$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa File: BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa (raw, json) Hash identifier: P/J87XG2tUJ42Y/89cbaFjR+kvi3mKnv0hb1x1rqHAM= Subject key identifier: C3:4D:DB:1D:8A:B1:BC:B2:A3:DE:F7:6E:1B:CA:0C:14:14:41:4F:A3 Certificate issuer: /CN=A9194AF5/serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Certificate serial: 02 Authority key identifier: 97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa Signing time: Thu 04 Jan 2024 23:19:41 +0000 ROA not before: Thu 04 Jan 2024 23:19:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132822 IP address blocks: 103.65.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AF5/serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Validity Not Before: Jan 4 23:19:41 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65973d0d-c0b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5d:0e:71:ac:e1:b9:74:33:54:43:48:0e:56: ed:58:eb:21:cc:60:ac:2b:ed:00:bc:58:4f:a7:ef: 21:a2:44:99:5d:ad:15:04:9f:23:18:14:c3:bd:29: 0e:57:84:df:b6:1a:e4:69:7c:da:c0:98:ce:5a:65: da:bc:33:1a:9f:a5:f1:71:60:f2:36:d9:00:bb:e3: 52:2e:8b:f8:3e:4c:99:b8:d1:aa:aa:d8:9d:89:c1: ff:07:c6:5b:de:1b:04:ed:65:c0:85:10:43:8e:61: 0f:e2:81:9b:57:f2:97:f5:77:02:fb:53:3b:31:f4: 35:d1:e2:c2:83:68:9c:de:bd:df:a7:eb:66:6c:12: d0:f5:02:e4:8e:59:d3:50:87:e1:a4:dc:1a:a0:a6: 37:8f:22:53:f8:49:32:f5:dd:15:ed:6b:51:e9:85: 89:33:67:ea:b8:27:e5:95:6a:d1:9d:6a:78:c5:50: 55:53:d7:f3:a3:ec:95:5e:b2:64:6a:87:75:b7:ae: d0:f1:54:07:1b:f5:2c:8a:ec:ad:ef:cc:4b:f2:c6: 87:2c:a8:d9:1d:99:80:78:1f:24:62:fa:10:87:fc: 26:99:ef:2e:cd:d9:56:bb:ed:61:0d:91:20:f8:2f: dc:91:d3:5d:24:08:88:d2:e2:fa:4a:c0:07:4f:59: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:4D:DB:1D:8A:B1:BC:B2:A3:DE:F7:6E:1B:CA:0C:14:14:41:4F:A3 X509v3 Authority Key Identifier: keyid:97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.239.0/24 Signature Algorithm: sha256WithRSAEncryption a2:93:cf:b4:39:3d:55:b8:b5:6e:cd:ea:34:fa:23:de:c2:5e: 33:11:3e:11:b6:a3:35:63:52:51:7a:f5:5c:31:96:47:cd:24: e0:a0:8d:d4:41:04:12:3c:ac:bc:7f:40:91:4b:73:3b:5e:ea: 84:c6:f6:08:7f:cc:f9:32:82:5d:18:f7:5e:45:a8:fe:4c:7d: 75:88:46:c0:b1:3b:c8:8a:ca:cf:3d:d9:48:dc:0c:b8:6f:5f: 56:21:78:d8:7d:d5:52:fe:f7:19:e0:ec:09:61:a6:88:f9:4d: 92:4d:49:3b:71:d7:5c:dc:9b:1f:96:7f:3c:f3:fd:00:35:40: 5c:43:67:27:44:ca:ab:f8:32:c4:70:fb:dc:8e:70:0c:a5:eb: 16:b4:25:6c:52:da:9e:d0:ff:07:35:4a:b6:d5:32:85:34:23: 96:b8:54:58:d8:57:3f:a1:7b:da:7c:99:90:ae:79:f7:26:82: 2e:f0:7c:69:ba:02:a1:df:db:8b:ad:62:6d:4b:89:e6:e5:47: 19:68:90:34:5d:b8:fb:13:b5:b4:e2:28:29:6d:d4:84:94:8e: 7b:9a:7f:ad:6f:20:b3:2c:86:fe:98:8e:b4:d9:a0:90:b4:4a: 15:a5:82:1f:54:1a:7d:cf:8c:ff:43:fe:82:50:a8:ab:e2:18: 5c:ec:44:f0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEFGNTExMC8GA1UEBRMoOTdEMTFBRTIxMkNCMjEzREY5NjUyRjVCQjYyNDhFNDBD RTBDMjlGQTAeFw0yNDAxMDQyMzE5NDFaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTczZDBkLWMwYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0XQ5xrOG5dDNUQ0gOVu1Y6yHMYKwr7QC8WE+n7yGiRJldrRUEnyMYFMO9KQ5X hN+2GuRpfNrAmM5aZdq8MxqfpfFxYPI22QC741Iui/g+TJm40aqq2J2Jwf8Hxlve GwTtZcCFEEOOYQ/igZtX8pf1dwL7Uzsx9DXR4sKDaJzevd+n62ZsEtD1AuSOWdNQ h+Gk3BqgpjePIlP4STL13RXta1HphYkzZ+q4J+WVatGdanjFUFVT1/Oj7JVesmRq h3W3rtDxVAcb9SyK7K3vzEvyxocsqNkdmYB4HyRi+hCH/CaZ7y7N2Va77WENkSD4 L9yR010kCIjS4vpKwAdPWaKvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUw03bHYqx vLKj3vduG8oMFBRBT6MwHwYDVR0jBBgwFoAUl9Ea4hLLIT35ZS9btiSOQM4MKfow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QUY1LzFCMUMyNDY2QUI1 NzExRUU4MThBMjgzRUM0RjlBRTAyL2w5RWE0aExMSVQzNVpTOWJ0aVNPUU00TUtm by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDlFYTRoTExJVDM1WlM5YnRpU09RTTRNS2ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFGNS8xQjFDMjQ2NkFCNTcxMUVFODE4QTI4M0VDNEY5QUUwMi9CQzg3Q0I1MkFC NTcxMUVFQkM2RUJCM0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdB7zANBgkqhkiG9w0BAQsFAAOCAQEAopPPtDk9Vbi1bs3q NPoj3sJeMxE+EbajNWNSUXr1XDGWR80k4KCN1EEEEjysvH9AkUtzO17qhMb2CH/M +TKCXRj3XkWo/kx9dYhGwLE7yIrKzz3ZSNwMuG9fViF42H3VUv73GeDsCWGmiPlN kk1JO3HXXNybH5Z/PPP9ADVAXENnJ0TKq/gyxHD73I5wDKXrFrQlbFLantD/BzVK ttUyhTQjlrhUWNhXP6F72nyZkK559yaCLvB8aboCod/bi61ibUuJ5uVHGWiQNF24 +xO1tOIoKW3UhJSOe5p/rW8gsyyG/piOtNmgkLRKFaWCH1Qafc+M/0P+glCoq+IY XOxE8A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:21 2024 by rpki-client on console-ams.rpki-client.org