$ rpki-client -vvf rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/459A5D3EB10F11E5A010921EC4F9AE02.roa File: 459A5D3EB10F11E5A010921EC4F9AE02.roa (raw, json) Hash identifier: wB2xqrT+WR1TypBe1cC2uIvhjvM4FdmDgb+8xMqoHto= Subject key identifier: 59:9A:D1:FB:0F:A8:C2:5F:A6:9C:3A:2E:F2:20:70:23:02:63:60:4B Certificate issuer: /CN=A917FA93/serialNumber=325B2A6FD4B7BD40895562719FFD8D9AA1A8766D Certificate serial: 2211 Authority key identifier: 32:5B:2A:6F:D4:B7:BD:40:89:55:62:71:9F:FD:8D:9A:A1:A8:76:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/459A5D3EB10F11E5A010921EC4F9AE02.roa Signing time: Mon 14 Aug 2023 16:13:12 +0000 ROA not before: Mon 14 Aug 2023 16:13:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 201755 IP address blocks: 103.15.170.0/24 maxlen: 24 103.15.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.crl rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8721 (0x2211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FA93/serialNumber=325B2A6FD4B7BD40895562719FFD8D9AA1A8766D Validity Not Before: Aug 14 16:13:12 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64da5298-f54e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4e:80:d1:8a:5f:c3:9b:e2:17:4a:9c:df:8f: fd:dc:9c:31:c3:a0:da:3f:90:3e:a0:2a:dc:1b:26: 97:72:eb:f5:8c:02:44:fa:84:15:a8:89:98:11:9f: 69:ce:b7:4e:b0:7d:d5:c3:db:ae:0b:ab:5a:14:82: 9e:75:9c:7c:b0:2f:a3:f0:7d:01:da:8b:d2:92:6f: 76:9c:af:1a:11:bc:db:e8:51:bf:88:64:af:0f:55: 6f:49:24:c4:5e:ce:d0:1f:7b:18:34:fb:19:bb:96: fb:8a:04:c9:0d:15:15:81:ca:ba:53:d3:7a:e5:7b: eb:73:ce:58:41:f6:fb:2c:c4:47:ca:46:69:ab:31: 55:e4:8d:c7:4b:f7:52:1e:6d:c9:48:08:b8:c7:f4: d0:53:46:e9:27:e1:d1:61:a1:c7:c7:b4:60:ba:a4: 94:35:30:c4:ba:0f:e4:89:ed:1f:f4:ce:f7:6e:fe: 4e:b4:61:94:77:77:5c:bc:b6:2c:c9:42:da:15:41: e7:e8:35:93:b8:35:bc:5b:eb:a5:90:15:2c:95:75: d2:09:d9:53:ad:b5:09:a3:c2:91:63:19:92:a7:71: 9d:d1:9c:9a:f9:c9:34:2d:94:19:cb:72:90:92:9a: 8b:e5:3d:ed:b3:9c:68:7c:5e:5b:32:e2:3a:33:0c: ab:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9A:D1:FB:0F:A8:C2:5F:A6:9C:3A:2E:F2:20:70:23:02:63:60:4B X509v3 Authority Key Identifier: keyid:32:5B:2A:6F:D4:B7:BD:40:89:55:62:71:9F:FD:8D:9A:A1:A8:76:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/459A5D3EB10F11E5A010921EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.170.0/23 Signature Algorithm: sha256WithRSAEncryption 98:c2:56:63:b7:73:0c:89:34:c6:90:51:a8:ef:f6:46:f1:66: 4e:b8:a2:57:91:38:dd:63:4c:7d:0b:f1:36:f4:25:7b:8b:2a: 5c:bd:fc:3a:4e:c1:eb:ce:c5:9c:e2:d5:7f:38:72:6b:e3:a2: de:7e:ba:94:31:22:b8:47:a4:08:12:ee:e1:24:1a:c8:24:8b: db:c8:05:84:12:3f:9c:39:d0:a7:73:2b:47:71:ac:95:af:43: ef:02:c7:15:57:51:02:ba:d6:6d:c2:ef:d8:6f:f3:75:16:a7: d9:db:f8:0d:36:b0:2b:9f:77:d0:d6:18:31:0e:5a:d8:8f:fa: a1:90:a1:f5:37:f8:da:96:39:7d:51:a5:ee:98:a8:b4:34:f2: f3:0a:44:d5:56:c3:0a:02:2f:b3:e9:72:31:32:be:8d:91:9b: dd:ad:b5:1c:86:ba:58:27:f3:b0:67:4d:1d:f7:5f:f6:e9:c9: 16:2c:2e:e0:13:55:85:44:ba:b8:11:fa:8f:c1:c8:8d:a7:f0: c3:c3:27:cd:b3:b7:ed:9a:8d:1d:3b:fd:1f:4b:44:3d:07:11: 02:1a:5d:e4:53:80:ac:9a:4b:1b:7b:11:95:8c:64:8b:50:3a: c6:3b:6f:3b:96:e2:86:b3:02:96:a5:3e:d9:46:3e:1f:64:9d: 90:6d:72:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBOTMxMTAvBgNVBAUTKDMyNUIyQTZGRDRCN0JENDA4OTU1NjI3MTlGRkQ4RDlB QTFBODc2NkQwHhcNMjMwODE0MTYxMzEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhNTI5OC1mNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk6A0Ypfw5viF0qc34/93Jwxw6DaP5A+oCrcGyaXcuv1jAJE+oQVqImYEZ9p zrdOsH3Vw9uuC6taFIKedZx8sC+j8H0B2ovSkm92nK8aEbzb6FG/iGSvD1VvSSTE Xs7QH3sYNPsZu5b7igTJDRUVgcq6U9N65Xvrc85YQfb7LMRHykZpqzFV5I3HS/dS Hm3JSAi4x/TQU0bpJ+HRYaHHx7RguqSUNTDEug/kie0f9M73bv5OtGGUd3dcvLYs yULaFUHn6DWTuDW8W+ulkBUslXXSCdlTrbUJo8KRYxmSp3Gd0Zya+ck0LZQZy3KQ kpqL5T3ts5xofF5bMuI6MwyrvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFma0fsP qMJfppw6LvIgcCMCY2BLMB8GA1UdIwQYMBaAFDJbKm/Ut71AiVVicZ/9jZqhqHZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkE5My9FOTAxM0I3Njg0 MDcxMUU1OTJFOTQ3MkRDNEY5QUUwMi9NbHNxYjlTM3ZVQ0pWV0p4bl8yTm1xR29k bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01sc3FiOVMzdlVDSlZXSnhuXzJObXFHb2RtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZBOTMvRTkwMTNCNzY4NDA3MTFFNTkyRTk0NzJEQzRGOUFFMDIvNDU5QTVEM0VC MTBGMTFFNUEwMTA5MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnD6owDQYJKoZIhvcNAQELBQADggEBAJjCVmO3cwyJNMaQ Uajv9kbxZk64oleRON1jTH0L8Tb0JXuLKly9/DpOwevOxZzi1X84cmvjot5+upQx IrhHpAgS7uEkGsgki9vIBYQSP5w50KdzK0dxrJWvQ+8CxxVXUQK61m3C79hv83UW p9nb+A02sCufd9DWGDEOWtiP+qGQofU3+NqWOX1Rpe6YqLQ08vMKRNVWwwoCL7Pp cjEyvo2Rm92ttRyGulgn87BnTR33X/bpyRYsLuATVYVEurgR+o/ByI2n8MPDJ82z t+2ajR07/R9LRD0HEQIaXeRTgKyaSxt7EZWMZItQOsY7bzuW4oazApalPtlGPh9k nZBtchk= -----END CERTIFICATE-----Generated at Mon May 20 17:22:07 2024 by rpki-client on console-fra.rpki-client.org