$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa File: D994A1B2500C11EE83562B60C4F9AE02.roa (raw, json) Hash identifier: hwuGZFS1c2OEbzowaU8aBp9+90fOAJ6vT/p/knft1/U= Subject key identifier: 5B:C3:6D:FE:57:92:B1:51:1C:19:66:9C:5D:B9:3C:E0:9E:FB:13:36 Certificate issuer: /CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Certificate serial: 15 Authority key identifier: 1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa Signing time: Fri 22 Sep 2023 21:44:33 +0000 ROA not before: Fri 22 Sep 2023 21:44:33 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 932 IP address blocks: 103.247.28.0/23 maxlen: 24 2401:1fe0::/48 maxlen: 48 2401:1fe0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Validity Not Before: Sep 22 21:44:33 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650e0ac0-1078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d8:2f:7a:10:97:6e:a0:43:60:3d:d8:b1:7c: 52:ef:71:ed:38:76:74:cf:1e:b1:10:aa:56:56:65: 64:e8:33:94:23:af:e8:fb:3c:1d:d3:4d:84:c9:85: 0c:c6:ac:a9:93:da:58:2f:bb:ac:48:da:62:50:cd: 4c:27:95:55:a1:f8:d1:76:f3:a5:48:6f:a6:ed:7d: 22:5d:f5:11:89:8c:2b:c0:e1:be:d6:50:0c:1d:9c: 1c:fb:3e:89:47:0c:6e:74:f2:03:0c:94:54:de:19: c8:31:2e:4b:a3:85:3f:8b:00:43:dc:b8:cd:cf:88: f3:6f:86:c1:ab:99:26:ec:81:66:1a:d5:f6:79:95: fc:91:c3:29:5f:e4:ba:70:c5:43:79:06:c8:be:0a: 23:62:e4:b7:95:50:ed:46:e8:8e:1a:5d:eb:fe:7b: f9:bd:f0:cc:23:92:5d:a8:a4:1d:5e:2b:e2:3c:b8: 70:90:46:0d:5b:3f:32:e8:61:d7:c4:e0:34:c2:ce: 8f:77:a8:58:65:75:30:21:6b:e3:e7:da:d1:53:b5: 44:97:62:08:c6:f4:e1:c3:9d:36:a4:e9:fe:0d:a3: 1f:a3:b2:f8:f5:4c:44:97:09:6a:58:78:82:26:fe: 6a:01:00:31:4f:d2:06:42:60:a2:50:03:80:0f:75: d1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:6D:FE:57:92:B1:51:1C:19:66:9C:5D:B9:3C:E0:9E:FB:13:36 X509v3 Authority Key Identifier: keyid:1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.28.0/23 IPv6: 2401:1fe0::/47 Signature Algorithm: sha256WithRSAEncryption 95:88:23:22:79:1d:95:8c:45:11:f9:94:16:36:bd:0d:3e:14: 31:de:33:4f:e3:a9:c0:15:87:f1:53:8a:69:c4:0f:f2:ea:f3: 5d:4c:c0:6f:ff:05:03:d5:0b:c4:8d:ab:a5:0f:d1:e8:ee:5f: 17:9a:21:e4:da:1e:9e:f0:ea:d7:5b:9d:eb:88:f6:e7:82:bc: f2:0a:cb:6d:91:fb:71:42:18:a1:2d:a6:bc:4d:56:20:e0:d8: 27:4a:b3:c4:70:ba:6b:41:12:2f:96:7b:76:a6:8b:5c:a2:a9: 28:09:b5:ca:87:23:a9:59:43:7b:31:d9:35:48:a9:03:eb:0e: 45:d6:61:6a:de:e1:05:9e:a7:f0:ef:ee:b4:d9:c0:b4:d9:99: 0d:3b:dc:e1:eb:e0:39:be:db:4c:d8:35:c0:eb:11:d3:05:78: be:fa:7d:22:58:5b:91:c4:82:67:56:83:a2:59:86:4d:98:81: ad:9d:37:23:31:d2:8e:43:76:da:3d:ba:9a:f6:2c:5f:4a:3f: 8a:52:af:49:be:ed:cb:38:4c:73:96:63:ca:4e:a2:5f:66:b8: 45:43:01:99:ac:d9:09:82:de:00:32:14:44:c8:61:e0:da:11: 90:3d:57:f4:bd:3f:62:e8:96:5d:34:f8:ed:3b:08:a0:ee:0b: 06:14:85:cb -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0EzMTExMC8GA1UEBRMoMUVGMzBDNEM1NjA0QTU2RUNCM0VBRUU3RjJDQTk3RUI3 ODEwNTA3MDAeFw0yMzA5MjIyMTQ0MzNaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MGUwYWMwLTEwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY2C96EJduoENgPdixfFLvce04dnTPHrEQqlZWZWToM5Qjr+j7PB3TTYTJhQzG rKmT2lgvu6xI2mJQzUwnlVWh+NF286VIb6btfSJd9RGJjCvA4b7WUAwdnBz7PolH DG508gMMlFTeGcgxLkujhT+LAEPcuM3PiPNvhsGrmSbsgWYa1fZ5lfyRwylf5Lpw xUN5Bsi+CiNi5LeVUO1G6I4aXev+e/m98Mwjkl2opB1eK+I8uHCQRg1bPzLoYdfE 4DTCzo93qFhldTAha+Pn2tFTtUSXYgjG9OHDnTak6f4Nox+jsvj1TESXCWpYeIIm /moBADFP0gZCYKJQA4APddGHAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUW8Nt/leS sVEcGWacXbk84J77EzYwHwYDVR0jBBgwFoAUHvMMTFYEpW7LPq7n8sqX63gQUHAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDQTMxLzA5MEYxNEZBNTAw QzExRUU4MkIyNjg2M0M0RjlBRTAyL0h2TU1URllFcFc3TFBxN244c3FYNjNnUVVI QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSHZNTVRGWUVwVzdMUHE3bjhzcVg2M2dRVUhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0EzMS8wOTBGMTRGQTUwMEMxMUVFODJCMjY4NjNDNEY5QUUwMi9EOTk0QTFCMjUw MEMxMUVFODM1NjJCNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWf3HDAPBAIAAjAJAwcBJAEf4AAAMA0GCSqGSIb3DQEBCwUA A4IBAQCViCMieR2VjEUR+ZQWNr0NPhQx3jNP46nAFYfxU4ppxA/y6vNdTMBv/wUD 1QvEjaulD9Ho7l8XmiHk2h6e8OrXW53riPbngrzyCsttkftxQhihLaa8TVYg4Ngn SrPEcLprQRIvlnt2potcoqkoCbXKhyOpWUN7Mdk1SKkD6w5F1mFq3uEFnqfw7+60 2cC02ZkNO9zh6+A5vttM2DXA6xHTBXi++n0iWFuRxIJnVoOiWYZNmIGtnTcjMdKO Q3baPbqa9ixfSj+KUq9Jvu3LOExzlmPKTqJfZrhFQwGZrNkJgt4AMhREyGHg2hGQ PVf0vT9i6JZdNPjtOwig7gsGFIXL -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:17 2024 by rpki-client on console-ams.rpki-client.org