$ rpki-client -vvf rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa File: 1E573054C36111E9A37AC46EC4F9AE02.roa (raw, json) Hash identifier: fzn2kw7bcUSde2NaFyxeUgbVl+0HbAZ4sB/jY7jLZec= Subject key identifier: 23:CB:B3:50:D7:C7:D7:90:17:AA:54:45:13:65:F1:CC:40:ED:75:BB Certificate issuer: /CN=A915D529/serialNumber=C98AFBB4BB9AE9B1A27A3DD3AD5956B34EDA9C63 Certificate serial: 0C32 Authority key identifier: C9:8A:FB:B4:BB:9A:E9:B1:A2:7A:3D:D3:AD:59:56:B3:4E:DA:9C:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa Signing time: Fri 16 Jun 2023 19:18:53 +0000 ROA not before: Fri 16 Jun 2023 19:18:53 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 58976 IP address blocks: 103.29.28.0/24 maxlen: 24 103.250.31.0/24 maxlen: 24 2001:df7:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.crl rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3122 (0xc32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D529/serialNumber=C98AFBB4BB9AE9B1A27A3DD3AD5956B34EDA9C63 Validity Not Before: Jun 16 19:18:53 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648cb59d-530f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:ad:6a:d4:ae:52:d9:46:63:3e:32:35:2f: 7b:79:8a:ca:64:b5:2e:4d:5e:84:0a:4e:97:42:e5: 86:4d:45:ec:56:8c:eb:2d:2c:7e:f3:2d:a0:f9:fa: 8e:d1:60:47:96:18:16:8f:f6:e3:62:40:c1:39:62: f8:d5:d0:6f:cc:58:04:13:f5:8a:07:41:a7:55:12: 31:46:a4:1e:5d:be:8d:8e:2e:a7:f8:88:7a:39:e7: 7e:cb:ce:ce:8d:e5:75:e6:83:a4:e4:14:50:cf:ac: 9d:59:1e:34:9c:bd:53:1d:57:4d:5e:38:8b:bf:33: b1:27:2d:7d:d1:31:cc:84:10:b0:6b:a3:5f:8b:3e: 82:2b:ae:c5:37:4b:3e:d6:86:fe:ad:c4:86:7c:16: 4c:2e:46:6e:2c:11:cc:55:3e:8c:86:11:d3:6d:52: 09:89:b7:57:9e:97:ed:aa:1f:e0:43:3b:a7:15:07: e1:e9:c1:31:cc:d9:56:ff:68:aa:1a:20:7e:e5:27: 3e:f8:5c:9b:1f:2b:ab:7b:54:f0:aa:68:bd:9c:68: 8a:36:88:07:e7:30:22:33:3b:d0:c2:46:b2:61:dd: 1b:73:2a:c1:3f:c0:fb:fd:ac:e2:18:8a:66:f4:96: ec:06:7b:01:75:90:2d:d6:7e:e9:f7:4d:c8:c2:5b: 33:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CB:B3:50:D7:C7:D7:90:17:AA:54:45:13:65:F1:CC:40:ED:75:BB X509v3 Authority Key Identifier: keyid:C9:8A:FB:B4:BB:9A:E9:B1:A2:7A:3D:D3:AD:59:56:B3:4E:DA:9C:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.28.0/24 103.250.31.0/24 IPv6: 2001:df7:6000::/48 Signature Algorithm: sha256WithRSAEncryption 8c:bf:64:a6:bb:b9:d7:0d:46:e2:2f:5b:7e:87:f3:02:1c:19: 25:d4:44:4a:a1:70:08:76:4a:45:14:da:0c:29:bb:0e:69:f4: 77:11:f5:6a:76:bf:ca:b7:6b:0c:c7:75:86:ae:dd:62:6f:f5: 7d:56:bb:10:2c:9c:94:76:db:66:d2:51:54:8a:dd:e7:97:2c: 27:38:e5:29:24:f9:9c:f3:01:a1:fb:31:fc:86:3d:c7:73:f2: cd:e4:59:7a:88:57:98:4a:33:7b:fd:fd:24:8f:aa:de:e0:05: 4b:60:da:b2:02:25:9f:79:48:6b:14:99:59:02:1d:03:95:2b: 99:69:32:96:17:32:1f:f8:0a:01:8c:85:8f:6b:83:59:f9:fa: d4:ee:a5:f5:59:47:60:63:39:d7:0c:1c:f9:c0:1f:51:b6:23: 56:92:82:c0:76:ec:f5:d2:0b:89:64:84:a7:09:d9:35:43:8f: 24:9a:1f:50:69:38:f6:35:b0:81:0c:4d:99:65:e9:fa:06:34: 71:6f:c4:5c:be:5b:16:db:f0:23:0f:89:51:5a:7c:c9:10:6f: 5c:60:51:31:34:cf:40:49:15:b7:86:29:73:c8:5e:40:f8:a8: eb:21:d0:c1:cc:af:e8:44:0b:19:0e:e7:5d:17:a5:57:95:aa: 88:3e:5c:ec -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1MjkxMTAvBgNVBAUTKEM5OEFGQkI0QkI5QUU5QjFBMjdBM0REM0FENTk1NkIz NEVEQTlDNjMwHhcNMjMwNjE2MTkxODUzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhjYjU5ZC01MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbetatSuUtlGYz4yNS97eYrKZLUuTV6ECk6XQuWGTUXsVozrLSx+8y2g+fqO 0WBHlhgWj/bjYkDBOWL41dBvzFgEE/WKB0GnVRIxRqQeXb6Nji6n+Ih6Oed+y87O jeV15oOk5BRQz6ydWR40nL1THVdNXjiLvzOxJy190THMhBCwa6Nfiz6CK67FN0s+ 1ob+rcSGfBZMLkZuLBHMVT6MhhHTbVIJibdXnpftqh/gQzunFQfh6cExzNlW/2iq GiB+5Sc++FybHyure1Twqmi9nGiKNogH5zAiMzvQwkayYd0bcyrBP8D7/aziGIpm 9JbsBnsBdZAt1n7p903IwlszZQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCPLs1DX x9eQF6pURRNl8cxA7XW7MB8GA1UdIwQYMBaAFMmK+7S7mumxono9061ZVrNO2pxj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDUyOS8yMENGMkUxNEMz NjAxMUU5OEE1QzAyNkRDNEY5QUUwMi95WXI3dEx1YTZiR2llajNUclZsV3MwN2Fu R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lZcjd0THVhNmJHaWVqM1RyVmxXczA3YW5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ1MjkvMjBDRjJFMTRDMzYwMTFFOThBNUMwMjZEQzRGOUFFMDIvMUU1NzMwNTRD MzYxMTFFOUEzN0FDNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnHRwDBABn+h8wDwQCAAIwCQMHACABDfdgADANBgkqhkiG 9w0BAQsFAAOCAQEAjL9kpru51w1G4i9bfofzAhwZJdRESqFwCHZKRRTaDCm7Dmn0 dxH1ana/yrdrDMd1hq7dYm/1fVa7ECyclHbbZtJRVIrd55csJzjlKST5nPMBofsx /IY9x3PyzeRZeohXmEoze/39JI+q3uAFS2DasgIln3lIaxSZWQIdA5UrmWkylhcy H/gKAYyFj2uDWfn61O6l9VlHYGM51wwc+cAfUbYjVpKCwHbs9dILiWSEpwnZNUOP JJofUGk49jWwgQxNmWXp+gY0cW/EXL5bFtvwIw+JUVp8yRBvXGBRMTTPQEkVt4Yp c8heQPio6yHQwcyv6EQLGQ7nXRelV5WqiD5c7A== -----END CERTIFICATE-----Generated at Tue May 28 19:51:20 2024 by rpki-client on console-fra.rpki-client.org