$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa File: 6E1519E8E1B211EEB4706E18C4F9AE02.roa (raw, json) Hash identifier: F8GuFqvT+3lJFQFIS9a0hFD3IpzlZnTiG8HC/3ReeFk= Subject key identifier: 9C:BE:47:B9:FE:69:72:84:13:37:AF:99:3F:A0:7A:00:65:3C:85:12 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 17 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa Signing time: Thu 14 Mar 2024 03:24:56 +0000 ROA not before: Thu 14 Mar 2024 03:24:56 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134176 IP address blocks: 103.236.224.0/24 maxlen: 24 103.236.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Mar 14 03:24:56 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65f26e08-0539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c6:6a:2d:31:7a:01:d5:e3:20:72:81:c4:d0: 27:0c:ac:42:76:c7:ad:64:e2:32:40:71:17:7a:62: 7a:22:a1:76:62:3f:11:d7:5b:8c:76:94:48:12:9e: 5a:d1:58:f7:84:5f:6b:fb:97:3c:e5:cc:b7:e5:dd: 04:0f:09:1c:f8:0e:14:9b:20:c5:ca:b3:0e:b0:61: 95:3f:9e:86:4d:d2:c3:3c:38:8a:60:96:3f:6d:de: 44:23:94:fd:e5:d6:81:33:12:6f:0d:50:5d:19:d0: 80:8a:b2:ff:64:bf:d8:92:3e:c4:98:76:29:14:2b: dc:b0:f1:fa:a1:e4:97:11:9a:a1:04:04:39:28:00: 8b:00:d7:bf:d0:f5:d0:f4:71:c5:7b:d0:7c:47:51: 00:36:1a:7c:a3:16:7f:1a:0a:e1:69:91:e7:a4:86: 15:b4:cb:e5:27:40:5c:e5:9a:51:f8:28:f8:80:ee: 56:93:0c:4d:f4:6d:d4:1b:95:18:9e:bf:28:bb:a2: cc:51:82:1f:09:32:fb:05:9e:c4:51:e6:00:37:de: ee:18:cb:ca:11:61:bb:6e:09:bd:10:13:ee:03:72: 83:69:43:36:07:e4:80:33:3e:3e:48:00:a0:27:8f: c4:8b:91:14:7b:ea:2c:79:75:a8:2a:a1:3f:61:7e: 1e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BE:47:B9:FE:69:72:84:13:37:AF:99:3F:A0:7A:00:65:3C:85:12 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.224.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:cd:2c:60:15:2c:6d:73:6c:9b:ff:83:89:df:1d:fc:55:0b: b5:4e:79:b6:16:44:ff:c7:98:77:19:e6:84:d7:60:65:9f:25: 57:5e:4c:e6:a0:53:8e:c4:8b:d9:3c:17:fa:70:c4:33:b7:c4: 06:9c:97:44:2f:a8:c1:c9:b1:9d:e8:b1:f7:d5:56:9a:89:b4: be:e5:6a:9a:3f:39:4c:ad:76:3e:37:05:da:72:9e:9c:ca:1b: 74:cf:97:50:31:d8:04:b9:01:9d:2d:d8:c9:71:a0:6e:b5:22: 28:ec:b8:dd:ca:ae:4c:04:27:4c:35:0a:ce:d0:06:d1:d9:41: 21:fb:43:97:b5:dc:9b:9a:9b:98:ef:48:ba:9a:6d:79:ec:c1: ca:5d:69:98:21:4e:fd:d3:5f:a6:ef:1d:e6:ca:d8:56:79:7e: e0:a6:a0:99:14:4f:3c:e2:bf:89:0c:d5:29:0c:26:ae:e7:96: de:f1:7c:f6:c9:3c:fd:2d:a6:76:6a:42:a2:6e:df:d6:69:bb: 90:eb:82:26:95:a8:cd:27:6c:27:8e:7a:fd:36:cd:07:f4:88: ea:4f:52:63:61:24:87:13:a3:e5:59:c0:7b:19:f0:e4:5b:d4: c3:31:0a:b9:8d:35:df:ac:0b:bb:0d:b5:2b:5d:d1:4a:72:c2: 31:37:ec:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTY2RjExMC8GA1UEBRMoQjIyQzNEMEFCQ0QzOTE5NDg2QTNFNjFFOEQ3ODg5MjM5 MjJCRjZBNTAeFw0yNDAzMTQwMzI0NTZaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjI2ZTA4LTA1MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCxmotMXoB1eMgcoHE0CcMrEJ2x61k4jJAcRd6YnoioXZiPxHXW4x2lEgSnlrR WPeEX2v7lzzlzLfl3QQPCRz4DhSbIMXKsw6wYZU/noZN0sM8OIpglj9t3kQjlP3l 1oEzEm8NUF0Z0ICKsv9kv9iSPsSYdikUK9yw8fqh5JcRmqEEBDkoAIsA17/Q9dD0 ccV70HxHUQA2GnyjFn8aCuFpkeekhhW0y+UnQFzlmlH4KPiA7laTDE30bdQblRie vyi7osxRgh8JMvsFnsRR5gA33u4Yy8oRYbtuCb0QE+4DcoNpQzYH5IAzPj5IAKAn j8SLkRR76ix5dagqoT9hfh6LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnL5Huf5p coQTN6+ZP6B6AGU8hRIwHwYDVR0jBBgwFoAUsiw9CrzTkZSGo+YejXiJI5Ir9qUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBNjZGLzhGQ0M5RDI4QzZG OTExRUU5N0U2RkIxREM0RjlBRTAyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2l3OUNyelRrWlNHby1ZZWpYaUpJNUlyOXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY2Ri84RkNDOUQyOEM2RjkxMUVFOTdFNkZCMURDNEY5QUUwMi82RTE1MTlFOEUx QjIxMUVFQjQ3MDZFMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfs4DANBgkqhkiG9w0BAQsFAAOCAQEAb80sYBUsbXNsm/+D id8d/FULtU55thZE/8eYdxnmhNdgZZ8lV15M5qBTjsSL2TwX+nDEM7fEBpyXRC+o wcmxneix99VWmom0vuVqmj85TK12PjcF2nKenMobdM+XUDHYBLkBnS3YyXGgbrUi KOy43cquTAQnTDUKztAG0dlBIftDl7Xcm5qbmO9IuppteezByl1pmCFO/dNfpu8d 5srYVnl+4KagmRRPPOK/iQzVKQwmrueW3vF89sk8/S2mdmpCom7f1mm7kOuCJpWo zSdsJ456/TbNB/SI6k9SY2EkhxOj5VnAexnw5FvUwzEKuY0136wLuw21K13RSnLC MTfs2w== -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org