$ rpki-client -vvf rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa File: 2B7215E2B54B11EA85EE266DC4F9AE02.roa (raw, json) Hash identifier: JxZWn5gUtZs3FqzsBx/u0h4tz2O2P41zy+u5PnGJhgM= Subject key identifier: E5:09:0C:F3:E9:9C:8C:2A:FF:9F:D3:58:E5:10:A0:B2:3B:F7:35:14 Certificate issuer: /CN=A919123C/serialNumber=BB1DED544B27A13719B48FB00373CD49E0DE8517 Certificate serial: 07BE Authority key identifier: BB:1D:ED:54:4B:27:A1:37:19:B4:8F:B0:03:73:CD:49:E0:DE:85:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa Signing time: Tue 02 Jan 2024 21:59:15 +0000 ROA not before: Tue 02 Jan 2024 21:59:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.149.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.crl rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919123C/serialNumber=BB1DED544B27A13719B48FB00373CD49E0DE8517 Validity Not Before: Jan 2 21:59:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65948732-1258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ec:97:a1:ef:4f:e3:3f:4b:df:61:f3:66:62: 41:6f:af:5e:72:0f:4a:80:42:8e:5c:4a:50:c2:de: 38:ab:cc:37:65:87:26:4e:b3:e9:bd:52:3b:f1:74: b1:bd:ad:81:1f:d9:2e:26:90:46:1a:b7:f6:94:6b: 25:4c:e5:3e:80:90:2c:8f:1c:ae:48:80:7b:ed:2c: 7e:00:f4:42:42:39:4c:7f:b0:29:07:43:6a:e3:b6: 7a:1a:3c:fc:71:b9:da:b2:29:17:06:ea:64:59:ad: 4f:6e:e0:25:c3:53:81:58:e3:3f:14:3f:fb:20:55: 26:33:4c:81:4d:d7:69:28:2a:b1:83:87:73:20:59: b3:a0:75:11:11:f4:43:4f:25:be:66:02:21:2a:df: b8:12:49:06:6b:69:37:4b:e4:6a:e5:a7:08:cb:8b: 26:d6:f4:c1:37:3b:e0:e9:eb:58:58:9e:dd:01:05: 55:9f:40:7e:aa:9f:87:04:3b:81:27:05:dd:85:3a: 90:52:d6:07:04:06:be:de:0d:a2:ed:8c:0a:0a:4b: bd:47:44:b2:b8:ff:fc:89:35:4c:be:fd:b6:98:44: 4d:6e:ec:a3:e6:6b:56:fb:0d:7a:bc:01:c3:8c:13: 2c:75:9f:e8:75:1c:c6:78:d8:5c:57:55:c3:8a:e3: 53:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:09:0C:F3:E9:9C:8C:2A:FF:9F:D3:58:E5:10:A0:B2:3B:F7:35:14 X509v3 Authority Key Identifier: keyid:BB:1D:ED:54:4B:27:A1:37:19:B4:8F:B0:03:73:CD:49:E0:DE:85:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.112.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ca:3e:02:27:e5:75:9d:3c:d8:3e:5f:e5:09:43:78:8e:4c: 6c:d7:95:fc:4a:6c:7e:6b:0c:6a:21:04:78:10:2e:de:d2:fa: a9:ba:00:7f:0c:46:27:b7:36:15:cd:6f:41:7c:26:b6:9f:ce: 68:03:32:37:54:2f:ff:ad:54:bb:c9:c5:bd:e2:72:1e:56:07: b0:ac:9e:c7:dc:6e:53:c3:19:78:f1:3e:d9:83:1b:76:50:32: d9:74:b8:57:1e:ed:59:a1:6b:85:79:d7:36:cb:5c:bb:56:7d: f5:54:b5:51:a7:11:5e:27:d4:44:6c:c7:2d:4c:d9:bd:e3:ae: 7a:16:9a:09:f1:0b:c1:dd:38:72:ae:50:53:b4:b9:86:40:63: 78:59:cb:18:da:83:a6:d8:47:ce:75:97:e5:43:82:dd:e6:41: 86:68:d5:a5:67:65:15:dc:80:bd:bd:2f:f9:91:39:a2:4d:a4: b0:a9:92:9d:af:fa:43:43:4d:5c:69:6d:43:e8:30:2d:8f:08: cb:92:10:05:be:c2:35:f1:08:a0:a0:2b:53:b6:b2:29:bf:ce: fc:7d:ab:1c:e7:56:16:3b:d8:c1:45:1d:df:2e:58:ba:26:ec: dc:53:0c:f0:43:5f:09:ba:a9:57:e7:b7:4e:88:95:0e:5e:9c: bb:40:36:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyM0MxMTAvBgNVBAUTKEJCMURFRDU0NEIyN0ExMzcxOUI0OEZCMDAzNzNDRDQ5 RTBERTg1MTcwHhcNMjQwMTAyMjE1OTE1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ODczMi0xMjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOyXoe9P4z9L32HzZmJBb69ecg9KgEKOXEpQwt44q8w3ZYcmTrPpvVI78XSx va2BH9kuJpBGGrf2lGslTOU+gJAsjxyuSIB77Sx+APRCQjlMf7ApB0Nq47Z6Gjz8 cbnasikXBupkWa1PbuAlw1OBWOM/FD/7IFUmM0yBTddpKCqxg4dzIFmzoHUREfRD TyW+ZgIhKt+4EkkGa2k3S+Rq5acIy4sm1vTBNzvg6etYWJ7dAQVVn0B+qp+HBDuB JwXdhTqQUtYHBAa+3g2i7YwKCku9R0SyuP/8iTVMvv22mERNbuyj5mtW+w16vAHD jBMsdZ/odRzGeNhcV1XDiuNTWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOUJDPPp nIwq/5/TWOUQoLI79zUUMB8GA1UdIwQYMBaAFLsd7VRLJ6E3GbSPsANzzUng3oUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTIzQy9FNTYyMUE2OEI1 NDgxMUVBQjFGNTQwNjZDNEY5QUUwMi91eDN0VkVzbm9UY1p0SS13QTNQTlNlRGVo UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V4M3RWRXNub1RjWnRJLXdBM1BOU2VEZWhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyM0MvRTU2MjFBNjhCNTQ4MTFFQUIxRjU0MDY2QzRGOUFFMDIvMkI3MjE1RTJC NTRCMTFFQTg1RUUyNjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlXAwDQYJKoZIhvcNAQELBQADggEBACvKPgIn5XWdPNg+ X+UJQ3iOTGzXlfxKbH5rDGohBHgQLt7S+qm6AH8MRie3NhXNb0F8JrafzmgDMjdU L/+tVLvJxb3ich5WB7CsnsfcblPDGXjxPtmDG3ZQMtl0uFce7Vmha4V51zbLXLtW ffVUtVGnEV4n1ERsxy1M2b3jrnoWmgnxC8HdOHKuUFO0uYZAY3hZyxjag6bYR851 l+VDgt3mQYZo1aVnZRXcgL29L/mROaJNpLCpkp2v+kNDTVxpbUPoMC2PCMuSEAW+ wjXxCKCgK1O2sim/zvx9qxznVhY72MFFHd8uWLom7NxTDPBDXwm6qVfnt06IlQ5e nLtANkY= -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:02 2024 by rpki-client on console-fra.rpki-client.org