$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/7BD960ACD80C11EEB0A2E116C4F9AE02.roa File: 7BD960ACD80C11EEB0A2E116C4F9AE02.roa (raw, json) Hash identifier: el9/9E83oRL979Zm28j4oLyIPv2DAf65HQ657KNgC58= Subject key identifier: 5A:14:5B:A8:80:9E:F6:5B:68:CA:DD:C1:3B:17:A3:B3:BF:18:5A:14 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0117 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/7BD960ACD80C11EEB0A2E116C4F9AE02.roa Signing time: Fri 01 Mar 2024 20:45:59 +0000 ROA not before: Fri 01 Mar 2024 20:45:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 152605 IP address blocks: 103.151.46.0/24 maxlen: 24 103.151.47.0/24 maxlen: 24 2400:3fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Mar 2024 18:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Mar 1 20:45:59 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65e23e87-5f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:af:01:e9:77:fa:8d:1b:f0:cc:06:bb:cb: 89:60:8d:5f:5f:e4:8f:9f:b9:22:0f:e4:a7:c1:b0: 87:56:66:51:4b:37:51:7a:b0:c6:4a:d6:da:88:01: 1e:90:57:13:27:b8:b7:7a:06:cd:5e:6d:95:97:43: 49:4f:02:1c:2c:66:dd:93:34:43:7c:c2:e3:fb:44: aa:c9:9b:37:8c:b6:29:51:9c:29:fe:13:45:91:e6: 30:b5:62:cf:87:8e:ea:aa:93:85:e9:b0:c3:14:d5: 1f:98:1c:18:40:d2:46:43:f2:28:6b:e1:41:1b:a9: 13:b6:3d:50:f6:f9:ac:ed:fa:59:c6:b1:9d:cc:58: 9d:03:e0:e2:fd:74:53:0e:f9:c5:8f:46:26:65:b2: 2a:f1:92:4f:02:02:be:58:8c:99:4e:58:6a:7a:12: 8e:96:35:23:83:dd:0e:10:f4:8a:ab:7b:4f:db:31: f4:3b:57:68:8f:e0:c2:03:3c:ce:ff:eb:b1:ea:71: 0e:24:34:d5:e0:09:07:d3:a4:32:a5:d4:df:0e:74: 0c:96:d8:8e:58:81:d4:7f:0b:36:b8:2a:9c:60:75: 6b:3a:a2:6b:e9:3c:85:4b:e0:e1:01:c7:52:e5:2f: 56:87:b8:8c:27:29:03:9d:0d:ff:7f:79:58:a5:8a: be:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:14:5B:A8:80:9E:F6:5B:68:CA:DD:C1:3B:17:A3:B3:BF:18:5A:14 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/7BD960ACD80C11EEB0A2E116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.46.0/23 IPv6: 2400:3fa0::/32 Signature Algorithm: sha256WithRSAEncryption 85:4d:15:f9:21:cc:19:25:5e:68:8d:cc:32:80:82:41:71:78: 59:10:9e:fd:d7:53:4f:3f:df:30:8f:ff:be:66:17:92:ce:dd: 36:08:3e:43:5a:2d:26:24:c1:41:07:2c:48:f4:42:c9:9d:25: 6f:dd:d1:4d:f5:e9:16:0f:60:02:87:a8:de:6b:52:a5:33:43: 5f:0e:d9:d8:a9:92:55:3c:c4:04:ce:b4:f8:41:02:41:9c:0a: 16:c5:d7:c6:b0:db:81:0f:9e:c6:6f:67:12:36:72:85:f0:47: a4:be:84:52:c3:fe:c2:95:72:ad:5e:f9:ac:bc:9d:c9:c3:7e: 39:b6:07:ef:be:ea:0f:8b:12:49:57:c2:38:a9:6d:a3:00:e7: 53:77:1e:2b:6e:9f:76:76:cd:d6:35:d0:8a:4c:18:aa:c4:10: 9c:20:23:dc:8f:dc:96:9b:bc:83:ea:d5:95:8c:10:0d:df:f5: 4b:76:81:bb:3e:b9:76:b0:8f:50:8d:fb:dd:ed:df:fa:77:04: 13:1f:f5:97:70:34:61:8e:0c:12:3c:0b:f6:f7:d4:e8:33:52: 8e:91:5b:66:c4:f0:03:b8:e7:b7:6a:0d:b7:57:24:e8:4c:9d: 80:97:c0:aa:27:aa:fb:cb:94:b8:12:32:5d:7c:e2:ba:2a:a1: 29:dc:e7:13 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjQwMzAxMjA0NTU5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUyM2U4Ny01ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUyvAel3+o0b8MwGu8uJYI1fX+SPn7kiD+SnwbCHVmZRSzdRerDGStbaiAEe kFcTJ7i3egbNXm2Vl0NJTwIcLGbdkzRDfMLj+0SqyZs3jLYpUZwp/hNFkeYwtWLP h47qqpOF6bDDFNUfmBwYQNJGQ/Ioa+FBG6kTtj1Q9vms7fpZxrGdzFidA+Di/XRT DvnFj0YmZbIq8ZJPAgK+WIyZTlhqehKOljUjg90OEPSKq3tP2zH0O1doj+DCAzzO /+ux6nEOJDTV4AkH06QypdTfDnQMltiOWIHUfws2uCqcYHVrOqJr6TyFS+DhAcdS 5S9Wh7iMJykDnQ3/f3lYpYq+0wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFoUW6iA nvZbaMrdwTsXo7O/GFoUMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1N0UvNjAyRDc2RDg1RDczMTFFQ0EzMjQ4ODUzQzRGOUFFMDIvN0JEOTYwQUNE ODBDMTFFRUIwQTJFMTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnly4wDQQCAAIwBwMFACQAP6AwDQYJKoZIhvcNAQELBQAD ggEBAIVNFfkhzBklXmiNzDKAgkFxeFkQnv3XU08/3zCP/75mF5LO3TYIPkNaLSYk wUEHLEj0QsmdJW/d0U316RYPYAKHqN5rUqUzQ18O2dipklU8xATOtPhBAkGcChbF 18aw24EPnsZvZxI2coXwR6S+hFLD/sKVcq1e+ay8ncnDfjm2B+++6g+LEklXwjip baMA51N3Hitun3Z2zdY10IpMGKrEEJwgI9yP3JabvIPq1ZWMEA3f9Ut2gbs+uXaw j1CN+93t3/p3BBMf9ZdwNGGODBI8C/b31OgzUo6RW2bE8AO457dqDbdXJOhMnYCX wKonqvvLlLgSMl184roqoSnc5xM= -----END CERTIFICATE-----Generated at Mon Mar 4 21:01:03 2024 by rpki-client on console-ams.rpki-client.org