$ rpki-client -vvf rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa File: 8789C45E384311EAAA40EE51C4F9AE02.roa (raw, json) Hash identifier: nhMpD/JXznSkQ+02PS+rxM+C+Qbm8oAFaFIebB2YN8k= Subject key identifier: 7D:0C:BC:0E:D0:A3:FE:9F:3B:4B:4D:E7:AA:85:92:3E:96:8B:75:39 Certificate issuer: /CN=A9154534/serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Certificate serial: 0A19 Authority key identifier: 55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa Signing time: Mon 30 Oct 2023 03:15:13 +0000 ROA not before: Mon 30 Oct 2023 03:15:13 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137510 IP address blocks: 103.220.4.0/22 maxlen: 24 2405:7f80::/32 maxlen: 32 2405:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 20:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154534/serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Validity Not Before: Oct 30 03:15:13 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=653f1fc0-7f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:be:f0:90:12:33:6b:88:e3:f3:53:63:de:8d: dd:04:f5:a4:e4:6f:4e:1d:a0:74:a9:8c:cf:ee:58: 6b:27:35:a0:da:5b:5b:5c:91:40:9c:ac:f3:9a:55: 85:88:52:6a:dc:68:33:ad:42:03:d6:b5:8d:12:3e: 3a:c7:f8:d3:25:37:0c:af:10:e9:27:d3:58:67:48: 28:d5:c8:1c:91:ab:4d:33:b2:4a:30:9b:87:a9:bf: 2a:4d:dd:7c:76:e9:04:45:e1:2c:c3:77:e2:79:e6: da:5a:8f:7c:6a:4d:c7:5f:69:e2:8d:85:df:70:39: 23:4d:90:c8:50:09:c4:31:dc:07:1c:7c:f9:bb:56: 4e:82:d2:12:68:bc:77:2e:c7:18:af:03:f8:2a:32: e3:15:9c:9c:6c:da:14:21:84:3d:62:40:14:c1:a6: f3:17:1e:4b:dd:3c:b2:80:ff:09:f1:63:3d:b5:f9: 80:00:de:e6:e5:76:2a:b8:d4:ee:7c:32:1c:f9:a9: 66:86:59:f6:34:fb:ae:7c:09:42:e3:8f:65:d5:f0: 80:bc:17:80:08:3f:13:35:c4:6d:c4:cb:f6:4a:21: 4c:5c:45:4d:19:01:dd:cd:55:fc:b7:a2:12:73:47: ee:21:6d:fa:76:1a:ff:4d:84:04:03:a2:d4:a0:36: fb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0C:BC:0E:D0:A3:FE:9F:3B:4B:4D:E7:AA:85:92:3E:96:8B:75:39 X509v3 Authority Key Identifier: keyid:55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.220.4.0/22 IPv6: 2405:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 29:f6:db:74:32:45:2f:22:5e:95:42:ca:80:5a:f1:d8:f1:58: e7:d1:39:2b:22:13:23:a1:c1:e2:45:0f:b5:df:1c:ea:40:4d: 9d:f2:11:6e:4b:22:46:bd:04:49:3a:f2:3f:5f:79:f8:6c:07: 5b:7d:ee:a7:87:55:40:eb:f2:8f:9b:0d:af:8b:f1:d8:d4:21: 51:02:21:c3:4d:82:df:f2:c0:70:8b:89:c0:db:45:ba:7d:19: 01:a5:95:34:78:aa:7d:1d:45:51:be:98:b7:e5:30:8b:db:c0: a1:dd:e3:92:98:13:9f:8d:65:2e:e4:ec:ba:e5:81:fa:93:30: d1:55:fe:2f:01:a0:60:60:13:1d:80:ce:0c:36:51:00:89:33: 1c:89:92:22:2d:e4:b2:bc:20:94:be:76:2f:5f:9e:fa:2a:7c: 3f:cc:d8:32:94:91:94:a1:31:e3:e5:ed:ea:d8:8d:10:1f:05: 4a:43:fb:7a:0e:e1:50:c2:9e:b3:94:49:81:56:82:ee:69:a6: e9:63:a4:0c:84:dd:0f:f5:a0:67:b5:ec:46:1a:3e:9b:a6:71: 7a:dc:75:83:31:6d:40:38:89:45:d3:70:b4:ae:a8:56:f2:37: 62:2b:1d:f2:57:d8:ae:9d:57:25:ea:d5:13:b5:58:82:59:c5: c2:38:8f:1c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MzQxMTAvBgNVBAUTKDU1QzQ2ODU1Q0M5MUFDNTRBQzA3NUMyOTdCNzUzMUZB ODhBNzM1RDkwHhcNMjMxMDMwMDMxNTEzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNmMWZjMC03Zjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb7wkBIza4jj81Nj3o3dBPWk5G9OHaB0qYzP7lhrJzWg2ltbXJFAnKzzmlWF iFJq3GgzrUID1rWNEj46x/jTJTcMrxDpJ9NYZ0go1cgckatNM7JKMJuHqb8qTd18 dukEReEsw3fieebaWo98ak3HX2nijYXfcDkjTZDIUAnEMdwHHHz5u1ZOgtISaLx3 LscYrwP4KjLjFZycbNoUIYQ9YkAUwabzFx5L3TyygP8J8WM9tfmAAN7m5XYquNTu fDIc+almhln2NPuufAlC449l1fCAvBeACD8TNcRtxMv2SiFMXEVNGQHdzVX8t6IS c0fuIW36dhr/TYQEA6LUoDb7OQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFH0MvA7Q o/6fO0tN56qFkj6Wi3U5MB8GA1UdIwQYMBaAFFXEaFXMkaxUrAdcKXt1MfqIpzXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUzNC9CRDI2OTA5RTM4 NDExMUVBOUZFRDVENEZDNEY5QUUwMi9WY1JvVmN5UnJGU3NCMXdwZTNVeC1vaW5O ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZjUm9WY3lSckZTc0Ixd3BlM1V4LW9pbk5kay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ1MzQvQkQyNjkwOUUzODQxMTFFQTlGRUQ1RDRGQzRGOUFFMDIvODc4OUM0NUUz ODQzMTFFQUFBNDBFRTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn3AQwDQQCAAIwBwMFACQFf4AwDQYJKoZIhvcNAQELBQAD ggEBACn223QyRS8iXpVCyoBa8djxWOfROSsiEyOhweJFD7XfHOpATZ3yEW5LIka9 BEk68j9fefhsB1t97qeHVUDr8o+bDa+L8djUIVECIcNNgt/ywHCLicDbRbp9GQGl lTR4qn0dRVG+mLflMIvbwKHd45KYE5+NZS7k7LrlgfqTMNFV/i8BoGBgEx2Azgw2 UQCJMxyJkiIt5LK8IJS+di9fnvoqfD/M2DKUkZShMePl7erYjRAfBUpD+3oO4VDC nrOUSYFWgu5ppuljpAyE3Q/1oGe17EYaPpumcXrcdYMxbUA4iUXTcLSuqFbyN2Ir HfJX2K6dVyXq1RO1WIJZxcI4jxw= -----END CERTIFICATE-----Generated at Wed Jun 12 22:38:23 2024 by rpki-client on console-fra.rpki-client.org