$ rpki-client -vvf rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/B1471960C69F11EEA49B0321C4F9AE02.roa File: B1471960C69F11EEA49B0321C4F9AE02.roa (raw, json) Hash identifier: tyJ9sOyRB4owe3VO9ll7QaFBtSkw49JXHGay6aNQ7+o= Subject key identifier: 86:AD:73:96:47:80:68:D7:45:06:09:4E:46:E0:ED:5C:13:FE:7B:AE Certificate issuer: /CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Certificate serial: 0653 Authority key identifier: 07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/B1471960C69F11EEA49B0321C4F9AE02.roa Signing time: Thu 08 Feb 2024 16:32:47 +0000 ROA not before: Thu 08 Feb 2024 16:32:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58061 IP address blocks: 103.104.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Validity Not Before: Feb 8 16:32:47 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65c5022f-ec5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c4:1e:2d:96:8f:14:d7:aa:df:5e:3b:51:d4: 9d:3f:e6:71:71:81:16:20:2e:2f:e7:0d:bb:81:9a: 4d:b1:7b:0a:fd:ca:20:ef:59:4c:b7:ca:6f:e0:74: a5:b7:7c:28:2d:dd:d2:23:08:5e:6a:7f:59:aa:d1: 0b:cb:f7:7b:64:71:41:7e:2f:5f:ce:35:8f:bc:81: 77:87:b1:5e:3a:53:96:84:0d:7f:16:b9:a5:d2:d7: 4d:80:56:79:fd:b7:58:89:75:d4:bf:77:5c:12:46: a7:1e:7e:76:d4:c7:2b:a0:d2:ac:14:b0:2c:11:97: ac:1c:08:d4:76:32:71:65:12:7f:9b:0f:9d:6b:a6: e8:1e:08:e4:60:c6:12:d4:80:2c:04:a9:e8:4e:a6: 1d:09:e5:96:01:a4:59:53:8a:49:20:b8:33:3d:4f: b0:90:46:c4:04:14:8e:f0:7f:f6:87:d6:f9:57:86: 7f:bf:ef:f0:3d:79:a9:44:b6:4d:58:b1:8c:3b:32: d4:74:49:6e:3e:14:6c:20:9f:5b:91:e1:fd:6b:5d: 90:e3:f2:b3:e2:56:78:80:07:b6:7b:7b:37:ee:3a: 98:a0:fc:bf:89:2c:45:cd:c4:41:55:51:d7:37:84: 86:0c:b1:05:01:06:77:1e:78:e7:84:af:0f:91:a1: c0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AD:73:96:47:80:68:D7:45:06:09:4E:46:E0:ED:5C:13:FE:7B:AE X509v3 Authority Key Identifier: keyid:07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/B1471960C69F11EEA49B0321C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.141.0/24 Signature Algorithm: sha256WithRSAEncryption 31:52:63:4c:de:d3:09:e0:32:9c:dd:c7:21:66:7e:e3:2f:8b: 82:b6:fb:3e:e3:c3:c8:fd:6d:db:56:58:1e:be:44:3c:21:33: 77:a9:0f:42:4c:55:b6:fa:a9:5c:fe:82:ca:4d:dc:89:c5:43: fe:2f:b2:84:dd:c8:ab:da:12:fe:5c:c9:35:74:42:63:95:10: 85:a3:2f:1d:62:ca:72:f6:72:b7:bf:8b:b7:d9:3f:e9:f3:55: 2d:2c:e4:e2:c3:74:e9:18:86:00:4b:f8:29:d6:53:f8:13:e6: 95:35:cf:30:29:f6:c9:41:b5:2b:c6:c2:11:21:48:b9:39:f4: f2:67:48:aa:e6:9b:29:77:03:a9:45:56:6e:56:c3:ef:38:d1: 4f:d5:c2:78:e5:b7:88:b7:12:45:67:d5:9e:de:c6:9e:9b:55: ae:79:25:e4:0c:69:1a:a4:4b:e9:01:59:9e:76:8e:94:21:bd: de:60:d2:62:d0:81:68:24:8b:01:80:71:63:1c:6b:d5:4d:76: 6d:47:23:d3:6e:38:b5:39:23:d3:2d:ae:64:1c:75:c1:85:41: 8b:73:ea:85:8b:74:7b:4b:eb:68:82:a3:d7:9f:35:86:c6:4f: 72:f9:45:77:04:dd:cd:aa:2c:33:21:ed:e3:64:5b:8e:ec:13: 78:8d:72:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ4MDgxMTAvBgNVBAUTKDA3MjVGMjQ5MTgwMTUwNTE4NUM5MDY5QTQwMTM2MzVD MzhCNTZCNzIwHhcNMjQwMjA4MTYzMjQ3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MDIyZi1lYzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusQeLZaPFNeq3147UdSdP+ZxcYEWIC4v5w27gZpNsXsK/cog71lMt8pv4HSl t3woLd3SIwhean9ZqtELy/d7ZHFBfi9fzjWPvIF3h7FeOlOWhA1/Frml0tdNgFZ5 /bdYiXXUv3dcEkanHn521McroNKsFLAsEZesHAjUdjJxZRJ/mw+da6boHgjkYMYS 1IAsBKnoTqYdCeWWAaRZU4pJILgzPU+wkEbEBBSO8H/2h9b5V4Z/v+/wPXmpRLZN WLGMOzLUdEluPhRsIJ9bkeH9a12Q4/Kz4lZ4gAe2e3s37jqYoPy/iSxFzcRBVVHX N4SGDLEFAQZ3HnjnhK8PkaHAOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIatc5ZH gGjXRQYJTkbg7VwT/nuuMB8GA1UdIwQYMBaAFAcl8kkYAVBRhckGmkATY1w4tWty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDgwOC9FMjZCNDY0MkY0 QjIxMUU5QkYzQ0U1NjNDNEY5QUUwMi9CeVh5U1JnQlVGR0Z5UWFhUUJOalhEaTFh M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5WHlTUmdCVUZHRnlRYWFRQk5qWERpMWEzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ4MDgvRTI2QjQ2NDJGNEIyMTFFOUJGM0NFNTYzQzRGOUFFMDIvQjE0NzE5NjBD NjlGMTFFRUE0OUIwMzIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaI0wDQYJKoZIhvcNAQELBQADggEBADFSY0ze0wngMpzd xyFmfuMvi4K2+z7jw8j9bdtWWB6+RDwhM3epD0JMVbb6qVz+gspN3InFQ/4vsoTd yKvaEv5cyTV0QmOVEIWjLx1iynL2cre/i7fZP+nzVS0s5OLDdOkYhgBL+CnWU/gT 5pU1zzAp9slBtSvGwhEhSLk59PJnSKrmmyl3A6lFVm5Ww+840U/Vwnjlt4i3EkVn 1Z7exp6bVa55JeQMaRqkS+kBWZ52jpQhvd5g0mLQgWgkiwGAcWMca9VNdm1HI9Nu OLU5I9MtrmQcdcGFQYtz6oWLdHtL62iCo9efNYbGT3L5RXcE3c2qLDMh7eNkW47s E3iNcmg= -----END CERTIFICATE-----Generated at Thu May 16 19:49:59 2024 by rpki-client on console-fra.rpki-client.org