:87:99: 85:fe:44:d0:19:21:e3:6d:dd:6c:4b:54:12:c2:1a: b6:4d:c3:2a:08:99:7d:e2:d3:44:d3:91:72:e9:b5: a8:4c:b6:6a:ee:4c:5e:eb:f8:3f:27:45:c2:ce:30: c9:c7:5c:e2:4f:02:30:48:c0:4a:ca:1f:c9:95:83: e1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F0:2C:C2:A7:95:2F:44:90:4E:63:9F:60:26:5F:87:2C:94:49:F5 X509v3 Authority Key Identifier: keyid:24:06:20:81:21:EB:A3:FC:74:36:1C:89:E6:35:60:B4:98:6D:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/9ADCD3BA0CC211ED8C32645BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.81.0-103.243.82.255 116.206.62.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:d6:67:ce:1a:9e:5f:4a:3b:8d:1d:04:8b:38:c3:f5:b5:2a: 1f:cd:d1:d8:6f:c8:ed:88:13:5f:aa:89:2a:f8:dd:ba:b7:81: 3c:f9:53:88:49:b9:5c:4a:4a:cf:f7:b1:63:e1:6e:c4:fa:90: 25:71:dc:17:36:87:db:79:47:e5:56:0d:63:fd:f8:c2:f1:bd: 0a:51:3d:05:57:3f:fd:a3:ad:39:9c:3e:9d:06:ef:4a:ce:13: 44:64:9a:1e:e2:e9:22:b9:ff:5d:a5:bd:79:f3:10:8c:56:1b: 00:8a:91:a9:03:a1:3d:e4:11:41:9a:80:01:d8:85:46:6c:a8: bf:43:38:21:d1:59:58:49:86:42:94:21:dd:d5:ba:6f:14:0b: 65:84:44:4f:6c:73:c6:88:b1:93:d8:9b:02:7a:8b:05:c2:e2: 30:8f:54:c5:be:e0:bd:82:c9:b3:db:a2:d0:b9:85:e9:e3:7b: c2:7a:c1:91:58:3d:37:1f:44:ed:b4:12:6d:81:8c:a7:7a:48: 1e:ef:dc:c2:84:07:84:ea:e1:66:67:02:30:ac:e9:9d:c4:b7: 57:3d:39:b0:65:fc:6a:22:28:f9:b7:1c:0e:cb:81:f6:02:e2: a3:ea:38:da:ec:88:96:8e:43:c4:7d:55:c2:52:f9:59:33:2c: 0d:b0:a7:05 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzNUUxMTAvBgNVBAUTKDI0MDYyMDgxMjFFQkEzRkM3NDM2MUM4OUU2MzU2MEI0 OTg2RERGMDgwHhcNMjMxMTE2MjI0MDMzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2OWE2MC1iODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvhrPdRrYMLjENABk8hDk7Tvra8WH4mZQlowoCMmOD3Y1FQfvcch1gelLFbM yqYGkFsPeb6W/CvzirSoNbMWk2uBfntIesVkhzLshzcQ69zSL3AUK91pu9wDHfLY EJxBz+sOChrZa/LbUXnmqqsheBN2aRAa0NSbWzRWojoFNvdsjN4RzOiE5cLTqyNL mOhZ8TS2Lz3LDbheMd4riE0fmb3yVZGCPMrhOuPUPsHqEAz8jKwjNmTZ9ubb3cIs 4eMDh5mF/kTQGSHjbd1sS1QSwhq2TcMqCJl94tNE05Fy6bWoTLZq7kxe6/g/J0XC zjDJx1ziTwIwSMBKyh/JlYPhgQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPzwLMKn lS9EkE5jn2AmX4cslEn1MB8GA1UdIwQYMBaAFCQGIIEh66P8dDYcieY1YLSYbd8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDM1RS83RDM5NEM2QTAx NkQxMUVCOEREMkMyNTlDNEY5QUUwMi9KQVlnZ1NIcm9feDBOaHlKNWpWZ3RKaHQz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pBWWdnU0hyb194ME5oeUo1alZndEpodDN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzNUUvN0QzOTRDNkEwMTZEMTFFQjhERDJDMjU5QzRGOUFFMDIvOUFEQ0QzQkEw Q0MyMTFFRDhDMzI2NDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfzUQMEAGfzUgMEAXTOPjANBgkqhkiG9w0BAQsFAAOC AQEAK9ZnzhqeX0o7jR0EizjD9bUqH83R2G/I7YgTX6qJKvjdureBPPlTiEm5XEpK z/exY+FuxPqQJXHcFzaH23lH5VYNY/34wvG9ClE9BVc//aOtOZw+nQbvSs4TRGSa HuLpIrn/XaW9efMQjFYbAIqRqQOhPeQRQZqAAdiFRmyov0M4IdFZWEmGQpQh3dW6 bxQLZYRET2xzxoixk9ibAnqLBcLiMI9Uxb7gvYLJs9ui0LmF6eN7wnrBkVg9Nx9E 7bQSbYGMp3pIHu/cwoQHhOrhZmcCMKzpncS3Vz05sGX8aiIo+bccDsuB9gLio+o4 2uyIlo5DxH1VwlL5WTMsDbCnBQ== -----END CERTIFICATE-----Generated at Tue May 14 23:45:43 2024 by rpki-client on console-fra.rpki-client.org