$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C611EE6CBCF711EEA90A1F1DC4F9AE02.roa File: C611EE6CBCF711EEA90A1F1DC4F9AE02.roa (raw, json) Hash identifier: QDARhfmXCcZMZ5S8T2hfYErvUUxQhZJ/5Bfo6AM7egs= Subject key identifier: D8:65:E9:F3:D2:80:2C:D1:62:8B:5A:3A:97:D3:15:E1:BD:1A:85:70 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 0469 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C611EE6CBCF711EEA90A1F1DC4F9AE02.roa Signing time: Sat 27 Jan 2024 09:38:07 +0000 ROA not before: Sat 27 Jan 2024 09:38:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 203963 IP address blocks: 103.31.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 00:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Jan 27 09:38:07 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65b4cefe-f0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:9d:15:e6:21:14:e3:cd:d3:d7:3b:61:50: 2d:70:d2:00:bc:a6:5a:fd:b9:83:23:2b:35:0d:10: fe:a2:29:3f:d9:0a:48:1c:ff:00:b3:ce:5b:28:42: b7:6f:40:07:37:f4:6d:bb:49:f4:8a:0d:8f:57:16: ed:30:3a:d9:9f:02:ef:67:19:12:4c:2b:39:43:8f: ac:0d:91:ab:dd:eb:7b:9f:a2:e1:92:1a:bc:63:d5: f6:77:39:9d:bb:dd:21:b2:d1:bf:ce:48:1a:f7:8f: c0:dc:30:6d:68:fb:ca:3c:3b:dd:1f:7e:1d:07:33: 2c:96:c1:d8:c1:43:ed:c3:e8:ab:aa:83:41:fd:5f: 65:53:ba:ae:7a:89:00:a4:d1:84:d2:73:28:ef:78: 27:c4:fa:30:d5:d2:77:1d:ba:c1:f0:c5:b0:7a:d9: 31:3a:1f:2c:ec:09:63:ad:c6:f9:e7:4e:45:62:cb: 5f:27:19:cf:45:17:4f:a4:09:ec:b6:2a:41:62:a9: 3b:1f:a1:b0:92:90:01:b1:8a:e1:d2:21:3e:53:e2: cc:88:ec:35:14:cd:83:9d:c6:04:fa:93:1d:e3:de: f8:7a:e0:fd:1f:72:f3:1a:66:68:c5:5a:85:6c:40: e4:cd:68:6c:69:b1:1f:9a:22:d0:99:4e:cc:98:e8: 07:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:65:E9:F3:D2:80:2C:D1:62:8B:5A:3A:97:D3:15:E1:BD:1A:85:70 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C611EE6CBCF711EEA90A1F1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.209.0/24 Signature Algorithm: sha256WithRSAEncryption 69:63:47:63:9a:00:73:3b:1b:19:6b:33:33:fa:c9:3c:4f:4e: 4b:69:ac:3a:35:d3:c6:e4:71:00:b6:e5:c7:24:1e:eb:67:e0: 20:a3:00:21:50:b5:06:60:dc:ac:a3:5d:4e:5c:d8:9d:2e:e3: 77:90:b0:c3:df:23:44:3b:ea:40:cd:0d:5f:a1:f8:25:48:8d: 44:1c:26:70:b7:61:6d:50:43:c1:a3:f9:cb:1e:ce:ad:ca:6e: 04:d4:44:7a:af:5d:20:d6:d7:0c:c4:ad:24:13:08:f9:74:24: ab:e5:21:fc:bd:c2:34:6b:8d:a2:da:3e:d6:d4:0c:a7:05:2d: b5:f1:fa:6c:1a:61:ed:5a:7e:58:8a:ec:54:14:f7:9f:3b:75: 6d:97:1e:65:dd:d0:88:2f:88:32:87:42:00:f5:80:14:be:bb: 71:d0:68:de:54:f0:38:a7:f1:ea:46:ac:8e:4d:9e:a6:99:66: 84:5e:f8:f8:3a:49:aa:a5:b4:74:8c:9f:e8:92:a8:2c:97:5b: d9:5d:16:09:42:41:98:93:91:fb:59:d9:de:2c:77:56:09:d3: a6:6e:77:ac:f2:0d:42:4b:3a:19:c4:a5:30:75:e9:b0:c0:9d: b6:68:14:2d:fa:e1:82:b0:79:2b:54:19:d5:9c:97:7e:99:40: f7:9b:7f:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjQwMTI3MDkzODA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0Y2VmZS1mMGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV+dFeYhFOPN09c7YVAtcNIAvKZa/bmDIys1DRD+oik/2QpIHP8As85bKEK3 b0AHN/Rtu0n0ig2PVxbtMDrZnwLvZxkSTCs5Q4+sDZGr3et7n6Lhkhq8Y9X2dzmd u90hstG/zkga94/A3DBtaPvKPDvdH34dBzMslsHYwUPtw+irqoNB/V9lU7queokA pNGE0nMo73gnxPow1dJ3HbrB8MWwetkxOh8s7Aljrcb5505FYstfJxnPRRdPpAns tipBYqk7H6GwkpABsYrh0iE+U+LMiOw1FM2DncYE+pMd4974euD9H3LzGmZoxVqF bEDkzWhsabEfmiLQmU7MmOgHkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNhl6fPS gCzRYotaOpfTFeG9GoVwMB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U1REMvQkJFMkI1MDJGOEVCMTFFQkJFRjVBQTM3QzRGOUFFMDIvQzYxMUVFNkNC Q0Y3MTFFRUE5MEExRjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnH9EwDQYJKoZIhvcNAQELBQADggEBAGljR2OaAHM7Gxlr MzP6yTxPTktprDo108bkcQC25cckHutn4CCjACFQtQZg3KyjXU5c2J0u43eQsMPf I0Q76kDNDV+h+CVIjUQcJnC3YW1QQ8Gj+csezq3KbgTURHqvXSDW1wzErSQTCPl0 JKvlIfy9wjRrjaLaPtbUDKcFLbXx+mwaYe1afliK7FQU9587dW2XHmXd0IgviDKH QgD1gBS+u3HQaN5U8Din8epGrI5NnqaZZoRe+Pg6SaqltHSMn+iSqCyXW9ldFglC QZiTkftZ2d4sd1YJ06Zud6zyDUJLOhnEpTB16bDAnbZoFC364YKweStUGdWcl36Z QPebf/Y= -----END CERTIFICATE-----Generated at Mon May 27 02:57:03 2024 by rpki-client on console-fra.rpki-client.org