$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/DBEED4E0B44911EEA11B100BC4F9AE02.roa File: DBEED4E0B44911EEA11B100BC4F9AE02.roa (raw, json) Hash identifier: 5tmXHnDKvPKa7MCUXMqq1gg4TUOVz2uFWa+oUpRjwzk= Subject key identifier: 67:4A:1D:C6:1D:53:E0:B0:98:D1:DB:11:5E:77:8C:25:F7:2F:8E:30 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 025B Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/DBEED4E0B44911EEA11B100BC4F9AE02.roa Signing time: Tue 16 Jan 2024 08:33:01 +0000 ROA not before: Tue 16 Jan 2024 08:33:01 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 9009 IP address blocks: 103.229.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: Jan 16 08:33:01 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65a63f3d-14e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dc:6f:e4:a5:7e:70:b6:ba:d0:91:4e:b5:be: 74:3f:4f:3f:35:b2:64:a3:c9:5e:9d:fb:3d:8c:ae: 6e:ca:55:5d:74:6d:0b:13:60:e9:8f:2a:90:53:4f: 99:1c:c5:a2:da:04:fe:ca:3d:8a:47:20:7c:e8:6a: 22:e5:f2:3a:c8:e6:59:e6:c0:d0:58:5a:ec:c4:30: 45:dd:b6:7d:15:72:14:6d:08:36:7f:5d:40:bd:e3: 1a:6d:cc:a0:5f:cc:ca:ca:c4:b2:cd:9a:ff:0e:a2: aa:23:59:fc:2d:81:56:51:b6:1d:b9:8a:66:62:cb: 2e:f3:f0:10:32:d9:64:ac:f5:07:cc:6f:44:75:53: 6c:82:4e:57:96:57:a3:f2:12:7d:5d:13:66:53:38: 95:6f:97:4f:2a:cd:e0:69:33:22:92:90:60:b2:a0: 7c:9b:98:31:3c:9e:50:9b:16:0c:5a:f4:dd:f8:6d: 11:4e:36:e7:6d:8d:c3:5e:b8:85:94:cd:87:ab:dc: 15:92:d1:7f:2b:27:d3:87:1b:50:56:d7:54:03:ae: 81:fe:d2:8d:7b:94:d3:3d:4e:f7:80:23:88:86:38: 2f:5b:8c:5e:73:c4:bd:e3:04:e8:26:bf:df:41:f5: 68:de:5b:0d:aa:37:99:55:d5:e8:b8:2a:2f:5f:bf: 0d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4A:1D:C6:1D:53:E0:B0:98:D1:DB:11:5E:77:8C:25:F7:2F:8E:30 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/DBEED4E0B44911EEA11B100BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.116.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:48:de:2a:4d:55:d6:a8:86:08:9e:10:e2:d6:3d:43:8c:5c: 3a:8f:8b:97:7d:16:8b:80:b4:69:c0:11:24:cb:d2:9c:df:9f: 52:bd:20:2d:90:96:4e:5d:3f:a6:0a:5c:d2:fb:a0:93:5d:72: ff:de:91:14:c5:b8:e1:23:df:26:0c:d0:f0:32:f9:a7:c8:78: d3:ab:e5:a9:41:e3:10:80:24:15:24:fa:5c:6f:93:07:2e:2c: c2:50:78:e7:36:03:72:b8:49:cc:60:f9:18:db:60:70:73:f0: a1:d6:78:a1:bc:5d:14:47:37:2e:21:02:65:f7:42:e3:ad:5f: 9f:af:5d:1c:c2:75:87:aa:07:44:10:77:ae:7d:e1:88:06:7a: 8a:8a:6f:03:ef:66:ae:f8:df:f9:a4:43:1e:2e:cf:46:70:e7: 47:d0:26:c6:a1:43:33:71:ea:0e:f4:51:e7:40:29:f2:9e:16: 3b:c1:58:28:cf:9b:1f:67:87:af:48:75:55:a8:74:e4:d8:c4: 73:ff:9f:a0:16:4b:1a:1d:ba:7f:87:c7:52:6b:4e:43:aa:d2: 60:1d:b9:38:c0:6e:b4:7f:5e:93:dd:d1:ff:eb:6e:62:26:1c: 72:81:1d:9b:e4:2e:74:2a:38:6e:19:cf:92:cc:75:36:7b:d4: c6:e2:50:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjQwMTE2MDgzMzAxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2M2YzZC0xNGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtxv5KV+cLa60JFOtb50P08/NbJko8lenfs9jK5uylVddG0LE2DpjyqQU0+Z HMWi2gT+yj2KRyB86Goi5fI6yOZZ5sDQWFrsxDBF3bZ9FXIUbQg2f11AveMabcyg X8zKysSyzZr/DqKqI1n8LYFWUbYduYpmYssu8/AQMtlkrPUHzG9EdVNsgk5Xllej 8hJ9XRNmUziVb5dPKs3gaTMikpBgsqB8m5gxPJ5QmxYMWvTd+G0RTjbnbY3DXriF lM2Hq9wVktF/KyfThxtQVtdUA66B/tKNe5TTPU73gCOIhjgvW4xec8S94wToJr/f QfVo3lsNqjeZVdXouCovX78NkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGdKHcYd U+CwmNHbEV53jCX3L44wMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvREJFRUQ0RTBC NDQ5MTFFRUExMUIxMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5XQwDQYJKoZIhvcNAQELBQADggEBABpI3ipNVdaohgie EOLWPUOMXDqPi5d9FouAtGnAESTL0pzfn1K9IC2Qlk5dP6YKXNL7oJNdcv/ekRTF uOEj3yYM0PAy+afIeNOr5alB4xCAJBUk+lxvkwcuLMJQeOc2A3K4Scxg+RjbYHBz 8KHWeKG8XRRHNy4hAmX3QuOtX5+vXRzCdYeqB0QQd6594YgGeoqKbwPvZq743/mk Qx4uz0Zw50fQJsahQzNx6g70UedAKfKeFjvBWCjPmx9nh69IdVWodOTYxHP/n6AW Sxodun+Hx1JrTkOq0mAduTjAbrR/XpPd0f/rbmImHHKBHZvkLnQqOG4Zz5LMdTZ7 1MbiUG0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:12 2024 by rpki-client on console-ams.rpki-client.org