$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa File: 1DCABC72C57811EA950A8643C4F9AE02.roa (raw, json) Hash identifier: FZanZR6gOdpokj1q/3xsOivg9V6cz3c3ZCcMipz1nE8= Subject key identifier: 56:04:1A:54:67:16:D8:4A:F1:9D:A2:43:DB:14:E5:F2:7F:50:6D:3A Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 0757 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa Signing time: Fri 08 Dec 2023 21:48:59 +0000 ROA not before: Fri 08 Dec 2023 21:48:59 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139730 IP address blocks: 103.144.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Dec 8 21:48:59 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65738f4b-7aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:32:8c:78:6c:dd:a5:af:bf:7d:df:0f:fe:6d: 00:77:75:10:2f:fb:57:12:61:1a:80:43:52:79:25: 94:fc:a8:06:31:6d:b5:45:08:a3:e6:dd:0d:25:be: 08:ed:56:f4:4b:6b:c1:60:da:0d:31:6e:64:32:1a: 43:eb:3a:a3:54:db:2a:61:10:95:3f:99:22:f4:8b: 24:8f:c3:a8:b2:52:92:59:c1:d3:9e:4b:94:fb:68: b5:72:70:27:85:27:ac:e2:01:b2:d9:f3:34:50:dc: 1b:9c:db:84:81:0a:74:3f:eb:47:00:f3:d4:9b:89: f6:62:99:da:15:d3:4c:21:53:5c:14:a2:f9:cf:e0: 61:28:70:43:dc:17:bf:f2:6a:bd:fe:b5:97:76:5c: b8:36:d8:e8:6f:6b:36:2a:86:eb:dc:9f:6f:b3:3b: 75:68:1a:ac:16:70:e7:4a:d5:76:c8:9d:2f:19:ef: 24:ff:f8:87:8c:33:c5:5d:e5:1e:d9:21:e7:1f:63: ec:b4:a2:49:20:e0:d1:e2:6a:50:eb:73:76:0f:01: 0d:ae:56:ae:09:b0:ff:82:c2:07:1c:8e:8f:c6:33: cf:5c:d4:a7:ef:46:1c:22:c1:ab:80:aa:22:1a:6e: ed:21:12:0f:54:17:8b:e6:d0:85:c5:b3:9a:ca:d4: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:04:1A:54:67:16:D8:4A:F1:9D:A2:43:DB:14:E5:F2:7F:50:6D:3A X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.68.0/24 Signature Algorithm: sha256WithRSAEncryption dc:eb:d3:e4:1b:93:44:26:b0:c1:ba:c3:92:76:81:69:8f:ff: 3b:e2:c7:9d:f8:43:1d:63:6d:32:9e:e3:bd:94:ac:b0:3e:0a: d1:66:13:da:14:b3:0b:27:30:63:25:c2:12:96:ce:f1:54:1a: fb:e2:8f:1c:38:d8:5a:d2:16:bc:d3:70:44:d2:07:1d:b3:76: d9:1d:5d:e4:02:a0:fa:17:56:15:5d:e6:d9:da:05:70:39:f1: 1e:ce:46:c7:bf:6d:d9:c4:24:9d:08:11:01:d4:b4:96:e6:68: f7:f2:1a:05:2d:44:8c:a0:86:d4:a4:65:67:a8:44:b1:22:2a: 87:62:da:0b:1e:4f:54:d1:15:23:db:0c:ea:b9:84:74:51:08: 34:be:d0:5f:b5:a1:33:ea:34:39:84:7a:12:69:7a:8e:aa:ec: 32:e5:bf:db:e7:ce:d0:c3:89:5e:98:22:fe:03:19:6f:eb:9c: d6:f0:97:15:12:01:dd:5c:6b:f7:f0:85:bc:cc:f3:f3:1e:cd: c7:bb:05:99:51:fb:de:e9:4c:de:23:16:b9:ca:75:cd:3f:05: 74:84:14:87:ea:e9:03:ec:f0:d4:cc:9a:6f:7d:1f:ac:20:9e: 5e:82:d5:60:b8:4e:d6:73:f6:34:7f:7b:a5:9f:63:74:12:a2: 00:e0:5a:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjMxMjA4MjE0ODU5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczOGY0Yi03YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8zKMeGzdpa+/fd8P/m0Ad3UQL/tXEmEagENSeSWU/KgGMW21RQij5t0NJb4I 7Vb0S2vBYNoNMW5kMhpD6zqjVNsqYRCVP5ki9Iskj8OoslKSWcHTnkuU+2i1cnAn hSes4gGy2fM0UNwbnNuEgQp0P+tHAPPUm4n2YpnaFdNMIVNcFKL5z+BhKHBD3Be/ 8mq9/rWXdly4Ntjob2s2Kobr3J9vszt1aBqsFnDnStV2yJ0vGe8k//iHjDPFXeUe 2SHnH2PstKJJIODR4mpQ63N2DwENrlauCbD/gsIHHI6PxjPPXNSn70YcIsGrgKoi Gm7tIRIPVBeL5tCFxbOaytRuqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFYEGlRn FthK8Z2iQ9sU5fJ/UG06MB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUEyODUvREQ2Mjg5QUFDNTc1MTFFQUE1NTgxQzQwQzRGOUFFMDIvMURDQUJDNzJD NTc4MTFFQTk1MEE4NjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkEQwDQYJKoZIhvcNAQELBQADggEBANzr0+Qbk0QmsMG6 w5J2gWmP/zvix534Qx1jbTKe472UrLA+CtFmE9oUswsnMGMlwhKWzvFUGvvijxw4 2FrSFrzTcETSBx2zdtkdXeQCoPoXVhVd5tnaBXA58R7ORse/bdnEJJ0IEQHUtJbm aPfyGgUtRIyghtSkZWeoRLEiKodi2gseT1TRFSPbDOq5hHRRCDS+0F+1oTPqNDmE ehJpeo6q7DLlv9vnztDDiV6YIv4DGW/rnNbwlxUSAd1ca/fwhbzM8/Mezce7BZlR +97pTN4jFrnKdc0/BXSEFIfq6QPs8NTMmm99H6wgnl6C1WC4TtZz9jR/e6WfY3QS ogDgWlg= -----END CERTIFICATE-----Generated at Sun May 26 22:43:31 2024 by rpki-client on console-fra.rpki-client.org