$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/6F475ABA8C9211EBBFD9447CC4F9AE02.roa File: 6F475ABA8C9211EBBFD9447CC4F9AE02.roa (raw, json) Hash identifier: icsalneywuUGMB/UEk4ayCMdt9s5K/bFUPjyEmKrD8s= Subject key identifier: F3:35:E5:BE:A8:1F:84:7E:93:D0:27:54:0F:27:DE:57:B1:83:78:79 Certificate issuer: /CN=A917E00E/serialNumber=26A8C84C20D02A7FC4AEEDE155C0B31B08EE7B67 Certificate serial: 055B Authority key identifier: 26:A8:C8:4C:20:D0:2A:7F:C4:AE:ED:E1:55:C0:B3:1B:08:EE:7B:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JqjITCDQKn_Eru3hVcCzGwjue2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/6F475ABA8C9211EBBFD9447CC4F9AE02.roa Signing time: Thu 15 Feb 2024 00:12:48 +0000 ROA not before: Thu 15 Feb 2024 00:12:48 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 40065 IP address blocks: 103.146.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/JqjITCDQKn_Eru3hVcCzGwjue2c.crl rsync://rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/JqjITCDQKn_Eru3hVcCzGwjue2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JqjITCDQKn_Eru3hVcCzGwjue2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00E/serialNumber=26A8C84C20D02A7FC4AEEDE155C0B31B08EE7B67 Validity Not Before: Feb 15 00:12:48 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cd5700-5fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8f:7e:68:29:43:cd:95:43:62:3e:32:50:43: fa:64:2a:4d:fd:44:7c:d9:9f:78:d6:13:05:08:5d: cf:ff:44:b0:33:12:78:1e:ad:25:20:63:79:86:08: f9:1e:62:8f:58:6b:d8:6d:f0:66:83:af:5a:51:e1: 6f:a9:99:ab:8b:e5:71:65:ad:ca:85:fc:c0:7e:8a: ad:20:2a:21:07:ea:75:c6:a0:53:a8:77:a3:a6:23: 1f:24:ce:25:9e:cc:b8:02:e5:15:a4:33:53:26:2d: 0a:78:7d:b7:bd:4d:f6:bb:16:dc:2d:86:cf:55:6a: 8d:e3:f2:fd:b2:86:cf:32:b4:cd:22:25:13:5d:41: db:a1:2b:aa:f0:59:bf:af:21:75:91:a6:6e:2e:01: 6c:6f:32:d1:1c:94:13:d3:75:45:82:1e:76:fc:17: b0:cf:9c:02:51:7c:de:5f:ef:93:8a:cf:ac:0b:a7: fe:24:3d:c1:a1:61:f7:69:3e:42:b7:d1:c9:c4:ac: a4:85:e5:e1:40:b8:2d:d7:f3:3a:1c:e4:18:f5:19: a7:d2:28:1d:a4:e7:5e:85:ac:9e:37:b4:ed:d4:b6: 21:b1:47:25:a4:19:95:1b:8b:df:3e:22:e3:ed:1c: 48:00:20:cd:ff:60:2d:37:e8:27:16:44:aa:d3:f6: 11:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:35:E5:BE:A8:1F:84:7E:93:D0:27:54:0F:27:DE:57:B1:83:78:79 X509v3 Authority Key Identifier: keyid:26:A8:C8:4C:20:D0:2A:7F:C4:AE:ED:E1:55:C0:B3:1B:08:EE:7B:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/JqjITCDQKn_Eru3hVcCzGwjue2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JqjITCDQKn_Eru3hVcCzGwjue2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00E/C6B57C8E8C9011EB91DE0E7AC4F9AE02/6F475ABA8C9211EBBFD9447CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.124.0/23 Signature Algorithm: sha256WithRSAEncryption 35:54:5d:e0:23:d5:d6:e4:26:3c:59:0b:5e:43:89:d6:09:2d: a7:c2:4c:6a:10:b6:9f:9e:8f:86:f1:17:14:b9:02:b2:fb:53: 63:4b:a1:0a:ae:f0:51:de:06:59:9a:e6:92:27:43:ba:aa:a7: 54:90:cd:08:00:4a:f0:d5:62:4b:d3:0b:c0:5d:0f:cc:6f:c9: 1f:af:17:4c:6f:80:3e:c7:df:9f:db:65:d4:d8:ff:2e:f2:d6: f0:2d:f0:1d:a5:76:4d:42:f5:4e:34:51:cc:a6:88:db:ad:5e: e7:ce:85:cc:51:df:d0:34:c7:1a:b0:52:0e:67:3c:92:df:cf: 5a:c4:44:16:5e:53:44:76:07:ce:93:89:b0:c3:5d:b9:5b:1d: 88:60:8d:92:05:d2:50:1f:9f:a3:32:1a:92:3b:5c:50:85:93: 10:df:60:13:6b:7c:82:5e:a2:af:e9:d1:b8:81:ba:df:a7:b5: 45:b8:48:b9:71:b7:87:9f:79:53:1e:ce:8a:f2:ee:2f:dd:78: ba:64:5c:a9:68:ba:3d:c5:c2:58:d3:a2:07:db:0b:0f:1a:76: 96:4d:e5:13:39:a2:6a:41:52:61:be:7b:f6:0a:e3:07:0b:88: f7:a5:5f:95:78:2a:6c:37:45:e9:35:3f:48:e5:86:fd:3f:a5: 02:30:a4:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEUxMTAvBgNVBAUTKDI2QThDODRDMjBEMDJBN0ZDNEFFRURFMTU1QzBCMzFC MDhFRTdCNjcwHhcNMjQwMjE1MDAxMjQ4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkNTcwMC01ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz49+aClDzZVDYj4yUEP6ZCpN/UR82Z941hMFCF3P/0SwMxJ4Hq0lIGN5hgj5 HmKPWGvYbfBmg69aUeFvqZmri+VxZa3KhfzAfoqtICohB+p1xqBTqHejpiMfJM4l nsy4AuUVpDNTJi0KeH23vU32uxbcLYbPVWqN4/L9sobPMrTNIiUTXUHboSuq8Fm/ ryF1kaZuLgFsbzLRHJQT03VFgh52/Bewz5wCUXzeX++Tis+sC6f+JD3BoWH3aT5C t9HJxKykheXhQLgt1/M6HOQY9Rmn0igdpOdehayeN7Tt1LYhsUclpBmVG4vfPiLj 7RxIACDN/2AtN+gnFkSq0/YRYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPM15b6o H4R+k9AnVA8n3lexg3h5MB8GA1UdIwQYMBaAFCaoyEwg0Cp/xK7t4VXAsxsI7ntn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRS9DNkI1N0M4RThD OTAxMUVCOTFERTBFN0FDNEY5QUUwMi9KcWpJVENEUUtuX0VydTNoVmNDekd3anVl MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pxaklUQ0RRS25fRXJ1M2hWY0N6R3dqdWUyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwMEUvQzZCNTdDOEU4QzkwMTFFQjkxREUwRTdBQzRGOUFFMDIvNkY0NzVBQkE4 QzkyMTFFQkJGRDk0NDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnknwwDQYJKoZIhvcNAQELBQADggEBADVUXeAj1dbkJjxZ C15DidYJLafCTGoQtp+ej4bxFxS5ArL7U2NLoQqu8FHeBlma5pInQ7qqp1SQzQgA SvDVYkvTC8BdD8xvyR+vF0xvgD7H35/bZdTY/y7y1vAt8B2ldk1C9U40UcymiNut XufOhcxR39A0xxqwUg5nPJLfz1rERBZeU0R2B86TibDDXblbHYhgjZIF0lAfn6My GpI7XFCFkxDfYBNrfIJeoq/p0biBut+ntUW4SLlxt4efeVMezory7i/deLpkXKlo uj3FwljTogfbCw8adpZN5RM5ompBUmG+e/YK4wcLiPelX5V4Kmw3Rek1P0jlhv0/ pQIwpDk= -----END CERTIFICATE-----Generated at Fri May 3 01:30:26 2024 by rpki-client on console-fra.rpki-client.org