$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/F9BDC484F7B011EB84345029C4F9AE02.roa File: F9BDC484F7B011EB84345029C4F9AE02.roa (raw, json) Hash identifier: +BXNJJgRMpeEdVFjU+gXiu2LeoVUCZ+rAA2rUqqtixk= Subject key identifier: 84:4F:A7:F0:10:4B:20:F4:5E:14:9C:53:4A:FD:42:2E:98:0B:DC:0E Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0CAE Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/F9BDC484F7B011EB84345029C4F9AE02.roa Signing time: Thu 31 Aug 2023 18:26:22 +0000 ROA not before: Thu 31 Aug 2023 18:26:22 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139358 IP address blocks: 103.141.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Aug 31 18:26:22 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0db4e-9695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:19:27:0f:ef:41:d0:6b:ca:c0:b9:1f:ff: 8a:71:e3:85:7c:39:90:c4:ae:80:80:d2:a3:dd:77: e7:d7:09:35:98:b7:8d:92:51:a7:77:72:72:bf:f9: a7:bd:05:20:45:03:b3:1d:0b:c3:8d:39:e9:a2:bf: 98:eb:69:ee:df:f3:e4:be:35:b9:0e:40:cd:dd:42: 5f:8b:37:c9:1d:be:b4:89:04:5e:85:4c:85:98:63: 5f:58:2d:df:a7:b9:b7:8d:21:1a:7f:5b:f3:59:3a: 66:1d:c3:99:4b:8c:51:e7:50:08:e0:8d:30:ec:db: 60:21:32:e3:25:45:fd:b9:24:71:21:f2:97:d0:d0: 96:cd:24:c4:9b:7e:cb:10:ea:86:41:54:85:e8:02: d8:fc:3c:51:a0:80:06:8b:49:60:dd:38:39:7c:a3: 9e:a3:31:fd:48:7e:eb:c1:6d:cd:81:69:92:4f:f6: b6:8f:e8:62:ae:c8:f8:33:a1:8f:fe:c5:d5:7e:24: 0c:a5:65:80:0a:1a:ce:98:07:90:76:dc:00:2e:c5: ba:80:a3:30:50:cf:80:d8:53:64:16:ed:8b:4a:e1: 1d:82:23:3e:d8:e4:12:1c:49:2c:8e:3d:d7:45:49: e3:18:fe:15:0f:39:13:2b:ce:52:2f:f0:fe:a3:1c: 0e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4F:A7:F0:10:4B:20:F4:5E:14:9C:53:4A:FD:42:2E:98:0B:DC:0E X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/F9BDC484F7B011EB84345029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.182.0/23 Signature Algorithm: sha256WithRSAEncryption a9:1a:8c:1d:71:0e:e7:af:52:55:5f:47:51:0f:2a:c9:f2:1d: d5:c2:2b:26:d3:47:27:71:6e:cf:52:36:ad:c4:61:ee:a3:1f: fa:7f:bc:71:dc:2b:75:cc:2e:15:10:b1:47:ba:c1:0f:2a:10: 1f:d4:94:4f:1a:04:e1:f9:6d:d2:10:9d:bd:f3:8f:f6:3e:4c: 44:a3:4a:30:e0:0e:63:3e:f9:26:ee:f1:2c:b9:78:cf:85:0c: e7:15:11:4d:62:0e:9b:2f:c9:bf:51:b0:4a:40:d4:b7:77:79: bc:33:60:7c:d8:cb:99:ed:38:1f:6f:99:bc:dc:9c:87:24:31: 76:d9:1a:e5:d4:7e:5b:d7:f7:f9:1f:28:71:f5:0c:22:f9:8d: 19:2a:09:5f:1c:ed:90:0c:eb:eb:b8:fa:ad:f0:74:7c:42:16: f3:54:76:55:05:2b:ca:97:f7:e3:86:42:41:a2:59:95:7b:f3: 48:b2:eb:82:53:38:17:30:a5:1a:6d:fc:30:74:7f:b8:b8:50: 1a:5d:fa:6b:1c:6f:b9:32:8d:a6:21:60:e2:da:17:bd:6e:05: 98:ab:ec:5f:c8:62:b4:0e:da:2d:03:66:44:8b:fb:b2:e4:b6: 5a:7e:1b:cb:28:eb:b4:a7:b7:00:1d:b4:81:e2:b1:07:f9:50: 09:b1:e5:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjMwODMxMTgyNjIyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwZGI0ZS05Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTMZJw/vQdBrysC5H/+KceOFfDmQxK6AgNKj3Xfn1wk1mLeNklGnd3Jyv/mn vQUgRQOzHQvDjTnpor+Y62nu3/PkvjW5DkDN3UJfizfJHb60iQRehUyFmGNfWC3f p7m3jSEaf1vzWTpmHcOZS4xR51AI4I0w7NtgITLjJUX9uSRxIfKX0NCWzSTEm37L EOqGQVSF6ALY/DxRoIAGi0lg3Tg5fKOeozH9SH7rwW3NgWmST/a2j+hirsj4M6GP /sXVfiQMpWWAChrOmAeQdtwALsW6gKMwUM+A2FNkFu2LSuEdgiM+2OQSHEksjj3X RUnjGP4VDzkTK85SL/D+oxwObwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIRPp/AQ SyD0XhScU0r9Qi6YC9wOMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZFRDMvRjg1ODRGN0NCMzhBMTFFOTg3Mjg4MTY2QzRGOUFFMDIvRjlCREM0ODRG N0IwMTFFQjg0MzQ1MDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjbYwDQYJKoZIhvcNAQELBQADggEBAKkajB1xDuevUlVf R1EPKsnyHdXCKybTRydxbs9SNq3EYe6jH/p/vHHcK3XMLhUQsUe6wQ8qEB/UlE8a BOH5bdIQnb3zj/Y+TESjSjDgDmM++Sbu8Sy5eM+FDOcVEU1iDpsvyb9RsEpA1Ld3 ebwzYHzYy5ntOB9vmbzcnIckMXbZGuXUflvX9/kfKHH1DCL5jRkqCV8c7ZAM6+u4 +q3wdHxCFvNUdlUFK8qX9+OGQkGiWZV780iy64JTOBcwpRpt/DB0f7i4UBpd+msc b7kyjaYhYOLaF71uBZir7F/IYrQO2i0DZkSL+7Lktlp+G8so67SntwAdtIHisQf5 UAmx5YU= -----END CERTIFICATE-----Generated at Fri May 31 20:34:03 2024 by rpki-client on console-ams.rpki-client.org