$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa File: 98E572FC777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: FW25uAjbp3VXdd8DgauoNj145uQiRAWNHrzwr9oOra4= Subject key identifier: D7:A2:A9:C0:2D:01:31:91:43:73:12:24:85:A4:4F:A5:E3:21:C9:E9 Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 1816 Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa Signing time: Thu 31 Aug 2023 17:03:59 +0000 ROA not before: Thu 31 Aug 2023 17:03:59 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58462 IP address blocks: 103.23.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6166 (0x1816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 31 17:03:59 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c7fe-318e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a6:6e:f6:81:c4:1f:df:80:11:55:41:4e:c2: 6d:6e:11:5a:0a:12:9f:70:9c:42:3a:67:c0:90:8e: 14:80:46:ca:2b:95:79:f1:bf:ff:77:92:56:79:f2: 5f:95:0f:e3:49:80:b2:6f:af:df:be:3c:37:b7:bb: 14:3f:86:06:9b:bb:66:64:89:c6:33:5a:1f:32:1c: c4:4a:90:d7:18:65:b0:6f:67:18:57:fd:8c:35:88: 61:ca:87:93:2a:75:9a:7f:1a:05:40:cf:c1:8d:3d: 2d:38:7a:f9:42:dc:96:d2:7b:7c:18:9d:4c:00:6c: 73:56:d8:27:d4:94:59:c0:9d:2e:77:4a:8e:6a:6b: 96:a4:e0:e2:53:6b:18:d1:59:05:39:0d:ad:a0:26: 07:6e:09:45:a8:32:2d:9d:4e:a2:97:ff:8b:2f:d8: 78:d6:6e:bd:4b:04:f6:c2:ac:9d:f7:ab:55:52:99: 1a:dc:6c:00:28:b1:11:91:16:71:0d:59:b2:00:99: de:20:41:bb:88:d3:d1:23:25:ec:42:21:5a:f2:47: e4:65:97:82:9f:a2:ea:6c:f5:ff:cd:20:72:6d:94: 83:e3:dd:5b:d2:8e:93:b9:f9:9f:b2:c4:98:d1:84: 59:af:8a:21:4f:07:bc:a8:3f:d4:0b:24:cc:d2:18: af:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A2:A9:C0:2D:01:31:91:43:73:12:24:85:A4:4F:A5:E3:21:C9:E9 X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.214.0/24 Signature Algorithm: sha256WithRSAEncryption 39:6d:f1:5d:e4:1f:a1:21:9e:62:79:a2:3c:d7:7c:bc:fb:1f: a7:8a:e7:52:fb:3f:35:3c:a5:d9:28:b3:f6:15:12:d3:45:de: d8:a9:bd:da:6e:f1:6c:13:1c:57:ec:91:9a:d5:40:49:50:66: 46:0a:67:7e:f0:77:23:65:ab:62:7d:3a:d7:ac:35:4e:44:f8: 15:3e:e7:fc:09:ff:87:30:f4:29:56:03:0a:61:27:b4:70:ce: 6d:58:2a:61:f2:02:6c:d7:b2:eb:5d:25:ee:7b:2f:69:70:4f: 9c:7f:0c:97:15:f7:44:71:38:cc:63:35:59:66:58:9b:30:51: e4:9f:53:75:7a:f8:e3:05:f1:c7:6e:19:aa:17:20:c7:40:52: d8:7f:19:94:9a:f2:aa:70:e4:3e:e2:df:8b:9c:3d:58:4e:1a: e3:77:3f:b9:e4:32:36:06:81:b6:af:6d:a5:12:a8:98:2c:30: e4:0d:24:c5:fa:27:91:27:a8:00:b5:37:14:a4:e7:f2:95:24: b5:d5:34:c1:ca:76:ec:4d:32:ef:7f:62:7b:19:7d:e7:09:b7: f0:66:51:63:0f:14:c1:09:0d:30:31:ae:60:a9:9b:17:52:92: 38:e4:4d:2f:3f:0c:c4:de:c3:5c:c9:c5:67:be:2a:de:46:3f: dd:85:00:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjMwODMxMTcwMzU5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzdmZS0zMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqZu9oHEH9+AEVVBTsJtbhFaChKfcJxCOmfAkI4UgEbKK5V58b//d5JWefJf lQ/jSYCyb6/fvjw3t7sUP4YGm7tmZInGM1ofMhzESpDXGGWwb2cYV/2MNYhhyoeT KnWafxoFQM/BjT0tOHr5QtyW0nt8GJ1MAGxzVtgn1JRZwJ0ud0qOamuWpODiU2sY 0VkFOQ2toCYHbglFqDItnU6il/+LL9h41m69SwT2wqyd96tVUpka3GwAKLERkRZx DVmyAJneIEG7iNPRIyXsQiFa8kfkZZeCn6LqbPX/zSBybZSD491b0o6TufmfssSY 0YRZr4ohTwe8qD/UCyTM0hiv0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNeiqcAt ATGRQ3MSJIWkT6XjIcnpMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOThFNTcyRkM3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF9YwDQYJKoZIhvcNAQELBQADggEBADlt8V3kH6EhnmJ5 ojzXfLz7H6eK51L7PzU8pdkos/YVEtNF3tipvdpu8WwTHFfskZrVQElQZkYKZ37w dyNlq2J9OtesNU5E+BU+5/wJ/4cw9ClWAwphJ7Rwzm1YKmHyAmzXsutdJe57L2lw T5x/DJcV90RxOMxjNVlmWJswUeSfU3V6+OMF8cduGaoXIMdAUth/GZSa8qpw5D7i 34ucPVhOGuN3P7nkMjYGgbavbaUSqJgsMOQNJMX6J5EnqAC1NxSk5/KVJLXVNMHK duxNMu9/YnsZfecJt/BmUWMPFMEJDTAxrmCpmxdSkjjkTS8/DMTew1zJxWe+Kt5G P92FAP4= -----END CERTIFICATE-----Generated at Mon May 20 19:59:44 2024 by rpki-client on console-ams.rpki-client.org