$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa File: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (raw, json) Hash identifier: +8RYSK6eqNDlGYWF5tbnRI9iU6P3WM/j6T4xLBka0V8= Subject key identifier: A5:FB:1F:DC:15:AA:6A:8A:FC:6F:A4:85:08:38:56:6C:9B:84:99:E7 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0E56 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa Signing time: Tue 26 Sep 2023 18:15:52 +0000 ROA not before: Tue 26 Sep 2023 18:15:52 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9541 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 17:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3670 (0xe56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 26 18:15:52 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65131fd8-e319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:f0:fc:c5:f9:8c:98:11:64:e8:d8:d7:1c: 3a:79:b1:92:2e:6e:29:86:05:6d:0f:20:25:df:80: 9e:98:96:de:b2:60:8b:b6:43:f6:99:5e:59:68:fd: 3a:04:00:91:c2:c5:0d:ee:5b:00:95:fb:9f:d0:68: 5e:f9:65:aa:66:5e:f6:75:0f:db:d4:f2:17:90:9b: 85:99:07:7d:9e:d3:51:7c:70:b0:ab:bd:b0:d2:dd: 95:8d:c8:da:77:09:a7:d4:e4:a2:5a:b5:b2:77:da: 5a:6b:bd:51:80:88:a8:ab:0e:ec:33:07:ad:22:33: 94:61:ab:e6:77:6c:a5:d6:79:c7:16:c3:50:88:e2: 81:5b:c0:98:7d:05:f4:6d:4b:1a:7c:dc:54:24:6a: b3:51:f7:28:6f:4e:6e:e6:7e:93:a3:6b:3b:0e:6b: 06:11:67:ab:42:6e:13:d5:40:73:c6:a8:cd:ec:44: f4:6d:7b:ae:62:ee:44:0e:aa:d5:80:6b:55:d1:ea: 7f:88:0f:01:40:1d:96:78:dd:43:e1:38:d5:a0:6b: a3:e3:a4:9c:08:59:cd:1b:4f:bd:32:12:af:f4:b4: 52:34:58:8b:90:ad:03:55:c9:c1:43:9f:f4:90:97: 07:bf:a2:6b:7d:6e:50:88:0c:82:e9:58:5f:29:32: 49:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FB:1F:DC:15:AA:6A:8A:FC:6F:A4:85:08:38:56:6C:9B:84:99:E7 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:ae:0f:0d:71:04:49:4d:83:ec:68:e1:c8:3f:2c:f5:50:5a: 60:d6:27:91:48:c7:b0:d3:1c:10:af:cc:9c:be:79:ad:c6:bb: e7:64:a0:bd:49:71:e0:23:7b:06:0c:16:1e:3d:f8:54:6a:6c: 8b:ee:1a:83:66:d2:18:0d:86:df:f9:06:8b:de:49:7c:d3:39: 2a:9c:b3:91:92:42:09:06:db:1b:fa:01:fb:90:45:06:32:ee: 60:bf:25:29:7d:1c:e4:55:a0:f9:26:74:8e:ca:af:b0:00:f5: 3d:0c:df:e3:cb:94:fc:83:df:9c:f4:43:e5:64:4c:00:05:bd: ce:dc:f6:14:4b:64:4b:eb:f8:e6:cb:d5:bb:50:76:81:97:82: c3:34:db:bb:d5:71:0c:d2:2f:27:3d:d4:a4:18:d4:e0:4e:3c: 3e:fb:5d:d2:bc:d3:a2:e7:34:4c:3a:76:1d:4b:a3:3f:20:6b: 3f:ef:9e:4d:52:b0:bd:3d:fa:e3:6e:a6:eb:19:52:19:99:96: 4d:11:7d:38:4e:9e:50:29:0d:55:6e:58:37:e8:16:69:7e:4a: be:a8:02:6b:5c:82:ec:20:ea:17:4c:17:36:23:dd:14:e2:41: 50:9f:52:7f:60:00:fa:de:b4:cc:f0:20:bb:50:67:58:16:b2: 66:5f:7e:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjMwOTI2MTgxNTUyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzMWZkOC1lMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhXw/MX5jJgRZOjY1xw6ebGSLm4phgVtDyAl34CemJbesmCLtkP2mV5ZaP06 BACRwsUN7lsAlfuf0Ghe+WWqZl72dQ/b1PIXkJuFmQd9ntNRfHCwq72w0t2Vjcja dwmn1OSiWrWyd9paa71RgIioqw7sMwetIjOUYavmd2yl1nnHFsNQiOKBW8CYfQX0 bUsafNxUJGqzUfcob05u5n6To2s7DmsGEWerQm4T1UBzxqjN7ET0bXuuYu5EDqrV gGtV0ep/iA8BQB2WeN1D4TjVoGuj46ScCFnNG0+9MhKv9LRSNFiLkK0DVcnBQ5/0 kJcHv6JrfW5QiAyC6VhfKTJJ3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKX7H9wV qmqK/G+khQg4VmybhJnnMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMERDNjk4RUFB RUYwMTFFOTlENUVGQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAH6uDw1x BElNg+xo4cg/LPVQWmDWJ5FIx7DTHBCvzJy+ea3Gu+dkoL1JceAjewYMFh49+FRq bIvuGoNm0hgNht/5BoveSXzTOSqcs5GSQgkG2xv6AfuQRQYy7mC/JSl9HORVoPkm dI7Kr7AA9T0M3+PLlPyD35z0Q+VkTAAFvc7c9hRLZEvr+ObL1btQdoGXgsM027vV cQzSLyc91KQY1OBOPD77XdK806LnNEw6dh1Loz8gaz/vnk1SsL09+uNupusZUhmZ lk0RfThOnlApDVVuWDfoFml+Sr6oAmtcguwg6hdMFzYj3RTiQVCfUn9gAPretMzw ILtQZ1gWsmZffog= -----END CERTIFICATE-----Generated at Wed May 22 18:46:48 2024 by rpki-client on console-fra.rpki-client.org