$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/2323F9621D5D11EBA3A7E71CC4F9AE02.roa File: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (raw, json) Hash identifier: l2faCZ2NaRKO9RKpqA1xTTOq0n++1p8P7E337Sewxms= Subject key identifier: 3F:2C:8D:8C:A0:94:C6:A4:46:1E:A5:1D:08:34:DE:77:CF:6A:1A:42 Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 061F Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/2323F9621D5D11EBA3A7E71CC4F9AE02.roa Signing time: Sat 02 Sep 2023 22:29:41 +0000 ROA not before: Sat 02 Sep 2023 22:29:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137980 IP address blocks: 103.119.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: Sep 2 22:29:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f3b755-4e94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8f:2d:16:9c:31:64:7d:99:f7:10:47:40:db: ca:f4:71:93:45:21:82:66:95:8b:a5:b0:45:5a:74: 67:f8:75:a1:bc:9f:7e:fd:35:59:9e:db:3a:1b:7b: 62:cd:d6:e9:ce:b6:2a:3d:d0:9f:93:a4:43:0c:1c: b4:39:2f:65:57:fc:8f:de:15:05:43:e0:d1:98:f5: ac:d5:9e:05:f0:94:bd:f4:7d:64:84:27:4d:2a:d3: c5:b6:14:71:f8:bc:f2:6c:d7:79:ea:9a:f0:70:e2: 44:a1:f1:78:68:25:41:eb:21:df:04:44:f8:4c:58: 28:63:8f:91:47:4a:0d:eb:e6:19:71:68:ec:dc:58: 62:cd:78:ac:81:01:d3:e0:d1:52:57:5e:26:4b:8a: bc:6b:95:33:5f:9e:c9:91:21:85:de:78:73:c4:57: 5d:de:30:a0:e1:d4:cd:49:27:ed:16:68:24:ec:42: 60:d5:ee:c1:b9:d4:a4:8a:62:79:f1:67:a5:02:45: 5e:d5:ca:af:6e:95:f2:b1:db:2b:a8:a9:1f:6b:35: f2:47:9a:44:63:98:a8:0c:96:fb:11:eb:f2:9e:65: 9a:96:58:14:97:e3:3e:1d:75:1f:3e:f2:f3:ed:a0: 08:73:fc:ac:33:11:ad:19:99:3f:49:2c:04:c2:d4: b3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2C:8D:8C:A0:94:C6:A4:46:1E:A5:1D:08:34:DE:77:CF:6A:1A:42 X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/2323F9621D5D11EBA3A7E71CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.32.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:85:79:9d:0e:2f:51:54:fc:f3:8c:64:d6:f7:05:01:44:a1: b7:19:42:3d:df:0c:cc:36:e8:46:65:34:97:7a:f5:e9:0c:eb: 8f:4c:99:b8:aa:e5:03:1d:c0:07:39:5d:44:b8:d5:8d:c8:d6: 5d:39:49:04:24:59:c9:df:e0:93:14:82:1e:20:4d:30:0d:53: 07:6a:8f:b2:7d:d5:5c:71:79:fd:49:02:0d:19:6c:09:c2:bb: 6b:4d:51:93:a9:63:d7:6f:54:9d:3c:d3:0c:1c:0d:fe:ca:f1: d9:11:bb:00:18:03:c7:98:30:cf:7b:3b:bb:37:a9:53:03:42: 07:d2:db:20:6d:87:cd:51:10:8e:a4:89:91:fb:93:af:40:e4: ba:aa:03:48:95:0f:c8:13:0b:8e:55:55:e7:14:49:7d:2b:b2: 85:45:89:88:2a:9e:b5:6b:4e:94:cf:30:51:02:9e:81:ef:ea: 8d:04:e7:cb:d2:4c:33:28:5b:0b:ee:6a:89:31:fd:c3:8b:9b: 79:c3:39:a2:12:27:3b:80:db:1e:9c:6f:1c:fa:ad:d7:77:8d: 0c:f7:46:ba:d9:e8:25:04:48:83:54:e3:fd:c4:ab:82:bf:ad: a1:de:07:91:b0:99:00:83:fd:80:09:5a:fa:c2:bb:b7:fb:93: fd:69:44:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjMwOTAyMjIyOTQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYjc1NS00ZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtY8tFpwxZH2Z9xBHQNvK9HGTRSGCZpWLpbBFWnRn+HWhvJ9+/TVZnts6G3ti zdbpzrYqPdCfk6RDDBy0OS9lV/yP3hUFQ+DRmPWs1Z4F8JS99H1khCdNKtPFthRx +LzybNd56prwcOJEofF4aCVB6yHfBET4TFgoY4+RR0oN6+YZcWjs3FhizXisgQHT 4NFSV14mS4q8a5UzX57JkSGF3nhzxFdd3jCg4dTNSSftFmgk7EJg1e7BudSkimJ5 8WelAkVe1cqvbpXysdsrqKkfazXyR5pEY5ioDJb7EevynmWallgUl+M+HXUfPvLz 7aAIc/ysMxGtGZk/SSwEwtSz7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFD8sjYyg lMakRh6lHQg03nfPahpCMB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ1NUUvNjJBNUVCNkExRDVCMTFFQjgzQUM4NzFBQzRGOUFFMDIvMjMyM0Y5NjIx RDVEMTFFQkEzQTdFNzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndyAwDQYJKoZIhvcNAQELBQADggEBAD+FeZ0OL1FU/POM ZNb3BQFEobcZQj3fDMw26EZlNJd69ekM649Mmbiq5QMdwAc5XUS41Y3I1l05SQQk Wcnf4JMUgh4gTTANUwdqj7J91Vxxef1JAg0ZbAnCu2tNUZOpY9dvVJ080wwcDf7K 8dkRuwAYA8eYMM97O7s3qVMDQgfS2yBth81REI6kiZH7k69A5LqqA0iVD8gTC45V VecUSX0rsoVFiYgqnrVrTpTPMFECnoHv6o0E58vSTDMoWwvuaokx/cOLm3nDOaIS JzuA2x6cbxz6rdd3jQz3RrrZ6CUESINU4/3Eq4K/raHeB5GwmQCD/YAJWvrCu7f7 k/1pRNQ= -----END CERTIFICATE-----Generated at Thu May 16 23:48:41 2024 by rpki-client on console-fra.rpki-client.org