$ rpki-client -vvf rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa File: 21A84DDAB4C811EE98BFC52CC4F9AE02.roa (raw, json) Hash identifier: Oph2x9Vp/wRbnmNVSfwAUkY9uyB9bFqNjrTtaJzSXt8= Subject key identifier: BE:6D:10:0F:66:1D:C2:70:58:50:9A:41:E2:2F:3D:EB:36:AE:4C:35 Certificate issuer: /CN=A915F316/serialNumber=04290CB24EEEF0A3A787187CB4FFC747DE861731 Certificate serial: 06D5 Authority key identifier: 04:29:0C:B2:4E:EE:F0:A3:A7:87:18:7C:B4:FF:C7:47:DE:86:17:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa Signing time: Tue 16 Jan 2024 23:36:55 +0000 ROA not before: Tue 16 Jan 2024 23:36:55 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 64073 IP address blocks: 103.193.136.0/22 maxlen: 22 103.193.136.0/24 maxlen: 24 103.193.137.0/24 maxlen: 24 103.193.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.crl rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F316/serialNumber=04290CB24EEEF0A3A787187CB4FFC747DE861731 Validity Not Before: Jan 16 23:36:55 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65a71316-8a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f9:c1:d0:19:c3:8f:c7:c4:90:0a:a7:8e:86: bf:bf:59:8f:45:7b:c4:23:68:a6:d0:7b:58:02:8e: 45:61:52:36:64:d9:a4:d5:61:7f:6b:02:94:b5:69: 0c:82:95:8d:89:1b:1f:01:47:72:9d:58:93:4c:0c: 00:41:37:e4:1e:f8:cc:f5:4f:6a:0c:5b:c0:42:76: 6f:ac:19:bc:6e:b3:90:aa:89:6e:71:ac:95:5f:5d: 6b:1d:ba:fe:af:f4:d6:4f:fc:6f:a0:bc:b7:6a:66: f0:65:e7:67:88:c7:b2:9f:a5:27:a6:13:52:69:13: 04:14:50:34:77:6e:9b:51:38:b1:a3:e7:cd:22:53: 9e:a0:38:0e:07:25:50:54:44:ff:e0:20:42:ec:69: 69:28:01:d2:be:13:0b:6d:fa:84:38:c6:08:03:14: 1a:b2:07:e6:a8:c9:c3:96:77:d5:d3:18:2c:e3:f3: 9a:fb:2f:95:29:90:2f:22:aa:f5:fe:71:5c:f5:46: 20:a9:6b:2a:1a:c7:4d:ef:16:c8:99:56:8d:93:25: e9:bb:ee:8f:88:66:a9:75:14:e4:cf:6a:77:f6:68: ca:52:da:a3:df:ac:9d:ae:9e:95:73:94:12:48:8d: 38:8d:00:4f:7d:8b:24:c4:91:4a:15:01:d9:56:e0: 0d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6D:10:0F:66:1D:C2:70:58:50:9A:41:E2:2F:3D:EB:36:AE:4C:35 X509v3 Authority Key Identifier: keyid:04:29:0C:B2:4E:EE:F0:A3:A7:87:18:7C:B4:FF:C7:47:DE:86:17:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.136.0/22 Signature Algorithm: sha256WithRSAEncryption a6:58:6b:6d:e0:fc:8f:e8:4c:37:3b:d7:54:5c:07:60:75:57: 94:d1:81:91:44:c8:2f:c1:13:54:65:56:26:e7:40:38:f0:db: 3f:61:4e:95:b8:cc:99:4a:b3:e8:e0:b2:64:00:d5:51:51:da: b4:47:d7:71:4b:a3:6a:45:a9:ab:29:47:bb:27:de:a6:f8:27: cd:02:19:55:99:fe:b3:28:94:31:e4:54:73:a8:78:78:f8:f5: 5b:8f:03:e1:97:4d:7f:27:7b:44:66:ad:65:97:a7:ce:6f:bb: 47:9c:ca:44:b8:ee:ca:0a:d2:09:82:5e:69:f2:ca:25:c8:07: cc:82:c1:77:23:27:7a:75:82:a1:cf:10:cf:2e:ff:55:30:d5: 96:44:59:18:f6:3f:f9:74:cb:73:c4:13:06:e5:49:e8:b1:70: f6:6a:21:63:11:cf:f2:9a:51:11:90:4e:76:64:17:a7:12:12: 0b:b9:d4:3f:98:9e:45:96:ef:56:1d:17:6a:a4:2d:fe:52:86: 86:4e:14:53:93:16:eb:68:99:c1:be:a1:44:30:dd:15:f7:a9: f5:70:eb:46:4a:7f:bb:61:1a:e4:2c:5c:03:97:c0:de:6d:aa: 3e:e9:9c:d1:fa:2c:7e:dd:60:c5:11:98:f0:62:82:4b:57:4a: b3:87:2d:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYzMTYxMTAvBgNVBAUTKDA0MjkwQ0IyNEVFRUYwQTNBNzg3MTg3Q0I0RkZDNzQ3 REU4NjE3MzEwHhcNMjQwMTE2MjMzNjU1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MTMxNi04YTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PnB0BnDj8fEkAqnjoa/v1mPRXvEI2im0HtYAo5FYVI2ZNmk1WF/awKUtWkM gpWNiRsfAUdynViTTAwAQTfkHvjM9U9qDFvAQnZvrBm8brOQqolucayVX11rHbr+ r/TWT/xvoLy3ambwZedniMeyn6UnphNSaRMEFFA0d26bUTixo+fNIlOeoDgOByVQ VET/4CBC7GlpKAHSvhMLbfqEOMYIAxQasgfmqMnDlnfV0xgs4/Oa+y+VKZAvIqr1 /nFc9UYgqWsqGsdN7xbImVaNkyXpu+6PiGapdRTkz2p39mjKUtqj36ydrp6Vc5QS SI04jQBPfYskxJFKFQHZVuAN6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFL5tEA9m HcJwWFCaQeIvPes2rkw1MB8GA1UdIwQYMBaAFAQpDLJO7vCjp4cYfLT/x0fehhcx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjMxNi8yODFCOUQ2MEY2 RDExMUVBQTY5REU0MjlDNEY5QUUwMi9CQ2tNc2s3dThLT25oeGg4dFBfSFI5NkdG ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JDa01zazd1OEtPbmh4aDh0UF9IUjk2R0Z6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYzMTYvMjgxQjlENjBGNkQxMTFFQUE2OURFNDI5QzRGOUFFMDIvMjFBODREREFC NEM4MTFFRTk4QkZDNTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwYgwDQYJKoZIhvcNAQELBQADggEBAKZYa23g/I/oTDc7 11RcB2B1V5TRgZFEyC/BE1RlVibnQDjw2z9hTpW4zJlKs+jgsmQA1VFR2rRH13FL o2pFqaspR7sn3qb4J80CGVWZ/rMolDHkVHOoeHj49VuPA+GXTX8ne0RmrWWXp85v u0ecykS47soK0gmCXmnyyiXIB8yCwXcjJ3p1gqHPEM8u/1Uw1ZZEWRj2P/l0y3PE EwblSeixcPZqIWMRz/KaURGQTnZkF6cSEgu51D+YnkWW71YdF2qkLf5ShoZOFFOT FutomcG+oUQw3RX3qfVw60ZKf7thGuQsXAOXwN5tqj7pnNH6LH7dYMURmPBigktX SrOHLa0= -----END CERTIFICATE-----Generated at Wed Jun 12 23:36:05 2024 by rpki-client on console-fra.rpki-client.org