$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa File: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (raw, json) Hash identifier: SIrfJsq6HaiS8oimPNRCAQub1/qi+vBYLTGVinSD4Xs= Subject key identifier: F3:15:89:C7:D4:4E:61:3B:4E:E8:57:5D:DF:C8:1F:DA:A7:42:49:EE Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 0424 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa Signing time: Sat 03 Jun 2023 03:10:19 +0000 ROA not before: Sat 03 Jun 2023 03:10:19 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 23947 IP address blocks: 103.116.126.0/24 maxlen: 24 103.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 3 03:10:19 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647aaf1b-6666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:23:bc:ee:ac:26:19:f4:0a:96:5d:36:74:10: 81:ae:72:00:e2:45:24:f5:9b:c9:b6:b0:69:7f:de: c0:ec:ea:04:4a:29:23:e4:f8:90:0e:2b:d1:d2:ab: f0:b5:85:e2:e0:af:dd:6f:7b:6b:e7:88:b3:33:7e: 2f:1e:1b:88:b8:f9:66:c3:a7:bb:e1:0d:7f:a0:cd: f5:f7:8c:3e:5e:70:e1:1c:27:5b:37:60:04:cd:be: e9:1a:d5:73:00:1c:33:21:e6:75:34:fb:46:95:72: 4e:7c:75:4b:25:df:8d:e2:1b:fb:9d:e1:bf:79:f3: 02:2f:c4:72:e9:a9:13:23:91:67:33:62:3a:94:3a: 87:6e:6f:2b:e2:4a:4d:d5:fc:bf:8f:e5:bd:3b:19: a3:24:4a:f2:0b:c8:16:f7:68:b4:b8:90:9d:f8:68: 36:16:0a:c1:f0:92:a5:a6:ad:58:d7:61:0a:5f:80: e0:6d:1a:7e:a6:53:f2:05:40:3c:20:47:52:c1:79: de:4d:c1:b2:b0:64:e3:11:08:05:23:f8:ab:74:17: 8d:01:74:17:1f:eb:17:21:05:29:c1:c5:62:b4:41: 26:a4:b2:f0:5f:46:6c:a0:b0:31:ee:c1:e7:99:93: a5:37:23:b0:fd:67:eb:2c:2b:04:f2:93:9d:8f:d6: d0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:15:89:C7:D4:4E:61:3B:4E:E8:57:5D:DF:C8:1F:DA:A7:42:49:EE X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.126.0/23 Signature Algorithm: sha256WithRSAEncryption c5:bc:76:43:fd:96:7d:3e:bb:35:49:07:33:81:ea:05:be:50: 69:a0:cf:63:67:e9:5b:a2:6c:4d:f5:53:21:d7:ff:70:f1:15: 2c:54:72:51:71:77:fd:b4:26:8a:0a:6e:48:ab:76:ce:ad:63: 19:c4:85:91:31:6f:c8:d8:d7:26:d1:e9:46:6b:d3:d9:40:5c: 10:4a:e4:a8:c9:76:5f:b6:ad:ac:ee:a0:14:d8:b6:94:51:d2: 49:43:b7:8e:b5:1f:a0:de:0b:32:e5:1c:ef:22:ea:ab:dc:02: 8c:b0:6a:88:98:d0:a8:1f:e6:c2:71:12:3a:93:29:6e:89:c0: a5:7c:ea:8f:af:9e:09:14:34:a4:bf:4a:ce:8e:85:87:a1:66: 0b:55:6c:2f:65:c3:3b:12:b6:26:b4:a3:ff:36:8d:1f:9b:c6: 60:6b:06:ae:2b:58:de:47:93:d1:47:61:7a:68:dd:a7:a2:be: 9e:59:58:ae:fd:91:5a:e4:c1:a5:33:b3:33:6f:a3:d5:0e:7e: e8:d1:ca:c0:9d:a4:99:db:5d:31:82:0f:db:56:97:0a:5a:6b: 6e:94:27:c6:d6:d2:34:92:f0:da:ca:7c:d2:55:57:f5:8c:f7: de:b1:2c:3f:15:97:5f:1d:3c:a9:a1:db:72:4b:7e:88:94:12: e4:80:9c:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjMwNjAzMDMxMDE5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhYWYxYi02NjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iO87qwmGfQKll02dBCBrnIA4kUk9ZvJtrBpf97A7OoESikj5PiQDivR0qvw tYXi4K/db3tr54izM34vHhuIuPlmw6e74Q1/oM3194w+XnDhHCdbN2AEzb7pGtVz ABwzIeZ1NPtGlXJOfHVLJd+N4hv7neG/efMCL8Ry6akTI5FnM2I6lDqHbm8r4kpN 1fy/j+W9OxmjJEryC8gW92i0uJCd+Gg2FgrB8JKlpq1Y12EKX4DgbRp+plPyBUA8 IEdSwXneTcGysGTjEQgFI/irdBeNAXQXH+sXIQUpwcVitEEmpLLwX0ZsoLAx7sHn mZOlNyOw/WfrLCsE8pOdj9bQ8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPMVicfU TmE7TuhXXd/IH9qnQknuMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I2NDcvMDE1N0JBREVEMjQ5MTFFQkEwNEI0QzNCQzRGOUFFMDIvQkY4RjcwQzY3 QjgyMTFFRDlDNEVERDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndH4wDQYJKoZIhvcNAQELBQADggEBAMW8dkP9ln0+uzVJ BzOB6gW+UGmgz2Nn6VuibE31UyHX/3DxFSxUclFxd/20JooKbkirds6tYxnEhZEx b8jY1ybR6UZr09lAXBBK5KjJdl+2razuoBTYtpRR0klDt461H6DeCzLlHO8i6qvc AoywaoiY0Kgf5sJxEjqTKW6JwKV86o+vngkUNKS/Ss6OhYehZgtVbC9lwzsStia0 o/82jR+bxmBrBq4rWN5Hk9FHYXpo3aeivp5ZWK79kVrkwaUzszNvo9UOfujRysCd pJnbXTGCD9tWlwpaa26UJ8bW0jSS8NrKfNJVV/WM996xLD8Vl18dPKmh23JLfoiU EuSAnHM= -----END CERTIFICATE-----Generated at Fri May 17 02:38:39 2024 by rpki-client on console-fra.rpki-client.org