$ rpki-client -vvf rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/110CB61EEFA211ED87AD1F0BC4F9AE02.roa File: 110CB61EEFA211ED87AD1F0BC4F9AE02.roa (raw, json) Hash identifier: UeveUVSDva9upTSXKBhN39qv6P5ruOyYyA0iKp0Rsto= Subject key identifier: 27:C5:FA:39:7C:1F:68:5B:BD:92:AB:B5:A0:6B:CC:BA:81:6F:23:A8 Certificate issuer: /CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Certificate serial: 02 Authority key identifier: 49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/110CB61EEFA211ED87AD1F0BC4F9AE02.roa Signing time: Thu 11 May 2023 02:18:07 +0000 ROA not before: Thu 11 May 2023 02:18:07 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151203 IP address blocks: 103.69.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Validity Not Before: May 11 02:18:07 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645c505f-9c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e1:00:9e:0d:c3:8e:35:d8:e5:06:16:be:b2: 77:7f:55:bf:a7:46:5a:8b:33:d5:bf:d3:35:b8:8c: 63:23:a3:52:f9:fc:5d:08:a6:3c:8a:f4:9b:00:6a: 84:f1:5e:81:e2:01:e8:6e:0c:67:b0:4f:da:fc:db: d4:24:ee:dc:ca:1b:0e:d8:c7:c3:f7:50:db:b6:fd: 98:49:8f:4c:07:7a:33:89:6c:48:c2:aa:2b:9a:b6: 80:a1:e0:2d:63:3f:de:f1:2b:34:7b:75:ab:e5:a8: e7:51:08:bf:99:ec:72:f0:59:51:46:d0:4c:7b:95: 0b:be:6f:5b:b1:75:f3:e5:a9:b6:69:68:c6:2e:44: c4:b7:db:eb:2d:8f:2a:b8:63:78:76:8d:12:06:f5: 3c:a9:8f:5f:03:3a:56:2d:a1:10:6e:5e:67:f8:b2: 59:33:cc:b5:c0:95:cb:54:c9:67:6c:07:a9:da:db: 24:39:6f:94:63:23:08:6e:8e:54:c9:5c:ae:51:6c: 50:96:aa:5c:23:29:76:a1:ef:45:15:e1:6a:a9:5b: 6f:d2:58:f2:98:85:39:74:17:3b:c3:67:bd:a9:51: 57:66:13:25:89:22:fb:0f:96:8a:ca:a3:02:d3:35: 9e:fe:d7:0f:04:59:34:64:e3:27:d9:5e:42:57:28: 3b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C5:FA:39:7C:1F:68:5B:BD:92:AB:B5:A0:6B:CC:BA:81:6F:23:A8 X509v3 Authority Key Identifier: keyid:49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/110CB61EEFA211ED87AD1F0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.104.0/23 Signature Algorithm: sha256WithRSAEncryption 85:10:58:e5:69:ab:fa:ab:02:9b:7c:96:07:bc:10:16:44:a6: a3:a9:42:64:94:2f:c7:0e:07:75:fa:ce:42:64:fd:13:ef:b8: c6:64:a5:87:27:f0:d6:7f:86:37:f2:06:25:ba:e6:69:09:0e: c7:75:bc:35:cf:2e:8a:df:b7:d6:4c:32:67:92:ca:95:84:42: a1:f8:2e:ca:93:e5:13:c3:61:23:1b:73:c3:64:e2:87:d5:40: 7d:b4:d3:79:88:0e:33:22:5a:ce:3e:a4:a0:77:c3:47:ac:fd: f7:2e:3d:52:6b:46:58:4f:84:4a:8a:7d:d5:9e:32:a6:3f:db: 6f:10:86:40:e6:e2:40:3c:1a:d8:aa:20:37:36:32:ac:0a:08: 30:63:a6:01:1f:23:0e:ef:c1:cf:b7:6c:fe:cb:85:c6:d2:3b: 04:09:b8:b6:26:5b:00:2c:ac:84:96:03:ad:db:fc:42:58:d0: 09:38:1b:67:a1:30:ee:48:dc:89:2c:de:9d:74:4b:43:b2:0c: dc:3e:15:80:1c:63:71:25:ce:63:2e:f6:9b:7d:1e:46:91:8b: 28:0c:05:e6:01:18:6e:c1:de:08:3f:90:bb:21:49:ae:9d:79: c2:23:3d:9c:80:d3:21:f1:d4:3e:c9:4f:35:15:de:93:c1:f7: 21:ea:3e:8e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDM5NjExMC8GA1UEBRMoNDlEMEY0MDY5NzJBODA1QjFFN0E5RkMyMEZCM0E5Q0NC NzY2MkFDRTAeFw0yMzA1MTEwMjE4MDdaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NWM1MDVmLTljMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp4QCeDcOONdjlBha+snd/Vb+nRlqLM9W/0zW4jGMjo1L5/F0IpjyK9JsAaoTx XoHiAehuDGewT9r829Qk7tzKGw7Yx8P3UNu2/ZhJj0wHejOJbEjCqiuatoCh4C1j P97xKzR7davlqOdRCL+Z7HLwWVFG0Ex7lQu+b1uxdfPlqbZpaMYuRMS32+stjyq4 Y3h2jRIG9Typj18DOlYtoRBuXmf4slkzzLXAlctUyWdsB6na2yQ5b5RjIwhujlTJ XK5RbFCWqlwjKXah70UV4WqpW2/SWPKYhTl0FzvDZ72pUVdmEyWJIvsPlorKowLT NZ7+1w8EWTRk4yfZXkJXKDu1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ8X6OXwf aFu9kqu1oGvMuoFvI6gwHwYDVR0jBBgwFoAUSdD0BpcqgFseep/CD7OpzLdmKs4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMzk2Lzk1RDBERjdBRUY5 QzExRUQ5QkY2M0I4NkM0RjlBRTAyL1NkRDBCcGNxZ0ZzZWVwX0NEN09wekxkbUtz NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2REMEJwY3FnRnNlZXBfQ0Q3T3B6TGRtS3M0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDM5Ni85NUQwREY3QUVGOUMxMUVEOUJGNjNCODZDNEY5QUUwMi8xMTBDQjYxRUVG QTIxMUVEODdBRDFGMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdFaDANBgkqhkiG9w0BAQsFAAOCAQEAhRBY5Wmr+qsCm3yW B7wQFkSmo6lCZJQvxw4HdfrOQmT9E++4xmSlhyfw1n+GN/IGJbrmaQkOx3W8Nc8u it+31kwyZ5LKlYRCofguypPlE8NhIxtzw2Tih9VAfbTTeYgOMyJazj6koHfDR6z9 9y49UmtGWE+ESop91Z4ypj/bbxCGQObiQDwa2KogNzYyrAoIMGOmAR8jDu/Bz7ds /suFxtI7BAm4tiZbACyshJYDrdv8QljQCTgbZ6Ew7kjciSzenXRLQ7IM3D4VgBxj cSXOYy72m30eRpGLKAwF5gEYbsHeCD+QuyFJrp15wiM9nIDTIfHUPslPNRXek8H3 Ieo+jg== -----END CERTIFICATE-----Generated at Fri May 17 08:13:52 2024 by rpki-client on console-fra.rpki-client.org