$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa File: 1101AA0A7BBD11EA8356C986C4F9AE02.roa (raw, json) Hash identifier: 98MEm2HyK4Hb9plqCE+xEehx0hLxsjA6sujCW9nUDnQ= Subject key identifier: D7:62:30:D9:FA:07:8A:18:39:89:55:F8:2C:E4:A2:84:3E:50:FB:95 Certificate issuer: /CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Certificate serial: 0872 Authority key identifier: 8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa Signing time: Thu 04 May 2023 22:19:05 +0000 ROA not before: Thu 04 May 2023 22:19:05 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 23752 IP address blocks: 103.114.24.0/24 maxlen: 24 103.114.25.0/24 maxlen: 24 103.114.26.0/24 maxlen: 24 103.114.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Validity Not Before: May 4 22:19:05 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64542f59-877b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:92:c9:9c:e6:c1:2e:80:ae:ab:47:c4:1e:1f: 5d:60:a2:ad:ba:86:74:d5:43:05:5e:62:e4:40:15: 37:fb:66:16:11:40:64:df:6b:19:88:22:5a:22:f0: 97:44:f1:63:69:0d:5b:1f:e0:3a:2a:f9:80:88:62: 63:ac:e8:41:28:b7:0d:24:ef:8c:1c:2e:ea:f8:a2: bc:24:25:ee:a1:5a:55:f0:22:e1:6b:66:94:fc:a3: 30:ca:5f:d5:7b:41:13:6a:bf:3a:3b:2d:d4:64:c9: 0f:ed:76:e2:23:8a:18:04:ef:99:61:4e:83:d6:82: 0e:05:4c:6b:10:8f:85:64:55:69:e0:aa:3b:f2:e1: 86:c2:89:a7:41:a3:cd:ed:ad:70:44:0a:58:04:14: 85:5e:69:0b:39:56:0c:fd:1f:2e:d6:8e:c1:66:73: 31:4e:3b:e1:77:34:4d:f4:0c:17:7f:16:2e:8a:21: dc:53:ba:ce:90:86:68:0d:b4:a2:17:92:7b:10:a8: c0:5d:e6:d6:78:c0:f0:ef:81:8a:3b:af:e7:46:3b: 3b:28:5b:42:02:95:57:26:b1:7c:fd:e6:e5:2c:31: 79:59:5b:f8:2c:84:c5:dd:3b:e4:27:0e:b3:7a:08: c3:64:d2:b3:0f:e9:1d:e6:4d:f1:1e:0b:60:cc:c9: b8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:62:30:D9:FA:07:8A:18:39:89:55:F8:2C:E4:A2:84:3E:50:FB:95 X509v3 Authority Key Identifier: keyid:8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:b1:bb:3c:68:8f:21:37:1b:1c:6c:34:2c:46:d6:9a:28:84: 61:14:66:51:2e:23:de:34:c2:38:e6:b5:c1:b5:cc:4b:5b:a1: f8:84:be:2b:aa:09:2e:c6:44:de:ea:52:b7:8a:46:d7:43:ea: 21:46:e4:6e:04:2a:ce:57:ee:ed:b2:dd:26:4e:2c:17:4d:9a: 62:db:5d:ff:4c:2b:24:e0:4c:86:85:05:3b:f3:fe:e9:38:8d: 03:ac:36:9b:0b:58:b3:77:df:bc:fd:f6:6a:42:10:28:a3:8f: 96:c2:4a:3f:8a:24:bf:6b:ad:cc:1c:56:c1:4c:8e:52:11:3f: 91:85:93:85:88:8f:e6:a8:5f:db:21:b9:98:31:0e:6a:26:4b: 4e:6e:71:34:1f:fa:4b:2c:ce:bf:c8:01:f3:10:f4:93:b4:c7: 57:72:0b:69:15:1a:10:56:b6:ca:cd:b0:1e:2b:b0:e8:6a:10: 23:75:c8:0d:bd:2a:b0:94:30:67:e9:73:c0:a9:16:71:4c:a0: ea:c0:d5:1e:d1:56:7d:b7:b2:86:ed:29:94:19:d8:96:6d:09: 66:7e:cc:37:ec:8d:9f:88:34:dc:57:52:bd:46:ec:42:e1:e7: 82:be:b9:4e:bf:d9:c2:e7:77:a2:12:e3:17:06:0f:d0:d9:db: fe:0e:58:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDNTExMTAvBgNVBAUTKDhEN0UzMDU4MzUwQkI4REZFRkZDRTc3NzBCQkM4Qzg2 Qjc2MkExRTQwHhcNMjMwNTA0MjIxOTA1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDU0MmY1OS04NzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlpLJnObBLoCuq0fEHh9dYKKtuoZ01UMFXmLkQBU3+2YWEUBk32sZiCJaIvCX RPFjaQ1bH+A6KvmAiGJjrOhBKLcNJO+MHC7q+KK8JCXuoVpV8CLha2aU/KMwyl/V e0ETar86Oy3UZMkP7XbiI4oYBO+ZYU6D1oIOBUxrEI+FZFVp4Ko78uGGwomnQaPN 7a1wRApYBBSFXmkLOVYM/R8u1o7BZnMxTjvhdzRN9AwXfxYuiiHcU7rOkIZoDbSi F5J7EKjAXebWeMDw74GKO6/nRjs7KFtCApVXJrF8/eblLDF5WVv4LITF3TvkJw6z egjDZNKzD+kd5k3xHgtgzMm4gQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNdiMNn6 B4oYOYlV+CzkooQ+UPuVMB8GA1UdIwQYMBaAFI1+MFg1C7jf7/zndwu8jIa3YqHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM1MS80NzZBN0JFMDdC QkMxMUVBOTYzRjM2ODZDNEY5QUUwMi9qWDR3V0RVTHVOX3ZfT2QzQzd5TWhyZGlv ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pYNHdXRFVMdU5fdl9PZDNDN3lNaHJkaW9lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDNTEvNDc2QTdCRTA3QkJDMTFFQTk2M0YzNjg2QzRGOUFFMDIvMTEwMUFBMEE3 QkJEMTFFQTgzNTZDOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnchgwDQYJKoZIhvcNAQELBQADggEBAH6xuzxojyE3Gxxs NCxG1poohGEUZlEuI940wjjmtcG1zEtbofiEviuqCS7GRN7qUreKRtdD6iFG5G4E Ks5X7u2y3SZOLBdNmmLbXf9MKyTgTIaFBTvz/uk4jQOsNpsLWLN337z99mpCECij j5bCSj+KJL9rrcwcVsFMjlIRP5GFk4WIj+aoX9shuZgxDmomS05ucTQf+ksszr/I AfMQ9JO0x1dyC2kVGhBWtsrNsB4rsOhqECN1yA29KrCUMGfpc8CpFnFMoOrA1R7R Vn23sobtKZQZ2JZtCWZ+zDfsjZ+INNxXUr1G7ELh54K+uU6/2cLnd6IS4xcGD9DZ 2/4OWDs= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:08 2024 by rpki-client on console-ams.rpki-client.org