$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa File: A4E3DD6A366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: sj2RFmmhoYF/yNNJEdTkaHGXkzwxAu4kADHepdTFUQw= Subject key identifier: 94:02:A1:CD:EE:24:A6:9D:09:1A:AB:09:01:1B:2F:17:98:A6:64:8D Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Certificate serial: 03 Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa Signing time: Wed 09 Aug 2023 03:20:09 +0000 ROA not before: Wed 09 Aug 2023 03:20:09 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132876 IP address blocks: 103.14.11.0/24 maxlen: 24 2400:6280::/48 maxlen: 48 2400:6280:1::/48 maxlen: 48 2400:6280:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Validity Not Before: Aug 9 03:20:09 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64d305e9-f3fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ce:fb:94:1f:91:8c:f5:83:b7:2b:ce:a5:c5: 4e:d6:4d:f4:55:a7:e2:04:c8:85:c8:c6:7f:3d:65: e6:57:6d:1d:51:f0:d4:ee:30:31:d3:cb:36:66:fa: 27:10:79:83:1a:72:5e:9f:f4:f5:4d:42:4d:41:09: dd:14:22:0c:e7:72:91:a3:57:65:2d:6a:04:94:54: 40:30:d3:36:36:0e:d2:af:b9:8b:52:86:3f:12:dc: 12:d3:62:3b:3e:28:4d:4b:20:bb:bc:52:69:26:c7: 80:a1:e9:d5:b9:2a:d0:54:4d:7e:88:39:e9:39:c3: 61:cf:23:c5:18:90:46:d1:65:b3:6c:35:2b:aa:b6: 67:d9:c4:22:0a:b4:3b:1f:59:c7:de:19:89:dd:e3: 27:ed:c2:a7:28:8e:e2:44:ca:3a:95:4c:68:66:1f: 6e:51:20:06:3c:a1:13:91:71:b0:42:e7:8d:c0:a3: 3e:ef:b9:80:fd:05:5b:f3:0f:19:fe:31:92:5b:c7: 97:99:08:ff:71:32:03:4b:5c:23:aa:58:08:b3:c7: 17:6e:e7:5d:a2:c0:40:a0:f4:ee:03:81:f6:85:85: c7:84:d5:f8:84:a7:9b:3d:19:38:d8:79:f6:fb:fb: cf:93:85:6c:85:55:81:3e:81:fc:d2:00:82:73:1c: 1f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:02:A1:CD:EE:24:A6:9D:09:1A:AB:09:01:1B:2F:17:98:A6:64:8D X509v3 Authority Key Identifier: keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.11.0/24 IPv6: 2400:6280::/47 2400:6280:20::/48 Signature Algorithm: sha256WithRSAEncryption 36:1f:28:0f:03:a7:14:d9:f1:ea:c2:56:99:40:1a:2b:16:fe: 25:01:de:07:b9:97:59:6e:9a:db:3d:b2:73:b4:96:46:5e:46: fb:77:bf:bc:be:cf:51:2d:57:30:fa:73:49:93:7b:1f:54:0e: a1:52:d4:67:e4:17:b7:61:6d:f6:b4:17:50:c8:83:2e:66:ea: 30:6a:ac:20:84:17:de:81:e5:b2:6a:34:a2:dd:1f:4e:ad:f0: 40:4c:41:41:13:18:21:42:2a:fe:92:1e:72:6b:21:26:83:96: 31:07:22:09:21:12:64:62:5a:d3:09:82:3e:bd:a1:49:34:76: 54:1a:1b:68:80:ab:d1:9f:f6:60:42:cd:e7:b6:26:a3:90:36: 6f:91:79:e6:90:55:a1:bb:75:f6:b3:9c:d6:8d:f5:4d:50:3f: c4:29:ba:05:6e:ec:29:4a:ab:50:e2:e1:34:0a:f6:db:44:3f: ef:f9:08:8f:09:ed:70:dd:ae:6f:46:16:d9:72:d7:e1:1d:6d: 99:70:a0:3f:4d:56:fa:b9:ec:fc:6c:c6:5d:cc:d8:75:91:58: ee:df:6b:01:46:b7:06:15:a5:88:29:16:9f:5b:36:90:f6:52: 21:1a:24:b0:3a:48:8a:76:53:f5:d2:17:3c:d9:af:bc:69:8b: 64:59:a7:c0 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTM2QzExMC8GA1UEBRMoNDg4OTcwNTA2MjY0RUY5NkQ4MUVDMTJFNkFCRDI1NkRC MzBGRENGQTAeFw0yMzA4MDkwMzIwMDlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDMwNWU5LWYzZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnzvuUH5GM9YO3K86lxU7WTfRVp+IEyIXIxn89ZeZXbR1R8NTuMDHTyzZm+icQ eYMacl6f9PVNQk1BCd0UIgzncpGjV2UtagSUVEAw0zY2DtKvuYtShj8S3BLTYjs+ KE1LILu8Umkmx4Ch6dW5KtBUTX6IOek5w2HPI8UYkEbRZbNsNSuqtmfZxCIKtDsf WcfeGYnd4yftwqcojuJEyjqVTGhmH25RIAY8oRORcbBC543Aoz7vuYD9BVvzDxn+ MZJbx5eZCP9xMgNLXCOqWAizxxdu512iwECg9O4DgfaFhceE1fiEp5s9GTjYefb7 +8+ThWyFVYE+gfzSAIJzHB/DAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQUlAKhze4k pp0JGqsJARsvF5imZI0wHwYDVR0jBBgwFoAUSIlwUGJk75bYHsEuar0lbbMP3Pow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MzZDLzdFNEQ4NDYwMzY2 MDExRUU4OEUwRjUzMEM0RjlBRTAyL1NJbHdVR0prNzViWUhzRXVhcjBsYmJNUDNQ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0lsd1VHSms3NWJZSHNFdWFyMGxiYk1QM1BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83RTREODQ2MDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9BNEUzREQ2QTM2 NjMxMUVFQjM3NkRDM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwDAQCAAEwBgMEAGcOCzAYBAIAAjASAwcBJABigAAAAwcAJABigAAgMA0GCSqG SIb3DQEBCwUAA4IBAQA2HygPA6cU2fHqwlaZQBorFv4lAd4HuZdZbprbPbJztJZG Xkb7d7+8vs9RLVcw+nNJk3sfVA6hUtRn5Be3YW32tBdQyIMuZuowaqwghBfegeWy ajSi3R9OrfBATEFBExghQir+kh5yayEmg5YxByIJIRJkYlrTCYI+vaFJNHZUGhto gKvRn/ZgQs3ntiajkDZvkXnmkFWhu3X2s5zWjfVNUD/EKboFbuwpSqtQ4uE0Cvbb RD/v+QiPCe1w3a5vRhbZctfhHW2ZcKA/TVb6uez8bMZdzNh1kVju32sBRrcGFaWI KRafWzaQ9lIhGiSwOkiKdlP10hc82a+8aYtkWafA -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:35 2024 by rpki-client on console-fra.rpki-client.org