$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa File: 1584607CF14511ECA1AE5F4EC4F9AE02.roa (raw, json) Hash identifier: zgBZvuEhEZmLL+2N9meHPjo9N8bwibNf/BFL27F0otg= Subject key identifier: B7:28:29:E2:E4:DE:50:03:04:1B:93:E8:1C:D6:46:3E:06:92:3E:A3 Certificate issuer: /CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Certificate serial: 0836 Authority key identifier: 18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa Signing time: Fri 22 Sep 2023 20:58:10 +0000 ROA not before: Fri 22 Sep 2023 20:58:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136933 IP address blocks: 103.142.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 21:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Validity Not Before: Sep 22 20:58:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650dffe2-9fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4a:94:21:40:47:f8:bd:bb:5b:f4:59:f7:ab: ff:48:7d:6c:26:4c:66:ec:74:13:3c:64:c9:b6:50: 00:de:08:0f:13:64:eb:db:20:d5:9b:e5:60:e5:f2: fb:38:0d:c9:04:b9:da:71:f6:d9:1d:3f:b2:f9:23: c4:7b:d3:a8:e4:d7:6a:ed:4b:3a:5e:16:d6:20:c4: 0a:a9:a4:9e:ec:e5:dc:9e:92:8e:b3:48:9c:c8:bb: 67:1b:dc:2f:dd:1e:30:de:0c:5d:e6:3a:79:fd:0c: b9:9b:0c:98:c4:3e:c6:22:06:6e:00:2f:69:d0:2c: a4:18:a1:c6:b4:5e:ef:db:88:34:15:94:15:0e:8f: 7b:ea:c2:1a:22:72:2d:fc:62:48:2d:78:8f:35:b7: 71:7a:c2:bc:16:a5:d9:81:63:03:64:97:19:09:f4: 66:ae:42:cd:ca:80:e5:21:98:0a:79:32:4d:1a:fe: 2a:5c:a6:82:80:dc:68:a2:23:a7:ff:7f:46:31:60: 70:63:d5:9b:28:a2:2d:83:1c:ab:8d:ad:4d:f6:0e: 85:ca:d9:49:02:67:ce:42:e7:4f:a6:bf:3e:37:60: 07:5a:bd:a2:d5:38:d6:aa:17:d3:c3:ab:23:67:39: 54:e0:a1:2c:59:6d:18:ae:2f:a4:6b:95:db:7e:49: e9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:28:29:E2:E4:DE:50:03:04:1B:93:E8:1C:D6:46:3E:06:92:3E:A3 X509v3 Authority Key Identifier: keyid:18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.101.0/24 Signature Algorithm: sha256WithRSAEncryption 76:81:b9:f1:36:2e:4d:fd:46:8f:21:2e:7a:bc:5c:a1:b9:5f: b2:3f:35:a5:33:48:d5:5c:d7:95:2a:28:01:73:03:fb:77:62: f7:48:90:41:d6:6b:19:c9:07:eb:d0:a2:f5:b7:5f:26:01:70: 3b:32:9c:f6:cc:0f:ab:34:de:59:e4:70:f2:dd:cb:c7:cd:fa: eb:95:a0:fb:a9:ab:9c:3d:0f:84:05:a3:13:db:25:44:7b:60: 09:e1:ff:17:16:2b:88:af:ce:41:d2:d3:d7:5d:d4:94:0b:ce: 91:e7:ed:63:a3:ef:e1:2a:5a:e7:68:bc:2c:21:2b:f8:19:a9: e8:9d:89:23:ef:39:6b:a7:49:e1:ba:ba:5f:82:c9:e2:91:89: 28:60:35:3e:3e:2f:f0:13:b6:0c:3c:31:c8:81:02:f7:d6:53: 3c:89:dd:bb:59:98:af:dd:cd:d7:0d:e0:b0:d0:09:0c:2c:0f: 4d:0b:d4:4b:f7:ee:34:fb:b7:b5:26:9b:0d:84:f7:ac:44:2d: 9c:f1:5f:90:b0:48:ed:a2:51:02:c8:a6:90:2e:1e:30:30:9d: 6e:33:6f:92:07:85:d8:d4:9d:d4:a5:8b:77:1b:b9:66:b3:37: 6f:46:3a:82:04:51:4d:75:99:52:3b:11:ae:58:cc:d2:a4:9f: 45:00:fb:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQUMxMTAvBgNVBAUTKDE4RDVDRkM4QUFGNTE3QjA3NkQxRkM5QzJFNjVGNjkx NDM1RDNBNUYwHhcNMjMwOTIyMjA1ODEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBkZmZlMi05ZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkqUIUBH+L27W/RZ96v/SH1sJkxm7HQTPGTJtlAA3ggPE2Tr2yDVm+Vg5fL7 OA3JBLnacfbZHT+y+SPEe9Oo5Ndq7Us6XhbWIMQKqaSe7OXcnpKOs0icyLtnG9wv 3R4w3gxd5jp5/Qy5mwyYxD7GIgZuAC9p0CykGKHGtF7v24g0FZQVDo976sIaInIt /GJILXiPNbdxesK8FqXZgWMDZJcZCfRmrkLNyoDlIZgKeTJNGv4qXKaCgNxooiOn /39GMWBwY9WbKKItgxyrja1N9g6FytlJAmfOQudPpr8+N2AHWr2i1TjWqhfTw6sj ZzlU4KEsWW0Yri+ka5XbfknpYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLcoKeLk 3lADBBuT6BzWRj4Gkj6jMB8GA1UdIwQYMBaAFBjVz8iq9RewdtH8nC5l9pFDXTpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBQy82RUEzOUMwNjk0 MkYxMUVBQjE2NDUyN0VDNEY5QUUwMi9HTlhQeUtyMUY3QjIwZnljTG1YMmtVTmRP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOWFB5S3IxRjdCMjBmeWNMbVgya1VOZE9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQUMvNkVBMzlDMDY5NDJGMTFFQUIxNjQ1MjdFQzRGOUFFMDIvMTU4NDYwN0NG MTQ1MTFFQ0ExQUU1RjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjmUwDQYJKoZIhvcNAQELBQADggEBAHaBufE2Lk39Ro8h Lnq8XKG5X7I/NaUzSNVc15UqKAFzA/t3YvdIkEHWaxnJB+vQovW3XyYBcDsynPbM D6s03lnkcPLdy8fN+uuVoPupq5w9D4QFoxPbJUR7YAnh/xcWK4ivzkHS09dd1JQL zpHn7WOj7+EqWudovCwhK/gZqeidiSPvOWunSeG6ul+CyeKRiShgNT4+L/ATtgw8 MciBAvfWUzyJ3btZmK/dzdcN4LDQCQwsD00L1Ev37jT7t7Ummw2E96xELZzxX5Cw SO2iUQLIppAuHjAwnW4zb5IHhdjUndSli3cbuWazN29GOoIEUU11mVI7Ea5YzNKk n0UA+5s= -----END CERTIFICATE-----Generated at Thu Apr 18 22:03:41 2024 by rpki-client on console-fra.rpki-client.org