$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F9223D9C6C6311EDBCFA073FC4F9AE02.roa File: F9223D9C6C6311EDBCFA073FC4F9AE02.roa (raw, json) Hash identifier: Jg8nQIKoiXGWrTSQqAwXo2u17EV9e46cEftq0GF94VM= Subject key identifier: D5:97:89:AC:00:61:B9:1C:4D:3B:28:43:F7:A8:FF:FA:71:8E:EF:F0 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: A2 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F9223D9C6C6311EDBCFA073FC4F9AE02.roa Signing time: Sun 03 Sep 2023 13:24:00 +0000 ROA not before: Sun 03 Sep 2023 13:24:00 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140732 IP address blocks: 103.151.46.0/23 maxlen: 23 103.151.47.0/24 maxlen: 24 2400:3fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Feb 2024 11:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Sep 3 13:24:00 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64f488f0-a0df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0c:86:f8:c9:a5:1d:af:11:dc:15:00:39:06: 14:e0:ba:b7:1e:de:db:59:e6:d3:a6:f4:a1:88:8e: c3:31:c4:c9:a3:a4:18:b3:8f:46:0f:61:91:f8:17: 15:90:a1:52:85:3e:c8:e0:ad:9a:47:e5:f6:d0:f1: c6:1b:cd:62:36:0b:75:66:1b:06:fa:4f:e2:60:55: f9:b5:85:70:c4:69:92:a9:a5:26:67:9b:24:83:4d: c4:d6:f9:7c:70:fe:ab:c0:a4:62:bd:95:e6:38:1f: a4:cb:eb:ae:b0:f0:df:53:91:d7:2e:a6:62:95:02: 52:92:78:78:1e:50:86:87:94:82:c2:84:d6:5f:52: 88:4c:f8:6e:9c:3d:de:f2:08:f3:34:da:41:46:4f: eb:d2:4b:62:36:f4:a5:60:11:54:2d:88:3e:74:82: 23:8d:12:a3:a8:f0:ae:54:09:1c:bd:20:73:01:76: 4a:59:c3:52:e5:df:cc:6a:21:58:9f:98:c2:66:45: 29:43:ef:18:5b:8e:16:63:d6:c6:e3:d8:99:05:29: df:09:07:e5:c2:4b:52:ee:14:e3:be:32:64:29:40: cf:0c:87:05:00:31:bf:d2:26:68:03:25:bd:51:d5: 88:1f:7e:b8:ff:fc:6b:24:fb:c7:41:eb:75:e5:f4: 45:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:97:89:AC:00:61:B9:1C:4D:3B:28:43:F7:A8:FF:FA:71:8E:EF:F0 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F9223D9C6C6311EDBCFA073FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.46.0/23 IPv6: 2400:3fa0::/32 Signature Algorithm: sha256WithRSAEncryption 58:8f:42:26:c3:88:8f:69:cc:0b:c8:e2:63:78:3e:00:b1:3f: 29:ac:81:87:19:34:dc:b6:6a:0d:a7:f4:a7:46:5e:97:81:dd: 57:94:03:86:6b:34:da:5b:d3:49:fd:11:9e:a8:37:bf:58:f4: 4d:76:70:1f:95:ad:4f:78:fd:c8:06:7f:d4:2a:ea:d6:e2:33: 20:be:78:f1:4a:a3:0f:b3:46:82:09:3a:a2:f2:31:72:3b:f9: b6:35:30:4b:00:79:f3:40:01:37:21:0c:f5:5f:25:9b:5f:8d: ca:8d:a8:61:92:08:c0:2e:3f:4c:46:40:74:79:c4:5f:cd:3a: 2e:b4:c7:ce:bf:3e:db:47:fa:db:96:dc:e2:54:dc:9f:ff:13: 78:1e:8b:37:bf:54:be:79:12:e3:a4:6f:cf:f0:19:a6:c2:a2: e9:9b:7a:f9:97:eb:7c:a2:a3:55:f1:4c:39:51:2c:91:cd:3f: 9c:6a:0e:63:3d:9b:91:a9:67:cf:9a:7f:20:d3:7a:bb:fc:49: 53:fe:3f:84:4f:91:21:02:ca:a4:b2:21:fe:c4:c1:6a:6b:67: 12:6a:11:dc:cb:e6:64:1a:8c:5b:ac:6d:d4:fa:10:a5:be:2a: fb:52:ee:ab:fe:4d:65:2c:e6:45:34:22:b6:d4:bb:57:f2:e0: 45:ce:06:3d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjMwOTAzMTMyNDAwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY0ODhmMC1hMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowyG+MmlHa8R3BUAOQYU4Lq3Ht7bWebTpvShiI7DMcTJo6QYs49GD2GR+BcV kKFShT7I4K2aR+X20PHGG81iNgt1ZhsG+k/iYFX5tYVwxGmSqaUmZ5skg03E1vl8 cP6rwKRivZXmOB+ky+uusPDfU5HXLqZilQJSknh4HlCGh5SCwoTWX1KITPhunD3e 8gjzNNpBRk/r0ktiNvSlYBFULYg+dIIjjRKjqPCuVAkcvSBzAXZKWcNS5d/MaiFY n5jCZkUpQ+8YW44WY9bG49iZBSnfCQflwktS7hTjvjJkKUDPDIcFADG/0iZoAyW9 UdWIH364//xrJPvHQet15fRF3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNWXiawA YbkcTTsoQ/eo//pxju/wMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1N0UvNjAyRDc2RDg1RDczMTFFQ0EzMjQ4ODUzQzRGOUFFMDIvRjkyMjNEOUM2 QzYzMTFFREJDRkEwNzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnly4wDQQCAAIwBwMFACQAP6AwDQYJKoZIhvcNAQELBQAD ggEBAFiPQibDiI9pzAvI4mN4PgCxPymsgYcZNNy2ag2n9KdGXpeB3VeUA4ZrNNpb 00n9EZ6oN79Y9E12cB+VrU94/cgGf9Qq6tbiMyC+ePFKow+zRoIJOqLyMXI7+bY1 MEsAefNAATchDPVfJZtfjcqNqGGSCMAuP0xGQHR5xF/NOi60x86/PttH+tuW3OJU 3J//E3geize/VL55EuOkb8/wGabCoumbevmX63yio1XxTDlRLJHNP5xqDmM9m5Gp Z8+afyDTerv8SVP+P4RPkSECyqSyIf7EwWprZxJqEdzL5mQajFusbdT6EKW+KvtS 7qv+TWUs5kU0IrbUu1fy4EXOBj0= -----END CERTIFICATE-----Generated at Wed Feb 21 16:10:52 2024 by rpki-client on console-ams.rpki-client.org