$ rpki-client -vvf rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa File: BF289EBC6F7911EBA5D39C85C4F9AE02.roa (raw, json) Hash identifier: se9tlm/VMZD+WJX65QnJqIdwVwJQ3IIOAgHZJVshlqQ= Subject key identifier: F1:12:D0:B6:E1:C1:7D:AA:BF:49:6D:F9:A9:78:22:C2:AB:B2:E8:C1 Certificate issuer: /CN=A9191EE7/serialNumber=B7DFC802720B43F036351B0BC7163F22E5353D43 Certificate serial: 0571 Authority key identifier: B7:DF:C8:02:72:0B:43:F0:36:35:1B:0B:C7:16:3F:22:E5:35:3D:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa Signing time: Fri 03 Nov 2023 00:11:59 +0000 ROA not before: Fri 03 Nov 2023 00:11:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139697 IP address blocks: 103.143.204.0/24 maxlen: 24 103.143.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.crl rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191EE7/serialNumber=B7DFC802720B43F036351B0BC7163F22E5353D43 Validity Not Before: Nov 3 00:11:59 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65443ace-f33a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:a6:08:c6:ab:64:be:6f:20:b4:34:56:ae: 97:4b:6d:78:e9:ad:c0:a2:f9:a4:ee:0a:4f:8e:d1: c3:c4:63:ea:03:32:6f:da:b8:37:cb:f3:f2:52:1b: 9f:43:e3:8f:ce:42:e5:e9:c5:2e:7e:83:7e:bc:6a: f4:b5:f7:72:74:67:c5:96:aa:28:0c:cb:d8:95:83: 86:fc:6d:5e:ac:db:d7:5c:15:6a:67:2e:bb:ef:ad: 28:69:31:12:14:a5:1c:16:db:d5:e5:e0:2f:22:f7: 07:91:aa:7a:30:6e:50:78:e6:85:c0:9c:a0:5f:36: 31:c2:c3:44:b1:b3:e4:56:77:05:cf:0c:59:d6:38: 67:92:3e:0c:16:e9:59:fe:da:24:39:68:3e:09:df: 29:d9:77:19:6f:6e:1f:b7:f7:fb:08:e3:11:53:de: bd:3a:88:89:3b:df:ed:5e:27:26:81:01:b6:38:88: aa:a2:be:02:37:4b:bf:21:0b:4d:1e:c4:6b:15:8a: 3f:c1:22:4d:c0:73:f8:3f:60:b2:e3:8d:2b:af:e0: b4:8a:80:2c:cf:39:ce:13:4b:43:fd:b7:ce:d4:f5: 76:5a:aa:fa:f4:c0:50:83:76:ea:0e:e1:ad:0a:2f: 36:f3:8a:5d:6f:ca:78:a1:a5:7a:2e:3f:4d:d1:71: 37:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:12:D0:B6:E1:C1:7D:AA:BF:49:6D:F9:A9:78:22:C2:AB:B2:E8:C1 X509v3 Authority Key Identifier: keyid:B7:DF:C8:02:72:0B:43:F0:36:35:1B:0B:C7:16:3F:22:E5:35:3D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.204.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:cf:24:8b:cf:46:62:af:9c:bf:f8:af:5a:a0:63:c2:aa:57: 38:25:c4:d2:99:3a:25:af:31:89:60:bf:d0:fa:a0:2b:1b:47: 6b:d8:55:41:80:18:4e:42:70:d1:d5:bd:5d:fc:a3:60:00:20: 35:b0:d7:62:4b:f9:dc:b2:e2:0d:7c:9b:7b:7e:28:f1:4b:5a: 17:09:8f:18:e0:68:80:b2:65:c1:c2:a6:71:9a:23:8f:3b:d6: e9:38:44:90:3d:9f:d9:f5:fc:ae:04:77:a1:24:f4:32:56:4f: 71:c7:68:7d:2c:af:81:f5:1d:3f:bb:19:76:d7:e0:26:9a:25: e0:d2:26:a0:97:e3:ae:3d:7f:4e:41:0f:33:e2:58:26:aa:e6: a2:3d:cb:f2:0a:9a:91:61:4e:e0:9b:73:b0:b7:3b:28:ad:2b: 49:0b:9d:af:5f:67:28:a9:5c:99:46:72:6a:e6:24:da:4d:6d: 30:7b:25:47:0e:2b:13:f1:bd:71:ba:5f:ed:65:5e:60:59:d5: f6:63:a5:34:fd:0f:04:64:26:0c:2d:79:a6:ba:15:8a:b7:12: 39:d7:bd:c0:b2:85:d5:81:29:ff:4b:65:54:4c:fb:6b:8c:5c: 28:d8:6c:14:aa:22:1f:9e:17:6c:84:d2:85:d8:ee:7e:75:7e: b4:76:d8:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFRTcxMTAvBgNVBAUTKEI3REZDODAyNzIwQjQzRjAzNjM1MUIwQkM3MTYzRjIy RTUzNTNENDMwHhcNMjMxMTAzMDAxMTU5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0M2FjZS1mMzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhWmCMarZL5vILQ0Vq6XS2146a3Aovmk7gpPjtHDxGPqAzJv2rg3y/PyUhuf Q+OPzkLl6cUufoN+vGr0tfdydGfFlqooDMvYlYOG/G1erNvXXBVqZy67760oaTES FKUcFtvV5eAvIvcHkap6MG5QeOaFwJygXzYxwsNEsbPkVncFzwxZ1jhnkj4MFulZ /tokOWg+Cd8p2XcZb24ft/f7COMRU969OoiJO9/tXicmgQG2OIiqor4CN0u/IQtN HsRrFYo/wSJNwHP4P2Cy440rr+C0ioAszznOE0tD/bfO1PV2Wqr69MBQg3bqDuGt Ci8284pdb8p4oaV6Lj9N0XE3YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPES0Lbh wX2qv0lt+al4IsKrsujBMB8GA1UdIwQYMBaAFLffyAJyC0PwNjUbC8cWPyLlNT1D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUVFNy8wNERDMzA0MjZG NzgxMUVCOTJGRTA3ODJDNEY5QUUwMi90OV9JQW5JTFFfQTJOUnNMeHhZX0l1VTFQ VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5X0lBbklMUV9BMk5Sc0x4eFlfSXVVMVBVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFRTcvMDREQzMwNDI2Rjc4MTFFQjkyRkUwNzgyQzRGOUFFMDIvQkYyODlFQkM2 Rjc5MTFFQkE1RDM5Qzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj8wwDQYJKoZIhvcNAQELBQADggEBAFrPJIvPRmKvnL/4 r1qgY8KqVzglxNKZOiWvMYlgv9D6oCsbR2vYVUGAGE5CcNHVvV38o2AAIDWw12JL +dyy4g18m3t+KPFLWhcJjxjgaICyZcHCpnGaI4871uk4RJA9n9n1/K4Ed6Ek9DJW T3HHaH0sr4H1HT+7GXbX4CaaJeDSJqCX4649f05BDzPiWCaq5qI9y/IKmpFhTuCb c7C3OyitK0kLna9fZyipXJlGcmrmJNpNbTB7JUcOKxPxvXG6X+1lXmBZ1fZjpTT9 DwRkJgwteaa6FYq3EjnXvcCyhdWBKf9LZVRM+2uMXCjYbBSqIh+eF2yE0oXY7n51 frR22Fw= -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org