$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/A4554AD6A1C111EE96BE4110C4F9AE02.roa File: A4554AD6A1C111EE96BE4110C4F9AE02.roa (raw, json) Hash identifier: IV3AFx57AEI82GlUItOgpmo+qhlmSYNe7T4ACgV2Owo= Subject key identifier: A5:15:26:85:56:E5:DF:C0:A4:6E:66:90:3B:39:00:9C:54:BA:B3:D0 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 38 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/A4554AD6A1C111EE96BE4110C4F9AE02.roa Signing time: Sat 23 Dec 2023 18:32:35 +0000 ROA not before: Sat 23 Dec 2023 18:32:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137871 IP address blocks: 103.240.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Dec 23 18:32:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=658727c3-71b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:76:3e:f7:d7:f7:23:8c:a6:69:79:aa:24: c3:d8:5e:ac:04:33:5d:ea:07:09:18:1f:cf:f9:2b: 5d:a8:26:89:8c:e8:66:fe:20:25:07:e5:42:2b:7c: f3:59:fa:d4:c5:5f:52:a2:07:08:ce:f1:bb:50:d7: 40:af:9f:5d:1f:8d:0b:fb:b7:ae:7f:55:53:05:ea: c4:10:c1:fe:b5:e7:f1:73:97:0f:bd:70:4a:56:ba: f4:e4:db:da:ff:eb:df:c1:3a:14:e5:40:84:2f:8a: d2:f3:65:2d:ee:38:62:22:a4:75:c4:7f:d5:9f:73: 2e:3d:a1:50:b3:3c:bb:ef:a5:b8:d7:c7:0e:2d:a8: f3:0b:41:d3:d4:54:29:0f:97:17:1c:c8:85:ab:c3: 1b:45:fd:2c:dd:f8:d9:64:83:7c:10:1c:b3:83:cf: 8d:ff:7a:e0:4f:a2:77:cc:d3:a1:aa:b9:5a:e5:13: f8:17:5f:7f:c1:49:a6:b6:41:fb:32:f5:7b:5e:11: fe:58:83:c8:27:c6:f9:04:3a:fa:39:69:15:15:69: 71:c3:c2:0b:a0:81:c2:5e:01:a9:29:7d:92:ec:d3: ba:28:73:bb:39:28:35:8c:9f:94:ff:2a:75:e9:e6: e4:67:d5:12:6f:c4:c6:10:1c:e1:d9:bb:dd:9a:35: 5e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:15:26:85:56:E5:DF:C0:A4:6E:66:90:3B:39:00:9C:54:BA:B3:D0 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/A4554AD6A1C111EE96BE4110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.3.0/24 Signature Algorithm: sha256WithRSAEncryption 90:35:22:0a:d5:6f:08:2e:52:95:fb:a0:cd:98:40:e5:88:a4: 7e:51:c2:89:8a:4a:0a:96:c4:b1:33:ec:e7:30:f3:1e:67:0e: 66:61:0f:e5:a7:76:05:89:3b:3c:5a:06:12:74:c2:2a:f5:4a: 43:60:31:57:5e:06:4d:bc:29:eb:49:1a:59:a8:b7:d1:04:ca: 2d:2b:98:54:43:99:a6:ff:16:3b:b0:b2:b5:de:57:4c:52:f0: c9:d6:c9:90:d6:a7:1a:34:05:49:4d:6a:37:0f:bf:8d:47:aa: 74:d3:95:e7:1b:ba:fe:53:07:72:73:c1:9c:44:54:47:b9:28: 18:c3:b3:4d:84:4c:f3:24:03:be:61:a1:16:b8:92:9b:5a:37: 27:3f:8d:f7:b5:e7:00:ee:6b:c8:b1:8c:70:c7:24:fe:0d:76: c1:b4:5e:2d:0f:a2:51:c5:2f:9e:0a:d3:4a:85:ff:90:cc:b9: a7:c2:3f:5a:78:5a:9a:6a:95:94:bc:4f:be:0a:9d:b2:ed:e7: 80:26:08:d7:bb:44:58:f0:cc:a6:93:3a:d1:bd:81:93:5a:cf: 45:6f:45:0c:a3:31:cd:ba:7c:a3:d6:0d:ba:6b:6d:41:16:59: 4e:2c:70:43:6e:66:8e:a3:f3:5e:30:d3:02:f9:45:6f:08:b7: ea:77:7a:e0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NDU4OTExMC8GA1UEBRMoNDU4Q0REQ0EzRThGQjY0QzlEMUEyMzQ5MjUyOEJBNzc3 RkNERDIzNDAeFw0yMzEyMjMxODMyMzVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODcyN2MzLTcxYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx73Y+99f3I4ymaXmqJMPYXqwEM13qBwkYH8/5K12oJomM6Gb+ICUH5UIrfPNZ +tTFX1KiBwjO8btQ10Cvn10fjQv7t65/VVMF6sQQwf615/Fzlw+9cEpWuvTk29r/ 69/BOhTlQIQvitLzZS3uOGIipHXEf9Wfcy49oVCzPLvvpbjXxw4tqPMLQdPUVCkP lxccyIWrwxtF/Szd+Nlkg3wQHLODz43/euBPonfM06GquVrlE/gXX3/BSaa2Qfsy 9XteEf5Yg8gnxvkEOvo5aRUVaXHDwguggcJeAakpfZLs07ooc7s5KDWMn5T/KnXp 5uRn1RJvxMYQHOHZu92aNV4/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpRUmhVbl 38CkbmaQOzkAnFS6s9AwHwYDVR0jBBgwFoAURYzdyj6PtkydGiNJJSi6d3/N0jQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0NTg5LzVGQzYyN0M0NjFD NDExRUVCQjE1MUM0QkM0RjlBRTAyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBq US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUll6ZHlqNlB0a3lkR2lOSkpTaTZkM19OMGpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9BNDU1NEFENkEx QzExMUVFOTZCRTQxMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfwAzANBgkqhkiG9w0BAQsFAAOCAQEAkDUiCtVvCC5Slfug zZhA5YikflHCiYpKCpbEsTPs5zDzHmcOZmEP5ad2BYk7PFoGEnTCKvVKQ2AxV14G Tbwp60kaWai30QTKLSuYVEOZpv8WO7Cytd5XTFLwydbJkNanGjQFSU1qNw+/jUeq dNOV5xu6/lMHcnPBnERUR7koGMOzTYRM8yQDvmGhFriSm1o3Jz+N97XnAO5ryLGM cMck/g12wbReLQ+iUcUvngrTSoX/kMy5p8I/WnhammqVlLxPvgqdsu3ngCYI17tE WPDMppM60b2Bk1rPRW9FDKMxzbp8o9YNumttQRZZTixwQ25mjqPzXjDTAvlFbwi3 6nd64A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:18 2024 by rpki-client on console-ams.rpki-client.org