$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/931EBB586D6E11EE8AF4BF30C4F9AE02.roa File: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (raw, json) Hash identifier: qH9VtiQulP882TTVEudwVPKzbYkVjz5k5EinQLJNkuk= Subject key identifier: 23:6B:15:5E:26:8C:4D:18:A2:2C:CE:CF:24:48:76:5C:5D:96:E6:A0 Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 047F Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/931EBB586D6E11EE8AF4BF30C4F9AE02.roa Signing time: Wed 18 Oct 2023 04:26:58 +0000 ROA not before: Wed 18 Oct 2023 04:26:58 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 7545 IP address blocks: 103.167.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 01:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Oct 18 04:26:58 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=652f5e91-c1a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:51:36:58:ce:17:fc:01:bb:21:cb:77:cd:62: 49:66:ec:49:f8:9a:86:ce:2b:29:ed:62:2e:d7:40: 0e:db:f7:f7:71:92:53:db:e2:92:fe:2c:5a:41:14: 00:02:a6:55:09:ec:7b:14:29:aa:fa:e2:39:2a:f1: 22:b3:7b:d2:cf:e8:d5:94:1f:78:88:cd:34:55:52: da:4c:79:b8:c3:87:cc:69:a1:3e:ea:37:19:06:84: 49:21:e5:0f:0e:0a:ce:02:25:d9:49:56:8e:83:8e: 85:81:91:44:84:31:44:fd:e7:fa:41:3a:80:e0:a0: 06:bb:b9:34:7b:b7:bd:d8:4f:46:fa:93:de:cd:b8: 11:40:54:0c:02:1d:67:d9:b5:6f:5c:c2:6a:ee:a1: 19:d2:30:5f:c3:78:0a:7a:84:55:6c:c0:da:19:37: bf:34:6b:21:8b:97:d5:33:d8:96:d3:6b:c6:f9:4a: 2f:d6:5d:27:0c:1e:5e:15:a4:12:58:52:a2:9b:5a: 73:de:86:fa:ec:15:df:33:0c:df:1e:f1:27:57:5a: 55:94:03:e2:7b:2c:80:e6:c4:93:5a:3b:d3:b1:cd: 89:c7:4a:87:f9:c6:1c:57:ac:46:ca:7a:a2:6e:74: f1:5d:66:6d:4b:ee:70:8f:83:47:58:ab:65:6d:9c: 53:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6B:15:5E:26:8C:4D:18:A2:2C:CE:CF:24:48:76:5C:5D:96:E6:A0 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/931EBB586D6E11EE8AF4BF30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.81.0/24 Signature Algorithm: sha256WithRSAEncryption 17:19:b4:14:d8:40:f6:29:6c:06:a9:78:bb:71:81:d4:8b:b9: d5:6b:09:00:57:35:e7:29:4f:af:d6:28:ed:5b:1e:69:bd:99: 23:f1:8c:2e:bf:16:7f:c8:35:de:f5:72:8f:eb:d2:5e:ac:2a: 4d:fd:4c:b5:e4:cc:ce:33:68:18:a0:aa:d7:cb:2e:16:2e:fb: 15:14:6b:ed:ce:7d:fb:57:c4:f8:d8:75:8d:d8:91:80:7c:b3: 47:ac:1b:f4:b3:73:82:24:6d:4f:62:00:f0:0a:39:87:b5:c5: 99:e1:95:8c:0c:59:3d:38:41:2d:90:e0:ec:f4:89:1c:91:c4: 95:42:d6:bf:78:e6:91:2f:54:65:73:83:93:e7:a0:d8:2c:c0: 13:5e:f7:90:bc:b4:8b:d9:0f:7e:3e:b9:f7:df:3e:f0:a9:1e: fe:f7:79:25:c6:26:ff:5e:c8:46:fd:9c:90:57:42:89:31:da: 56:0a:20:d4:88:21:e5:29:38:25:1c:d1:2f:a0:cf:eb:f7:ba: cc:11:60:a6:d2:71:06:00:29:b0:29:9c:ae:12:03:93:1b:9b: 5e:23:d0:18:d6:0e:ef:a6:d8:75:33:38:f7:9e:e0:38:e4:77: fa:04:96:52:b5:da:2c:47:8f:af:90:12:78:ba:b8:f6:60:dc: 2c:05:92:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjMxMDE4MDQyNjU4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJmNWU5MS1jMWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01E2WM4X/AG7Ict3zWJJZuxJ+JqGzisp7WIu10AO2/f3cZJT2+KS/ixaQRQA AqZVCex7FCmq+uI5KvEis3vSz+jVlB94iM00VVLaTHm4w4fMaaE+6jcZBoRJIeUP DgrOAiXZSVaOg46FgZFEhDFE/ef6QTqA4KAGu7k0e7e92E9G+pPezbgRQFQMAh1n 2bVvXMJq7qEZ0jBfw3gKeoRVbMDaGTe/NGshi5fVM9iW02vG+Uov1l0nDB5eFaQS WFKim1pz3ob67BXfMwzfHvEnV1pVlAPieyyA5sSTWjvTsc2Jx0qH+cYcV6xGynqi bnTxXWZtS+5wj4NHWKtlbZxTWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNrFV4m jE0YoizOzyRIdlxdluagMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NzcvRjA1ODU4QjhDQTcwMTFFQkE5RDJEQzYxQzRGOUFFMDIvOTMxRUJCNTg2 RDZFMTFFRThBRjRCRjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp1EwDQYJKoZIhvcNAQELBQADggEBABcZtBTYQPYpbAap eLtxgdSLudVrCQBXNecpT6/WKO1bHmm9mSPxjC6/Fn/INd71co/r0l6sKk39TLXk zM4zaBigqtfLLhYu+xUUa+3OfftXxPjYdY3YkYB8s0esG/Szc4IkbU9iAPAKOYe1 xZnhlYwMWT04QS2Q4Oz0iRyRxJVC1r945pEvVGVzg5PnoNgswBNe95C8tIvZD34+ ufffPvCpHv73eSXGJv9eyEb9nJBXQokx2lYKINSIIeUpOCUc0S+gz+v3uswRYKbS cQYAKbApnK4SA5Mbm14j0BjWDu+m2HUzOPee4Djkd/oEllK12ixHj6+QEni6uPZg 3CwFksc= -----END CERTIFICATE-----Generated at Fri Jun 7 02:20:50 2024 by rpki-client on console-fra.rpki-client.org