$ rpki-client -vvf rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/0BC0C374A7D711EEB631CA47C4F9AE02.roa File: 0BC0C374A7D711EEB631CA47C4F9AE02.roa (raw, json) Hash identifier: m/cyPXo2mSMGMGkQ+4yWSV8VFxtFDBcgFgT4fbQcVDI= Subject key identifier: 8C:70:D7:53:DB:E5:7A:15:18:03:EC:35:B9:01:A4:14:AE:DA:1E:39 Certificate issuer: /CN=A9190CC7/serialNumber=E7CE19A1785522815DAB63FF66DB6F8903FCF9FA Certificate serial: E8 Authority key identifier: E7:CE:19:A1:78:55:22:81:5D:AB:63:FF:66:DB:6F:89:03:FC:F9:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/584ZoXhVIoFdq2P_ZttviQP8-fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/0BC0C374A7D711EEB631CA47C4F9AE02.roa Signing time: Mon 01 Jan 2024 05:06:12 +0000 ROA not before: Mon 01 Jan 2024 05:06:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138346 IP address blocks: 103.38.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/584ZoXhVIoFdq2P_ZttviQP8-fo.crl rsync://rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/584ZoXhVIoFdq2P_ZttviQP8-fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/584ZoXhVIoFdq2P_ZttviQP8-fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190CC7/serialNumber=E7CE19A1785522815DAB63FF66DB6F8903FCF9FA Validity Not Before: Jan 1 05:06:12 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65924844-2508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e2:e4:fc:d9:29:f3:c5:2e:8e:f9:b5:2c:33: 25:01:d6:4b:b1:9e:ba:84:ae:c8:0c:ba:05:6a:b3: 0f:36:ec:9d:18:7a:1d:f4:5f:18:85:c2:f7:57:e9: 68:4b:91:a4:f7:69:d1:4c:f4:27:5a:ec:12:70:89: 88:06:af:ca:f3:fe:7b:0e:31:34:f7:aa:81:89:11: 43:d9:30:0d:60:43:1f:0e:8e:91:62:8c:24:1a:da: ab:4b:b7:79:5a:c5:1e:bb:4d:52:02:53:3f:66:04: 37:d5:b1:3b:73:fc:03:2e:9f:28:48:26:f9:b0:3a: f8:d2:b8:ff:56:8b:cf:8a:f2:3b:8c:17:f8:ab:e0: c4:57:4a:80:fd:4f:5c:a1:90:08:26:04:57:04:9e: e4:92:ae:53:ee:fe:12:21:5c:c2:49:54:9e:dc:b4: ce:ba:0e:52:38:b1:a7:b0:25:56:83:ef:71:53:37: 38:94:9c:75:00:ed:ef:7e:45:3e:87:c3:d3:7e:65: 9f:d7:c1:b2:75:0e:04:4b:07:5f:68:cc:9b:c3:e3: 0a:bd:58:38:7d:b8:75:e9:09:19:fd:9e:97:22:dc: f8:53:ea:35:b2:60:49:a2:fb:14:85:30:84:47:df: ef:64:0d:d6:e6:25:a9:b9:1c:4b:93:28:c0:b7:5c: fa:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:70:D7:53:DB:E5:7A:15:18:03:EC:35:B9:01:A4:14:AE:DA:1E:39 X509v3 Authority Key Identifier: keyid:E7:CE:19:A1:78:55:22:81:5D:AB:63:FF:66:DB:6F:89:03:FC:F9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/584ZoXhVIoFdq2P_ZttviQP8-fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/584ZoXhVIoFdq2P_ZttviQP8-fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190CC7/034FC61A641511ED98F2E554C4F9AE02/0BC0C374A7D711EEB631CA47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.55.0/24 Signature Algorithm: sha256WithRSAEncryption 59:f9:f5:1f:7d:f2:f9:9e:b7:27:2f:62:9b:f0:77:74:6b:92: 3d:9f:23:38:8d:d2:d4:cf:a1:d9:67:8c:32:ed:43:2f:c8:f0: 9f:ef:25:51:cb:7c:62:7e:56:be:40:de:f5:59:14:60:36:21: 61:dd:84:7c:c4:20:06:cf:4d:15:94:c0:0e:ee:d6:35:9a:44: c6:ac:07:b9:ae:a3:50:40:82:86:cb:ff:60:9d:d2:af:e6:24: 60:ba:44:63:e5:a1:eb:81:d4:93:7f:b9:02:77:c6:6d:75:4f: d3:17:0e:90:e4:7a:71:c6:c4:67:ac:9c:f3:c0:42:d4:af:87: 8e:45:0b:dc:33:7b:c8:52:13:e2:7d:48:50:78:48:e1:b3:e7: 14:fc:76:25:1d:5f:27:9b:c3:0f:06:e5:ee:a1:37:97:05:06: 80:a6:8a:d8:7b:db:a7:cf:d0:a2:fd:5b:9b:b3:90:61:19:52: 64:13:ce:96:e2:4f:43:68:06:ef:d1:bf:96:87:2e:20:f9:c4: 6b:98:6f:32:c3:5c:86:a0:4e:65:81:af:79:9f:64:9a:ea:20: 6c:8d:10:6a:8c:b4:4a:4f:9d:ba:72:d1:d6:79:db:22:63:c3: ea:35:d8:69:a2:af:71:9c:54:96:fe:69:51:6e:fc:37:dc:30: fc:3e:2c:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBDQzcxMTAvBgNVBAUTKEU3Q0UxOUExNzg1NTIyODE1REFCNjNGRjY2REI2Rjg5 MDNGQ0Y5RkEwHhcNMjQwMTAxMDUwNjEyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyNDg0NC0yNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OLk/Nkp88Uujvm1LDMlAdZLsZ66hK7IDLoFarMPNuydGHod9F8YhcL3V+lo S5Gk92nRTPQnWuwScImIBq/K8/57DjE096qBiRFD2TANYEMfDo6RYowkGtqrS7d5 WsUeu01SAlM/ZgQ31bE7c/wDLp8oSCb5sDr40rj/VovPivI7jBf4q+DEV0qA/U9c oZAIJgRXBJ7kkq5T7v4SIVzCSVSe3LTOug5SOLGnsCVWg+9xUzc4lJx1AO3vfkU+ h8PTfmWf18GydQ4ESwdfaMybw+MKvVg4fbh16QkZ/Z6XItz4U+o1smBJovsUhTCE R9/vZA3W5iWpuRxLkyjAt1z67wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxw11Pb 5XoVGAPsNbkBpBSu2h45MB8GA1UdIwQYMBaAFOfOGaF4VSKBXatj/2bbb4kD/Pn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MENDNy8wMzRGQzYxQTY0 MTUxMUVEOThGMkU1NTRDNEY5QUUwMi81ODRab1hoVklvRmRxMlBfWnR0dmlRUDgt Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU4NFpvWGhWSW9GZHEyUF9adHR2aVFQOC1mby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBDQzcvMDM0RkM2MUE2NDE1MTFFRDk4RjJFNTU0QzRGOUFFMDIvMEJDMEMzNzRB N0Q3MTFFRUI2MzFDQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJjcwDQYJKoZIhvcNAQELBQADggEBAFn59R998vmetycv Ypvwd3Rrkj2fIziN0tTPodlnjDLtQy/I8J/vJVHLfGJ+Vr5A3vVZFGA2IWHdhHzE IAbPTRWUwA7u1jWaRMasB7muo1BAgobL/2Cd0q/mJGC6RGPloeuB1JN/uQJ3xm11 T9MXDpDkenHGxGesnPPAQtSvh45FC9wze8hSE+J9SFB4SOGz5xT8diUdXyebww8G 5e6hN5cFBoCmith726fP0KL9W5uzkGEZUmQTzpbiT0NoBu/Rv5aHLiD5xGuYbzLD XIagTmWBr3mfZJrqIGyNEGqMtEpPnbpy0dZ52yJjw+o12Gmir3GcVJb+aVFu/Dfc MPw+LIs= -----END CERTIFICATE-----Generated at Sat May 25 06:26:53 2024 by rpki-client on console-fra.rpki-client.org