$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa File: DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa (raw, json) Hash identifier: m1e+46EVW2Ru+G5LmSyDdLV24MWne8DiSGyaHbc7oyU= Subject key identifier: B8:10:9B:52:E3:3A:4E:78:9E:88:DD:B0:F1:F4:CE:3C:C2:2C:F9:6C Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0A0A Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa Signing time: Sat 02 Dec 2023 20:28:04 +0000 ROA not before: Sat 02 Dec 2023 20:28:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 17408 IP address blocks: 103.23.72.0/24 maxlen: 24 103.23.73.0/24 maxlen: 24 103.23.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 20:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Dec 2 20:28:04 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656b9354-f601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bb:8c:4d:d3:b3:00:9a:e7:64:09:14:df:cf: a9:0e:66:e3:41:e3:36:25:36:0d:b6:85:f7:1c:0d: 51:37:5c:a0:15:0d:7a:00:5d:21:d7:f4:d4:15:15: 29:36:e2:69:e9:5a:5c:7e:1d:67:a7:32:58:93:29: b5:92:dc:a7:74:12:dd:ce:c8:f7:76:a6:a0:52:a9: 2a:e4:ea:b4:8f:8b:0c:3a:8f:ea:8a:f1:ea:37:92: fe:b5:8b:22:db:ee:b5:2a:63:66:6c:c7:d8:12:f1: 47:f8:68:24:4d:ca:45:dd:62:cd:88:37:9e:e2:d8: c1:f9:d1:c8:26:96:57:8d:6e:e0:69:45:0c:6f:1d: 27:6b:a3:f3:e3:a8:f7:2b:50:ac:0d:5a:ba:35:f8: ff:55:ef:ca:36:5a:f6:5f:fc:43:1b:71:c3:ae:b2: e9:21:62:df:92:73:bc:8e:e9:9d:7c:16:9a:4a:d0: e0:7f:91:0c:e6:e0:06:74:16:a5:2f:82:6a:7a:e3: c9:17:20:84:93:a1:ec:37:f4:33:8b:87:4a:b1:4c: dd:57:58:aa:84:58:41:84:1a:83:06:79:7f:31:d6: 41:59:f7:a1:c1:b1:f9:f5:9f:d7:eb:d2:c9:0b:75: 4d:43:4f:d6:e6:30:5c:66:9a:56:35:96:cb:99:bc: d8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:10:9B:52:E3:3A:4E:78:9E:88:DD:B0:F1:F4:CE:3C:C2:2C:F9:6C X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.72.0-103.23.74.255 Signature Algorithm: sha256WithRSAEncryption 56:77:3c:97:8e:fc:cd:b8:a3:86:d0:30:c4:11:a9:e4:0a:bc: 3b:9b:ce:b5:12:68:8e:9a:11:bb:5a:21:b1:ed:dd:50:c2:20: bc:15:f2:00:cf:79:7c:57:f8:81:50:b5:34:e0:95:7a:68:0e: a0:1f:78:3a:ae:e5:19:8d:55:c2:77:ff:01:1c:e4:21:99:07: ed:23:5d:d8:de:eb:73:ec:f0:ad:07:ea:f4:7e:29:11:33:93: 10:7a:3f:d7:ce:b8:50:04:62:de:ec:61:fe:6d:03:93:f5:9a: 0a:19:2e:44:6a:36:dd:37:7c:cd:e3:1a:7c:f1:bd:48:d2:11: 92:62:0f:e4:c6:35:ed:65:60:f4:be:ec:7a:fb:8a:a2:54:b5: f5:ce:f7:ec:7a:ab:05:30:ad:86:86:ef:fb:9d:d8:6e:09:8e: 22:e6:2f:48:28:0d:d0:23:03:34:47:03:cc:02:26:f6:d3:06: 86:e9:5c:86:c7:4c:8e:b1:15:14:57:dc:29:c9:dc:30:25:ab: bb:03:8f:21:08:51:58:72:ac:3b:f3:7e:04:5c:98:51:cf:63: 3b:81:c3:ab:ae:8a:0d:05:5a:aa:95:a8:d4:dd:bb:c9:6d:ee: f7:15:c4:ff:3b:ab:d1:7a:e2:db:35:ba:62:3c:57:43:c2:b3: 0e:6f:56:8e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjMxMjAyMjAyODA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiOTM1NC1mNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7uMTdOzAJrnZAkU38+pDmbjQeM2JTYNtoX3HA1RN1ygFQ16AF0h1/TUFRUp NuJp6Vpcfh1npzJYkym1ktyndBLdzsj3dqagUqkq5Oq0j4sMOo/qivHqN5L+tYsi 2+61KmNmbMfYEvFH+GgkTcpF3WLNiDee4tjB+dHIJpZXjW7gaUUMbx0na6Pz46j3 K1CsDVq6Nfj/Ve/KNlr2X/xDG3HDrrLpIWLfknO8jumdfBaaStDgf5EM5uAGdBal L4JqeuPJFyCEk6HsN/Qzi4dKsUzdV1iqhFhBhBqDBnl/MdZBWfehwbH59Z/X69LJ C3VNQ0/W5jBcZppWNZbLmbzYoQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLgQm1Lj Ok54nojdsPH0zjzCLPlsMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNDAvNjE3RjM1MzY0MEUxMTFFQUJDNjJEQjI2QzRGOUFFMDIvRENBMDVDMEU0 MTlBMTFFQUE1RTJCQTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2cXSAMEAGcXSjANBgkqhkiG9w0BAQsFAAOCAQEAVnc8 l478zbijhtAwxBGp5Aq8O5vOtRJojpoRu1ohse3dUMIgvBXyAM95fFf4gVC1NOCV emgOoB94Oq7lGY1Vwnf/ARzkIZkH7SNd2N7rc+zwrQfq9H4pETOTEHo/1864UARi 3uxh/m0Dk/WaChkuRGo23Td8zeMafPG9SNIRkmIP5MY17WVg9L7sevuKolS19c73 7HqrBTCthobv+53YbgmOIuYvSCgN0CMDNEcDzAIm9tMGhulchsdMjrEVFFfcKcnc MCWruwOPIQhRWHKsO/N+BFyYUc9jO4HDq66KDQVaqpWo1N27yW3u9xXE/zur0Xri 2zW6YjxXQ8KzDm9Wjg== -----END CERTIFICATE-----Generated at Fri May 24 21:26:09 2024 by rpki-client on console-fra.rpki-client.org