$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa File: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (raw, json) Hash identifier: W2CC03Iszn8+ulcJ3T40dvVEepYKJ/v5C7sNO7bHna0= Subject key identifier: E1:6A:65:D0:D4:1D:9E:C7:AF:FE:F2:23:F6:DF:4E:28:20:F8:FF:06 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 0424 Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa Signing time: Fri 15 Dec 2023 01:33:28 +0000 ROA not before: Fri 15 Dec 2023 01:33:28 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141004 IP address blocks: 103.159.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Dec 15 01:33:28 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657bace8-151e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:00:2e:48:5e:8e:52:cc:6d:69:8f:8f:e2: 14:8d:39:e8:c7:53:95:d3:fc:ec:e8:7b:18:ee:82: 21:b5:b8:ec:b9:99:5c:d3:aa:7b:fb:6c:d1:65:90: 47:76:18:6e:2d:c8:ae:29:08:3f:91:af:e3:09:0b: ce:ed:08:e6:36:7a:6f:21:72:95:d8:22:e3:bb:55: 64:b1:4b:0c:9b:56:a1:76:36:ae:95:74:5b:df:40: e2:97:e0:72:89:ad:57:51:de:9e:7e:30:13:74:33: 1e:5d:ae:0f:5d:a8:60:26:0d:db:43:1c:44:6f:e3: 22:e3:1f:1e:6c:96:19:92:60:5c:46:53:cf:c9:12: 85:93:80:68:98:83:31:ec:90:82:ff:a0:e8:98:e1: d6:44:e5:27:3b:61:55:a6:ef:1f:52:29:f4:b4:dc: 20:b5:6d:96:69:7c:b4:84:3a:45:42:0d:c0:cd:c9: a4:84:b1:50:c9:11:25:7c:9f:ad:51:b9:a6:aa:1e: e7:e6:f4:1d:b4:2c:56:11:df:1b:60:74:32:1a:bb: bb:96:9c:8b:ef:92:42:de:13:3c:b4:80:da:e3:a9: 68:34:e2:02:df:82:b3:1b:cb:50:e1:4a:c9:07:62: 9d:a7:4f:e5:9e:cd:57:e2:c4:16:6a:17:62:78:e2: f7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6A:65:D0:D4:1D:9E:C7:AF:FE:F2:23:F6:DF:4E:28:20:F8:FF:06 X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.84.0/23 Signature Algorithm: sha256WithRSAEncryption 96:54:6a:69:8f:1f:60:77:f5:9c:73:91:75:96:1f:d7:2a:7a: 62:96:fa:52:ef:a0:e6:3d:a1:be:92:14:a9:21:77:bc:23:0b: be:24:82:d6:68:70:eb:35:b2:e1:f1:ff:85:cc:6b:28:1c:47: 07:42:5e:8d:90:60:b9:b9:07:5e:8f:20:6a:3a:3c:98:fb:99: 75:8f:ee:69:3d:20:63:fd:94:c2:4a:0e:0e:3e:07:f7:a4:64: 5d:92:eb:89:61:80:99:4b:0b:06:4d:7a:50:1a:1b:82:25:76: b6:49:6e:44:0a:56:cf:df:ad:7e:c1:93:65:7f:06:c3:e5:e7: 95:95:fa:0d:f1:02:91:34:8d:43:ad:91:d9:8f:5a:8a:3c:80: 03:99:66:51:3b:e3:fc:f7:6f:c1:93:b1:28:72:c1:33:68:13: 5e:2f:2c:9c:0b:a1:be:79:53:d7:76:9b:24:bc:ba:7b:3f:2a: 1a:57:30:f9:2e:fc:19:6e:23:9b:52:dc:d0:2f:df:d3:32:65: bd:8d:61:db:16:f1:96:83:25:ff:aa:da:0c:66:c3:31:f9:e6: ac:89:c5:c1:b7:9d:96:7b:0a:9a:b7:9c:cf:ae:f2:0d:e3:25: 3d:30:6a:d3:4a:9d:44:02:c0:7c:f9:64:20:12:cd:a3:d8:22: 2f:b1:45:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjMxMjE1MDEzMzI4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiYWNlOC0xNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4gALkhejlLMbWmPj+IUjTnox1OV0/zs6HsY7oIhtbjsuZlc06p7+2zRZZBH dhhuLciuKQg/ka/jCQvO7QjmNnpvIXKV2CLju1VksUsMm1ahdjaulXRb30Dil+By ia1XUd6efjATdDMeXa4PXahgJg3bQxxEb+Mi4x8ebJYZkmBcRlPPyRKFk4BomIMx 7JCC/6DomOHWROUnO2FVpu8fUin0tNwgtW2WaXy0hDpFQg3AzcmkhLFQyRElfJ+t Ubmmqh7n5vQdtCxWEd8bYHQyGru7lpyL75JC3hM8tIDa46loNOIC34KzG8tQ4UrJ B2Kdp0/lns1X4sQWahdieOL3MQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOFqZdDU HZ7Hr/7yI/bfTigg+P8GMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4NEYvREQ3MkNFNThGOUM5MTFFQjk1NTVCMzZBQzRGOUFFMDIvQ0UwMERBMzRG RjQ0MTFFQkFEM0E2MzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn1QwDQYJKoZIhvcNAQELBQADggEBAJZUammPH2B39Zxz kXWWH9cqemKW+lLvoOY9ob6SFKkhd7wjC74kgtZocOs1suHx/4XMaygcRwdCXo2Q YLm5B16PIGo6PJj7mXWP7mk9IGP9lMJKDg4+B/ekZF2S64lhgJlLCwZNelAaG4Il drZJbkQKVs/frX7Bk2V/BsPl55WV+g3xApE0jUOtkdmPWoo8gAOZZlE74/z3b8GT sShywTNoE14vLJwLob55U9d2myS8uns/KhpXMPku/BluI5tS3NAv39MyZb2NYdsW 8ZaDJf+q2gxmwzH55qyJxcG3nZZ7Cpq3nM+u8g3jJT0watNKnUQCwHz5ZCASzaPY Ii+xRXM= -----END CERTIFICATE-----Generated at Sun May 19 02:39:36 2024 by rpki-client on console-fra.rpki-client.org