$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa File: 1071470CF41311EA9FD4EE0FC4F9AE02.roa (raw, json) Hash identifier: gLVw8VoKM1aWPCGa4uEt4pb5KJRkHkce3ThtrbSi3zg= Subject key identifier: 8B:61:85:F7:CA:61:96:98:68:B9:B7:51:7A:F2:AF:15:CF:9F:69:F9 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 180E Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa Signing time: Fri 12 Jan 2024 17:04:43 +0000 ROA not before: Fri 12 Jan 2024 17:04:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 213120 IP address blocks: 103.41.68.0/22 maxlen: 22 103.41.68.0/24 maxlen: 24 103.41.69.0/24 maxlen: 24 103.41.70.0/24 maxlen: 24 103.41.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6158 (0x180e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 12 17:04:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a1712a-f27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:7d:15:fd:d3:25:6d:30:0c:9a:75:c6:3a: 27:e3:33:ce:b1:8a:4f:ae:bc:45:29:1e:11:05:3e: 13:c7:30:bd:81:c7:7f:ef:bf:9c:b1:e8:53:41:69: 3e:6e:d7:5d:b8:a8:02:21:7f:6e:eb:09:f5:df:e3: 0a:f9:08:bc:9b:58:85:e3:8d:24:50:7e:0f:bc:ce: 9c:8a:7c:c2:9a:ba:71:5a:f2:79:94:b4:5c:ef:fa: d2:65:c4:79:c8:50:69:66:9b:fd:62:d3:1a:8e:85: 80:e0:7c:f5:85:5a:9c:71:d7:cc:e1:34:04:15:81: 00:65:d8:31:fc:fa:67:b7:ee:6f:1a:ad:b1:43:de: d3:aa:49:7c:d6:99:a1:b4:ca:d7:fd:71:d1:2f:12: c7:6a:69:7f:3a:c8:2b:cf:b6:9b:79:de:a8:4c:00: 11:54:3a:15:15:38:27:68:02:7b:66:4a:fd:1f:2d: b5:9f:69:10:c6:7e:90:d8:8b:c5:5f:27:78:9c:6a: af:a6:0b:be:35:24:9c:28:4a:f0:b9:6c:49:4f:a8: a5:8f:af:0b:65:6b:25:b9:30:9e:8c:c5:57:64:b0: b0:20:f2:4c:55:c3:39:49:04:fb:db:5a:4a:0e:20: e1:33:3f:75:c7:b9:c1:8f:06:5a:ac:0a:71:90:dc: bd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:61:85:F7:CA:61:96:98:68:B9:B7:51:7A:F2:AF:15:CF:9F:69:F9 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.68.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:6d:b2:e9:89:37:21:9f:b5:df:bf:c5:54:92:a2:e7:ba:2b: 82:ab:fb:fa:da:10:01:ee:84:a6:b7:04:e6:45:20:76:b4:4b: ed:b9:aa:a6:f4:51:ef:3e:fb:35:99:f2:c1:94:2b:66:5c:ff: 77:d2:3a:57:a9:4b:a2:db:6f:cd:e0:fe:31:e8:b6:9c:29:74: 03:18:0d:b6:1a:0a:43:1c:97:3e:f4:bc:9b:86:e5:ef:1b:75: 43:14:f6:55:f8:d8:d8:dc:2c:3d:5e:1c:f1:50:47:2b:38:49: 90:98:92:95:c4:cf:9b:e3:82:e5:69:8a:4d:cc:96:3f:05:4c: d1:ad:c6:c9:2b:5d:f2:fc:91:8d:a8:6e:d4:b2:34:6d:1f:36: 29:38:b6:d9:57:f3:01:75:ad:5c:ed:43:be:cd:1a:cb:91:66: 4d:64:b9:5b:4d:89:9e:b9:e0:28:30:c9:98:aa:ff:d3:e2:4d: 21:c9:d3:8e:c0:23:38:4c:77:0f:a1:15:f9:14:27:10:b3:27: 61:4a:a5:51:80:c1:7d:cc:69:5a:6f:95:65:ba:00:2b:88:f3: 1b:a0:be:b6:e7:22:7a:f8:3e:f5:e2:18:1b:e7:90:70:3d:00: fb:f3:23:66:b2:b4:34:45:f7:c9:c6:90:b5:fa:b4:60:26:41: 8c:c6:bc:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjQwMTEyMTcwNDQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExNzEyYS1mMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1i19Ff3TJW0wDJp1xjon4zPOsYpPrrxFKR4RBT4TxzC9gcd/77+csehTQWk+ btdduKgCIX9u6wn13+MK+Qi8m1iF440kUH4PvM6cinzCmrpxWvJ5lLRc7/rSZcR5 yFBpZpv9YtMajoWA4Hz1hVqccdfM4TQEFYEAZdgx/Ppnt+5vGq2xQ97Tqkl81pmh tMrX/XHRLxLHaml/Osgrz7abed6oTAARVDoVFTgnaAJ7Zkr9Hy21n2kQxn6Q2IvF Xyd4nGqvpgu+NSScKErwuWxJT6ilj68LZWsluTCejMVXZLCwIPJMVcM5SQT721pK DiDhMz91x7nBjwZarApxkNy9AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIthhffK YZaYaLm3UXryrxXPn2n5MB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvMTA3MTQ3MENG NDEzMTFFQTlGRDRFRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKUQwDQYJKoZIhvcNAQELBQADggEBACxtsumJNyGftd+/ xVSSoue6K4Kr+/raEAHuhKa3BOZFIHa0S+25qqb0Ue8++zWZ8sGUK2Zc/3fSOlep S6Lbb83g/jHotpwpdAMYDbYaCkMclz70vJuG5e8bdUMU9lX42NjcLD1eHPFQRys4 SZCYkpXEz5vjguVpik3Mlj8FTNGtxskrXfL8kY2obtSyNG0fNik4ttlX8wF1rVzt Q77NGsuRZk1kuVtNiZ654CgwyZiq/9PiTSHJ047AIzhMdw+hFfkUJxCzJ2FKpVGA wX3MaVpvlWW6ACuI8xugvrbnInr4PvXiGBvnkHA9APvzI2aytDRF98nGkLX6tGAm QYzGvCs= -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:21 2024 by rpki-client on console-ams.rpki-client.org