$ rpki-client -vvf rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa File: 8D013D48B6BD11EEB6F43F4CC4F9AE02.roa (raw, json) Hash identifier: A5zG9JRYVJQgENWiBfervafYYNjUwT6DdNvd6otkx48= Subject key identifier: 7E:7B:69:1A:89:86:B2:EA:81:F0:09:9A:37:C5:4F:4C:07:6A:30:9D Certificate issuer: /CN=A9172951/serialNumber=CEF9C57E84B2EA5A6FA3D0E456330FB7A546F088 Certificate serial: 053A Authority key identifier: CE:F9:C5:7E:84:B2:EA:5A:6F:A3:D0:E4:56:33:0F:B7:A5:46:F0:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa Signing time: Fri 19 Jan 2024 11:26:13 +0000 ROA not before: Fri 19 Jan 2024 11:26:13 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 142552 IP address blocks: 103.157.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.crl rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1338 (0x53a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172951/serialNumber=CEF9C57E84B2EA5A6FA3D0E456330FB7A546F088 Validity Not Before: Jan 19 11:26:13 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65aa5c54-0e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:85:b6:16:19:80:b2:7a:c2:34:18:f7:cd: 60:58:51:50:1a:39:58:a1:a5:d2:8b:12:32:ed:7a: a9:09:60:51:2f:be:15:39:db:27:48:e9:6d:84:61: 02:a1:1d:dd:a9:73:0b:ee:21:4d:7c:b2:1f:a0:54: 84:a0:b5:c7:b6:8f:4e:17:62:59:8b:9d:98:54:d1: 78:8e:8c:6e:ac:33:19:bf:a5:18:d4:e8:ad:52:f1: 2b:85:18:c6:76:4b:fa:7a:92:b8:38:2d:18:3f:b2: ca:32:15:3f:02:96:2e:b3:08:ac:c7:cd:74:3f:53: cb:fb:49:e0:a1:fe:98:f0:66:af:1d:70:c9:1b:60: 83:d3:33:b3:b6:d5:f5:79:7a:32:d0:57:c9:ca:cc: 22:01:f9:3f:4d:fb:96:c9:b9:46:20:0c:e0:32:76: 4a:14:3f:42:f7:f7:4b:b3:cc:8f:b8:ba:8e:2b:94: 22:3e:98:cc:79:2d:dc:d4:32:a4:75:3e:c3:2a:c6: 43:d8:43:72:1c:90:35:e3:70:f6:c3:4a:a1:b4:b2: cb:6e:d0:0d:84:0b:53:ce:42:b4:e2:96:17:fb:ed: 31:44:f4:16:71:a8:a7:3c:06:cd:ee:2a:04:87:e0: 07:6d:b2:1a:e7:93:a9:67:14:92:72:9c:35:b2:93: 81:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7B:69:1A:89:86:B2:EA:81:F0:09:9A:37:C5:4F:4C:07:6A:30:9D X509v3 Authority Key Identifier: keyid:CE:F9:C5:7E:84:B2:EA:5A:6F:A3:D0:E4:56:33:0F:B7:A5:46:F0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.211.0/24 Signature Algorithm: sha256WithRSAEncryption 23:70:14:13:7e:4f:58:9b:f5:70:4d:38:3b:d5:99:97:f7:27: e9:77:84:f7:74:5c:99:7d:c7:9f:9e:c0:99:99:e4:4f:16:b7: 6c:3e:d7:b7:55:56:8e:b3:6c:8f:f6:8c:d3:e8:1d:4d:08:8d: d8:dd:bb:20:82:98:53:d9:ab:e8:0a:39:4f:f0:7d:cb:b1:4b: 6a:8a:2c:7d:a8:29:65:70:d2:5c:16:21:af:24:e9:84:e7:6b: 9e:09:3d:0a:35:37:22:1f:8e:f0:04:59:2f:0d:96:06:3b:d8: ab:59:0f:23:6b:6b:23:6b:9d:d6:28:43:4c:36:f6:10:43:ca: 14:b5:be:31:f7:af:36:75:7b:2c:4e:68:85:cb:37:c3:1e:8a: df:21:ca:15:b7:a9:17:ca:b3:53:83:9f:ab:12:4d:99:0c:3c: d5:9d:71:d5:6a:06:93:2b:27:78:2e:9c:08:e2:51:bc:a5:ec: 66:70:a5:b1:a2:df:81:72:b1:36:fa:b4:53:4c:67:06:e4:8c: 4f:9d:3e:42:6d:de:62:18:89:90:01:28:7e:79:1b:f2:08:cb: 45:f8:b8:81:49:78:c3:3b:5d:62:bc:73:1e:9e:8a:54:0e:70: ab:9d:77:d4:d7:7d:78:27:2b:92:da:6a:6e:0e:f2:8f:9c:28: c6:56:0d:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5NTExMTAvBgNVBAUTKENFRjlDNTdFODRCMkVBNUE2RkEzRDBFNDU2MzMwRkI3 QTU0NkYwODgwHhcNMjQwMTE5MTEyNjEzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFhNWM1NC0wZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiGFthYZgLJ6wjQY981gWFFQGjlYoaXSixIy7XqpCWBRL74VOdsnSOlthGEC oR3dqXML7iFNfLIfoFSEoLXHto9OF2JZi52YVNF4joxurDMZv6UY1OitUvErhRjG dkv6epK4OC0YP7LKMhU/ApYuswisx810P1PL+0ngof6Y8GavHXDJG2CD0zOzttX1 eXoy0FfJyswiAfk/TfuWyblGIAzgMnZKFD9C9/dLs8yPuLqOK5QiPpjMeS3c1DKk dT7DKsZD2ENyHJA143D2w0qhtLLLbtANhAtTzkK04pYX++0xRPQWcainPAbN7ioE h+AHbbIa55OpZxSScpw1spOBdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH57aRqJ hrLqgfAJmjfFT0wHajCdMB8GA1UdIwQYMBaAFM75xX6Esupab6PQ5FYzD7elRvCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk1MS85QTA5N0Q4QTk2 MDMxMUVCQjg1REIzNDBDNEY5QUUwMi96dm5GZm9TeTZscHZvOURrVmpNUHQ2Vkc4 SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p2bkZmb1N5Nmxwdm85RGtWak1QdDZWRzhJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5NTEvOUEwOTdEOEE5NjAzMTFFQkI4NURCMzQwQzRGOUFFMDIvOEQwMTNENDhC NkJEMTFFRUI2RjQzRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnndMwDQYJKoZIhvcNAQELBQADggEBACNwFBN+T1ib9XBN ODvVmZf3J+l3hPd0XJl9x5+ewJmZ5E8Wt2w+17dVVo6zbI/2jNPoHU0IjdjduyCC mFPZq+gKOU/wfcuxS2qKLH2oKWVw0lwWIa8k6YTna54JPQo1NyIfjvAEWS8NlgY7 2KtZDyNrayNrndYoQ0w29hBDyhS1vjH3rzZ1eyxOaIXLN8Meit8hyhW3qRfKs1OD n6sSTZkMPNWdcdVqBpMrJ3gunAjiUbyl7GZwpbGi34FysTb6tFNMZwbkjE+dPkJt 3mIYiZABKH55G/IIy0X4uIFJeMM7XWK8cx6eilQOcKudd9TXfXgnK5Laam4O8o+c KMZWDX0= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:16 2024 by rpki-client on console-fra.rpki-client.org