$ rpki-client -vvf rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa File: 2DBBD9E2788D11EEA502B350C4F9AE02.roa (raw, json) Hash identifier: OAmPRTah7XdC92cyaOL1VT2tDGpsaJQwQAJo+nqjJlo= Subject key identifier: 51:C9:9B:C7:12:A6:28:0E:8E:FD:65:07:1B:53:1A:CC:A1:6D:E6:16 Certificate issuer: /CN=A919D08A/serialNumber=816A478D86E7E21BF3178510B8585325583430EE Certificate serial: 02 Authority key identifier: 81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa Signing time: Wed 01 Nov 2023 08:03:45 +0000 ROA not before: Wed 01 Nov 2023 08:03:45 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 151818 IP address blocks: 103.204.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.crl rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D08A/serialNumber=816A478D86E7E21BF3178510B8585325583430EE Validity Not Before: Nov 1 08:03:45 2023 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=65420661-2c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:18:78:1e:03:ba:53:6b:ac:93:19:80:34:99: ec:af:49:d1:4a:b9:a6:a8:65:72:5f:d5:10:39:1e: 43:74:90:2d:c2:6b:ff:1e:75:a7:df:2f:c2:c5:11: 30:32:ab:46:25:23:2a:81:1b:3a:ae:4c:74:56:5f: f0:8f:02:33:aa:c4:2a:33:aa:3e:ea:e8:bf:0e:65: 1d:37:3c:6b:51:84:0a:bc:8d:ed:0b:0d:4f:a3:52: 6d:e3:92:e3:21:17:fb:0d:22:53:09:05:93:49:42: 53:2e:47:6e:2b:4f:cf:dd:c8:08:fa:8f:af:e4:db: 57:7c:a3:a7:60:bb:15:bf:26:80:81:96:c0:48:99: e9:4a:bc:c3:e7:42:93:96:2d:09:5b:2e:da:7c:d1: f0:ce:c4:62:59:43:4d:4d:9b:5d:19:09:69:51:5d: 01:92:5d:d2:b6:53:9c:3f:81:d1:36:fa:c1:3d:d2: 0d:bb:c1:ea:7f:6b:d7:c2:07:9f:1d:11:e3:d9:23: 9d:b2:5a:09:a5:54:b8:8f:c8:c0:b4:22:b2:f0:82: 57:c5:73:ae:87:ab:41:15:c0:eb:23:be:ed:65:91: 58:8c:8a:23:aa:18:80:2f:ab:c3:e5:18:b4:79:f0: 71:86:4c:5d:b5:04:d5:8c:c3:6c:c3:e4:89:fc:af: d1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C9:9B:C7:12:A6:28:0E:8E:FD:65:07:1B:53:1A:CC:A1:6D:E6:16 X509v3 Authority Key Identifier: keyid:81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.40.0/23 Signature Algorithm: sha256WithRSAEncryption ca:92:76:5d:5d:46:cf:42:af:98:6f:7d:f6:fe:1e:5b:6d:28: f4:ce:ed:2d:f0:03:7e:8b:a2:c8:9b:b4:b1:77:ed:0e:9a:dc: 47:7a:1c:c1:96:46:aa:11:59:ab:35:50:82:5e:f3:0d:84:f8: 05:13:86:29:c2:01:cd:31:e4:65:b0:9f:23:a5:7e:8e:b3:a7: 05:83:3f:c3:b5:54:fa:49:3c:21:5f:e9:d5:76:85:ad:c3:60: dc:40:b4:f0:fd:5b:11:16:65:71:32:f1:96:0a:9b:08:f0:69: 83:e0:30:06:2c:58:09:da:a8:6f:73:c5:86:42:42:54:07:27: a9:3b:aa:ec:cf:91:5c:4f:ad:fd:fb:1a:67:e0:b4:12:41:90: 0b:0c:dd:1d:27:23:b4:fc:4a:07:f1:ec:1d:ba:55:94:9e:01: fd:bf:1d:cd:38:c5:95:0f:12:32:b0:f8:58:9f:89:71:e8:55: af:7b:30:41:44:75:ef:26:12:02:09:90:7b:4d:3d:86:a6:10: 06:f9:bb:26:6d:06:01:69:49:f5:67:4d:5e:fd:56:77:d1:00: f0:67:58:2e:27:79:0f:c1:c7:0d:fc:02:9e:83:11:3c:f3:18: 03:ea:37:b8:77:8b:12:f0:59:7c:89:ee:d1:e2:45:3c:51:35: c4:22:84:3b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDA4QTExMC8GA1UEBRMoODE2QTQ3OEQ4NkU3RTIxQkYzMTc4NTEwQjg1ODUzMjU1 ODM0MzBFRTAeFw0yMzExMDEwODAzNDVaFw0yNzA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDIwNjYxLTJjMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgGHgeA7pTa6yTGYA0meyvSdFKuaaoZXJf1RA5HkN0kC3Ca/8edaffL8LFETAy q0YlIyqBGzquTHRWX/CPAjOqxCozqj7q6L8OZR03PGtRhAq8je0LDU+jUm3jkuMh F/sNIlMJBZNJQlMuR24rT8/dyAj6j6/k21d8o6dguxW/JoCBlsBImelKvMPnQpOW LQlbLtp80fDOxGJZQ01Nm10ZCWlRXQGSXdK2U5w/gdE2+sE90g27wep/a9fCB58d EePZI52yWgmlVLiPyMC0IrLwglfFc66Hq0EVwOsjvu1lkViMiiOqGIAvq8PlGLR5 8HGGTF21BNWMw2zD5In8r9HPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUcmbxxKm KA6O/WUHG1MazKFt5hYwHwYDVR0jBBgwFoAUgWpHjYbn4hvzF4UQuFhTJVg0MO4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMDhBL0MwRjRFODY0Nzg4 QTExRUVCMDY5MjQ2MUM0RjlBRTAyL2dXcEhqWWJuNGh2ekY0VVF1RmhUSlZnME1P NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1dwSGpZYm40aHZ6RjRVUXVGaFRKVmcwTU80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDA4QS9DMEY0RTg2NDc4OEExMUVFQjA2OTI0NjFDNEY5QUUwMi8yREJCRDlFMjc4 OEQxMUVFQTUwMkIzNTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfMKDANBgkqhkiG9w0BAQsFAAOCAQEAypJ2XV1Gz0KvmG99 9v4eW20o9M7tLfADfouiyJu0sXftDprcR3ocwZZGqhFZqzVQgl7zDYT4BROGKcIB zTHkZbCfI6V+jrOnBYM/w7VU+kk8IV/p1XaFrcNg3EC08P1bERZlcTLxlgqbCPBp g+AwBixYCdqob3PFhkJCVAcnqTuq7M+RXE+t/fsaZ+C0EkGQCwzdHScjtPxKB/Hs HbpVlJ4B/b8dzTjFlQ8SMrD4WJ+JcehVr3swQUR17yYSAgmQe009hqYQBvm7Jm0G AWlJ9WdNXv1Wd9EA8GdYLid5D8HHDfwCnoMRPPMYA+o3uHeLEvBZfInu0eJFPFE1 xCKEOw== -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:03 2024 by rpki-client on console-ams.rpki-client.org