$ rpki-client -vvf rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/999F4BE8259611EE944D733CC4F9AE02.roa File: 999F4BE8259611EE944D733CC4F9AE02.roa (raw, json) Hash identifier: 8ePOlBYKqgy0MK4nBzW4xCCIxX7mzxm4E8sEUtNm6nk= Subject key identifier: 81:7A:1B:94:E1:4A:C4:1B:3C:9C:6B:2A:13:3F:BA:2B:23:DF:E7:01 Certificate issuer: /CN=A9150EF7/serialNumber=5C9F6C1DBC4ECF091962F60EBE5ABFCB6B031A2D Certificate serial: 0B71 Authority key identifier: 5C:9F:6C:1D:BC:4E:CF:09:19:62:F6:0E:BE:5A:BF:CB:6B:03:1A:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/999F4BE8259611EE944D733CC4F9AE02.roa Signing time: Thu 04 Apr 2024 19:58:15 +0000 ROA not before: Thu 04 Apr 2024 19:58:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136434 IP address blocks: 103.87.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.crl rsync://rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2929 (0xb71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150EF7/serialNumber=5C9F6C1DBC4ECF091962F60EBE5ABFCB6B031A2D Validity Not Before: Apr 4 19:58:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f0656-88fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b8:76:3c:20:03:96:31:85:f7:5e:a9:db:c5: 6f:dc:cc:f5:24:63:35:1d:47:a5:9f:47:90:44:c2: d0:d3:f1:ac:a7:a2:47:05:68:e1:e2:47:25:ef:24: e6:33:3a:33:70:bd:d0:f7:10:26:72:9d:b7:37:8a: be:4a:84:77:fa:4a:a7:31:49:e5:c2:17:de:de:c2: e8:b2:cb:0d:74:b1:63:70:37:1c:26:bb:52:d8:83: fb:42:11:32:ee:5a:a1:7d:02:ae:39:7e:11:ef:8e: a1:cf:f1:3d:5f:16:df:fc:38:4e:d0:4a:9b:6f:c6: b8:27:2d:4f:61:85:6b:b4:69:92:db:a6:6b:e5:de: b8:cf:a1:b1:82:03:8e:d7:ed:77:50:e9:ac:90:f2: 1a:78:4d:60:a9:14:7f:ef:96:9b:22:ff:8e:34:a5: 17:44:58:09:71:00:34:f8:05:03:c8:4b:70:fe:8e: 0c:32:78:16:ed:6b:2d:cd:8a:5f:20:09:bb:af:aa: fc:2c:0b:c1:a1:48:e4:c8:3c:d3:4f:5d:37:e0:3c: c3:22:21:13:0a:c1:99:4d:85:82:f6:b2:0c:61:a2: 7c:9d:b5:e6:89:a4:b0:30:ed:1d:33:c5:f8:6b:da: 81:1f:26:19:78:7c:af:26:fa:03:e8:8c:75:19:db: b8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:7A:1B:94:E1:4A:C4:1B:3C:9C:6B:2A:13:3F:BA:2B:23:DF:E7:01 X509v3 Authority Key Identifier: keyid:5C:9F:6C:1D:BC:4E:CF:09:19:62:F6:0E:BE:5A:BF:CB:6B:03:1A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJ9sHbxOzwkZYvYOvlq_y2sDGi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150EF7/B071397C05E611EA80BCD67CC4F9AE02/999F4BE8259611EE944D733CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.244.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:0f:26:cb:e0:c4:1a:c7:20:98:82:98:8b:9f:7f:47:82:81: 70:5d:6b:2f:b1:d2:fc:31:09:e8:64:20:92:43:6e:3b:b2:09: 65:e6:82:69:a4:68:2c:f5:e7:ed:82:cd:da:30:6d:81:94:c4: 5e:81:91:c6:1e:49:c8:f4:26:8b:21:b8:36:75:21:2b:80:fa: f0:7d:b7:8a:80:68:3d:97:a6:61:47:90:50:1f:76:46:6d:a2: 11:5c:87:d3:78:4a:0c:67:98:cf:f6:7d:0a:68:64:e8:05:3c: a0:25:58:b4:83:f3:d8:8a:00:78:82:d8:c3:b8:d7:aa:08:04: 09:b8:18:17:a1:0c:ed:97:bb:d6:e3:82:a9:2c:90:c8:3d:5b: fe:5b:50:1c:69:5f:33:01:22:34:65:73:1f:9e:85:af:e1:21: 60:0a:67:7f:94:29:dc:70:a7:c0:c2:ea:09:04:5c:18:6f:f0: cf:6e:09:07:06:03:10:6c:88:4a:0a:0f:77:c1:d8:f7:9b:ce: da:02:ad:27:8a:21:62:06:31:75:e8:95:27:ce:37:24:08:5e: af:6a:86:02:a5:ff:f1:a6:c5:92:42:3c:1c:87:7c:31:f4:e4: a1:1b:97:6a:d5:65:8b:1b:3d:8f:56:81:c3:84:78:46:43:7c: f3:a9:8b:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFRjcxMTAvBgNVBAUTKDVDOUY2QzFEQkM0RUNGMDkxOTYyRjYwRUJFNUFCRkNC NkIwMzFBMkQwHhcNMjQwNDA0MTk1ODE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMDY1Ni04OGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprh2PCADljGF916p28Vv3Mz1JGM1HUeln0eQRMLQ0/Gsp6JHBWjh4kcl7yTm MzozcL3Q9xAmcp23N4q+SoR3+kqnMUnlwhfe3sLosssNdLFjcDccJrtS2IP7QhEy 7lqhfQKuOX4R746hz/E9Xxbf/DhO0Eqbb8a4Jy1PYYVrtGmS26Zr5d64z6GxggOO 1+13UOmskPIaeE1gqRR/75abIv+ONKUXRFgJcQA0+AUDyEtw/o4MMngW7WstzYpf IAm7r6r8LAvBoUjkyDzTT1034DzDIiETCsGZTYWC9rIMYaJ8nbXmiaSwMO0dM8X4 a9qBHyYZeHyvJvoD6Ix1Gdu4fwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIF6G5Th SsQbPJxrKhM/uisj3+cBMB8GA1UdIwQYMBaAFFyfbB28Ts8JGWL2Dr5av8trAxot MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEVGNy9CMDcxMzk3QzA1 RTYxMUVBODBCQ0Q2N0NDNEY5QUUwMi9YSjlzSGJ4T3p3a1pZdllPdmxxX3kyc0RH aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKOXNIYnhPendrWll2WU92bHFfeTJzREdpMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBFRjcvQjA3MTM5N0MwNUU2MTFFQTgwQkNENjdDQzRGOUFFMDIvOTk5RjRCRTgy NTk2MTFFRTk0NEQ3MzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnV/QwDQYJKoZIhvcNAQELBQADggEBACoPJsvgxBrHIJiC mIuff0eCgXBday+x0vwxCehkIJJDbjuyCWXmgmmkaCz15+2CzdowbYGUxF6BkcYe Scj0JoshuDZ1ISuA+vB9t4qAaD2XpmFHkFAfdkZtohFch9N4SgxnmM/2fQpoZOgF PKAlWLSD89iKAHiC2MO416oIBAm4GBehDO2Xu9bjgqkskMg9W/5bUBxpXzMBIjRl cx+eha/hIWAKZ3+UKdxwp8DC6gkEXBhv8M9uCQcGAxBsiEoKD3fB2PebztoCrSeK IWIGMXXolSfONyQIXq9qhgKl//GmxZJCPByHfDH05KEbl2rVZYsbPY9WgcOEeEZD fPOpi1Q= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:14 2024 by rpki-client on console-ams.rpki-client.org