$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/E7DFF7B8CA1D11EE8037E217C4F9AE02.roa File: E7DFF7B8CA1D11EE8037E217C4F9AE02.roa (raw, json) Hash identifier: SM410dQcZNy+ZrfpIiBvLMXSc3sRNpDk36i8wMVdCgM= Subject key identifier: 18:18:D5:2C:3F:CC:39:CD:65:84:71:09:08:25:CF:08:FE:C2:D3:1B Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Certificate serial: 0D15 Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/E7DFF7B8CA1D11EE8037E217C4F9AE02.roa Signing time: Tue 13 Feb 2024 03:13:49 +0000 ROA not before: Tue 13 Feb 2024 03:13:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140629 IP address blocks: 103.117.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Validity Not Before: Feb 13 03:13:49 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65cade6d-af05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:f5:a1:59:39:36:a1:4a:ca:6f:ca:b4:43: 0e:01:47:d7:f2:9e:93:9c:25:27:75:5e:49:19:c4: 26:38:e9:1f:5b:43:d0:03:a3:5e:16:d0:b8:91:98: c6:3e:e7:74:09:fc:13:b4:0a:7a:93:d6:29:77:27: 11:74:56:44:eb:f6:fd:f7:d1:d1:7a:ad:0c:53:98: 4a:ca:c5:e3:6b:7d:3d:a3:7c:2e:36:b1:4f:ae:c6: f4:57:b6:79:fd:36:e0:e6:cb:e7:f0:4b:6b:78:4b: a6:73:ae:22:ca:76:b8:5a:de:08:0e:69:81:3f:b2: 92:e6:1d:36:65:e8:d3:71:60:08:57:88:af:80:30: 84:e3:bd:6a:c7:69:76:b9:0a:e2:08:cc:8b:26:44: dc:b8:66:c7:ff:81:6c:59:f0:a5:42:72:52:b1:19: 5c:33:d3:66:2c:e5:82:85:c4:54:fc:6b:cf:00:ed: 31:d5:06:46:b9:df:87:4b:4f:a1:3a:3a:ce:4e:b3: c2:70:16:bf:dc:81:42:c5:46:9b:27:c0:32:a2:e1: 05:40:09:be:5a:97:f3:03:a2:9b:37:0b:44:f3:19: 17:c8:60:17:c0:76:e2:c8:8a:9e:4c:d3:8d:5c:13: 7a:de:27:16:c5:0a:d5:76:1c:72:e9:ee:08:e4:ac: e8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:18:D5:2C:3F:CC:39:CD:65:84:71:09:08:25:CF:08:FE:C2:D3:1B X509v3 Authority Key Identifier: keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/E7DFF7B8CA1D11EE8037E217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.130.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:16:c1:7a:33:99:9a:95:9d:34:6a:60:d3:64:85:cd:12:b1: 7a:67:b3:65:76:02:6f:07:db:c1:b1:21:97:54:7b:9a:c4:53: a4:af:a8:70:76:39:e7:e9:70:23:19:31:c7:7e:cf:80:ba:f0: e8:de:dd:d1:3a:0b:bd:d6:31:40:ce:c6:56:16:6f:eb:5e:0f: a2:c1:db:35:cf:a4:7f:79:3c:a9:ec:57:78:0c:33:2d:a8:db: 4e:ad:a7:e9:da:c5:59:43:f6:4b:8a:15:2f:40:80:c4:e4:1f: 66:37:5f:57:60:44:a9:23:a0:04:30:68:4a:a0:0a:b7:79:d6: 51:cb:c7:40:fe:60:1d:11:97:5a:1c:2b:65:db:1f:09:fe:cb: c0:d2:f1:6a:47:66:a9:7f:33:b3:b4:a9:02:47:cb:59:39:36: ae:e2:54:e1:63:4b:a5:78:78:83:84:c5:e7:12:6b:fe:a6:5c: 9e:ed:c7:f7:0c:85:89:42:97:80:0d:3b:db:cd:4d:0a:ed:81: d8:a0:d5:94:92:5e:5a:4d:df:d1:43:70:76:5d:89:65:5e:0d: 14:59:d7:f6:f8:cb:b8:7e:77:c5:8f:73:6e:06:0e:68:71:78: 85:71:eb:1b:fb:2c:ef:f1:f4:ee:8a:f2:53:40:97:f3:51:2e: 7c:74:c8:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3QjIxMTAvBgNVBAUTKDExNTYyMDVFQzczODBBMDBGMTBGMzQxMDExNEQwNDAz NTdGMDBGRjEwHhcNMjQwMjEzMDMxMzQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhZGU2ZC1hZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjn1oVk5NqFKym/KtEMOAUfX8p6TnCUndV5JGcQmOOkfW0PQA6NeFtC4kZjG Pud0CfwTtAp6k9YpdycRdFZE6/b999HReq0MU5hKysXja309o3wuNrFPrsb0V7Z5 /Tbg5svn8EtreEumc64iyna4Wt4IDmmBP7KS5h02ZejTcWAIV4ivgDCE471qx2l2 uQriCMyLJkTcuGbH/4FsWfClQnJSsRlcM9NmLOWChcRU/GvPAO0x1QZGud+HS0+h OjrOTrPCcBa/3IFCxUabJ8AyouEFQAm+WpfzA6KbNwtE8xkXyGAXwHbiyIqeTNON XBN63icWxQrVdhxy6e4I5KzomwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBgY1Sw/ zDnNZYRxCQglzwj+wtMbMB8GA1UdIwQYMBaAFBFWIF7HOAoA8Q80EBFNBANX8A/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTdCMi8zRUUzMjM1QUFF OTkxMUU5QUM1MEUxN0JDNEY5QUUwMi9FVllnWHNjNENnRHhEelFRRVUwRUExZndE X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VWWWdYc2M0Q2dEeER6UVFFVTBFQTFmd0RfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3QjIvM0VFMzIzNUFBRTk5MTFFOUFDNTBFMTdCQzRGOUFFMDIvRTdERkY3QjhD QTFEMTFFRTgwMzdFMjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndYIwDQYJKoZIhvcNAQELBQADggEBAFsWwXozmZqVnTRq YNNkhc0SsXpns2V2Am8H28GxIZdUe5rEU6SvqHB2OefpcCMZMcd+z4C68Oje3dE6 C73WMUDOxlYWb+teD6LB2zXPpH95PKnsV3gMMy2o206tp+naxVlD9kuKFS9AgMTk H2Y3X1dgRKkjoAQwaEqgCrd51lHLx0D+YB0Rl1ocK2XbHwn+y8DS8WpHZql/M7O0 qQJHy1k5Nq7iVOFjS6V4eIOExecSa/6mXJ7tx/cMhYlCl4ANO9vNTQrtgdig1ZSS XlpN39FDcHZdiWVeDRRZ1/b4y7h+d8WPc24GDmhxeIVx6xv7LO/x9O6K8lNAl/NR Lnx0yIY= -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org