$ rpki-client -vvf rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/E50353FEDFED11EBA155C712C4F9AE02.roa File: E50353FEDFED11EBA155C712C4F9AE02.roa (raw, json) Hash identifier: V5f/gqxIr+r1tPh/3c5+lIBvIH0Ic1ylS/ajbHsbw4E= Subject key identifier: 9A:53:78:72:6F:25:3B:DC:48:D3:76:74:6B:F8:F5:AF:41:5B:E3:F9 Certificate issuer: /CN=A916714C/serialNumber=353E48875376C6DB97E3426365CC7F18C9456877 Certificate serial: 0409 Authority key identifier: 35:3E:48:87:53:76:C6:DB:97:E3:42:63:65:CC:7F:18:C9:45:68:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NT5Ih1N2xtuX40JjZcx_GMlFaHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/E50353FEDFED11EBA155C712C4F9AE02.roa Signing time: Wed 21 Jun 2023 01:39:12 +0000 ROA not before: Wed 21 Jun 2023 01:39:12 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140600 IP address blocks: 103.166.230.0/23 maxlen: 23 103.166.230.0/24 maxlen: 24 103.166.231.0/24 maxlen: 24 2001:df6:9d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/NT5Ih1N2xtuX40JjZcx_GMlFaHc.crl rsync://rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/NT5Ih1N2xtuX40JjZcx_GMlFaHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NT5Ih1N2xtuX40JjZcx_GMlFaHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 01:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916714C/serialNumber=353E48875376C6DB97E3426365CC7F18C9456877 Validity Not Before: Jun 21 01:39:12 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=649254bf-3b59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:58:59:27:c5:8c:0d:36:c0:64:4f:95:f4:2e: 40:1d:09:a5:76:82:5d:d1:e3:f8:91:b5:91:bf:c1: 29:ab:8b:22:92:b4:a4:b5:b6:49:13:3f:b5:4e:a2: 0b:4f:13:f7:ad:b8:db:ee:8f:54:cc:af:c1:ee:04: 12:1f:b4:49:c3:6f:32:9a:78:7d:a3:d9:4b:56:38: da:44:f8:74:b6:be:a6:a2:80:03:37:66:03:36:29: 34:d5:e2:60:ad:28:36:eb:5b:6a:97:a2:50:64:bb: 77:ca:17:7b:3b:af:02:17:4a:2f:10:b6:20:c3:4a: 0f:b9:d1:6d:2c:6b:a3:1e:19:d9:38:e3:07:cc:74: 4d:9a:16:83:a7:4d:ef:99:87:d9:b5:17:9b:11:e6: b1:4f:27:44:8f:2a:ad:d2:21:24:6b:f2:57:5f:a5: 54:5c:1d:f9:9c:a7:90:00:e0:73:69:99:6a:07:ae: f3:04:4a:e8:28:d1:be:68:01:20:53:10:0a:ee:37: c5:05:0c:18:8d:8b:ba:9d:99:f9:b0:55:2c:bf:35: 3e:2a:65:32:b3:8a:c2:5c:19:18:7e:28:32:6f:a7: 34:44:a9:fd:91:01:54:bd:24:2c:53:7e:99:bf:97: ee:bf:20:fb:fd:ac:03:9a:02:ac:bf:e6:fa:30:b7: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:53:78:72:6F:25:3B:DC:48:D3:76:74:6B:F8:F5:AF:41:5B:E3:F9 X509v3 Authority Key Identifier: keyid:35:3E:48:87:53:76:C6:DB:97:E3:42:63:65:CC:7F:18:C9:45:68:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/NT5Ih1N2xtuX40JjZcx_GMlFaHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NT5Ih1N2xtuX40JjZcx_GMlFaHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916714C/3FED6608DFEC11EB8F704D12C4F9AE02/E50353FEDFED11EBA155C712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.230.0/23 IPv6: 2001:df6:9d80::/48 Signature Algorithm: sha256WithRSAEncryption a8:ac:8a:a6:57:1f:54:83:81:95:2d:28:5c:1a:4d:b1:d4:64: 20:25:6c:b0:a0:3f:0b:55:99:84:2d:83:77:91:13:5a:3b:bc: 65:6e:05:e5:a2:7c:48:9f:63:25:58:7a:fb:94:be:c5:24:cf: 2f:cb:7d:03:70:95:7e:c9:81:05:73:f3:3e:4b:67:e6:2e:b4: a5:54:3c:5b:0f:95:da:fa:21:22:77:a4:ef:04:d7:e4:05:51: ad:07:c7:6d:bd:ba:2f:8f:1f:10:a2:c4:1f:eb:ff:28:77:a7: 75:08:01:84:a4:f9:93:cc:9c:de:bf:ed:03:d3:4c:89:6b:88: ea:6d:fa:ad:dc:6e:d7:82:02:be:c0:2a:e4:e2:c9:29:8a:f1: 48:64:37:6d:7c:4b:7c:7b:1e:ee:55:25:b1:39:71:35:f2:fd: ba:4e:44:d7:27:b6:d0:c6:56:7a:0b:57:c3:fb:41:06:3c:5d: b6:0a:93:22:c9:b6:33:bf:8f:9c:cb:6e:cb:11:a9:f4:67:d9: b2:c8:ff:54:23:d5:21:bc:dd:da:dc:e8:b0:94:30:05:2c:ab: f0:14:c1:9c:34:82:9c:3e:c2:a0:31:05:6a:c2:f1:0f:c1:e2: be:7b:9b:f5:59:08:3b:21:2b:05:64:fe:7c:1c:99:77:69:d2: 40:24:48:5b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcxNEMxMTAvBgNVBAUTKDM1M0U0ODg3NTM3NkM2REI5N0UzNDI2MzY1Q0M3RjE4 Qzk0NTY4NzcwHhcNMjMwNjIxMDEzOTEyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkyNTRiZi0zYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1hZJ8WMDTbAZE+V9C5AHQmldoJd0eP4kbWRv8Epq4sikrSktbZJEz+1TqIL TxP3rbjb7o9UzK/B7gQSH7RJw28ymnh9o9lLVjjaRPh0tr6mooADN2YDNik01eJg rSg261tql6JQZLt3yhd7O68CF0ovELYgw0oPudFtLGujHhnZOOMHzHRNmhaDp03v mYfZtRebEeaxTydEjyqt0iEka/JXX6VUXB35nKeQAOBzaZlqB67zBEroKNG+aAEg UxAK7jfFBQwYjYu6nZn5sFUsvzU+KmUys4rCXBkYfigyb6c0RKn9kQFUvSQsU36Z v5fuvyD7/awDmgKsv+b6MLfQewIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJpTeHJv JTvcSNN2dGv49a9BW+P5MB8GA1UdIwQYMBaAFDU+SIdTdsbbl+NCY2XMfxjJRWh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzE0Qy8zRkVENjYwOERG RUMxMUVCOEY3MDREMTJDNEY5QUUwMi9OVDVJaDFOMnh0dVg0MEpqWmN4X0dNbEZh SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05UNUloMU4yeHR1WDQwSmpaY3hfR01sRmFIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcxNEMvM0ZFRDY2MDhERkVDMTFFQjhGNzA0RDEyQzRGOUFFMDIvRTUwMzUzRkVE RkVEMTFFQkExNTVDNzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpuYwDwQCAAIwCQMHACABDfadgDANBgkqhkiG9w0BAQsF AAOCAQEAqKyKplcfVIOBlS0oXBpNsdRkICVssKA/C1WZhC2Dd5ETWju8ZW4F5aJ8 SJ9jJVh6+5S+xSTPL8t9A3CVfsmBBXPzPktn5i60pVQ8Ww+V2vohInek7wTX5AVR rQfHbb26L48fEKLEH+v/KHendQgBhKT5k8yc3r/tA9NMiWuI6m36rdxu14ICvsAq 5OLJKYrxSGQ3bXxLfHse7lUlsTlxNfL9uk5E1ye20MZWegtXw/tBBjxdtgqTIsm2 M7+PnMtuyxGp9GfZssj/VCPVIbzd2tzosJQwBSyr8BTBnDSCnD7CoDEFasLxD8Hi vnub9VkIOyErBWT+fByZd2nSQCRIWw== -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:18 2024 by rpki-client on console-ams.rpki-client.org