$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/1F24033CDF7111EEB534147FC4F9AE02.roa File: 1F24033CDF7111EEB534147FC4F9AE02.roa (raw, json) Hash identifier: tZs7Jo2Vwt4OV24GTrtVhwZBng8xDrHXDmJyWLYnaQg= Subject key identifier: 6B:7F:6F:C3:79:00:96:43:D2:45:B7:0D:F6:94:51:F7:B5:F5:7B:71 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 14E0 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/1F24033CDF7111EEB534147FC4F9AE02.roa Signing time: Mon 11 Mar 2024 06:32:24 +0000 ROA not before: Mon 11 Mar 2024 06:32:24 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 206204 IP address blocks: 103.239.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5344 (0x14e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 11 06:32:24 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65eea578-8141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:35:2a:44:4b:e6:d0:09:e2:71:e5:cf:24: 7a:55:36:15:97:e2:79:48:54:05:9e:f3:02:cf:f0: 0b:66:7c:86:81:54:34:02:2a:19:1f:f9:4c:fa:96: 17:41:4c:90:b1:fe:f2:f5:5d:1e:66:19:ae:40:23: 7a:e4:3c:61:94:97:63:3f:ee:f6:a1:ec:21:94:d7: 16:30:51:43:63:13:63:c8:26:ef:ac:53:a9:04:d5: 1f:5f:ed:54:c0:81:d4:c4:03:2c:52:ed:f1:97:4e: 21:b8:c2:ce:da:c1:54:fe:70:a5:38:4f:8f:77:4e: d9:79:76:2d:48:ff:86:36:a8:aa:a2:17:a2:6c:77: e8:dc:3a:0d:0e:43:58:d5:73:ba:71:e4:f1:6b:a7: 84:6d:01:98:b1:fa:a1:b0:da:a6:b5:61:ff:d9:d4: 15:b0:a0:c4:09:31:6c:bd:69:1f:69:5e:cc:8f:a6: ae:a4:f2:64:54:0a:07:c3:2d:fb:03:a9:fa:ad:a6: 1a:21:06:c0:bc:d5:81:25:dd:db:3e:fa:bc:8c:2d: 4b:94:d1:1b:8f:a6:fd:32:ea:a1:d1:b7:ca:45:18: b8:e4:7d:b2:8b:89:77:7c:24:2f:09:40:99:b4:d9: 42:3f:22:3c:f4:ae:55:df:12:8f:9e:46:7e:ab:a8: 3e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7F:6F:C3:79:00:96:43:D2:45:B7:0D:F6:94:51:F7:B5:F5:7B:71 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/1F24033CDF7111EEB534147FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.73.0/24 Signature Algorithm: sha256WithRSAEncryption 88:34:40:ae:f0:16:06:e7:01:88:37:66:df:d1:8e:db:e6:28: 37:ce:e0:fa:c3:56:bf:60:66:96:c4:2b:0c:f3:89:a3:b1:61: 84:74:52:0b:a6:ce:1f:9b:68:71:b1:f3:d3:87:d0:38:a0:16: 96:62:32:fa:9d:59:f4:8e:39:09:62:19:67:66:2d:77:5e:8c: b5:fa:76:a7:48:9c:5c:6b:9a:05:27:92:58:d6:8a:35:23:72: ce:ed:ec:49:1d:e7:ef:fb:28:e1:7d:e3:10:fb:8a:d2:a9:88: c3:37:a6:ad:51:dc:07:01:90:8d:62:32:55:d2:d8:f0:14:49: 71:b2:27:61:b5:22:7f:c1:13:a5:5c:50:65:ba:b0:5d:a4:fd: 85:29:4e:9d:d3:e0:da:18:73:29:66:35:85:ba:40:fc:a3:4b: 1c:cc:92:5d:ad:eb:54:59:4f:4f:da:eb:b1:b3:6d:53:3b:aa: 4f:dd:d8:f1:ee:51:86:76:5d:85:71:50:e9:7e:14:30:b4:e2: 73:5a:a8:a5:5c:92:2f:23:11:c0:4f:ae:76:93:81:7a:85:84: ad:a1:07:72:fc:66:76:e3:c6:ef:f2:04:47:06:95:15:22:64: d5:fe:02:2f:fb:91:86:78:58:85:9d:3e:97:a7:83:f6:f1:3f: 6b:df:9a:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjQwMzExMDYzMjI0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVlYTU3OC04MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+s1KkRL5tAJ4nHlzyR6VTYVl+J5SFQFnvMCz/ALZnyGgVQ0AioZH/lM+pYX QUyQsf7y9V0eZhmuQCN65DxhlJdjP+72oewhlNcWMFFDYxNjyCbvrFOpBNUfX+1U wIHUxAMsUu3xl04huMLO2sFU/nClOE+Pd07ZeXYtSP+GNqiqoheibHfo3DoNDkNY 1XO6ceTxa6eEbQGYsfqhsNqmtWH/2dQVsKDECTFsvWkfaV7Mj6aupPJkVAoHwy37 A6n6raYaIQbAvNWBJd3bPvq8jC1LlNEbj6b9Muqh0bfKRRi45H2yi4l3fCQvCUCZ tNlCPyI89K5V3xKPnkZ+q6g+XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGt/b8N5 AJZD0kW3DfaUUfe19XtxMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvMUYyNDAzM0NE RjcxMTFFRUI1MzQxNDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn70kwDQYJKoZIhvcNAQELBQADggEBAIg0QK7wFgbnAYg3 Zt/RjtvmKDfO4PrDVr9gZpbEKwzziaOxYYR0Ugumzh+baHGx89OH0DigFpZiMvqd WfSOOQliGWdmLXdejLX6dqdInFxrmgUnkljWijUjcs7t7Ekd5+/7KOF94xD7itKp iMM3pq1R3AcBkI1iMlXS2PAUSXGyJ2G1In/BE6VcUGW6sF2k/YUpTp3T4NoYcylm NYW6QPyjSxzMkl2t61RZT0/a67GzbVM7qk/d2PHuUYZ2XYVxUOl+FDC04nNaqKVc ki8jEcBPrnaTgXqFhK2hB3L8Znbjxu/yBEcGlRUiZNX+Ai/7kYZ4WIWdPpeng/bx P2vfmmA= -----END CERTIFICATE-----Generated at Fri May 24 18:40:27 2024 by rpki-client on console-fra.rpki-client.org