$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/348BAEE41C2D11EEB362491FC4F9AE02.roa File: 348BAEE41C2D11EEB362491FC4F9AE02.roa (raw, json) Hash identifier: fpAYAv1WBYpPGPa7yvhS4IbvnP2mX5KG1PsD9knDicI= Subject key identifier: B9:A1:34:21:63:1E:3A:7D:FC:7F:23:15:20:CF:08:88:0F:8F:0D:B8 Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 02 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/348BAEE41C2D11EEB362491FC4F9AE02.roa Signing time: Thu 06 Jul 2023 18:44:58 +0000 ROA not before: Thu 06 Jul 2023 18:44:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151472 IP address blocks: 103.230.40.0/23 maxlen: 24 2401:1060::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Jul 6 18:44:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a70ba9-6e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b0:cd:e8:9f:ab:d7:28:a7:cb:4f:d3:47:66: 98:0f:87:43:f3:c7:54:fc:22:93:44:86:09:90:a0: f7:8f:14:58:8f:03:ed:21:52:5e:9e:1d:12:4f:7c: dd:f1:e5:b8:dc:ae:b6:23:da:b5:18:41:12:80:36: bb:a2:4b:a2:8a:d0:f5:1d:af:ba:b0:35:70:c7:b3: 5f:0b:1a:6b:a0:57:21:db:85:e1:c8:a5:7f:d3:9f: 85:22:44:aa:e8:c6:a5:bd:f8:a6:da:71:a2:92:51: 01:dd:c1:23:e3:22:1d:f7:2a:ea:93:cc:2a:f4:c2: 16:ea:5e:ce:18:56:d8:f8:42:5a:9c:1a:d8:fc:d9: 21:7f:e0:b8:0c:60:86:e7:34:56:4d:32:0d:ad:7e: a9:89:2f:8d:0c:fe:26:51:bf:4b:d0:ea:80:38:dc: ca:7a:bc:b3:9b:63:7e:fa:fb:38:38:19:bb:2e:72: 2c:23:e6:91:0f:b3:34:96:a2:0e:3a:bc:0c:32:bb: d1:76:5e:17:d9:16:7a:b6:3b:b2:a7:51:30:1c:ae: 55:fa:4e:49:c6:78:07:c8:17:5f:76:f7:6b:c0:e8: ac:5d:22:74:c8:ca:8a:2f:f6:49:b5:22:7b:85:fb: 99:06:bd:f8:17:30:fb:de:e0:53:e1:42:c3:ca:24: d7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A1:34:21:63:1E:3A:7D:FC:7F:23:15:20:CF:08:88:0F:8F:0D:B8 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/348BAEE41C2D11EEB362491FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.40.0/23 IPv6: 2401:1060::/32 Signature Algorithm: sha256WithRSAEncryption a1:27:20:a2:01:93:62:1f:64:21:42:e7:fc:73:4f:31:a0:40: 60:be:7d:40:43:c4:56:9b:69:35:f4:9a:5a:04:f7:5f:99:cb: 20:23:39:df:25:7d:2a:f3:86:86:90:f2:51:e7:50:09:41:9d: 80:da:3d:d4:e6:bb:25:bd:39:f5:fe:e5:4f:97:ea:92:a0:9a: 9f:b3:d1:da:63:28:0c:5a:de:a1:09:7b:aa:69:d1:3d:e6:c4: 23:30:0a:03:22:cc:0d:1c:89:49:7f:d2:e7:e3:d4:bc:49:c9: 89:79:db:0b:3b:2d:e0:21:76:a2:9d:3a:bf:2e:e5:07:79:cc: 85:f0:2f:12:49:83:90:7e:21:61:07:2f:d9:28:87:31:53:4a: 5a:33:a5:e7:ba:4f:dc:aa:a3:ab:6d:c8:cd:cd:d3:b3:ed:50: ca:ec:70:04:5c:1d:4a:09:64:8e:7f:15:54:4a:8e:f0:82:1c: b7:08:f9:a1:1d:88:1b:cf:7e:bd:d0:1a:84:8f:65:ce:01:e0: 39:4d:9b:ba:43:f7:69:4d:3c:e4:0c:02:e3:62:40:9e:93:fe: 68:b3:40:a4:70:80:a3:b9:09:a2:99:ad:fd:4f:84:60:83:3b: 14:ba:cd:26:ea:7b:03:8b:00:b3:f9:9f:98:6f:99:c8:9f:e6: f9:6c:43:06 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RUI5NjExMC8GA1UEBRMoQzgyQjdCMzc5RDZGRUQyQTNDMzBDNDUzN0UwRjg3Q0NC NjA4MjJFQjAeFw0yMzA3MDYxODQ0NThaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YTcwYmE5LTZlNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcsM3on6vXKKfLT9NHZpgPh0Pzx1T8IpNEhgmQoPePFFiPA+0hUl6eHRJPfN3x 5bjcrrYj2rUYQRKANruiS6KK0PUdr7qwNXDHs18LGmugVyHbheHIpX/Tn4UiRKro xqW9+KbacaKSUQHdwSPjIh33KuqTzCr0whbqXs4YVtj4QlqcGtj82SF/4LgMYIbn NFZNMg2tfqmJL40M/iZRv0vQ6oA43Mp6vLObY376+zg4Gbsuciwj5pEPszSWog46 vAwyu9F2XhfZFnq2O7KnUTAcrlX6TknGeAfIF19292vA6KxdInTIyoov9km1InuF +5kGvfgXMPve4FPhQsPKJNebAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUuaE0IWMe On38fyMVIM8IiA+PDbgwHwYDVR0jBBgwFoAUyCt7N51v7So8MMRTfg+HzLYIIusw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFQjk2LzY0RDZCRENDMUMy OTExRUU5RDA2RjkwQUM0RjlBRTAyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUN0N041MXY3U284TU1SVGZnLUh6TFlJSXVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi8zNDhCQUVFNDFD MkQxMUVFQjM2MjQ5MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfmKDANBAIAAjAHAwUAJAEQYDANBgkqhkiG9w0BAQsFAAOC AQEAoScgogGTYh9kIULn/HNPMaBAYL59QEPEVptpNfSaWgT3X5nLICM53yV9KvOG hpDyUedQCUGdgNo91Oa7Jb059f7lT5fqkqCan7PR2mMoDFreoQl7qmnRPebEIzAK AyLMDRyJSX/S5+PUvEnJiXnbCzst4CF2op06vy7lB3nMhfAvEkmDkH4hYQcv2SiH MVNKWjOl57pP3Kqjq23Izc3Ts+1QyuxwBFwdSglkjn8VVEqO8IIctwj5oR2IG89+ vdAahI9lzgHgOU2bukP3aU085AwC42JAnpP+aLNApHCAo7kJopmt/U+EYIM7FLrN Jup7A4sAs/mfmG+ZyJ/m+WxDBg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org