$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/C309F5BA017011ECB98B2F33C4F9AE02.roa File: C309F5BA017011ECB98B2F33C4F9AE02.roa (raw, json) Hash identifier: /NFpgPJKOHCk6bZQirkYTooRxtED/FX//EMDLOQqEBE= Subject key identifier: 64:4B:66:11:AF:FE:60:C7:C2:B5:64:45:C7:5A:37:FF:57:49:13:08 Certificate issuer: /CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Certificate serial: 03F6 Authority key identifier: F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/C309F5BA017011ECB98B2F33C4F9AE02.roa Signing time: Thu 19 Oct 2023 00:53:17 +0000 ROA not before: Thu 19 Oct 2023 00:53:17 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141196 IP address blocks: 103.156.36.0/24 maxlen: 24 2406:7d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Validity Not Before: Oct 19 00:53:17 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65307dfd-41d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:58:17:52:a3:06:1a:16:39:82:81:53:d7: 68:67:c2:74:51:6b:90:41:ae:d5:64:0d:30:85:27: a0:cd:91:1e:4c:82:21:95:f5:25:3a:1e:ec:8e:33: fa:bf:a2:80:72:c6:8d:2c:8f:56:27:1c:de:f4:84: b0:f4:cf:2f:97:29:3f:3f:aa:11:37:11:52:32:6c: 16:44:f6:0f:4b:7e:2f:7a:44:88:fb:37:be:eb:9f: 28:f5:a0:46:c8:20:0d:a3:be:2a:ab:46:27:41:5a: d3:c2:73:01:8d:07:3c:f5:a9:47:37:15:76:c6:d1: f6:b1:3b:21:b3:ac:0d:23:da:14:4c:1b:6a:ed:f9: 35:e1:46:35:ea:4e:7e:bb:17:b4:05:d0:d0:93:32: 29:8d:70:1f:53:0e:0e:8f:6f:61:69:ad:58:4a:a3: 75:8b:21:92:63:bc:07:c2:86:58:74:71:ac:f9:c3: 0f:b1:6d:e3:92:fa:7f:21:35:01:74:e2:c3:a6:2c: 8d:d7:2d:1e:94:54:bc:8d:3e:f1:d7:b1:1b:92:77: 71:3c:d3:2f:1b:c6:87:65:d2:98:88:06:f3:9d:87: 47:2e:2c:cf:87:fd:1b:1c:e6:12:1d:6d:78:fa:0b: 50:d4:94:be:9b:c6:b1:2f:1b:da:d0:f8:f7:74:7a: cb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4B:66:11:AF:FE:60:C7:C2:B5:64:45:C7:5A:37:FF:57:49:13:08 X509v3 Authority Key Identifier: keyid:F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/C309F5BA017011ECB98B2F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.36.0/24 IPv6: 2406:7d40::/32 Signature Algorithm: sha256WithRSAEncryption 16:68:7c:76:d2:fe:46:e5:4c:fa:ed:30:98:3f:1c:dd:9d:0d: e7:03:9c:17:3f:93:40:e1:2d:b5:43:e7:e5:6e:a5:4a:ef:8a: b3:15:42:08:7f:a9:f5:e1:1b:fe:a7:14:1f:f9:2c:8c:5a:1f: 5d:f3:45:f4:42:8c:0e:96:17:87:e6:2d:e8:56:f7:69:45:b9: 96:ba:31:29:bb:60:40:41:7b:cb:83:7d:4f:a9:38:45:a4:36: b7:3d:ef:1b:54:2a:90:2a:e9:3f:29:78:f6:21:c8:ec:db:21: 2e:f9:ee:e5:95:d6:ef:87:13:db:b5:bf:61:f2:d4:7c:8d:60: 72:38:7f:66:71:11:0f:71:a9:fb:ec:18:4f:3f:b0:bf:1b:cd: 49:af:70:48:d6:f4:a7:51:cd:ce:c2:1d:2f:51:d9:e5:a2:16: eb:e0:a2:db:b5:47:90:0d:73:26:f1:f1:84:64:8e:7a:fb:62: dc:1a:b9:fb:d7:51:57:e5:25:7c:03:61:46:a9:c8:be:af:af: cc:e5:55:4a:12:16:44:65:5e:09:72:f3:62:0f:20:c0:da:ea: 98:db:2c:4f:bb:f5:16:79:0e:15:58:8e:96:bd:49:c4:f5:2d: 4e:cb:85:01:df:10:56:0b:06:8b:64:de:73:d8:3d:66:7f:f1: a0:d4:ab:b9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEYxQkE5NDNDMzAzNkM2OUI0NEE3NTk3MEE0NEQ5Mjkw NTY4OUE5MEYwHhcNMjMxMDE5MDA1MzE3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMwN2RmZC00MWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2tYF1KjBhoWOYKBU9doZ8J0UWuQQa7VZA0whSegzZEeTIIhlfUlOh7sjjP6 v6KAcsaNLI9WJxze9ISw9M8vlyk/P6oRNxFSMmwWRPYPS34vekSI+ze+658o9aBG yCANo74qq0YnQVrTwnMBjQc89alHNxV2xtH2sTshs6wNI9oUTBtq7fk14UY16k5+ uxe0BdDQkzIpjXAfUw4Oj29haa1YSqN1iyGSY7wHwoZYdHGs+cMPsW3jkvp/ITUB dOLDpiyN1y0elFS8jT7x17EbkndxPNMvG8aHZdKYiAbznYdHLizPh/0bHOYSHW14 +gtQ1JS+m8axLxva0Pj3dHrLLQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGRLZhGv /mDHwrVkRcdaN/9XSRMIMB8GA1UdIwQYMBaAFPG6lDwwNsabRKdZcKRNkpBWiakP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC83QUM1MTU0QzAx NkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhwdEVwMWx3cEUyU2tGYUpx UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhicVVQREEyeHB0RXAxbHdwRTJTa0ZhSnFROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlFQ0QvN0FDNTE1NEMwMTZBMTFFQ0IyQjAwQzM3QzRGOUFFMDIvQzMwOUY1QkEw MTcwMTFFQ0I5OEIyRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnnCQwDQQCAAIwBwMFACQGfUAwDQYJKoZIhvcNAQELBQAD ggEBABZofHbS/kblTPrtMJg/HN2dDecDnBc/k0DhLbVD5+VupUrvirMVQgh/qfXh G/6nFB/5LIxaH13zRfRCjA6WF4fmLehW92lFuZa6MSm7YEBBe8uDfU+pOEWkNrc9 7xtUKpAq6T8pePYhyOzbIS757uWV1u+HE9u1v2Hy1HyNYHI4f2ZxEQ9xqfvsGE8/ sL8bzUmvcEjW9KdRzc7CHS9R2eWiFuvgotu1R5ANcybx8YRkjnr7YtwaufvXUVfl JXwDYUapyL6vr8zlVUoSFkRlXgly82IPIMDa6pjbLE+79RZ5DhVYjpa9ScT1LU7L hQHfEFYLBotk3nPYPWZ/8aDUq7k= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:25 2024 by rpki-client on console-ams.rpki-client.org